$ rpki-client -vvf rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft File: iTEhgF-UFH033MbXS2N4Rvcjl8U.mft (raw, json) Hash identifier: 2sorVDn6YIl6Mz+4p6fBz45GxalC0pIsDQfifuQ3Y5g= Subject key identifier: B4:2C:1C:83:C2:D1:48:2A:DA:1F:DE:F6:3D:B0:36:C8:CE:BE:79:5E Authority key identifier: 89:31:21:80:5F:94:14:7D:37:DC:C6:D7:4B:63:78:46:F7:23:97:C5 Certificate issuer: /CN=A917E00F/serialNumber=893121805F94147D37DCC6D74B637846F72397C5 Certificate serial: 055B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iTEhgF-UFH033MbXS2N4Rvcjl8U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft Manifest number: 0662 Signing time: Sat 14 Jun 2025 23:06:44 +0000 Manifest this update: Sat 14 Jun 2025 23:06:43 +0000 Manifest next update: Sat 21 Jun 2025 23:06:43 +0000 Files and hashes: 1: iTEhgF-UFH033MbXS2N4Rvcjl8U.crl (hash: Ce6ABNgEviHvoakQtFWyVEv3Tw+DbA0y5W5RFqdzDMg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.crl rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iTEhgF-UFH033MbXS2N4Rvcjl8U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 23:06:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1371 (0x55b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E00F, serialNumber=893121805F94147D37DCC6D74B637846F72397C5 Validity Not Before: Jun 14 23:06:43 2025 GMT Not After : Jun 21 23:06:43 2025 GMT Subject: CN=684e0083-87fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:16:71:86:e3:3b:f7:16:cf:13:0d:da:31:05: 8c:54:1c:66:b2:97:9c:3b:eb:84:2c:95:9c:cd:7e: ba:4b:3d:6f:0f:cb:a9:94:91:6e:16:8e:44:38:12: e8:b6:1b:8e:af:31:38:de:59:c9:05:a3:90:16:7d: 8d:e2:2c:86:35:98:47:ac:4c:f6:dc:f5:6f:f1:03: a8:eb:b7:c5:9a:59:51:39:08:4d:35:44:ab:31:17: 09:91:d8:56:85:78:b9:33:9e:9f:1f:a9:ca:b6:48: 48:84:d0:85:ac:d8:d5:61:a5:36:f4:74:19:9e:fe: 98:c3:62:69:bc:a5:1c:76:09:00:0b:6f:36:df:5b: f4:89:c2:bc:98:18:54:11:b8:ee:34:53:25:80:52: d5:79:56:17:53:f1:71:a2:f0:62:e2:54:bd:c4:f5: c2:c2:89:f9:68:ec:6f:61:a0:ca:9a:c5:d7:f8:90: 29:6c:7a:f9:db:4a:1e:d3:da:7e:75:aa:02:8e:5d: a3:3e:c1:b7:6b:e0:02:4b:a3:e5:22:92:ba:b2:25: ee:f9:43:11:c2:59:ee:e7:64:6a:0d:3a:f2:4a:4b: ef:e2:88:c2:e5:45:8b:80:fb:7e:fd:c4:2f:52:03: 8f:c4:fc:1a:79:6b:63:2c:03:15:c8:f3:92:71:4f: 7f:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:2C:1C:83:C2:D1:48:2A:DA:1F:DE:F6:3D:B0:36:C8:CE:BE:79:5E X509v3 Authority Key Identifier: keyid:89:31:21:80:5F:94:14:7D:37:DC:C6:D7:4B:63:78:46:F7:23:97:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iTEhgF-UFH033MbXS2N4Rvcjl8U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:45:4c:d6:16:2b:af:4a:b0:c1:78:36:51:ae:4b:41:60:8a: be:dc:34:ef:3e:de:ac:39:2e:86:d8:93:ba:c5:c7:4b:77:b3: 10:0f:39:2a:51:49:27:3e:dd:68:58:f6:d6:44:7d:26:4c:95: 66:f6:ab:45:1e:79:f2:e0:31:24:c7:bf:43:44:42:5b:05:87: d8:c0:29:29:85:bf:29:ab:41:c8:7e:ed:7b:db:a2:ba:c0:9f: a7:f2:b8:39:26:ef:8f:2e:28:19:be:f6:d4:06:4f:21:35:88: 68:1b:78:43:7f:ab:b7:c6:8e:78:7a:b7:02:35:8b:a0:e3:0e: 61:4d:0d:0f:20:6c:4f:f5:a0:c1:3d:f0:ee:05:f2:65:eb:5d: c6:67:bb:a9:1d:14:0f:10:15:50:15:68:63:c7:95:b3:79:52: f5:5c:a8:a1:2e:d3:96:c4:ba:63:3f:24:c7:b4:86:ce:53:fc: ee:24:8b:7b:f5:e4:25:fb:97:08:dc:14:61:73:4a:7f:f4:87: 9a:eb:e6:a7:8c:ac:a1:58:17:c3:9d:93:ac:91:54:eb:45:a7: fb:e8:c3:d1:d9:53:8c:60:9a:b2:9f:32:c1:5b:98:f0:63:55: 58:87:cf:80:aa:a4:b9:62:0a:36:28:5e:65:be:27:14:f2:d8: 5b:81:07:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwMEYxMTAvBgNVBAUTKDg5MzEyMTgwNUY5NDE0N0QzN0RDQzZENzRCNjM3ODQ2 RjcyMzk3QzUwHhcNMjUwNjE0MjMwNjQzWhcNMjUwNjIxMjMwNjQzWjAYMRYwFAYD VQQDEw02ODRlMDA4My04N2ZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyBZxhuM79xbPEw3aMQWMVBxmspecO+uELJWczX66Sz1vD8uplJFuFo5EOBLo thuOrzE43lnJBaOQFn2N4iyGNZhHrEz23PVv8QOo67fFmllROQhNNUSrMRcJkdhW hXi5M56fH6nKtkhIhNCFrNjVYaU29HQZnv6Yw2JpvKUcdgkAC28231v0icK8mBhU EbjuNFMlgFLVeVYXU/FxovBi4lS9xPXCwon5aOxvYaDKmsXX+JApbHr520oe09p+ daoCjl2jPsG3a+ACS6PlIpK6siXu+UMRwlnu52RqDTrySkvv4ojC5UWLgPt+/cQv UgOPxPwaeWtjLAMVyPOScU9/SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLQsHIPC 0Ugq2h/e9j2wNsjOvnleMB8GA1UdIwQYMBaAFIkxIYBflBR9N9zG10tjeEb3I5fF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTAwRi9FREU0OEI5Q0VF MjkxMUVCODA4NEI2MzhDNEY5QUUwMi9pVEVoZ0YtVUZIMDMzTWJYUzJONFJ2Y2ps OFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lURWhnRi1VRkgwMzNNYlhTMk40UnZjamw4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTAwRi9FREU0OEI5Q0VFMjkxMUVCODA4NEI2MzhDNEY5QUUwMi9pVEVoZ0YtVUZI MDMzTWJYUzJONFJ2Y2psOFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7RUzWFiuvSrDBeDZRrktBYIq+3DTvPt6sOS6G2JO6xcdLd7MQDzkq UUknPt1oWPbWRH0mTJVm9qtFHnny4DEkx79DREJbBYfYwCkphb8pq0HIfu1726K6 wJ+n8rg5Ju+PLigZvvbUBk8hNYhoG3hDf6u3xo54ercCNYug4w5hTQ0PIGxP9aDB PfDuBfJl613GZ7upHRQPEBVQFWhjx5WzeVL1XKihLtOWxLpjPyTHtIbOU/zuJIt7 9eQl+5cI3BRhc0p/9Iea6+anjKyhWBfDnZOskVTrRaf76MPR2VOMYJqynzLBW5jw Y1VYh8+AqqS5Ygo2KF5lvicU8thbgQfn -----END CERTIFICATE-----Generated at Mon Jun 16 22:06:18 2025 by rpki-client