$ rpki-client -vvf rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.mft File: -IHZTXommvaISDplHTc5GOeGUB4.mft (raw, json) Hash identifier: PivHA0k7tf59E8WvqrqU7OK0/LbJec2VmHICGLjYOj4= Subject key identifier: C4:C6:CC:A2:C3:1B:E8:B8:4F:39:D3:5A:5F:BE:62:3E:83:90:1B:E0 Authority key identifier: F8:81:D9:4D:7A:26:9A:F6:88:48:3A:65:1D:37:39:18:E7:86:50:1E Certificate issuer: /CN=A9182644/serialNumber=F881D94D7A269AF688483A651D373918E786501E Certificate serial: 0164 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IHZTXommvaISDplHTc5GOeGUB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.mft Manifest number: 0160 Signing time: Sun 15 Jun 2025 03:10:29 +0000 Manifest this update: Sun 15 Jun 2025 03:10:28 +0000 Manifest next update: Sun 22 Jun 2025 03:10:28 +0000 Files and hashes: 1: -IHZTXommvaISDplHTc5GOeGUB4.crl (hash: 3FuFH31WTub/uZyLr6yAhNT2m+Ilsi7tcJco/OuBOwU=) 2: 8A50B69C2F2B11EE8CD3F880C4F9AE02.roa (hash: 749u4lopn9W/FVK2H662IjT0Y70cK7ANdEZnlQh0KN8=) 3: 89E0172A2F2B11EE8CD3F880C4F9AE02.roa (hash: JpEflAmkAjQw8fDsB0P7evpxNWtbBcByQzIhr/Rv/Wo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.crl rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IHZTXommvaISDplHTc5GOeGUB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 356 (0x164) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182644, serialNumber=F881D94D7A269AF688483A651D373918E786501E Validity Not Before: Jun 15 03:10:28 2025 GMT Not After : Jun 22 03:10:28 2025 GMT Subject: CN=684e39a4-5b07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:56:97:b0:46:f5:7a:a5:51:74:17:f3:18:5a: c3:c5:0c:98:4a:c8:8d:9a:97:43:c7:94:4f:34:06: f5:f4:8c:70:44:bd:5e:49:9e:b5:e2:7f:99:73:fd: c3:57:18:34:16:df:fc:21:b2:c2:f5:78:85:3f:fd: ee:a9:21:c7:64:e4:05:92:a0:c3:2d:9d:ea:ab:5a: be:26:c7:99:2f:cc:6e:f5:59:18:24:25:65:e6:97: 54:a8:c2:ea:c5:50:0c:36:7d:dc:03:58:0c:1a:de: 6c:d3:22:7a:07:c3:ee:fd:43:3c:10:ad:96:76:61: e9:b3:10:9a:53:a3:c6:6d:17:a3:25:cf:83:50:65: 03:6a:7c:41:6d:f6:46:67:76:df:b8:2f:46:30:d2: 70:85:9b:aa:50:a8:11:af:83:ca:27:c8:81:9b:b0: b0:c6:04:fd:d8:21:99:bf:36:9e:76:78:37:71:73: 1e:48:ff:74:57:53:7c:66:f4:49:32:16:72:30:1d: 70:7c:0a:31:f9:78:aa:7b:98:de:42:a0:0e:8e:89: fa:1a:05:34:41:21:d8:b1:ca:59:80:ee:50:82:83: 63:3b:f0:99:a4:4b:5d:b3:ee:48:a1:c6:e4:0e:01: 54:44:48:39:37:c5:58:23:b1:fc:52:29:cd:0c:ff: ce:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:C6:CC:A2:C3:1B:E8:B8:4F:39:D3:5A:5F:BE:62:3E:83:90:1B:E0 X509v3 Authority Key Identifier: keyid:F8:81:D9:4D:7A:26:9A:F6:88:48:3A:65:1D:37:39:18:E7:86:50:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IHZTXommvaISDplHTc5GOeGUB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:82:df:25:c4:f4:d0:47:47:a8:d8:93:85:68:ae:a4:10:99: e8:bd:2b:f1:83:0a:c5:75:08:84:4b:2d:44:68:03:00:c3:98: 70:b9:3f:19:d5:9d:1d:06:fd:b5:99:5a:58:77:74:8e:89:54: 4d:ba:24:ea:28:98:a4:30:dd:b1:36:2a:bb:e2:17:74:2a:c6: fd:e2:4f:37:8d:9d:fe:16:89:40:e9:d5:cb:27:75:b0:54:5e: d2:4b:08:f5:ff:6a:ab:a5:44:6e:a5:26:67:dd:0b:e2:a2:42: 12:1d:68:b0:11:a4:6e:f2:af:65:cc:6f:4f:8e:4e:c4:a0:ad: b3:9b:a3:27:4e:83:d4:5b:a4:71:1b:17:6d:c7:03:03:0b:2a: ce:7b:4f:4b:aa:80:4d:89:6b:ed:c5:9e:0e:3a:9d:1c:70:7d: 10:51:4b:3c:a8:c7:86:e2:1c:c2:a4:5f:82:88:88:4f:bf:fe: 32:38:26:06:22:01:85:dd:12:dc:36:0d:94:d8:9a:cb:07:1d: 75:43:53:cf:62:f7:c2:f2:98:11:54:66:97:de:dc:ef:f9:fe: 3a:fc:a5:03:f5:c7:b1:67:ee:38:42:00:2e:e3:2d:59:ef:02: 10:d1:4f:19:0c:75:5b:1a:d1:ba:2a:f0:4a:4d:45:42:46:06: 86:3f:34:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI2NDQxMTAvBgNVBAUTKEY4ODFEOTREN0EyNjlBRjY4ODQ4M0E2NTFEMzczOTE4 RTc4NjUwMUUwHhcNMjUwNjE1MDMxMDI4WhcNMjUwNjIyMDMxMDI4WjAYMRYwFAYD VQQDEw02ODRlMzlhNC01YjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVaXsEb1eqVRdBfzGFrDxQyYSsiNmpdDx5RPNAb19IxwRL1eSZ614n+Zc/3D Vxg0Ft/8IbLC9XiFP/3uqSHHZOQFkqDDLZ3qq1q+JseZL8xu9VkYJCVl5pdUqMLq xVAMNn3cA1gMGt5s0yJ6B8Pu/UM8EK2WdmHpsxCaU6PGbRejJc+DUGUDanxBbfZG Z3bfuC9GMNJwhZuqUKgRr4PKJ8iBm7CwxgT92CGZvzaedng3cXMeSP90V1N8ZvRJ MhZyMB1wfAox+Xiqe5jeQqAOjon6GgU0QSHYscpZgO5QgoNjO/CZpEtds+5Iocbk DgFUREg5N8VYI7H8UinNDP/O8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMTGzKLD G+i4TznTWl++Yj6DkBvgMB8GA1UdIwQYMBaAFPiB2U16Jpr2iEg6ZR03ORjnhlAe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjY0NC9CRjEzMUQzNDJE MDAxMUVFOUQxMEZGMThDNEY5QUUwMi8tSUhaVFhvbW12YUlTRHBsSFRjNUdPZUdV QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1JSFpUWG9tbXZhSVNEcGxIVGM1R09lR1VCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjY0NC9CRjEzMUQzNDJEMDAxMUVFOUQxMEZGMThDNEY5QUUwMi8tSUhaVFhvbW12 YUlTRHBsSFRjNUdPZUdVQjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDHgt8lxPTQR0eo2JOFaK6kEJnovSvxgwrFdQiESy1EaAMAw5hwuT8Z 1Z0dBv21mVpYd3SOiVRNuiTqKJikMN2xNiq74hd0Ksb94k83jZ3+FolA6dXLJ3Ww VF7SSwj1/2qrpURupSZn3QviokISHWiwEaRu8q9lzG9Pjk7EoK2zm6MnToPUW6Rx GxdtxwMDCyrOe09LqoBNiWvtxZ4OOp0ccH0QUUs8qMeG4hzCpF+CiIhPv/4yOCYG IgGF3RLcNg2U2JrLBx11Q1PPYvfC8pgRVGaX3tzv+f46/KUD9cexZ+44QgAu4y1Z 7wIQ0U8ZDHVbGtG6KvBKTUVCRgaGPzTH -----END CERTIFICATE-----Generated at Sun Jun 15 08:43:39 2025 by rpki-client