$ rpki-client -vvf rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft File: iifxtRRZ_TbLLIBghxxVOPnSPX4.mft (raw, json) Hash identifier: KM8Lcio1EHBFcK0oE3soBtRQ7v17Bwf3fdPW8TEz1Jo= Subject key identifier: 89:B9:BE:D6:B7:9B:7D:66:00:BD:9A:F9:24:70:8D:3C:90:1A:E1:56 Authority key identifier: 8A:27:F1:B5:14:59:FD:36:CB:2C:80:60:87:1C:55:38:F9:D2:3D:7E Certificate issuer: /CN=A918AACD/serialNumber=8A27F1B51459FD36CB2C8060871C5538F9D23D7E Certificate serial: CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iifxtRRZ_TbLLIBghxxVOPnSPX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft Manifest number: C9 Signing time: Fri 13 Jun 2025 04:42:56 +0000 Manifest this update: Fri 13 Jun 2025 04:42:56 +0000 Manifest next update: Fri 20 Jun 2025 04:42:56 +0000 Files and hashes: 1: iifxtRRZ_TbLLIBghxxVOPnSPX4.crl (hash: UvO5glbRu28jtvY/7kGoKTXAPNdb56uvzJMlYYy5Jrk=) 2: 7DA22F2C199D11EFB19DA380C4F9AE02.roa (hash: m/G/Sff8tqA/XbNYboOxx50mkuYuHxKvPy3vRj80oOo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.crl rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iifxtRRZ_TbLLIBghxxVOPnSPX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 04:42:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AACD, serialNumber=8A27F1B51459FD36CB2C8060871C5538F9D23D7E Validity Not Before: Jun 13 04:42:56 2025 GMT Not After : Jun 20 04:42:56 2025 GMT Subject: CN=684bac50-80f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a6:07:82:09:d3:17:05:cc:fa:18:d8:90:65: e7:28:c6:8f:43:a4:9e:bf:f4:9f:8c:23:b3:42:18: 74:ff:54:da:ff:07:04:d2:0d:3f:36:ae:9b:27:aa: 33:4c:20:6d:27:d2:43:6f:d3:0f:b7:e3:b1:b8:8e: a6:70:5c:1a:ab:13:ca:26:ec:62:93:44:98:f4:6f: 14:f2:08:dd:db:70:fd:a9:3a:d5:9b:b9:4b:83:ac: fc:46:fb:50:f8:18:de:96:d0:7c:3d:54:6e:6e:88: 02:da:db:a1:54:71:93:7f:67:27:ca:77:47:b6:cf: 43:13:2c:e8:43:37:2e:ac:69:2b:bc:4e:81:58:c5: 88:fc:09:92:35:76:55:73:67:67:c5:e1:a7:d2:23: e9:22:1c:5f:83:05:2b:43:4b:5a:d0:dc:14:c8:a6: c7:32:34:3c:5e:f2:85:c8:c8:92:aa:ab:70:06:3a: 26:18:c6:67:dd:34:2f:70:4b:43:01:29:70:57:e8: 6c:eb:8a:8b:c7:bb:fc:3d:d2:21:79:2f:39:1b:7e: 62:fc:57:03:05:d5:71:a9:45:8f:4f:96:bf:13:c1: 11:72:fc:b5:a6:1a:9c:14:68:be:11:c0:bf:ad:47: a2:71:2b:96:e2:12:b6:ff:47:b5:7c:b8:3d:46:63: aa:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:B9:BE:D6:B7:9B:7D:66:00:BD:9A:F9:24:70:8D:3C:90:1A:E1:56 X509v3 Authority Key Identifier: keyid:8A:27:F1:B5:14:59:FD:36:CB:2C:80:60:87:1C:55:38:F9:D2:3D:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iifxtRRZ_TbLLIBghxxVOPnSPX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:9f:db:06:89:20:ad:b6:1f:71:35:26:16:2b:cf:f1:55:42: a6:78:f6:4a:e0:53:a4:94:08:91:18:bb:94:b3:99:40:e8:d7: dd:5a:59:16:21:4c:ae:7e:c3:a8:35:83:86:17:e5:d0:75:3c: 31:a3:7c:10:71:da:1c:f8:3b:a7:0c:42:72:80:13:01:b8:ff: 04:8d:2d:f9:f4:25:a4:95:25:45:6c:8d:cf:cb:5d:e4:fb:70: d0:de:46:49:33:56:6e:30:28:03:45:ef:8d:56:b5:c3:45:c0: ba:eb:fe:fe:3d:0e:10:54:b7:2b:2a:e1:7c:20:07:fc:a5:4f: 1c:af:90:bd:35:55:af:f2:b9:45:ca:71:68:32:cd:16:82:e8: a1:3e:20:e0:60:56:8e:a8:a4:eb:a9:f4:7f:e1:01:1f:39:6c: 84:a2:a4:e5:e7:19:a9:88:5a:eb:71:c4:e3:ca:86:17:e2:27: 46:1c:4f:ba:23:1c:37:b8:59:26:e2:30:c1:6b:5f:4e:f4:47: 43:06:d1:9a:e3:ae:89:bb:94:9c:05:dc:d8:64:86:43:76:32: a0:b4:86:ec:ca:fa:78:49:04:d2:93:3a:86:d3:16:c8:b3:51: ab:b4:c9:09:c5:82:d1:2f:83:32:67:a6:ce:d5:9b:bf:a5:dc: 17:44:30:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFBQ0QxMTAvBgNVBAUTKDhBMjdGMUI1MTQ1OUZEMzZDQjJDODA2MDg3MUM1NTM4 RjlEMjNEN0UwHhcNMjUwNjEzMDQ0MjU2WhcNMjUwNjIwMDQ0MjU2WjAYMRYwFAYD VQQDEw02ODRiYWM1MC04MGY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxqYHggnTFwXM+hjYkGXnKMaPQ6Sev/SfjCOzQhh0/1Ta/wcE0g0/Nq6bJ6oz TCBtJ9JDb9MPt+OxuI6mcFwaqxPKJuxik0SY9G8U8gjd23D9qTrVm7lLg6z8RvtQ +BjeltB8PVRubogC2tuhVHGTf2cnyndHts9DEyzoQzcurGkrvE6BWMWI/AmSNXZV c2dnxeGn0iPpIhxfgwUrQ0ta0NwUyKbHMjQ8XvKFyMiSqqtwBjomGMZn3TQvcEtD ASlwV+hs64qLx7v8PdIheS85G35i/FcDBdVxqUWPT5a/E8ERcvy1phqcFGi+EcC/ rUeicSuW4hK2/0e1fLg9RmOqJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIm5vta3 m31mAL2a+SRwjTyQGuFWMB8GA1UdIwQYMBaAFIon8bUUWf02yyyAYIccVTj50j1+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUFDRC84RUExOUFBMjE5 OUMxMUVGOTY5NzM0N0ZDNEY5QUUwMi9paWZ4dFJSWl9UYkxMSUJnaHh4Vk9QblNQ WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lpZnh0UlJaX1RiTExJQmdoeHhWT1BuU1BYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QUFDRC84RUExOUFBMjE5OUMxMUVGOTY5NzM0N0ZDNEY5QUUwMi9paWZ4dFJSWl9U YkxMSUJnaHh4Vk9QblNQWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyn9sGiSCtth9xNSYWK8/xVUKmePZK4FOklAiRGLuUs5lA6NfdWlkW IUyufsOoNYOGF+XQdTwxo3wQcdoc+DunDEJygBMBuP8EjS359CWklSVFbI3Py13k +3DQ3kZJM1ZuMCgDRe+NVrXDRcC66/7+PQ4QVLcrKuF8IAf8pU8cr5C9NVWv8rlF ynFoMs0WguihPiDgYFaOqKTrqfR/4QEfOWyEoqTl5xmpiFrrccTjyoYX4idGHE+6 Ixw3uFkm4jDBa19O9EdDBtGa466Ju5ScBdzYZIZDdjKgtIbsyvp4SQTSkzqG0xbI s1GrtMkJxYLRL4MyZ6bO1Zu/pdwXRDCd -----END CERTIFICATE-----Generated at Sat Jun 14 19:20:08 2025 by rpki-client