$ rpki-client -vvf rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft File: iyhQBa2gBz4MCUttpqOLtR__oaQ.mft (raw, json) Hash identifier: 9iY6F5PVDdzXEvDBqFm9e6O875vzlSZKVK+Oe+Twsgg= Subject key identifier: B7:A2:8B:0C:DF:23:9E:42:DA:74:3C:61:E5:E7:19:97:9B:64:35:CD Authority key identifier: 8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 Certificate issuer: /CN=A918D14B/serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Certificate serial: 03DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft Manifest number: 03C7 Signing time: Thu 19 Jun 2025 00:29:44 +0000 Manifest this update: Thu 19 Jun 2025 00:29:43 +0000 Manifest next update: Thu 26 Jun 2025 00:29:43 +0000 Files and hashes: 1: iyhQBa2gBz4MCUttpqOLtR__oaQ.crl (hash: DFSeheQwh0mJ9bcMXt0A7QkKkNmjnUCcVgYFMcxAHdI=) 2: 58C00854905211EC90E6100FC4F9AE02.roa (hash: 5eLmPskwIg5y4gDpqWBeusWbrOc+t34TIFwmF+boTps=) 3: 989BBF70904F11EC8B118911C4F9AE02.roa (hash: sO6E1E+nR+eYc5iIU6EYUSE2ekfNEYMYq4mKBPQmsro=) 4: 7E8442B68FE511EC94D98C7BC4F9AE02.roa (hash: oJI3ab/8fzhkHDC4Wzdxeh+CGGzoOkYJ9B82+ons7t8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 00:29:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 986 (0x3da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D14B, serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Validity Not Before: Jun 19 00:29:43 2025 GMT Not After : Jun 26 00:29:43 2025 GMT Subject: CN=685359f8-c18f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:2a:65:9f:b7:62:cc:86:93:cd:d5:d4:ee:0d: de:ed:ee:63:0a:17:dc:23:ca:79:40:14:30:00:7c: a2:7c:16:58:7a:2e:0f:57:44:39:41:45:88:14:53: 26:6a:5d:af:6f:2a:90:85:e2:9e:6d:9a:32:53:3e: bb:e8:01:54:40:ef:32:8b:4e:20:68:90:07:6e:8c: 70:25:61:cf:f1:3f:5c:fc:a7:d9:fe:79:0a:4b:00: d1:0e:96:e9:b7:04:b7:97:5d:0a:22:f3:ad:16:0e: 1c:64:1f:c0:45:85:ec:6c:41:d8:07:24:53:f5:db: 3b:7f:90:da:a4:26:4e:54:08:4e:e0:12:6e:4c:04: 1c:ad:af:3b:bf:8f:23:92:69:39:4c:f2:13:cf:37: 9f:db:19:ed:2e:45:c8:4e:d0:7a:8c:c1:3a:07:a1: 23:6b:55:06:62:b1:da:c8:20:ee:92:d3:2f:99:5e: 20:cc:6b:fd:f6:21:a8:5f:c3:54:f6:5f:3b:f3:e4: f3:57:69:f5:60:e0:b1:75:63:22:a4:bf:cc:7f:c5: 6d:c8:01:dd:39:06:54:6f:fd:fc:db:ff:0e:19:e7: 4e:9c:cc:a4:1e:6e:29:1a:3c:c1:dc:56:2e:8a:c9: 89:e9:01:cc:ea:a3:03:3b:c5:e9:37:4f:7f:9e:56: 52:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:A2:8B:0C:DF:23:9E:42:DA:74:3C:61:E5:E7:19:97:9B:64:35:CD X509v3 Authority Key Identifier: keyid:8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:98:6d:f9:b5:0c:e2:1b:d8:80:70:14:ba:18:c2:60:31:42: 62:86:82:1e:87:d1:51:99:a1:de:af:e1:4f:17:ce:27:e5:12: 74:53:ba:33:76:86:e3:c1:02:c3:71:72:8c:7c:f2:89:65:69: 4a:2d:17:15:88:37:be:16:1a:bc:76:19:63:ee:62:f4:0b:09: ac:cb:e9:1c:8b:be:89:dc:a3:92:e1:50:68:6e:e9:e9:75:69: b7:3e:03:88:24:28:68:c3:c0:d0:3c:df:e5:3a:9f:ae:7b:4f: b6:42:b9:69:3a:d3:49:9d:33:f9:a3:77:9d:45:a7:ac:2d:47: 45:48:8b:42:80:15:d5:7e:62:44:03:33:ea:a5:6a:1c:7f:dd: 6f:ae:a1:24:a5:dc:5d:e3:51:28:7e:74:6e:52:85:2d:6e:b1: 8b:2a:19:36:7e:b7:95:4f:d8:ac:a6:7c:b3:c4:56:cc:4d:a0: 72:0b:df:d3:c7:d9:2e:a6:b9:55:9b:70:fe:a4:ff:f7:53:94: 7a:0c:5d:69:31:e6:dc:92:8e:bb:1e:f9:23:32:62:b8:24:1e: 82:58:18:62:a1:63:e5:17:2e:d2:1c:a1:e9:16:0c:1b:34:03: 07:27:d0:67:a0:13:0a:05:0b:cb:8f:18:3b:58:af:16:40:27: db:bf:b4:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQxNEIxMTAvBgNVBAUTKDhCMjg1MDA1QURBMDA3M0UwQzA5NEI2REE2QTM4QkI1 MUZGRkExQTQwHhcNMjUwNjE5MDAyOTQzWhcNMjUwNjI2MDAyOTQzWjAYMRYwFAYD VQQDEw02ODUzNTlmOC1jMThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Cpln7dizIaTzdXU7g3e7e5jChfcI8p5QBQwAHyifBZYei4PV0Q5QUWIFFMm al2vbyqQheKebZoyUz676AFUQO8yi04gaJAHboxwJWHP8T9c/KfZ/nkKSwDRDpbp twS3l10KIvOtFg4cZB/ARYXsbEHYByRT9ds7f5DapCZOVAhO4BJuTAQcra87v48j kmk5TPITzzef2xntLkXITtB6jME6B6Eja1UGYrHayCDuktMvmV4gzGv99iGoX8NU 9l878+TzV2n1YOCxdWMipL/Mf8VtyAHdOQZUb/382/8OGedOnMykHm4pGjzB3FYu ismJ6QHM6qMDO8XpN09/nlZSCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLeiiwzf I55C2nQ8YeXnGZebZDXNMB8GA1UdIwQYMBaAFIsoUAWtoAc+DAlLbaaji7Uf/6Gk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDE0Qi85NEM4OThDQzhG RTIxMUVDQThBRkVFNzhDNEY5QUUwMi9peWhRQmEyZ0J6NE1DVXR0cHFPTHRSX19v YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2l5aFFCYTJnQno0TUNVdHRwcU9MdFJfX29hUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDE0Qi85NEM4OThDQzhGRTIxMUVDQThBRkVFNzhDNEY5QUUwMi9peWhRQmEyZ0J6 NE1DVXR0cHFPTHRSX19vYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvmG35tQziG9iAcBS6GMJgMUJihoIeh9FRmaHer+FPF84n5RJ0U7oz dobjwQLDcXKMfPKJZWlKLRcViDe+Fhq8dhlj7mL0Cwmsy+kci76J3KOS4VBobunp dWm3PgOIJChow8DQPN/lOp+ue0+2QrlpOtNJnTP5o3edRaesLUdFSItCgBXVfmJE AzPqpWocf91vrqEkpdxd41EofnRuUoUtbrGLKhk2freVT9ispnyzxFbMTaByC9/T x9kuprlVm3D+pP/3U5R6DF1pMebcko67HvkjMmK4JB6CWBhioWPlFy7SHKHpFgwb NAMHJ9BnoBMKBQvLjxg7WK8WQCfbv7RZ -----END CERTIFICATE-----Generated at Thu Jun 19 22:52:33 2025 by rpki-client