$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft File: IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft (raw, json) Hash identifier: WZBDzxABF6hmBpiZNCEpsMMKnILBELXAIlQeupJA8Nw= Subject key identifier: 2E:5E:43:21:4F:B3:8B:D4:AB:B0:57:8C:EA:15:66:3E:CF:9C:9B:21 Authority key identifier: 22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 Certificate issuer: /CN=A9195BA9/serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Certificate serial: 09D0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft Manifest number: 09C4 Signing time: Fri 20 Jun 2025 19:53:07 +0000 Manifest this update: Fri 20 Jun 2025 19:53:07 +0000 Manifest next update: Fri 27 Jun 2025 19:53:07 +0000 Files and hashes: 1: IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl (hash: qccpU1lAYwLIlJ94FjQ1qo/Nyy7Sp2MZxiUZ1arAX0c=) 2: 543CDDF0839011EAB5B82263C4F9AE02.roa (hash: PG+DCY3DsnT1DiiJh/CX8LITvJqbEq/+Av+Qqgc42Yc=) 3: 54DD69FA839011EAB5B82263C4F9AE02.roa (hash: YJ7W6HYFgOqdoVWF2hJtmCaUJf59puKnAmoMTngU5VA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 19:53:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2512 (0x9d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9, serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Validity Not Before: Jun 20 19:53:07 2025 GMT Not After : Jun 27 19:53:07 2025 GMT Subject: CN=6855bc23-e53d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:33:f9:04:ae:f2:4d:f0:07:fd:77:c3:11:a7: 86:b8:0c:78:68:53:ad:81:40:74:45:aa:e4:e5:77: 00:c3:84:67:e2:9c:f2:a2:29:04:a6:a6:bf:92:61: fe:7c:43:d4:2b:b6:5d:10:c5:54:63:58:f5:fa:5a: 41:91:c0:ed:18:d3:b3:65:3f:c9:df:07:fd:83:29: a8:60:2f:37:d6:e4:7a:c1:1f:c4:73:64:c9:ff:7c: 60:9c:cc:95:6d:ad:1a:87:d1:d5:c8:ce:8e:32:b0: 29:8b:b4:f0:0d:1b:9c:37:e9:c9:3b:0c:8a:a0:56: 4a:4c:32:7e:bb:37:80:74:35:29:a4:b1:4f:09:6a: 96:88:88:0d:bc:c7:19:d3:af:e3:84:2f:04:7b:d1: 50:9a:89:7d:1d:71:fe:e7:df:37:b2:ab:33:10:ef: 5c:49:59:83:b7:42:bb:fd:ef:68:f0:62:79:33:f3: 5e:d6:e0:d3:f6:68:55:c6:cf:05:f3:1c:cb:7c:92: c8:33:b2:7c:57:1f:07:f5:91:72:ab:42:43:48:5e: 71:7a:be:cc:34:1f:c8:58:ba:7c:34:89:8b:04:7b: f9:12:ef:94:05:57:d2:df:b7:02:8e:2a:81:bd:3e: 3f:8b:ca:f0:9c:5a:b3:d0:38:27:55:7b:5d:0b:cf: a5:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:5E:43:21:4F:B3:8B:D4:AB:B0:57:8C:EA:15:66:3E:CF:9C:9B:21 X509v3 Authority Key Identifier: keyid:22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:f5:78:d3:20:35:df:08:4c:2a:11:a2:0b:89:ed:4c:61:eb: 25:99:21:03:5f:b8:92:f4:89:80:c4:a6:f1:82:2a:e9:33:74: 0d:d1:79:a6:f7:4d:0a:26:ff:4c:7a:53:45:a0:7c:95:9c:72: 95:da:b6:fc:ab:bd:1a:e1:f8:f6:e1:36:61:0c:f3:f8:c5:12: d5:d9:66:98:54:29:81:96:5a:1b:99:c1:86:c6:f6:53:57:1c: b9:dc:da:ac:2d:b5:ec:fa:19:b0:c3:35:7e:47:aa:7c:1d:10: 8b:b0:cf:0a:ce:51:e2:d1:5c:13:b9:fe:28:4f:68:c5:fa:79: bd:d6:00:5a:37:66:5c:56:b9:15:2f:23:18:23:15:c0:88:dd: bf:0d:dc:0d:d9:29:26:81:d4:9d:2a:54:e7:75:3c:9e:21:59: bc:d8:18:a0:67:4c:2e:b7:77:a9:42:dd:f4:44:fb:37:2c:da: de:a2:6b:b2:7c:1b:75:6d:57:1f:42:0c:ee:f7:f6:53:68:f2: 3b:95:3c:a0:a5:75:33:da:ce:d8:ec:2c:67:da:ba:3d:34:f6: 43:4c:7c:75:e0:2c:cb:01:1e:2d:79:20:98:bd:85:78:09:80: 4e:8f:83:ad:4a:10:06:1a:e0:de:8c:e7:83:3a:1d:e8:6f:ed: f6:09:6e:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKDIyNDVBRDkxNTQzQUREQUQ3ODEyM0RENDE1RDY1OUJC NTJENUZCNjIwHhcNMjUwNjIwMTk1MzA3WhcNMjUwNjI3MTk1MzA3WjAYMRYwFAYD VQQDEw02ODU1YmMyMy1lNTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuTP5BK7yTfAH/XfDEaeGuAx4aFOtgUB0Rark5XcAw4Rn4pzyoikEpqa/kmH+ fEPUK7ZdEMVUY1j1+lpBkcDtGNOzZT/J3wf9gymoYC831uR6wR/Ec2TJ/3xgnMyV ba0ah9HVyM6OMrApi7TwDRucN+nJOwyKoFZKTDJ+uzeAdDUppLFPCWqWiIgNvMcZ 06/jhC8Ee9FQmol9HXH+5983sqszEO9cSVmDt0K7/e9o8GJ5M/Ne1uDT9mhVxs8F 8xzLfJLIM7J8Vx8H9ZFyq0JDSF5xer7MNB/IWLp8NImLBHv5Eu+UBVfS37cCjiqB vT4/i8rwnFqz0DgnVXtdC8+lFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC5eQyFP s4vUq7BXjOoVZj7PnJshMB8GA1UdIwQYMBaAFCJFrZFUOt2teBI91BXWWbtS1fti MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9EODkxNDc4Qzgz OEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNhMTRFajNVRmRaWnUxTFYt MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lrV3RrVlE2M2ExNEVqM1VGZFpadTFMVi0ySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUJBOS9EODkxNDc4QzgzOEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNh MTRFajNVRmRaWnUxTFYtMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAC9XjTIDXfCEwqEaILie1MYeslmSEDX7iS9ImAxKbxgirpM3QN0Xmm 900KJv9MelNFoHyVnHKV2rb8q70a4fj24TZhDPP4xRLV2WaYVCmBllobmcGGxvZT Vxy53NqsLbXs+hmwwzV+R6p8HRCLsM8KzlHi0VwTuf4oT2jF+nm91gBaN2ZcVrkV LyMYIxXAiN2/DdwN2SkmgdSdKlTndTyeIVm82BigZ0wut3epQt30RPs3LNreomuy fBt1bVcfQgzu9/ZTaPI7lTygpXUz2s7Y7Cxn2ro9NPZDTHx14CzLAR4teSCYvYV4 CYBOj4OtShAGGuDejOeDOh3ob+32CW6m -----END CERTIFICATE-----Generated at Sat Jun 21 05:00:42 2025 by rpki-client