$ rpki-client -vvf rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft File: ips7kjmTluj8a4YwntVzMMlOEX0.mft (raw, json) Hash identifier: aq9JrnZkrlDHfCiTmI8SvBgTK+yy6kewGY962optkLg= Subject key identifier: 3F:2F:7F:83:65:D0:EF:C2:07:54:94:2C:10:64:98:9B:5E:61:4A:D1 Authority key identifier: 8A:9B:3B:92:39:93:96:E8:FC:6B:86:30:9E:D5:73:30:C9:4E:11:7D Certificate issuer: /CN=A919A3CA/serialNumber=8A9B3B92399396E8FC6B86309ED57330C94E117D Certificate serial: 0997 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft Manifest number: 098E Signing time: Fri 20 Jun 2025 20:01:38 +0000 Manifest this update: Fri 20 Jun 2025 20:01:38 +0000 Manifest next update: Fri 27 Jun 2025 20:01:38 +0000 Files and hashes: 1: ips7kjmTluj8a4YwntVzMMlOEX0.crl (hash: 00/e5OHlpGgbcg1JWVw/FYTOTAh8IThURFFTnx30DfQ=) 2: B972C58C8FA611EAB095C928C4F9AE02.roa (hash: pd0z6Py0ljyQXcBSw2555Qfaeo+rQ0qMyZ2LLvuE2Pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.crl rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 20:01:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2455 (0x997) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A3CA, serialNumber=8A9B3B92399396E8FC6B86309ED57330C94E117D Validity Not Before: Jun 20 20:01:38 2025 GMT Not After : Jun 27 20:01:38 2025 GMT Subject: CN=6855be22-e54f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:01:79:58:e1:10:c1:8a:ac:84:56:2b:16:11: 5d:fc:d1:a3:f8:0c:53:75:01:a0:65:c5:46:a4:3f: df:ac:2a:50:32:4c:38:d1:4e:40:5d:78:dc:82:58: af:5f:c8:1b:57:51:ab:6b:48:a0:68:1c:8f:13:27: f1:b9:1f:04:2a:50:d1:20:31:90:b9:b0:6a:9d:93: cb:44:af:ec:74:de:e6:b8:a8:4f:ca:65:8f:ed:66: 55:bf:29:b2:7b:c6:5c:61:f6:28:45:fd:0f:dc:aa: e4:eb:f7:41:b2:b7:a3:19:2a:44:60:6b:aa:da:ea: 01:f7:d1:1b:0c:80:7c:a1:61:3e:40:5e:2b:a1:62: 4e:e6:29:b1:42:31:e8:a4:09:4d:d7:c0:f6:c6:07: 5c:23:05:a2:fc:b7:96:12:00:61:86:95:35:23:f7: c7:71:33:c7:73:26:17:25:90:9e:63:f7:5b:d0:ad: 66:98:9d:7b:a2:9b:9d:f8:54:d6:e8:f3:46:4b:20: 84:8c:a9:91:b9:99:3e:20:4e:b7:20:d1:88:eb:34: b8:ab:41:73:0f:8b:6d:d0:97:d6:78:73:89:17:b1: 41:ac:7c:61:32:65:59:97:b9:9d:cb:30:18:16:4d: 9f:03:a1:ee:90:1c:a3:b2:2f:89:1a:8d:54:40:8e: a4:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:2F:7F:83:65:D0:EF:C2:07:54:94:2C:10:64:98:9B:5E:61:4A:D1 X509v3 Authority Key Identifier: keyid:8A:9B:3B:92:39:93:96:E8:FC:6B:86:30:9E:D5:73:30:C9:4E:11:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:15:c9:e6:61:69:31:05:b2:ad:42:e7:34:91:17:9b:2c:8e: 5e:1d:e9:58:67:eb:5f:09:53:e4:23:d2:be:80:63:76:6d:f0: 72:47:72:b3:02:f8:d0:92:20:71:53:b1:22:65:f8:d9:a3:75: 61:e5:53:01:b7:0c:bb:f0:62:65:56:3b:b5:31:68:ec:4c:68: 5d:98:67:53:0c:ea:04:d9:91:d2:9f:19:51:5a:1b:37:ef:0c: 5e:00:b5:e5:0a:19:37:97:7f:d9:9c:62:e7:2f:81:05:fc:2c: 6e:67:40:26:2c:74:65:2c:ca:50:7f:a6:16:2a:95:88:27:f6: 1d:c7:71:e6:1b:58:04:19:6d:97:df:b1:2e:28:53:0a:71:0a: 6c:e1:b4:51:10:67:04:71:63:74:c6:73:e5:1f:a5:4b:b7:51: 46:0c:85:02:5a:3a:a6:ec:f4:e5:6f:41:44:a8:9c:e9:b4:10: c6:28:eb:5f:79:ee:69:5d:bb:d6:33:25:0b:f4:47:4e:fc:8d: 62:d8:90:a4:8c:fc:1e:a3:bc:25:77:fa:07:d2:1e:f4:fd:00: ce:a8:b5:56:fd:6e:70:7a:28:e6:dd:5e:af:e4:f9:a5:81:7e: 63:53:d3:f7:56:d9:e1:06:24:47:8b:9c:78:25:54:ad:f9:3c: d3:1a:82:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUEzQ0ExMTAvBgNVBAUTKDhBOUIzQjkyMzk5Mzk2RThGQzZCODYzMDlFRDU3MzMw Qzk0RTExN0QwHhcNMjUwNjIwMjAwMTM4WhcNMjUwNjI3MjAwMTM4WjAYMRYwFAYD VQQDEw02ODU1YmUyMi1lNTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyQF5WOEQwYqshFYrFhFd/NGj+AxTdQGgZcVGpD/frCpQMkw40U5AXXjcgliv X8gbV1Gra0igaByPEyfxuR8EKlDRIDGQubBqnZPLRK/sdN7muKhPymWP7WZVvymy e8ZcYfYoRf0P3Krk6/dBsrejGSpEYGuq2uoB99EbDIB8oWE+QF4roWJO5imxQjHo pAlN18D2xgdcIwWi/LeWEgBhhpU1I/fHcTPHcyYXJZCeY/db0K1mmJ17opud+FTW 6PNGSyCEjKmRuZk+IE63INGI6zS4q0FzD4tt0JfWeHOJF7FBrHxhMmVZl7mdyzAY Fk2fA6HukByjsi+JGo1UQI6k0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD8vf4Nl 0O/CB1SULBBkmJteYUrRMB8GA1UdIwQYMBaAFIqbO5I5k5bo/GuGMJ7VczDJThF9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTNDQS81N0QyMzgwMjhG QTIxMUVBOEVDMDZFMUNDNEY5QUUwMi9pcHM3a2ptVGx1ajhhNFl3bnRWek1NbE9F WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lwczdram1UbHVqOGE0WXdudFZ6TU1sT0VYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTNDQS81N0QyMzgwMjhGQTIxMUVBOEVDMDZFMUNDNEY5QUUwMi9pcHM3a2ptVGx1 ajhhNFl3bnRWek1NbE9FWDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABFcnmYWkxBbKtQuc0kRebLI5eHelYZ+tfCVPkI9K+gGN2bfByR3Kz AvjQkiBxU7EiZfjZo3Vh5VMBtwy78GJlVju1MWjsTGhdmGdTDOoE2ZHSnxlRWhs3 7wxeALXlChk3l3/ZnGLnL4EF/CxuZ0AmLHRlLMpQf6YWKpWIJ/Ydx3HmG1gEGW2X 37EuKFMKcQps4bRREGcEcWN0xnPlH6VLt1FGDIUCWjqm7PTlb0FEqJzptBDGKOtf ee5pXbvWMyUL9EdO/I1i2JCkjPweo7wld/oH0h70/QDOqLVW/W5weijm3V6v5Pml gX5jU9P3VtnhBiRHi5x4JVSt+TzTGoLr -----END CERTIFICATE-----Generated at Sat Jun 21 01:50:37 2025 by rpki-client