$ rpki-client -vvf rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft File: IW4UMOXDDg0jp10HDbeJi5CEl5k.mft (raw, json) Hash identifier: Da/EGsDQzyrLPGd1STBTEwICU9/kw67qQBla11Ai9T0= Subject key identifier: 16:BE:DE:9E:60:B6:25:F6:C3:1D:A5:F2:7F:15:90:E5:F0:34:E5:8C Authority key identifier: 21:6E:14:30:E5:C3:0E:0D:23:A7:5D:07:0D:B7:89:8B:90:84:97:99 Certificate issuer: /CN=A919A5B5/serialNumber=216E1430E5C30E0D23A75D070DB7898B90849799 Certificate serial: 07B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft Manifest number: 07B0 Signing time: Sat 14 Jun 2025 21:00:34 +0000 Manifest this update: Sat 14 Jun 2025 21:00:34 +0000 Manifest next update: Sat 21 Jun 2025 21:00:33 +0000 Files and hashes: 1: IW4UMOXDDg0jp10HDbeJi5CEl5k.crl (hash: /Ntof1LwMsoNwnXrnfzdB+j8/yHkv9VhXDPQGLCbQuI=) 2: ACD444282EC911EB99EC263DC4F9AE02.roa (hash: DLKvz3rwnGGBIag3RK7ssCkmYQ1hx8lImaGotS18Gqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.crl rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 21:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1975 (0x7b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A5B5, serialNumber=216E1430E5C30E0D23A75D070DB7898B90849799 Validity Not Before: Jun 14 21:00:34 2025 GMT Not After : Jun 21 21:00:33 2025 GMT Subject: CN=684de2f2-016c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:24:db:5a:67:01:2d:ea:7f:10:a1:9e:ae:77: 0f:0e:e7:36:c6:9f:40:e2:ef:34:b1:67:60:66:5a: e9:a4:4f:27:3d:45:92:18:eb:c9:7a:23:5d:d1:40: 8b:88:d1:2e:a4:c9:29:14:3b:2f:17:2a:99:26:2d: 93:98:ef:b8:bb:16:e3:23:f8:f5:71:65:9f:0f:e2: ad:32:87:e2:e3:05:e8:aa:c4:44:29:37:e3:fb:8b: 0b:20:f3:37:74:e9:71:c5:96:d2:80:48:b9:85:33: ad:8b:11:a0:73:bf:16:41:52:3b:b7:3f:e5:34:38: e9:84:9f:d2:9c:c3:23:ec:b8:68:45:da:f3:1b:c0: 6d:82:ac:48:54:2e:61:dd:ce:62:eb:46:19:aa:2a: 26:3d:74:9f:1a:d0:2f:85:55:fa:31:be:68:a0:c7: f4:9b:aa:45:8a:1d:29:d4:49:98:0b:fa:1c:d0:01: ef:1f:7c:92:cb:86:2b:ad:da:e2:46:23:9a:b1:5c: 09:dc:9a:d8:6d:ce:7f:9c:b1:70:57:fc:5c:9c:78: 4f:56:22:55:ac:aa:1b:f3:7d:7f:25:0e:ad:bf:b5: dd:50:18:b9:4c:8b:81:48:b8:11:f1:e3:c8:9c:38: 87:63:eb:64:de:f5:20:ab:50:9b:07:88:51:80:0d: 04:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:BE:DE:9E:60:B6:25:F6:C3:1D:A5:F2:7F:15:90:E5:F0:34:E5:8C X509v3 Authority Key Identifier: keyid:21:6E:14:30:E5:C3:0E:0D:23:A7:5D:07:0D:B7:89:8B:90:84:97:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:75:92:a5:69:9b:2e:a8:ee:45:35:db:3f:48:26:ed:03:e9: 49:c4:95:1e:2f:c8:56:aa:c3:fb:12:cb:ad:7f:01:8d:64:f1: 49:ad:1f:66:f6:6d:ac:0a:bf:4c:42:0f:d8:2c:14:71:6d:a7: 85:ff:16:83:17:ae:dd:1a:5b:f4:cd:a1:9d:1d:08:bf:a1:3e: 83:11:6f:9b:c5:88:ba:fa:0b:1e:9a:58:ae:62:8b:bb:2b:1c: ec:d0:bb:77:d0:ce:f3:cf:e6:58:d6:88:38:4c:4f:88:0c:42: e9:90:be:b4:f5:87:12:ca:9d:f3:51:7f:76:97:dc:f3:38:13: f7:c0:e3:8f:83:98:16:7b:d6:5e:b6:db:bd:8f:ea:90:02:1b: 59:d6:44:26:81:fa:15:99:93:91:ce:ee:ff:98:e9:14:d7:b8: b3:d8:ce:04:22:fe:38:b5:23:60:34:ee:90:70:56:b6:e6:4f: 74:5e:81:3f:e9:24:63:d6:9f:24:19:14:3f:b8:e3:2e:22:9f: 02:be:a9:24:16:ac:47:56:f9:5e:1f:9a:dc:58:c5:2d:a1:8c: 3b:8b:03:38:52:4d:d2:fb:db:b5:10:e6:7a:e4:29:f3:65:b5: d2:59:80:07:a4:55:c4:0a:30:ec:64:81:3a:5d:b4:d5:3d:57: 9f:10:b0:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE1QjUxMTAvBgNVBAUTKDIxNkUxNDMwRTVDMzBFMEQyM0E3NUQwNzBEQjc4OThC OTA4NDk3OTkwHhcNMjUwNjE0MjEwMDM0WhcNMjUwNjIxMjEwMDMzWjAYMRYwFAYD VQQDEw02ODRkZTJmMi0wMTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4STbWmcBLep/EKGerncPDuc2xp9A4u80sWdgZlrppE8nPUWSGOvJeiNd0UCL iNEupMkpFDsvFyqZJi2TmO+4uxbjI/j1cWWfD+KtMofi4wXoqsREKTfj+4sLIPM3 dOlxxZbSgEi5hTOtixGgc78WQVI7tz/lNDjphJ/SnMMj7LhoRdrzG8BtgqxIVC5h 3c5i60YZqiomPXSfGtAvhVX6Mb5ooMf0m6pFih0p1EmYC/oc0AHvH3ySy4Yrrdri RiOasVwJ3JrYbc5/nLFwV/xcnHhPViJVrKob831/JQ6tv7XdUBi5TIuBSLgR8ePI nDiHY+tk3vUgq1CbB4hRgA0EyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBa+3p5g tiX2wx2l8n8VkOXwNOWMMB8GA1UdIwQYMBaAFCFuFDDlww4NI6ddBw23iYuQhJeZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTVCNS81ODNDQzRENDAz QkUxMUVCQTY0OTIyMEJDNEY5QUUwMi9JVzRVTU9YRERnMGpwMTBIRGJlSmk1Q0Vs NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lXNFVNT1hERGcwanAxMEhEYmVKaTVDRWw1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTVCNS81ODNDQzRENDAzQkUxMUVCQTY0OTIyMEJDNEY5QUUwMi9JVzRVTU9YRERn MGpwMTBIRGJlSmk1Q0VsNWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSdZKlaZsuqO5FNds/SCbtA+lJxJUeL8hWqsP7EsutfwGNZPFJrR9m 9m2sCr9MQg/YLBRxbaeF/xaDF67dGlv0zaGdHQi/oT6DEW+bxYi6+gsemliuYou7 Kxzs0Lt30M7zz+ZY1og4TE+IDELpkL609YcSyp3zUX92l9zzOBP3wOOPg5gWe9Ze ttu9j+qQAhtZ1kQmgfoVmZORzu7/mOkU17iz2M4EIv44tSNgNO6QcFa25k90XoE/ 6SRj1p8kGRQ/uOMuIp8CvqkkFqxHVvleH5rcWMUtoYw7iwM4Uk3S+9u1EOZ65Cnz ZbXSWYAHpFXECjDsZIE6XbTVPVefELDA -----END CERTIFICATE-----Generated at Sun Jun 15 05:51:00 2025 by rpki-client