$ rpki-client -vvf rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft File: iU_hE5i2ea6xsRixveZz4Yz26TQ.mft (raw, json) Hash identifier: 6pcfGMo3QC6Ay6h16LqpqtFmixr4QtRzKmIu3wy/xic= Subject key identifier: E2:9C:B9:6C:75:4B:98:58:18:8E:1C:E0:64:57:EE:AB:91:6E:74:02 Authority key identifier: 89:4F:E1:13:98:B6:79:AE:B1:B1:18:B1:BD:E6:73:E1:8C:F6:E9:34 Certificate issuer: /CN=A919C47E/serialNumber=894FE11398B679AEB1B118B1BDE673E18CF6E934 Certificate serial: 1377 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft Manifest number: 1349 Signing time: Fri 20 Jun 2025 17:02:51 +0000 Manifest this update: Fri 20 Jun 2025 17:02:51 +0000 Manifest next update: Fri 27 Jun 2025 17:02:51 +0000 Files and hashes: 1: iU_hE5i2ea6xsRixveZz4Yz26TQ.crl (hash: gf8lSLraR/MkRrsAg+KHsKcm1P1HxeZdYBu8Yl8xU78=) 2: 1AE4CD843AF511F0B702C741C4F9AE02.roa (hash: opi/P1izP12wmgyZoTRlzEdUKVhs1E1PLUVMyFLXYNA=) 3: 354FE56C6C5111EC9FF8F481C4F9AE02.roa (hash: JdtcGBtRBbrLSZ435GS7dOO7iO+vHpcSCO6w9suO6wI=) 4: 02BFF64EE6A811EFB5943878C4F9AE02.roa (hash: 2CAgcrLv4JGzDGMPlAonDkbaG+eLBXz0G6EKid4bHfs=) 5: B2E4A482E4D611EDB15EDE36C4F9AE02.roa (hash: d1W5JywmHjLqObvdK9tSNHN2RsDjV33NPPuORYy/wG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.crl rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 17:02:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4983 (0x1377) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C47E, serialNumber=894FE11398B679AEB1B118B1BDE673E18CF6E934 Validity Not Before: Jun 20 17:02:51 2025 GMT Not After : Jun 27 17:02:51 2025 GMT Subject: CN=6855943b-68f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:15:c4:3b:06:b9:be:f3:f2:9b:a1:50:f8:65: ba:5f:82:cc:e7:d0:4c:66:26:6b:85:59:ff:15:31: d7:b4:7a:eb:af:79:de:a5:55:ea:e3:d0:1f:27:c4: 5c:aa:00:76:e2:ca:ab:6f:f8:bd:15:0a:05:41:91: f3:ba:96:bb:9b:4a:8f:e5:c8:d3:51:cd:f5:6f:bc: 33:9d:60:13:71:86:75:af:15:62:0c:ab:a0:f0:3c: 9f:ae:54:f6:7e:18:a7:c3:f4:64:4b:a9:30:0b:d8: 3d:a5:00:71:6b:7a:41:fc:7e:81:3d:6e:dc:5d:84: 21:f7:e5:fd:fc:9d:97:d7:72:e3:65:3f:b7:29:12: 28:5c:5d:5c:65:be:60:aa:9e:14:54:ac:34:99:d4: 0b:6d:2e:f5:0c:3b:20:be:08:0d:74:b6:2c:13:3e: 56:48:b8:b2:9b:72:f9:d8:ed:36:69:db:b9:03:d4: 70:00:4e:38:19:af:5a:f6:21:f4:73:1d:60:8b:3d: 8e:c6:6d:df:6f:ba:40:20:b8:92:77:0d:cb:ea:e4: b3:60:18:27:0c:38:df:88:bd:4f:f4:ec:cf:53:76: ec:c0:e8:a0:35:f0:c9:2d:71:b3:13:ec:03:e5:49: 34:db:76:fd:97:d2:df:25:88:01:df:e6:39:05:63: ec:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:9C:B9:6C:75:4B:98:58:18:8E:1C:E0:64:57:EE:AB:91:6E:74:02 X509v3 Authority Key Identifier: keyid:89:4F:E1:13:98:B6:79:AE:B1:B1:18:B1:BD:E6:73:E1:8C:F6:E9:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:16:ea:0f:81:77:60:dd:ef:0e:53:99:70:fa:ef:fd:bd:e9: 35:f1:d1:ef:78:6b:66:c5:48:17:38:ec:53:50:43:dd:6d:37: b8:c4:02:cb:30:04:a8:07:b0:ea:7d:db:05:5e:68:03:30:ae: 80:9e:d7:81:10:3a:5d:b1:d4:88:4d:18:26:7b:1d:e9:53:73: 27:96:20:aa:1b:43:c2:5c:14:a9:ac:8b:7e:79:ed:f7:a1:03: 54:1d:8b:88:07:78:89:be:51:fa:b7:8f:0e:3f:dd:b9:06:ac: cd:9a:cb:f5:50:ff:b6:42:94:bf:79:fc:a9:42:c6:7b:e6:59: 07:e9:45:d3:c0:86:66:c4:03:81:d2:a7:8b:3b:7f:33:79:b1: c5:4d:d4:86:1e:aa:97:58:cc:6f:ae:8a:8e:00:c0:83:59:40: 29:ce:71:00:1e:3c:c5:e9:3a:4b:ef:93:d4:b8:0d:29:91:fa: bd:6f:7c:f2:01:ba:59:ff:fe:67:88:43:41:af:a0:bd:46:00: b4:cc:58:a1:d7:b7:af:d7:0b:ce:95:19:d3:6b:dc:26:4d:70: 08:c6:67:4a:3f:47:bd:fe:23:c1:04:31:f9:2d:1f:ee:e0:62: 79:89:60:c5:59:72:9a:5b:2b:8b:77:bd:c1:c0:ce:44:cc:79: a3:50:17:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE3cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM0N0UxMTAvBgNVBAUTKDg5NEZFMTEzOThCNjc5QUVCMUIxMThCMUJERTY3M0Ux OENGNkU5MzQwHhcNMjUwNjIwMTcwMjUxWhcNMjUwNjI3MTcwMjUxWjAYMRYwFAYD VQQDEw02ODU1OTQzYi02OGYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3RXEOwa5vvPym6FQ+GW6X4LM59BMZiZrhVn/FTHXtHrrr3nepVXq49AfJ8Rc qgB24sqrb/i9FQoFQZHzupa7m0qP5cjTUc31b7wznWATcYZ1rxViDKug8DyfrlT2 fhinw/RkS6kwC9g9pQBxa3pB/H6BPW7cXYQh9+X9/J2X13LjZT+3KRIoXF1cZb5g qp4UVKw0mdQLbS71DDsgvggNdLYsEz5WSLiym3L52O02adu5A9RwAE44Ga9a9iH0 cx1giz2Oxm3fb7pAILiSdw3L6uSzYBgnDDjfiL1P9OzPU3bswOigNfDJLXGzE+wD 5Uk023b9l9LfJYgB3+Y5BWPsywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOKcuWx1 S5hYGI4c4GRX7quRbnQCMB8GA1UdIwQYMBaAFIlP4ROYtnmusbEYsb3mc+GM9uk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzQ3RS9CQ0VERjQ0MkIw QkYxMUU4ODYzOTIyMzdDNEY5QUUwMi9pVV9oRTVpMmVhNnhzUml4dmVaejRZejI2 VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVX2hFNWkyZWE2eHNSaXh2ZVp6NFl6MjZUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzQ3RS9CQ0VERjQ0MkIwQkYxMUU4ODYzOTIyMzdDNEY5QUUwMi9pVV9oRTVpMmVh NnhzUml4dmVaejRZejI2VFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8FuoPgXdg3e8OU5lw+u/9vek18dHveGtmxUgXOOxTUEPdbTe4xALL MASoB7DqfdsFXmgDMK6AnteBEDpdsdSITRgmex3pU3MnliCqG0PCXBSprIt+ee33 oQNUHYuIB3iJvlH6t48OP925BqzNmsv1UP+2QpS/efypQsZ75lkH6UXTwIZmxAOB 0qeLO38zebHFTdSGHqqXWMxvroqOAMCDWUApznEAHjzF6TpL75PUuA0pkfq9b3zy AbpZ//5niENBr6C9RgC0zFih17ev1wvOlRnTa9wmTXAIxmdKP0e9/iPBBDH5LR/u 4GJ5iWDFWXKaWyuLd73BwM5EzHmjUBe2 -----END CERTIFICATE-----Generated at Sat Jun 21 06:14:25 2025 by rpki-client