$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4460/04986476148711F0A79EAB26C4F9AE02/iJGVOO7eyDINXq9rHzKymCOreBA.mft File: iJGVOO7eyDINXq9rHzKymCOreBA.mft (raw, json) Hash identifier: sevvXLtbDwY3f3Eh8QREwOUoizVIQM6k34Yd/mBao3k= Subject key identifier: B6:62:93:7D:63:D7:B8:FD:1B:61:DE:2E:7C:52:65:28:A2:D6:8E:57 Authority key identifier: 88:91:95:38:EE:DE:C8:32:0D:5E:AF:6B:1F:32:B2:98:23:AB:78:10 Certificate issuer: /CN=A91B4460/serialNumber=88919538EEDEC8320D5EAF6B1F32B29823AB7810 Certificate serial: 25 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iJGVOO7eyDINXq9rHzKymCOreBA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4460/04986476148711F0A79EAB26C4F9AE02/iJGVOO7eyDINXq9rHzKymCOreBA.mft Manifest number: 24 Signing time: Thu 19 Jun 2025 07:11:08 +0000 Manifest this update: Thu 19 Jun 2025 07:11:08 +0000 Manifest next update: Thu 26 Jun 2025 07:11:08 +0000 Files and hashes: 1: iJGVOO7eyDINXq9rHzKymCOreBA.crl (hash: 2S1rt9PqAcMqnefeJPdI+ZFp/an84vEhrAClzY208L0=) 2: 7A85F9D2148711F0AF960528C4F9AE02.roa (hash: v93VVwAanSucSOqj9EwS1pD5Lqih1cuGiSwwM282Dpg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4460/04986476148711F0A79EAB26C4F9AE02/iJGVOO7eyDINXq9rHzKymCOreBA.crl rsync://rpki.apnic.net/member_repository/A91B4460/04986476148711F0A79EAB26C4F9AE02/iJGVOO7eyDINXq9rHzKymCOreBA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iJGVOO7eyDINXq9rHzKymCOreBA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 07:11:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4460, serialNumber=88919538EEDEC8320D5EAF6B1F32B29823AB7810 Validity Not Before: Jun 19 07:11:08 2025 GMT Not After : Jun 26 07:11:08 2025 GMT Subject: CN=6853b80c-c917 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:5b:49:26:01:23:5d:f7:bc:47:12:f2:3e:9a: 9d:67:3a:64:70:b8:f5:d6:2c:7b:66:fa:ca:b3:88: 33:07:2c:38:29:70:c8:6b:dd:cc:12:a7:0a:55:b5: 0a:b5:e3:e8:d6:ea:15:f7:81:76:d7:18:02:19:66: 92:bc:62:89:0e:90:92:cf:89:cd:2f:be:f0:ab:79: 23:76:f8:d1:7e:7c:f9:00:a2:5e:fc:b2:1a:d8:f4: 7f:3b:ad:c2:5d:76:74:4b:22:c5:42:f0:46:ea:9e: 22:51:bf:dd:94:f7:c8:af:34:e5:f2:dd:2b:14:a3: d0:62:ba:7b:33:7c:a7:b9:da:bf:cc:88:0e:d6:a7: d8:ab:0f:c6:b0:d2:f9:a4:7e:8e:47:eb:6a:fb:70: f2:aa:7a:e7:ed:c7:6e:72:79:21:fc:30:3d:99:42: 3b:dd:b0:7f:f8:2b:68:d2:a9:16:8f:a3:ca:6b:0d: ac:19:5c:26:61:9e:7c:0e:b1:33:76:11:05:8f:cc: f7:3d:49:5f:59:ba:02:81:83:ce:08:66:f6:9f:d5: eb:e7:e9:da:5a:36:83:a1:bf:c2:a2:b7:80:d4:5b: d3:dc:cc:f6:eb:ee:ab:89:10:84:66:42:9e:bc:e1: 5f:87:0e:b5:66:8f:dc:8e:aa:7c:b1:7f:03:41:bd: ae:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:62:93:7D:63:D7:B8:FD:1B:61:DE:2E:7C:52:65:28:A2:D6:8E:57 X509v3 Authority Key Identifier: keyid:88:91:95:38:EE:DE:C8:32:0D:5E:AF:6B:1F:32:B2:98:23:AB:78:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4460/04986476148711F0A79EAB26C4F9AE02/iJGVOO7eyDINXq9rHzKymCOreBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iJGVOO7eyDINXq9rHzKymCOreBA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4460/04986476148711F0A79EAB26C4F9AE02/iJGVOO7eyDINXq9rHzKymCOreBA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:4f:99:49:d8:33:a8:1a:47:14:f9:cc:8b:6d:34:b6:b5:36: 25:ae:05:34:2c:5f:8b:db:af:35:c7:9c:05:00:a2:7e:47:c5: 8b:4c:68:2d:6c:27:85:7d:06:6d:89:e1:9d:3c:20:ba:02:df: 17:81:89:21:a9:e6:ef:1e:07:27:7a:0d:6c:c8:76:58:b8:96: 92:94:04:b6:db:1b:f4:b4:d5:de:a6:6a:4f:43:03:54:2c:16: 66:ba:94:a5:10:56:84:c3:b6:75:25:0e:8f:76:71:9c:84:f8: 42:3e:cc:7a:24:8c:7e:9b:b8:b3:1c:a0:62:ce:94:12:f7:87: 1d:43:d2:0e:03:39:30:f0:a6:55:1e:ad:82:1c:e3:74:58:cd: 98:92:a5:d5:a5:5b:7d:c1:b9:dd:8f:d9:bf:78:21:29:d5:66: 76:13:50:f9:f5:d6:c1:e6:f1:9c:cf:a4:f3:f6:13:39:b3:07: e4:03:b5:76:cc:fc:56:fd:4d:5e:23:ee:dc:3f:a0:9b:1e:85: 0a:86:b1:4c:9f:10:b4:b3:09:85:3f:b8:2a:1f:35:42:05:d7: 1f:d0:8d:14:86:82:d1:92:ff:8c:09:d2:ed:4e:4e:31:1c:d2: 07:94:9b:36:9e:a3:2f:15:76:98:78:78:85:9b:e8:1c:3b:a7: 35:1f:78:8c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NDQ2MDExMC8GA1UEBRMoODg5MTk1MzhFRURFQzgzMjBENUVBRjZCMUYzMkIyOTgy M0FCNzgxMDAeFw0yNTA2MTkwNzExMDhaFw0yNTA2MjYwNzExMDhaMBgxFjAUBgNV BAMTDTY4NTNiODBjLWM5MTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYW0kmASNd97xHEvI+mp1nOmRwuPXWLHtm+sqziDMHLDgpcMhr3cwSpwpVtQq1 4+jW6hX3gXbXGAIZZpK8YokOkJLPic0vvvCreSN2+NF+fPkAol78shrY9H87rcJd dnRLIsVC8EbqniJRv92U98ivNOXy3SsUo9BiunszfKe52r/MiA7Wp9irD8aw0vmk fo5H62r7cPKqeuftx25yeSH8MD2ZQjvdsH/4K2jSqRaPo8prDawZXCZhnnwOsTN2 EQWPzPc9SV9ZugKBg84IZvaf1evn6dpaNoOhv8Kit4DUW9PczPbr7quJEIRmQp68 4V+HDrVmj9yOqnyxfwNBva5zAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUtmKTfWPX uP0bYd4ufFJlKKLWjlcwHwYDVR0jBBgwFoAUiJGVOO7eyDINXq9rHzKymCOreBAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0NDYwLzA0OTg2NDc2MTQ4 NzExRjBBNzlFQUIyNkM0RjlBRTAyL2lKR1ZPTzdleURJTlhxOXJIekt5bUNPcmVC QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaUpHVk9PN2V5RElOWHE5ckh6S3ltQ09yZUJBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0 NDYwLzA0OTg2NDc2MTQ4NzExRjBBNzlFQUIyNkM0RjlBRTAyL2lKR1ZPTzdleURJ TlhxOXJIekt5bUNPcmVCQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGZPmUnYM6gaRxT5zIttNLa1NiWuBTQsX4vbrzXHnAUAon5HxYtMaC1s J4V9Bm2J4Z08ILoC3xeBiSGp5u8eByd6DWzIdli4lpKUBLbbG/S01d6mak9DA1Qs Fma6lKUQVoTDtnUlDo92cZyE+EI+zHokjH6buLMcoGLOlBL3hx1D0g4DOTDwplUe rYIc43RYzZiSpdWlW33Bud2P2b94ISnVZnYTUPn11sHm8ZzPpPP2EzmzB+QDtXbM /Fb9TV4j7tw/oJsehQqGsUyfELSzCYU/uCofNUIF1x/QjRSGgtGS/4wJ0u1OTjEc 0geUmzaeoy8Vdph4eIWb6Bw7pzUfeIw= -----END CERTIFICATE-----Generated at Fri Jun 20 10:02:13 2025 by rpki-client