$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.mft File: I1WemnFX565_YExCiDcpLeAzCaA.mft (raw, json) Hash identifier: Q3rc9x9pwAzV7tqLuq0VWg5FAOoRKKdLlIP6stkfr2Q= Subject key identifier: 3F:F0:5E:0F:7D:29:A3:1C:DC:3D:39:36:07:0C:87:51:A1:BE:14:C6 Authority key identifier: 23:55:9E:9A:71:57:E7:AE:7F:60:4C:42:88:37:29:2D:E0:33:09:A0 Certificate issuer: /CN=A91BEA2A/serialNumber=23559E9A7157E7AE7F604C428837292DE03309A0 Certificate serial: 02A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I1WemnFX565_YExCiDcpLeAzCaA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.mft Manifest number: 029D Signing time: Fri 13 Jun 2025 01:03:27 +0000 Manifest this update: Fri 13 Jun 2025 01:03:27 +0000 Manifest next update: Fri 20 Jun 2025 01:03:27 +0000 Files and hashes: 1: I1WemnFX565_YExCiDcpLeAzCaA.crl (hash: oenVh2BM37APYANvLEpxfPBGb4lqKcYrhv4137JQVJ0=) 2: CFF0FDEC025911EDA0A85765C4F9AE02.roa (hash: fWJ7cRsTCAW0U+0r1+X1xY7gsboVcmoNdt+pkuhh4IE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.crl rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I1WemnFX565_YExCiDcpLeAzCaA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 01:03:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 674 (0x2a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEA2A, serialNumber=23559E9A7157E7AE7F604C428837292DE03309A0 Validity Not Before: Jun 13 01:03:27 2025 GMT Not After : Jun 20 01:03:27 2025 GMT Subject: CN=684b78df-1701 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:c7:a6:1e:74:0b:18:07:b9:bd:43:40:69:58: 83:68:e3:4e:1c:ab:98:69:09:85:f5:52:3c:1e:13: 6d:a4:d3:54:87:46:8d:c6:f3:36:37:c7:e5:e9:56: 74:de:d1:b0:e2:41:12:e1:f6:18:66:a3:4c:74:41: e0:23:dc:70:99:aa:db:0c:87:54:4a:20:c6:2c:d1: d3:4a:31:b9:26:3d:82:4d:ca:8f:34:6b:55:bd:50: 92:a7:43:46:29:43:65:17:49:4b:b6:44:80:44:49: 44:35:f4:12:7c:f1:e7:34:c8:e2:c1:4a:7a:7d:bf: 3b:3e:64:a8:50:35:7c:5b:5b:2e:f3:09:54:ea:eb: 50:01:0c:0e:1b:57:fe:58:ce:c9:29:95:c8:93:b3: c1:f8:38:19:3f:7c:bb:65:80:78:64:bd:55:dc:67: 9c:0c:63:70:5e:f4:bf:6b:57:dd:d1:80:23:55:d2: ec:63:0e:94:87:82:b7:4f:da:0f:52:cc:d9:5b:3b: f6:3b:ef:c4:b3:ad:3f:5c:66:03:a1:0e:23:96:e6: 82:b6:2c:d9:36:ef:61:47:3e:a1:c7:fe:09:ea:a2: 1c:e6:43:1e:bd:9c:9c:59:8f:25:b4:cc:44:0a:30: 30:b3:bb:04:7f:f6:6d:21:47:6c:be:47:ed:06:84: b0:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:F0:5E:0F:7D:29:A3:1C:DC:3D:39:36:07:0C:87:51:A1:BE:14:C6 X509v3 Authority Key Identifier: keyid:23:55:9E:9A:71:57:E7:AE:7F:60:4C:42:88:37:29:2D:E0:33:09:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I1WemnFX565_YExCiDcpLeAzCaA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:0d:b5:1c:d8:a4:57:90:39:55:52:e4:ef:3a:36:52:74:b8: 3c:1a:b3:8d:70:20:08:81:30:19:88:a0:0d:fc:81:a3:fe:20: 0b:f6:c6:e7:44:54:c2:8a:d2:e6:fe:8b:33:8b:4d:f7:91:f0: 7b:26:37:d2:5d:20:42:37:41:44:64:68:d0:bb:7c:a3:e0:9b: 2a:8c:71:eb:b1:a9:96:f4:91:8f:0e:32:a3:95:c9:db:9c:32: a4:45:d1:cb:5b:7e:e1:93:8a:85:b6:8d:d1:99:d5:db:d3:88: 07:b8:b1:70:18:40:aa:6a:69:8b:a9:6f:73:82:21:1d:7f:25: 2f:bc:06:bc:74:66:7a:b3:7f:4f:2b:5c:27:31:87:7f:ba:64: 6b:89:1c:0f:a5:05:e2:19:b3:4e:c0:61:6d:a8:e7:a8:9a:ed: c3:28:ce:74:bf:6e:cf:aa:00:70:23:3b:14:28:8f:d3:b7:7c: d5:20:99:a1:de:26:6f:33:fb:8f:3d:77:5f:1e:9d:c5:44:cb: ee:eb:18:0b:aa:e1:a9:d1:28:63:96:01:3a:fc:dc:17:2f:08: 7d:14:b9:1e:f9:38:e6:c1:84:c4:7a:42:25:c1:aa:15:7c:b2: 13:f0:01:51:a6:2f:5f:c0:00:c6:f7:6d:a8:7e:5b:8c:80:01: 9f:9a:27:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVBMkExMTAvBgNVBAUTKDIzNTU5RTlBNzE1N0U3QUU3RjYwNEM0Mjg4MzcyOTJE RTAzMzA5QTAwHhcNMjUwNjEzMDEwMzI3WhcNMjUwNjIwMDEwMzI3WjAYMRYwFAYD VQQDEw02ODRiNzhkZi0xNzAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0semHnQLGAe5vUNAaViDaONOHKuYaQmF9VI8HhNtpNNUh0aNxvM2N8fl6VZ0 3tGw4kES4fYYZqNMdEHgI9xwmarbDIdUSiDGLNHTSjG5Jj2CTcqPNGtVvVCSp0NG KUNlF0lLtkSARElENfQSfPHnNMjiwUp6fb87PmSoUDV8W1su8wlU6utQAQwOG1f+ WM7JKZXIk7PB+DgZP3y7ZYB4ZL1V3GecDGNwXvS/a1fd0YAjVdLsYw6Uh4K3T9oP UszZWzv2O+/Es60/XGYDoQ4jluaCtizZNu9hRz6hx/4J6qIc5kMevZycWY8ltMxE CjAws7sEf/ZtIUdsvkftBoSwZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD/wXg99 KaMc3D05NgcMh1GhvhTGMB8GA1UdIwQYMBaAFCNVnppxV+euf2BMQog3KS3gMwmg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUEyQS8zRDM1MEZEMjAy NTYxMUVEQTEzMjJENURDNEY5QUUwMi9JMVdlbW5GWDU2NV9ZRXhDaURjcExlQXpD YUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0kxV2VtbkZYNTY1X1lFeENpRGNwTGVBekNhQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RUEyQS8zRDM1MEZEMjAyNTYxMUVEQTEzMjJENURDNEY5QUUwMi9JMVdlbW5GWDU2 NV9ZRXhDaURjcExlQXpDYUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLDbUc2KRXkDlVUuTvOjZSdLg8GrONcCAIgTAZiKAN/IGj/iAL9sbn RFTCitLm/oszi033kfB7JjfSXSBCN0FEZGjQu3yj4JsqjHHrsamW9JGPDjKjlcnb nDKkRdHLW37hk4qFto3RmdXb04gHuLFwGECqammLqW9zgiEdfyUvvAa8dGZ6s39P K1wnMYd/umRriRwPpQXiGbNOwGFtqOeomu3DKM50v27PqgBwIzsUKI/Tt3zVIJmh 3iZvM/uPPXdfHp3FRMvu6xgLquGp0ShjlgE6/NwXLwh9FLke+TjmwYTEekIlwaoV fLIT8AFRpi9fwADG922ofluMgAGfmifN -----END CERTIFICATE-----Generated at Sat Jun 14 17:22:52 2025 by rpki-client