$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft File: iV-zzi-cLke5FLsqa2bHfVOXpAo.mft (raw, json) Hash identifier: Nt+BGm3ukuTw/cpuseyfZ9gSYU2kajWxi0TBBijlXow= Subject key identifier: 4D:7A:C7:D5:83:60:DD:F0:80:2C:72:B2:0F:73:C4:6E:C3:13:0F:DA Authority key identifier: 89:5F:B3:CE:2F:9C:2E:47:B9:14:BB:2A:6B:66:C7:7D:53:97:A4:0A Certificate issuer: /CN=A91E6419/serialNumber=895FB3CE2F9C2E47B914BB2A6B66C77D5397A40A Certificate serial: 01F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV-zzi-cLke5FLsqa2bHfVOXpAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft Manifest number: 01F2 Signing time: Sun 15 Jun 2025 01:47:50 +0000 Manifest this update: Sun 15 Jun 2025 01:47:49 +0000 Manifest next update: Sun 22 Jun 2025 01:47:49 +0000 Files and hashes: 1: iV-zzi-cLke5FLsqa2bHfVOXpAo.crl (hash: Ahrax6zALWi/pWWYcfRtZkmEbyu3pGvPM+PnmbLCLI4=) 2: 38DEC3C04ED611ED84336740C4F9AE02.roa (hash: GwA8WNqmVW1s9tawzkiqtYC7xFjjdtlbsl+Ur+WNSNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.crl rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV-zzi-cLke5FLsqa2bHfVOXpAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 01:47:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 503 (0x1f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6419, serialNumber=895FB3CE2F9C2E47B914BB2A6B66C77D5397A40A Validity Not Before: Jun 15 01:47:49 2025 GMT Not After : Jun 22 01:47:49 2025 GMT Subject: CN=684e2645-75e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:74:e9:70:2d:79:ab:d0:c7:d5:62:a5:55:95: cd:75:77:a5:35:21:da:15:99:2e:fb:6a:1b:c8:c2: 26:59:1d:69:aa:e2:b2:3e:ba:52:f2:71:42:9f:71: d4:c4:88:0d:23:06:db:34:98:cf:99:71:78:35:e2: 0c:ee:0d:7e:d8:84:ee:94:6c:33:3b:d2:36:94:b6: 9b:66:0a:4f:3a:a6:da:59:9c:fa:03:04:96:64:2a: 69:ad:91:17:d3:2a:c5:72:0d:88:73:49:a8:d1:fb: 04:74:d4:8a:cd:66:c2:0e:c4:f7:ec:d3:17:01:ee: 73:3b:73:4e:7b:9c:31:9d:df:3b:cf:2d:cc:09:8e: 20:69:62:42:99:8c:62:f4:b4:ea:82:97:d7:68:d6: 20:70:90:9e:37:7c:06:3a:0b:c1:95:b9:bf:7f:2c: eb:87:b8:4d:ab:d2:db:ad:06:f5:82:31:01:22:0f: 4a:4c:18:c4:5a:22:22:48:b1:12:ac:0b:b8:f4:a1: ec:80:b8:16:a7:ff:13:72:de:84:b8:22:f6:d2:38: 3a:b1:68:1b:a3:00:ce:10:d9:f1:5d:62:6c:bd:5c: a8:a5:fc:4d:a9:5d:53:39:03:3d:07:bf:8f:75:c5: 70:6a:c3:fc:33:b4:7c:8f:dd:ec:91:0c:5e:7f:4a: d8:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:7A:C7:D5:83:60:DD:F0:80:2C:72:B2:0F:73:C4:6E:C3:13:0F:DA X509v3 Authority Key Identifier: keyid:89:5F:B3:CE:2F:9C:2E:47:B9:14:BB:2A:6B:66:C7:7D:53:97:A4:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV-zzi-cLke5FLsqa2bHfVOXpAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:5c:86:2f:17:0d:23:b7:77:a4:0a:44:c0:53:99:74:e5:1f: 0f:82:f5:1f:5c:fc:bc:25:ac:34:4d:b7:2d:67:da:60:06:bc: 92:9a:e9:92:28:8f:d4:41:7a:9a:a8:d3:2f:ff:d7:2e:66:b8: 6d:5e:5c:eb:c2:82:7e:a6:9b:6b:f3:b9:9b:90:ec:f9:62:95: ac:49:f9:ca:d6:de:e4:46:bd:bd:2e:b1:1b:ab:02:16:73:35: 01:8d:37:47:03:45:92:f9:12:8b:9e:aa:c0:b1:3c:ef:c1:06: 18:de:9c:64:c6:c4:31:ad:9d:e3:ff:bb:f3:82:30:22:32:2e: 2a:d2:8f:e0:f8:4c:17:23:87:f1:90:be:73:92:5d:bf:49:a4: 33:19:9e:58:f9:1e:a3:f2:0d:c0:7c:c3:3b:ac:f0:61:27:e7: d8:e6:37:75:75:6d:a1:f6:42:ea:dc:d9:e6:c4:10:0b:f0:49: 09:40:a4:8f:2c:8c:0e:c0:4e:38:ff:72:df:75:d5:28:5a:2d: e3:c5:38:a8:9a:01:c5:a4:29:de:64:05:6e:fe:de:5b:c5:f6: f8:29:77:8e:e7:40:af:90:12:9b:aa:04:df:2f:2d:ba:ed:7a: 55:21:6e:db:ad:70:05:36:96:90:e7:10:b0:09:1b:37:9d:05: 99:eb:91:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY0MTkxMTAvBgNVBAUTKDg5NUZCM0NFMkY5QzJFNDdCOTE0QkIyQTZCNjZDNzdE NTM5N0E0MEEwHhcNMjUwNjE1MDE0NzQ5WhcNMjUwNjIyMDE0NzQ5WjAYMRYwFAYD VQQDEw02ODRlMjY0NS03NWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHTpcC15q9DH1WKlVZXNdXelNSHaFZku+2obyMImWR1pquKyPrpS8nFCn3HU xIgNIwbbNJjPmXF4NeIM7g1+2ITulGwzO9I2lLabZgpPOqbaWZz6AwSWZCpprZEX 0yrFcg2Ic0mo0fsEdNSKzWbCDsT37NMXAe5zO3NOe5wxnd87zy3MCY4gaWJCmYxi 9LTqgpfXaNYgcJCeN3wGOgvBlbm/fyzrh7hNq9LbrQb1gjEBIg9KTBjEWiIiSLES rAu49KHsgLgWp/8Tct6EuCL20jg6sWgbowDOENnxXWJsvVyopfxNqV1TOQM9B7+P dcVwasP8M7R8j93skQxef0rYfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE16x9WD YN3wgCxysg9zxG7DEw/aMB8GA1UdIwQYMBaAFIlfs84vnC5HuRS7Kmtmx31Tl6QK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjQxOS9GQTZFMzZDQzRF RDMxMUVEQTVFNTMwNDBDNEY5QUUwMi9pVi16emktY0xrZTVGTHNxYTJiSGZWT1hw QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lWLXp6aS1jTGtlNUZMc3FhMmJIZlZPWHBBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjQxOS9GQTZFMzZDQzRFRDMxMUVEQTVFNTMwNDBDNEY5QUUwMi9pVi16emktY0xr ZTVGTHNxYTJiSGZWT1hwQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFXIYvFw0jt3ekCkTAU5l05R8PgvUfXPy8Jaw0TbctZ9pgBrySmumS KI/UQXqaqNMv/9cuZrhtXlzrwoJ+pptr87mbkOz5YpWsSfnK1t7kRr29LrEbqwIW czUBjTdHA0WS+RKLnqrAsTzvwQYY3pxkxsQxrZ3j/7vzgjAiMi4q0o/g+EwXI4fx kL5zkl2/SaQzGZ5Y+R6j8g3AfMM7rPBhJ+fY5jd1dW2h9kLq3NnmxBAL8EkJQKSP LIwOwE44/3LfddUoWi3jxTiomgHFpCneZAVu/t5bxfb4KXeO50CvkBKbqgTfLy26 7XpVIW7brXAFNpaQ5xCwCRs3nQWZ65Fn -----END CERTIFICATE-----Generated at Mon Jun 16 08:21:38 2025 by rpki-client