$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft File: iruZJsMSoUFJxSMLpV-oz1uJquE.mft (raw, json) Hash identifier: FZ7l9ZR8/qmBCReiE/cHzFIpcmxD227i6VKMwGFB1fo= Subject key identifier: 99:82:A7:2D:05:3E:53:03:A9:A7:EB:83:6B:B0:20:13:51:C9:A2:61 Authority key identifier: 8A:BB:99:26:C3:12:A1:41:49:C5:23:0B:A5:5F:A8:CF:5B:89:AA:E1 Certificate issuer: /CN=A91E8C52/serialNumber=8ABB9926C312A14149C5230BA55FA8CF5B89AAE1 Certificate serial: 064C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iruZJsMSoUFJxSMLpV-oz1uJquE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft Manifest number: 0646 Signing time: Mon 16 Jun 2025 22:18:03 +0000 Manifest this update: Mon 16 Jun 2025 22:18:02 +0000 Manifest next update: Mon 23 Jun 2025 22:18:02 +0000 Files and hashes: 1: iruZJsMSoUFJxSMLpV-oz1uJquE.crl (hash: 9r9a98SMoq4dBi9t5tb7uRRC+ieXD8mvD3AMbG0emHc=) 2: 09C9D20691BC11EB8C38801CC4F9AE02.roa (hash: WLK6J5FK1cyYi8od3TiV/xRyzkXSS7BDCS8cGAhSdLw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.crl rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iruZJsMSoUFJxSMLpV-oz1uJquE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 22:18:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1612 (0x64c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C52, serialNumber=8ABB9926C312A14149C5230BA55FA8CF5B89AAE1 Validity Not Before: Jun 16 22:18:02 2025 GMT Not After : Jun 23 22:18:02 2025 GMT Subject: CN=6850981b-0a8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:fd:bd:46:a9:23:37:d1:52:07:a9:65:26:5e: 25:6a:dd:78:a4:31:d3:da:b2:91:95:c1:47:a3:00: d5:96:11:14:58:35:22:20:5f:39:8a:da:fa:ee:3f: 52:e0:8e:8a:0c:4e:a9:ff:6d:a3:d2:95:47:2d:65: e6:b1:e3:cd:79:f2:62:c1:91:cc:bd:8e:f1:8e:12: 82:39:90:9b:c7:8a:d3:22:01:af:bd:62:6f:0f:f8: 81:1f:36:9d:f4:e5:39:ab:61:3a:63:e0:7e:82:19: 8d:41:83:3b:25:3f:42:dc:64:c5:3f:b4:23:da:52: 04:be:29:dd:2c:be:5a:d7:78:15:74:fc:a9:ac:9b: 22:fc:96:f2:37:da:0d:4a:5b:d4:e1:83:b8:e7:9a: 64:df:d4:30:25:95:81:ad:eb:9e:67:ed:38:1c:22: 82:ee:0a:af:de:a0:f6:0b:fc:33:f0:8a:73:e5:f2: 1b:60:7a:f1:1f:2f:58:b1:d8:bb:2f:82:ea:78:75: ff:a0:d5:47:40:4c:be:fd:44:2a:22:df:4b:06:94: 14:13:7a:4e:ce:45:4d:56:ee:e6:33:fa:3b:75:58: 83:21:64:aa:73:82:f9:06:de:03:a7:8d:fc:40:ac: cb:19:e8:41:b3:b4:9b:99:1c:94:20:41:5b:7f:b9: 79:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:82:A7:2D:05:3E:53:03:A9:A7:EB:83:6B:B0:20:13:51:C9:A2:61 X509v3 Authority Key Identifier: keyid:8A:BB:99:26:C3:12:A1:41:49:C5:23:0B:A5:5F:A8:CF:5B:89:AA:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iruZJsMSoUFJxSMLpV-oz1uJquE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d7:83:e2:cd:34:e4:af:cc:0b:85:c3:fd:22:f8:ad:d7:c1:9d: ab:8b:84:20:dc:ea:b2:74:69:49:20:78:f5:6c:65:64:95:69: 0b:03:87:52:68:f6:f9:42:2c:09:9b:9f:e5:fc:0a:70:a0:83: 70:b3:f3:c1:00:21:99:f0:0a:1c:8e:2d:b5:70:2b:8e:6a:0e: 0d:0b:1b:26:4a:a8:0c:2a:34:fe:8f:0a:6e:bc:fc:65:cc:8f: 4f:92:95:de:36:c3:1c:29:8f:6c:74:56:d0:bb:ee:ff:b3:6f: eb:1e:73:6a:d3:91:f5:da:ba:d3:78:25:24:54:f2:4e:22:cc: 03:55:7a:af:a4:1b:15:15:85:ec:ce:f3:07:26:94:b4:33:28: 5a:b5:fc:5c:57:4b:31:2f:95:2d:98:0c:a2:72:20:a1:71:c1: 43:21:5e:99:82:e0:53:59:3f:84:4d:48:22:4b:c9:e7:d3:b3: 84:a5:4e:8c:f5:e7:33:3b:f6:e1:20:c7:71:84:5e:fe:b8:2b: b6:48:ec:00:61:64:fb:3f:d3:91:20:be:28:39:60:95:61:35: 85:e6:ca:70:d7:a4:7f:77:3d:81:05:8e:0a:86:16:b9:3d:92: c0:28:11:f7:60:b3:ef:05:d8:3c:0a:a9:61:ea:cf:dc:5e:e3: 0b:b7:d0:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDNTIxMTAvBgNVBAUTKDhBQkI5OTI2QzMxMkExNDE0OUM1MjMwQkE1NUZBOENG NUI4OUFBRTEwHhcNMjUwNjE2MjIxODAyWhcNMjUwNjIzMjIxODAyWjAYMRYwFAYD VQQDEw02ODUwOTgxYi0wYThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9/29RqkjN9FSB6llJl4lat14pDHT2rKRlcFHowDVlhEUWDUiIF85itr67j9S 4I6KDE6p/22j0pVHLWXmsePNefJiwZHMvY7xjhKCOZCbx4rTIgGvvWJvD/iBHzad 9OU5q2E6Y+B+ghmNQYM7JT9C3GTFP7Qj2lIEvindLL5a13gVdPyprJsi/JbyN9oN SlvU4YO455pk39QwJZWBreueZ+04HCKC7gqv3qD2C/wz8Ipz5fIbYHrxHy9Ysdi7 L4LqeHX/oNVHQEy+/UQqIt9LBpQUE3pOzkVNVu7mM/o7dViDIWSqc4L5Bt4Dp438 QKzLGehBs7SbmRyUIEFbf7l5XwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJmCpy0F PlMDqafrg2uwIBNRyaJhMB8GA1UdIwQYMBaAFIq7mSbDEqFBScUjC6VfqM9biarh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM1Mi9CNDZDRDc3RTkx QjkxMUVCOUM1QjQ2MThDNEY5QUUwMi9pcnVaSnNNU29VRkp4U01McFYtb3oxdUpx dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lydVpKc01Tb1VGSnhTTUxwVi1vejF1SnF1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEM1Mi9CNDZDRDc3RTkxQjkxMUVCOUM1QjQ2MThDNEY5QUUwMi9pcnVaSnNNU29V Rkp4U01McFYtb3oxdUpxdUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDXg+LNNOSvzAuFw/0i+K3XwZ2ri4Qg3OqydGlJIHj1bGVklWkLA4dS aPb5QiwJm5/l/ApwoINws/PBACGZ8Aocji21cCuOag4NCxsmSqgMKjT+jwpuvPxl zI9PkpXeNsMcKY9sdFbQu+7/s2/rHnNq05H12rrTeCUkVPJOIswDVXqvpBsVFYXs zvMHJpS0MyhatfxcV0sxL5UtmAyiciChccFDIV6ZguBTWT+ETUgiS8nn07OEpU6M 9eczO/bhIMdxhF7+uCu2SOwAYWT7P9ORIL4oOWCVYTWF5spw16R/dz2BBY4Khha5 PZLAKBH3YLPvBdg8Cqlh6s/cXuMLt9Cz -----END CERTIFICATE-----Generated at Wed Jun 18 15:38:57 2025 by rpki-client