$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft File: IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft (raw, json) Hash identifier: u2vfbwnt0FznXms/NfHpA0f+FWsPdjNDusHODPqg3Yc= Subject key identifier: B2:82:73:9F:89:8E:33:3C:5E:36:6C:60:BC:47:8B:31:AE:D3:FC:BB Authority key identifier: 23:3C:0D:3B:2A:75:C4:1A:B8:2E:5B:EB:70:DB:E2:E7:34:2D:66:1F Certificate issuer: /CN=A91FE26E/serialNumber=233C0D3B2A75C41AB82E5BEB70DBE2E7342D661F Certificate serial: 1CE1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft Manifest number: 1CCE Signing time: Sat 14 Jun 2025 16:08:06 +0000 Manifest this update: Sat 14 Jun 2025 16:08:06 +0000 Manifest next update: Sat 21 Jun 2025 16:08:06 +0000 Files and hashes: 1: IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl (hash: 3gCiZuEaTzHVIygPZZf6hlNKfRZGrWPHVmG8/4+Z3/g=) 2: EB7012446FDE11E9AF945067C4F9AE02.roa (hash: 7u9f+gWjW4ewcVZaqyMD9ZqpjL5Hz8NvrMbvw9f5dXY=) 3: E8FF9A526FDE11E9AF945067C4F9AE02.roa (hash: RrfRQiaJQ/K/F0pEWCxhmnA6Eh04yX02RfUKJUyZudE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:08:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7393 (0x1ce1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE26E, serialNumber=233C0D3B2A75C41AB82E5BEB70DBE2E7342D661F Validity Not Before: Jun 14 16:08:06 2025 GMT Not After : Jun 21 16:08:06 2025 GMT Subject: CN=684d9e66-c31d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:44:a8:d0:2f:41:3f:37:23:4a:ee:ff:b7:81: d7:d8:e8:e6:f3:85:20:a6:c7:6d:ff:37:e5:ca:82: 4c:2e:a0:07:65:fe:7e:32:9c:23:a1:15:7a:d8:ae: 27:d8:e5:a6:fd:12:27:14:bb:93:7b:66:c1:f8:57: d1:d4:fb:6c:45:7f:19:8f:fc:f0:27:1f:14:b9:a3: 89:34:70:5d:05:7a:1f:97:d7:57:8c:63:56:c2:fa: 99:a6:07:cb:da:39:37:ea:b0:4c:10:c9:fc:c8:90: 68:cc:f6:6d:2c:7b:0d:28:50:49:5a:3e:80:a9:91: 90:bb:b4:ac:00:b2:b0:29:ed:61:a3:d8:f2:4e:a2: 29:23:c8:87:14:b4:41:cd:a7:d9:2d:2f:c3:9f:1e: 16:83:f1:8c:31:f2:e5:7c:c6:c9:02:95:a5:7e:95: 2c:03:3f:b9:c8:60:4d:02:85:03:8e:43:fa:e5:64: d0:88:70:9c:56:00:83:9a:1f:af:ab:5c:9d:0b:3a: d9:c5:1e:a5:a2:dc:7c:dc:af:b6:ba:ac:0c:de:70: d4:be:ec:30:5d:71:63:d2:c6:1c:be:59:90:c5:8e: fa:e8:3a:84:81:f2:52:a8:21:1f:9c:d5:a5:f3:02: 34:80:76:81:04:95:26:a1:d5:a7:a7:ad:09:60:74: b5:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:82:73:9F:89:8E:33:3C:5E:36:6C:60:BC:47:8B:31:AE:D3:FC:BB X509v3 Authority Key Identifier: keyid:23:3C:0D:3B:2A:75:C4:1A:B8:2E:5B:EB:70:DB:E2:E7:34:2D:66:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:06:f1:48:74:44:aa:b8:b2:7b:ce:17:87:60:89:4f:31:45: b0:3e:33:77:a7:48:4c:80:80:ba:38:0f:63:29:61:d4:8b:fc: d9:03:14:a8:09:07:a4:1f:b9:eb:72:82:13:11:76:a3:a9:f9: 4b:58:d7:40:d8:1f:d3:46:62:24:d9:13:a0:5b:58:66:09:ee: 6a:7f:f5:b3:52:3a:0b:0b:31:9f:83:00:1f:02:39:56:05:91: 31:08:86:af:75:63:97:f4:38:38:70:bd:df:ed:db:75:30:76: 93:7d:88:29:c6:5c:18:60:ae:50:14:8c:1a:8f:7b:61:07:68: 3d:e0:24:b8:21:cb:8d:32:85:b1:20:a4:24:fe:fe:63:54:ce: 4f:54:6e:b7:d5:f2:47:14:87:e7:49:01:b9:01:26:fe:80:62: c8:59:78:5f:13:8d:60:b4:ed:a8:88:b0:b7:5a:03:68:be:fc: 99:3e:90:d9:de:88:c0:c3:b0:df:d9:ad:42:8b:7b:a2:66:29: f3:8a:0a:42:5a:fe:bf:2c:fd:c6:a3:15:33:ef:eb:de:7b:f2: 5b:a9:8d:76:41:fc:4c:2a:e9:75:1e:b2:f4:43:12:d5:f7:c6: dd:8c:34:f4:55:3e:6b:3f:5f:e4:61:9b:b6:a1:b0:32:55:64: 7e:53:ae:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkUyNkUxMTAvBgNVBAUTKDIzM0MwRDNCMkE3NUM0MUFCODJFNUJFQjcwREJFMkU3 MzQyRDY2MUYwHhcNMjUwNjE0MTYwODA2WhcNMjUwNjIxMTYwODA2WjAYMRYwFAYD VQQDEw02ODRkOWU2Ni1jMzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwESo0C9BPzcjSu7/t4HX2Ojm84Ugpsdt/zflyoJMLqAHZf5+MpwjoRV62K4n 2OWm/RInFLuTe2bB+FfR1PtsRX8Zj/zwJx8UuaOJNHBdBXofl9dXjGNWwvqZpgfL 2jk36rBMEMn8yJBozPZtLHsNKFBJWj6AqZGQu7SsALKwKe1ho9jyTqIpI8iHFLRB zafZLS/Dnx4Wg/GMMfLlfMbJApWlfpUsAz+5yGBNAoUDjkP65WTQiHCcVgCDmh+v q1ydCzrZxR6lotx83K+2uqwM3nDUvuwwXXFj0sYcvlmQxY766DqEgfJSqCEfnNWl 8wI0gHaBBJUmodWnp60JYHS15wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLKCc5+J jjM8XjZsYLxHizGu0/y7MB8GA1UdIwQYMBaAFCM8DTsqdcQauC5b63Db4uc0LWYf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTI2RS84N0I1Q0Q1MEM4 NUQxMUU2ODcwNTY5MjdDNEY5QUUwMi9JendOT3lwMXhCcTRMbHZyY052aTV6UXRa aDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l6d05PeXAxeEJxNExsdnJjTnZpNXpRdFpoOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTI2RS84N0I1Q0Q1MEM4NUQxMUU2ODcwNTY5MjdDNEY5QUUwMi9JendOT3lwMXhC cTRMbHZyY052aTV6UXRaaDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0BvFIdESquLJ7zheHYIlPMUWwPjN3p0hMgIC6OA9jKWHUi/zZAxSo CQekH7nrcoITEXajqflLWNdA2B/TRmIk2ROgW1hmCe5qf/WzUjoLCzGfgwAfAjlW BZExCIavdWOX9Dg4cL3f7dt1MHaTfYgpxlwYYK5QFIwaj3thB2g94CS4IcuNMoWx IKQk/v5jVM5PVG631fJHFIfnSQG5ASb+gGLIWXhfE41gtO2oiLC3WgNovvyZPpDZ 3ojAw7Df2a1Ci3uiZinzigpCWv6/LP3GoxUz7+vee/JbqY12QfxMKul1HrL0QxLV 98bdjDT0VT5rP1/kYZu2obAyVWR+U67Q -----END CERTIFICATE-----Generated at Sat Jun 14 19:20:46 2025 by rpki-client