$ rpki-client -vvf rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft File: IcuqoETeGlZkRp9Bi80Id7ITlzo.mft (raw, json) Hash identifier: NjsuZ0c0tLpvDNc4lirAK618SgUI8u1uRG/ylz0Gh0g= Subject key identifier: 53:3F:2C:A5:32:8E:CA:05:76:7B:7B:E2:27:77:69:B8:70:82:84:A3 Authority key identifier: 21:CB:AA:A0:44:DE:1A:56:64:46:9F:41:8B:CD:08:77:B2:13:97:3A Certificate issuer: /CN=A911393B/serialNumber=21CBAAA044DE1A5664469F418BCD0877B213973A Certificate serial: 0153 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft Manifest number: 0150 Signing time: Sat 19 Jul 2025 04:22:46 +0000 Manifest this update: Sat 19 Jul 2025 04:22:45 +0000 Manifest next update: Sat 26 Jul 2025 04:22:45 +0000 Files and hashes: 1: IcuqoETeGlZkRp9Bi80Id7ITlzo.crl (hash: A3lYOAmTqD+2J8suPau7bTig49oM39RShUuGnQU/maE=) 2: 6538D178628E11EEBF375134C4F9AE02.roa (hash: a5Qs3LUcbSVUj/0GZbXTErNFIjAHGfhVv7lawUtiA/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.crl rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 04:22:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 339 (0x153) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911393B, serialNumber=21CBAAA044DE1A5664469F418BCD0877B213973A Validity Not Before: Jul 19 04:22:45 2025 GMT Not After : Jul 26 04:22:45 2025 GMT Subject: CN=687b1d95-7ef7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:09:41:d6:9e:81:5b:8a:6b:03:1b:b5:e9:9b: 70:78:8b:54:f6:bd:39:d8:d3:6b:ed:85:3b:9d:5e: 9e:33:55:d2:c7:a9:85:3c:09:65:00:84:4c:cf:25: 4e:24:08:0c:ac:0e:7c:07:75:66:0e:97:9d:b9:76: 89:20:bf:44:d5:46:2b:18:7b:92:d5:29:d2:1c:98: 5a:1a:a3:a5:63:10:78:f6:65:29:9d:5f:3f:59:6f: 6b:4d:fc:ee:10:44:01:20:8e:d7:4b:81:56:ea:1f: 26:b1:39:85:de:a2:ab:4e:11:6f:38:31:88:5d:8e: b6:82:4e:9b:15:25:4d:f6:c7:63:f5:b4:24:aa:c4: 47:f5:02:c4:ca:92:ed:54:06:d5:63:42:b4:2a:47: b0:f2:92:b2:4a:7e:dc:b8:20:79:88:89:20:f8:c1: 34:ae:c5:f8:17:f6:13:f9:f9:fd:48:8b:15:45:f1: dd:2a:71:c3:d2:c5:93:ec:80:1e:80:75:5c:46:4a: 5b:e1:f3:81:bd:b4:38:27:11:19:c8:94:12:5e:ff: 84:3d:35:1b:0f:37:be:00:64:ee:3b:95:33:ad:0a: c1:e0:00:74:2f:ce:4c:e3:b2:88:75:9d:99:43:cc: 52:80:ce:27:05:6d:db:14:42:3a:02:70:22:fe:be: c1:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:3F:2C:A5:32:8E:CA:05:76:7B:7B:E2:27:77:69:B8:70:82:84:A3 X509v3 Authority Key Identifier: keyid:21:CB:AA:A0:44:DE:1A:56:64:46:9F:41:8B:CD:08:77:B2:13:97:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:d5:49:7a:b8:71:8f:d9:9c:8d:b0:84:22:ee:58:09:78:0f: d7:f9:71:b0:b1:86:cf:b6:02:69:8d:e4:0b:2d:bc:7d:5f:e9: 5c:9a:45:8a:bf:b3:37:c8:64:95:6e:90:33:02:88:46:b7:79: d3:d8:cb:2e:71:5f:97:58:50:e7:b5:30:03:aa:33:a7:3a:38: d6:5c:ec:e7:fa:ff:85:3e:4a:16:18:94:18:80:7a:3b:1d:a9: 2f:34:9b:4e:43:9c:b8:04:0c:e6:ee:aa:52:a0:5d:e5:77:0d: d3:f6:c7:c9:03:fc:13:26:3e:3f:f5:62:5c:b0:48:18:7c:cf: f8:62:66:c0:f7:94:b4:63:49:d1:50:bd:bb:e3:fe:e0:88:45: 95:f0:92:ba:74:3b:1b:a5:68:17:95:c0:8b:36:e9:6b:2e:c6: 8f:80:38:ed:45:97:77:73:4d:31:8f:4e:8c:c6:23:ec:5b:66: 06:e4:89:92:6e:c7:95:a3:06:b6:71:2e:3c:66:d0:f7:95:aa: e9:77:6c:fe:5f:de:39:d4:cd:d2:1d:28:64:1c:6b:c3:f5:55: 41:cf:a2:8d:81:2f:48:5c:1e:ef:76:55:67:08:e5:9f:4f:d4: 48:3c:74:d6:f6:23:c6:d4:f9:33:c7:c0:4f:46:d4:91:1a:ed: 57:86:2d:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTM5M0IxMTAvBgNVBAUTKDIxQ0JBQUEwNDRERTFBNTY2NDQ2OUY0MThCQ0QwODc3 QjIxMzk3M0EwHhcNMjUwNzE5MDQyMjQ1WhcNMjUwNzI2MDQyMjQ1WjAYMRYwFAYD VQQDEw02ODdiMWQ5NS03ZWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArglB1p6BW4prAxu16ZtweItU9r052NNr7YU7nV6eM1XSx6mFPAllAIRMzyVO JAgMrA58B3VmDpeduXaJIL9E1UYrGHuS1SnSHJhaGqOlYxB49mUpnV8/WW9rTfzu EEQBII7XS4FW6h8msTmF3qKrThFvODGIXY62gk6bFSVN9sdj9bQkqsRH9QLEypLt VAbVY0K0Kkew8pKySn7cuCB5iIkg+ME0rsX4F/YT+fn9SIsVRfHdKnHD0sWT7IAe gHVcRkpb4fOBvbQ4JxEZyJQSXv+EPTUbDze+AGTuO5UzrQrB4AB0L85M47KIdZ2Z Q8xSgM4nBW3bFEI6AnAi/r7BXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFM/LKUy jsoFdnt74id3abhwgoSjMB8GA1UdIwQYMBaAFCHLqqBE3hpWZEafQYvNCHeyE5c6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzkzQi82N0QwOEJBODYy OEMxMUVFOTU2NUI1NjlDNEY5QUUwMi9JY3Vxb0VUZUdsWmtScDlCaTgwSWQ3SVRs em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljdXFvRVRlR2xaa1JwOUJpODBJZDdJVGx6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MzkzQi82N0QwOEJBODYyOEMxMUVFOTU2NUI1NjlDNEY5QUUwMi9JY3Vxb0VUZUds WmtScDlCaTgwSWQ3SVRsem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCp1Ul6uHGP2ZyNsIQi7lgJeA/X+XGwsYbPtgJpjeQLLbx9X+lcmkWK v7M3yGSVbpAzAohGt3nT2MsucV+XWFDntTADqjOnOjjWXOzn+v+FPkoWGJQYgHo7 HakvNJtOQ5y4BAzm7qpSoF3ldw3T9sfJA/wTJj4/9WJcsEgYfM/4YmbA95S0Y0nR UL274/7giEWV8JK6dDsbpWgXlcCLNulrLsaPgDjtRZd3c00xj06MxiPsW2YG5ImS bseVowa2cS48ZtD3larpd2z+X9451M3SHShkHGvD9VVBz6KNgS9IXB7vdlVnCOWf T9RIPHTW9iPG1Pkzx8BPRtSRGu1Xhi23 -----END CERTIFICATE-----Generated at Sun Jul 20 06:35:09 2025 by rpki-client