$ rpki-client -vvf rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft File: i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft (raw, json) Hash identifier: 4+8AY2yaoZtikyIEucOGCn+tKCgoy7w7LLWs4l5f6Cc= Subject key identifier: 6B:53:DA:6B:5A:51:A8:DA:7B:6D:C2:B6:25:8B:35:36:37:68:04:FD Authority key identifier: 8B:A9:4E:24:4C:87:03:E2:E2:12:45:6B:98:71:B3:C8:2D:50:70:9C Certificate issuer: /CN=A9116E68/serialNumber=8BA94E244C8703E2E212456B9871B3C82D50709C Certificate serial: 010A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6lOJEyHA-LiEkVrmHGzyC1QcJw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft Manifest number: 0107 Signing time: Sat 31 May 2025 04:38:41 +0000 Manifest this update: Sat 31 May 2025 04:38:40 +0000 Manifest next update: Sat 07 Jun 2025 04:38:40 +0000 Files and hashes: 1: i6lOJEyHA-LiEkVrmHGzyC1QcJw.crl (hash: oNmqwnrgAVT8vnlb7am81wQUxjYocjquucKJs9B9nv4=) 2: 2601A296AE1011EE92B7161BC4F9AE02.roa (hash: ruTuAI8tCOCbFuPP+2u83Ib06u3MS/nsClPmyXw7xNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.crl rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6lOJEyHA-LiEkVrmHGzyC1QcJw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:38:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 266 (0x10a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116E68, serialNumber=8BA94E244C8703E2E212456B9871B3C82D50709C Validity Not Before: May 31 04:38:40 2025 GMT Not After : Jun 7 04:38:40 2025 GMT Subject: CN=683a87d0-6e26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5a:94:c6:6c:7f:24:9b:44:94:21:6e:1a:33: 6b:a8:c9:ab:c1:ce:a3:c3:a7:97:4c:16:dc:39:6b: 6a:1f:ef:5c:1d:aa:12:b6:0f:53:fd:36:28:6f:56: d8:c3:ee:96:63:9e:dd:3e:e1:07:c0:11:7d:82:f1: 19:7f:9c:5e:64:2d:9a:57:03:ec:09:fd:f9:c7:00: 14:82:31:7f:51:ea:91:19:82:06:3f:6d:a3:4c:79: 67:f9:d8:af:c7:78:f7:46:d1:6f:4d:fb:b1:0e:5d: 15:5d:94:59:8a:ae:ed:78:7d:d4:9d:3f:65:67:23: cf:04:c2:cf:64:2c:b4:5d:9f:b7:d6:8d:a4:9a:71: 9d:28:f8:79:7a:29:8a:69:a0:0f:32:33:5c:0f:96: ff:3d:f3:2f:fd:e6:d2:47:9a:a4:ee:23:09:f2:1d: 33:b8:28:10:6d:20:c9:4a:a6:0f:f5:89:52:27:68: 38:64:ee:38:e3:0d:f4:12:ea:e8:f8:79:c2:47:40: 60:d7:4f:1f:fd:5e:2d:0d:61:9b:42:8e:3f:0b:56: b0:8b:a7:de:8a:c0:e4:ec:3f:1b:98:36:4b:f8:70: 75:c2:5f:eb:ad:e7:8b:e8:c7:ec:cc:f7:49:57:b1: f0:4d:b5:05:87:0e:f3:e3:7b:69:9f:b2:2f:9d:53: 52:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:53:DA:6B:5A:51:A8:DA:7B:6D:C2:B6:25:8B:35:36:37:68:04:FD X509v3 Authority Key Identifier: keyid:8B:A9:4E:24:4C:87:03:E2:E2:12:45:6B:98:71:B3:C8:2D:50:70:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6lOJEyHA-LiEkVrmHGzyC1QcJw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:28:67:5f:19:02:8e:51:08:1b:59:fc:65:19:1b:11:5d:cd: 5d:e9:30:74:81:7d:38:a5:0c:d8:d8:21:c5:dc:8f:ad:23:c5: 62:90:cb:23:59:7b:2e:d0:19:6f:a8:30:94:00:77:5f:a1:ed: 09:82:2f:f0:25:5d:09:80:d8:61:3b:e2:04:b8:31:b5:07:a2: 5f:fe:09:75:eb:e8:24:24:aa:a9:34:b3:13:ae:81:a3:21:9b: 47:eb:b7:09:ab:0f:d7:89:fb:92:5c:54:76:e2:a9:34:d5:8d: 62:b7:a8:4b:9f:98:d2:4a:be:22:5a:17:ce:33:a1:68:b6:8c: 2e:e7:3f:e0:01:09:1c:f8:5a:4d:d3:ea:43:af:c4:1d:36:12: 02:04:2d:3b:4a:7f:1a:39:c9:fb:90:92:eb:8d:75:62:2a:86: 16:31:26:f2:a7:21:a5:e4:41:50:b7:cb:7f:63:8a:b7:14:46: c1:e2:7c:8c:c9:25:c8:43:a8:1e:5a:10:b8:8b:c1:c4:c4:32: 31:ce:3a:eb:fd:b2:85:24:91:c1:06:37:05:72:d9:1d:ce:bd: f8:c4:e4:e7:15:dc:d3:b5:69:b8:c7:42:e2:d7:09:92:31:27: b7:84:3c:9e:d3:d7:4f:5a:0b:b7:6a:9e:3c:f1:57:ea:84:13: 56:57:18:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTZFNjgxMTAvBgNVBAUTKDhCQTk0RTI0NEM4NzAzRTJFMjEyNDU2Qjk4NzFCM0M4 MkQ1MDcwOUMwHhcNMjUwNTMxMDQzODQwWhcNMjUwNjA3MDQzODQwWjAYMRYwFAYD VQQDEw02ODNhODdkMC02ZTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVqUxmx/JJtElCFuGjNrqMmrwc6jw6eXTBbcOWtqH+9cHaoStg9T/TYob1bY w+6WY57dPuEHwBF9gvEZf5xeZC2aVwPsCf35xwAUgjF/UeqRGYIGP22jTHln+div x3j3RtFvTfuxDl0VXZRZiq7teH3UnT9lZyPPBMLPZCy0XZ+31o2kmnGdKPh5eimK aaAPMjNcD5b/PfMv/ebSR5qk7iMJ8h0zuCgQbSDJSqYP9YlSJ2g4ZO444w30Euro +HnCR0Bg108f/V4tDWGbQo4/C1awi6feisDk7D8bmDZL+HB1wl/rreeL6MfszPdJ V7HwTbUFhw7z43tpn7IvnVNS1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGtT2mta Uajae23CtiWLNTY3aAT9MB8GA1UdIwQYMBaAFIupTiRMhwPi4hJFa5hxs8gtUHCc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNkU2OC9EMkJBQUM0QUFF MEYxMUVFQTdBQzk0MUFDNEY5QUUwMi9pNmxPSkV5SEEtTGlFa1ZybUhHenlDMVFj SncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2k2bE9KRXlIQS1MaUVrVnJtSEd6eUMxUWNKdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NkU2OC9EMkJBQUM0QUFFMEYxMUVFQTdBQzk0MUFDNEY5QUUwMi9pNmxPSkV5SEEt TGlFa1ZybUhHenlDMVFjSncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjKGdfGQKOUQgbWfxlGRsRXc1d6TB0gX04pQzY2CHF3I+tI8VikMsj WXsu0BlvqDCUAHdfoe0Jgi/wJV0JgNhhO+IEuDG1B6Jf/gl16+gkJKqpNLMTroGj IZtH67cJqw/XifuSXFR24qk01Y1it6hLn5jSSr4iWhfOM6Fotowu5z/gAQkc+FpN 0+pDr8QdNhICBC07Sn8aOcn7kJLrjXViKoYWMSbypyGl5EFQt8t/Y4q3FEbB4nyM ySXIQ6geWhC4i8HExDIxzjrr/bKFJJHBBjcFctkdzr34xOTnFdzTtWm4x0Li1wmS MSe3hDye09dPWgu3ap488VfqhBNWVxh+ -----END CERTIFICATE-----Generated at Sat May 31 17:49:37 2025 by rpki-client