$ rpki-client -vvf rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft File: ioDqhWIqoHAhvfSshBiw2aU5rOE.mft (raw, json) Hash identifier: d//Jg6WqTOiy9VyvBGq6nUvd6l33LZy7xHgDQvPduKg= Subject key identifier: 62:4A:8B:1B:1A:8F:84:57:81:A1:59:61:2B:3A:3A:5C:D0:16:CC:6B Authority key identifier: 8A:80:EA:85:62:2A:A0:70:21:BD:F4:AC:84:18:B0:D9:A5:39:AC:E1 Certificate issuer: /CN=A912D9BE/serialNumber=8A80EA85622AA07021BDF4AC8418B0D9A539ACE1 Certificate serial: 0505 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft Manifest number: 04FE Signing time: Mon 02 Jun 2025 23:54:34 +0000 Manifest this update: Mon 02 Jun 2025 23:54:34 +0000 Manifest next update: Mon 09 Jun 2025 23:54:34 +0000 Files and hashes: 1: ioDqhWIqoHAhvfSshBiw2aU5rOE.crl (hash: CuXU9pNdrugOL564xdfPBkmTRPQTkC651FZKm6rh7jc=) 2: AC7FAD34756D11EF8E0AC450C4F9AE02.roa (hash: Zm4qbPETvWslp8RznHoUL+bcAgC3x8SPRlNir3l6sYs=) 3: DA0AD156799211EFADCD2257C4F9AE02.roa (hash: IKJkF5tTVOAg9Gcj+RMqJavUI1QmsLflBy8eIb93AAQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.crl rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 23:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1285 (0x505) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D9BE, serialNumber=8A80EA85622AA07021BDF4AC8418B0D9A539ACE1 Validity Not Before: Jun 2 23:54:34 2025 GMT Not After : Jun 9 23:54:34 2025 GMT Subject: CN=683e39ba-f3a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:eb:1f:b2:31:75:80:42:ee:c6:1d:9e:66:ee: 73:75:7b:32:25:54:b1:ad:2f:3f:fd:9f:bc:41:5c: d4:f3:49:1b:6b:86:2f:30:c6:a2:ba:14:80:3e:f6: 88:00:33:03:56:f5:b9:da:8f:28:0e:93:2c:15:3d: ba:aa:94:c9:de:55:bb:46:44:e8:66:71:0d:7d:4e: 8e:79:73:26:93:74:0c:57:64:d3:c1:3d:07:c0:84: 1f:e1:c3:84:f1:69:ea:eb:4a:96:5e:98:c0:ca:9f: e5:28:17:ba:d2:c5:dd:6b:8b:31:f5:e3:fb:d4:26: a3:4a:70:86:ba:6c:7a:71:0f:dc:19:07:fa:24:ec: c1:b4:41:13:aa:e1:57:84:3b:1f:12:d7:f2:c0:5c: 2c:cc:8f:f5:11:26:24:73:c9:0f:72:45:17:c3:f5: 89:23:f4:e8:b9:89:9a:11:70:22:33:ea:b7:a4:07: 17:ce:aa:cf:30:bd:76:c3:22:df:7f:11:18:c9:32: 07:47:c3:41:97:61:1c:01:38:93:05:52:38:ff:70: 83:8e:16:fe:8c:7f:1b:e1:59:7e:b5:9d:12:a3:1d: 2e:47:f7:f0:ff:cd:69:b7:49:0d:6d:7e:f4:60:79: 72:71:6f:b4:5b:f6:5b:6e:0f:10:69:97:cb:b6:36: ba:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:4A:8B:1B:1A:8F:84:57:81:A1:59:61:2B:3A:3A:5C:D0:16:CC:6B X509v3 Authority Key Identifier: keyid:8A:80:EA:85:62:2A:A0:70:21:BD:F4:AC:84:18:B0:D9:A5:39:AC:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:e0:7a:47:51:e3:91:10:17:81:0a:e4:6f:a6:d9:f3:2a:50: 6d:78:f0:59:84:0d:98:a4:10:d4:4e:18:61:36:88:c7:2b:58: cf:70:58:2b:b3:63:90:a4:60:d9:5c:8f:ef:db:79:7d:ec:9c: 73:67:50:4e:35:60:77:e1:d3:35:36:1f:e2:ef:16:4d:78:fc: 78:54:04:82:23:8e:ac:07:e5:12:a9:a3:eb:80:8f:f6:af:9b: ec:f8:40:7d:8b:4f:34:a7:b4:13:ad:19:6c:33:2a:13:38:e8: 49:83:e4:09:49:ae:c3:43:d8:6f:24:b4:af:2a:6a:74:41:7c: 4a:72:8f:81:7f:0b:a7:6b:83:7e:b1:c7:e7:da:b4:dc:8a:42: d7:13:bc:bb:c9:95:86:66:20:a8:18:3f:42:3c:2f:2b:15:c2: 91:05:4e:b2:0a:5b:6f:51:30:a5:27:bb:96:fc:65:d5:a2:4d: 4f:1d:bf:18:76:15:df:bf:3e:2b:84:7f:bc:e0:f4:45:fa:91: 38:e9:c2:26:70:d6:92:a3:64:29:56:47:dc:46:c0:30:66:af: 2f:04:36:58:aa:19:1e:48:9e:50:a3:01:f1:68:30:7d:e9:1c: f3:21:34:b6:e5:4b:13:0d:52:ba:5a:19:6c:ce:ff:b7:33:84: 35:4f:11:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ5QkUxMTAvBgNVBAUTKDhBODBFQTg1NjIyQUEwNzAyMUJERjRBQzg0MThCMEQ5 QTUzOUFDRTEwHhcNMjUwNjAyMjM1NDM0WhcNMjUwNjA5MjM1NDM0WjAYMRYwFAYD VQQDEw02ODNlMzliYS1mM2E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAresfsjF1gELuxh2eZu5zdXsyJVSxrS8//Z+8QVzU80kba4YvMMaiuhSAPvaI ADMDVvW52o8oDpMsFT26qpTJ3lW7RkToZnENfU6OeXMmk3QMV2TTwT0HwIQf4cOE 8Wnq60qWXpjAyp/lKBe60sXda4sx9eP71CajSnCGumx6cQ/cGQf6JOzBtEETquFX hDsfEtfywFwszI/1ESYkc8kPckUXw/WJI/TouYmaEXAiM+q3pAcXzqrPML12wyLf fxEYyTIHR8NBl2EcATiTBVI4/3CDjhb+jH8b4Vl+tZ0Sox0uR/fw/81pt0kNbX70 YHlycW+0W/Zbbg8QaZfLtja6OwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGJKixsa j4RXgaFZYSs6OlzQFsxrMB8GA1UdIwQYMBaAFIqA6oViKqBwIb30rIQYsNmlOazh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDlCRS9CMDlDM0NFMjEx N0IxMUVDODBFNDIxNDNDNEY5QUUwMi9pb0RxaFdJcW9IQWh2ZlNzaEJpdzJhVTVy T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lvRHFoV0lxb0hBaHZmU3NoQml3MmFVNXJPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDlCRS9CMDlDM0NFMjExN0IxMUVDODBFNDIxNDNDNEY5QUUwMi9pb0RxaFdJcW9I QWh2ZlNzaEJpdzJhVTVyT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAX4HpHUeOREBeBCuRvptnzKlBtePBZhA2YpBDUThhhNojHK1jPcFgr s2OQpGDZXI/v23l97JxzZ1BONWB34dM1Nh/i7xZNePx4VASCI46sB+USqaPrgI/2 r5vs+EB9i080p7QTrRlsMyoTOOhJg+QJSa7DQ9hvJLSvKmp0QXxKco+Bfwuna4N+ scfn2rTcikLXE7y7yZWGZiCoGD9CPC8rFcKRBU6yCltvUTClJ7uW/GXVok1PHb8Y dhXfvz4rhH+84PRF+pE46cImcNaSo2QpVkfcRsAwZq8vBDZYqhkeSJ5QowHxaDB9 6RzzITS25UsTDVK6Whlszv+3M4Q1TxHo -----END CERTIFICATE-----Generated at Tue Jun 3 23:58:53 2025 by rpki-client