$ rpki-client -vvf rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft File: IhKO6LQdoZG8pEiIxhUzENZmp78.mft (raw, json) Hash identifier: c2DXF5IhaRn9gZB3KqjICdgXRe28OnL6Q0LBTAJ/eXI= Subject key identifier: 3C:7D:28:F5:DE:47:A9:7F:09:6D:F6:06:FD:43:AD:C8:59:96:9A:E9 Authority key identifier: 22:12:8E:E8:B4:1D:A1:91:BC:A4:48:88:C6:15:33:10:D6:66:A7:BF Certificate issuer: /CN=A9135F03/serialNumber=22128EE8B41DA191BCA44888C6153310D666A7BF Certificate serial: 0704 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft Manifest number: 0704 Signing time: Fri 30 May 2025 22:06:59 +0000 Manifest this update: Fri 30 May 2025 22:06:58 +0000 Manifest next update: Fri 06 Jun 2025 22:06:58 +0000 Files and hashes: 1: IhKO6LQdoZG8pEiIxhUzENZmp78.crl (hash: Jrb4UkcgM0nlEfLT0COlzfUD0NVJWlF2i4/J31yRGLk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.crl rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:06:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1796 (0x704) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135F03, serialNumber=22128EE8B41DA191BCA44888C6153310D666A7BF Validity Not Before: May 30 22:06:58 2025 GMT Not After : Jun 6 22:06:58 2025 GMT Subject: CN=683a2c02-d4ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:d9:c6:1e:73:25:5c:9d:20:e2:65:b2:a1:03: d5:08:01:08:91:b1:95:b3:89:05:e6:d4:59:23:45: a0:b3:ae:05:f8:ae:21:64:7f:a8:ed:95:06:99:a6: 8f:67:42:a1:02:8e:48:5f:43:45:93:1b:f9:cb:95: c4:07:97:0c:7c:1a:76:06:61:ef:09:b4:9d:e9:d6: 29:64:a4:37:5c:ff:74:0c:22:f2:e5:5a:fa:4b:0c: 43:51:ea:e7:e7:0f:ca:86:4e:56:61:56:ea:78:c4: b6:7a:02:65:c1:90:f2:15:9f:9b:c6:b0:85:38:6f: 2f:0c:78:79:a9:5c:cf:d0:8c:d8:10:a7:96:bc:06: 44:c7:1f:f9:e0:cd:82:11:96:03:3b:f8:76:e1:23: e3:41:39:4c:23:3a:34:ab:1d:13:d0:63:0f:96:21: b1:0f:6d:00:63:e4:8e:a0:45:55:1b:8b:98:91:5d: c5:92:28:7d:9f:a3:e9:05:9e:51:ba:2a:44:ef:4f: 48:ca:af:cd:b8:2c:e3:69:a6:2f:4b:a9:9f:05:0a: 54:b4:c4:89:8b:3c:e2:94:62:18:5c:0a:31:a8:ce: e8:e7:29:81:a6:4b:7a:36:c7:11:a2:85:fc:7c:80: 16:91:d0:bc:89:1e:14:c9:85:6e:bc:4a:d2:42:3b: 2a:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:7D:28:F5:DE:47:A9:7F:09:6D:F6:06:FD:43:AD:C8:59:96:9A:E9 X509v3 Authority Key Identifier: keyid:22:12:8E:E8:B4:1D:A1:91:BC:A4:48:88:C6:15:33:10:D6:66:A7:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:06:f9:a0:be:d9:74:a4:3a:99:38:67:8f:8c:54:34:59:8b: b0:9b:54:c8:d2:04:5e:21:76:74:ca:67:b8:a0:c0:70:2f:24: d7:3a:3c:ff:ef:02:41:52:cf:80:59:a3:d0:07:f6:54:38:c3: 51:74:79:e8:19:4d:74:f5:d7:4d:3e:6d:6c:3d:a2:fb:f2:8f: 37:28:7c:e1:99:70:44:c0:50:56:84:cf:1c:62:64:94:ec:5c: ef:af:36:d9:4d:8e:e7:db:22:b7:15:12:94:5c:e3:5d:c9:a0: 16:e5:ba:b4:a7:f5:f2:06:85:0d:f2:07:c9:85:71:33:84:86: 91:ca:2a:4b:ae:51:cf:3b:72:c2:de:53:12:be:33:a3:36:ee: 30:1e:cc:fe:1a:16:c8:17:88:04:4d:89:30:bb:5e:25:aa:a0: a6:c7:78:6e:cb:b6:ec:59:69:60:47:ec:c8:25:aa:47:38:1d: ec:02:3d:a8:70:10:9c:4e:63:da:4a:a0:67:bc:ee:68:6e:67: fe:98:e6:1e:9f:aa:c9:f7:ab:49:c1:b8:c5:4a:82:d9:d7:57: 8c:10:60:70:76:aa:81:87:42:e9:f5:26:47:63:49:bd:df:7b: ed:15:c9:ee:4f:2a:5f:34:c7:8f:55:b5:83:7d:38:08:0f:2b: 41:d5:fc:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzVGMDMxMTAvBgNVBAUTKDIyMTI4RUU4QjQxREExOTFCQ0E0NDg4OEM2MTUzMzEw RDY2NkE3QkYwHhcNMjUwNTMwMjIwNjU4WhcNMjUwNjA2MjIwNjU4WjAYMRYwFAYD VQQDEw02ODNhMmMwMi1kNGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7NnGHnMlXJ0g4mWyoQPVCAEIkbGVs4kF5tRZI0Wgs64F+K4hZH+o7ZUGmaaP Z0KhAo5IX0NFkxv5y5XEB5cMfBp2BmHvCbSd6dYpZKQ3XP90DCLy5Vr6SwxDUern 5w/Khk5WYVbqeMS2egJlwZDyFZ+bxrCFOG8vDHh5qVzP0IzYEKeWvAZExx/54M2C EZYDO/h24SPjQTlMIzo0qx0T0GMPliGxD20AY+SOoEVVG4uYkV3Fkih9n6PpBZ5R uipE709Iyq/NuCzjaaYvS6mfBQpUtMSJizzilGIYXAoxqM7o5ymBpkt6NscRooX8 fIAWkdC8iR4UyYVuvErSQjsqgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDx9KPXe R6l/CW32Bv1DrchZlprpMB8GA1UdIwQYMBaAFCISjui0HaGRvKRIiMYVMxDWZqe/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNUYwMy8xQkZDMDBFRTNG RTAxMUVCODc0MzE4MERDNEY5QUUwMi9JaEtPNkxRZG9aRzhwRWlJeGhVekVOWm1w NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0loS082TFFkb1pHOHBFaUl4aFV6RU5abXA3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NUYwMy8xQkZDMDBFRTNGRTAxMUVCODc0MzE4MERDNEY5QUUwMi9JaEtPNkxRZG9a RzhwRWlJeGhVekVOWm1wNzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRBvmgvtl0pDqZOGePjFQ0WYuwm1TI0gReIXZ0yme4oMBwLyTXOjz/ 7wJBUs+AWaPQB/ZUOMNRdHnoGU109ddNPm1sPaL78o83KHzhmXBEwFBWhM8cYmSU 7FzvrzbZTY7n2yK3FRKUXONdyaAW5bq0p/XyBoUN8gfJhXEzhIaRyipLrlHPO3LC 3lMSvjOjNu4wHsz+GhbIF4gETYkwu14lqqCmx3huy7bsWWlgR+zIJapHOB3sAj2o cBCcTmPaSqBnvO5obmf+mOYen6rJ96tJwbjFSoLZ11eMEGBwdqqBh0Lp9SZHY0m9 33vtFcnuTypfNMePVbWDfTgIDytB1fzV -----END CERTIFICATE-----Generated at Sat May 31 17:32:58 2025 by rpki-client