$ rpki-client -vvf rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft File: iR7Yuqwsc70TrcqhoWqvANIkqHc.mft (raw, json) Hash identifier: /B0jhchR1kwKxBwGKFwlufabZjB+yuetxKCLl6ZYrXI= Subject key identifier: A4:2B:E7:38:44:94:F5:0B:68:DE:A2:F1:64:D3:D5:BB:1E:83:FF:3E Authority key identifier: 89:1E:D8:BA:AC:2C:73:BD:13:AD:CA:A1:A1:6A:AF:00:D2:24:A8:77 Certificate issuer: /CN=A91394E7/serialNumber=891ED8BAAC2C73BD13ADCAA1A16AAF00D224A877 Certificate serial: 67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft Manifest number: 64 Signing time: Sat 31 May 2025 06:39:41 +0000 Manifest this update: Sat 31 May 2025 06:39:40 +0000 Manifest next update: Sat 07 Jun 2025 06:39:40 +0000 Files and hashes: 1: iR7Yuqwsc70TrcqhoWqvANIkqHc.crl (hash: 7XsAVEq1EuKo8nNMkWfcwIpKTiRjYOahspid7FX+Zp0=) 2: F7078BC4B73511EF8537DE81C4F9AE02.roa (hash: CcfcyuDgdAXzM0C7pRrcqcGTmtCQX9kXzhcOgKQTSNM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.crl rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:39:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 103 (0x67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91394E7, serialNumber=891ED8BAAC2C73BD13ADCAA1A16AAF00D224A877 Validity Not Before: May 31 06:39:40 2025 GMT Not After : Jun 7 06:39:40 2025 GMT Subject: CN=683aa42d-14f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:69:6d:81:76:07:49:2a:40:3c:ba:9e:94:50: c2:38:62:3f:a9:a5:32:9c:65:2d:93:08:85:8a:35: 7b:e3:0f:e5:a6:68:5d:08:9e:73:66:bd:e9:5f:3b: d2:2b:b8:f2:e4:d3:7c:eb:d9:de:dd:0d:10:f2:b9: d3:60:b6:97:f4:05:8a:d0:ed:a5:c4:90:f8:65:05: 42:cb:bc:2c:ed:6a:9c:da:f3:cb:df:1b:55:f9:e4: c0:60:30:0d:28:bb:da:b2:56:7d:35:ab:15:df:0a: c5:f1:43:73:28:fc:73:49:e7:db:f9:14:09:9e:9e: cc:bb:6a:f4:a1:46:1c:91:6a:6b:65:2f:fc:a4:f7: 41:e5:fa:ed:a1:7e:47:1c:eb:9e:51:3b:e1:31:51: 95:76:54:3a:43:b0:ff:2a:2c:3d:95:7a:cf:e3:e3: 41:70:bc:e3:aa:77:a6:0f:e8:0c:3e:05:6d:cc:5e: a1:4c:79:4f:c7:a4:7f:8b:f4:2c:25:77:21:96:e6: 34:c4:ad:d0:6b:e2:90:5d:09:0d:f0:29:8a:5b:65: 03:59:16:e8:21:92:59:72:ae:10:4e:0f:f3:6b:d0: 58:22:d0:d3:79:46:ab:4d:6c:b6:35:89:d7:f2:3c: a4:4b:53:06:9e:19:8c:40:b6:35:9d:be:56:c9:d3: 7a:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:2B:E7:38:44:94:F5:0B:68:DE:A2:F1:64:D3:D5:BB:1E:83:FF:3E X509v3 Authority Key Identifier: keyid:89:1E:D8:BA:AC:2C:73:BD:13:AD:CA:A1:A1:6A:AF:00:D2:24:A8:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e9:8b:53:d7:60:ef:85:21:66:7e:51:81:e1:5d:82:20:ab:c5: 01:ab:39:1e:f1:b5:7e:2d:a7:df:b4:1f:ac:a6:e7:6d:08:15: fb:3c:e6:fe:72:dd:22:64:bb:ec:c1:84:ba:12:92:c1:85:e1: 64:5a:35:91:0b:56:49:89:27:68:67:9e:58:39:70:09:70:cb: a7:e2:d2:a1:0a:f9:b4:8d:a8:34:85:29:fa:17:c3:e2:9b:66: 96:12:3d:e4:a4:56:ca:cb:50:ac:39:eb:1b:75:cb:51:87:65: e6:fd:7e:0d:ed:67:ac:60:d3:b1:4a:36:ca:41:a7:eb:88:72: 45:cd:7f:0b:cb:b4:95:64:e2:36:fc:3e:90:27:84:a9:a0:f2: 8e:5f:67:3a:37:79:9e:7f:c7:8f:3b:65:a7:4a:c6:85:32:6b: 3d:a0:f4:04:1f:3a:8d:6e:f3:96:7f:8b:c5:7d:50:c5:79:81: 1b:17:7c:81:3d:98:b0:b3:35:23:3e:c0:a3:fb:0e:45:58:be: e4:06:e0:9d:a8:76:ba:ef:4f:6a:2f:2c:6a:24:79:0f:34:44: dc:5c:d2:88:81:47:80:9c:a6:c6:ee:74:1d:03:7f:87:2c:82: 40:17:22:29:62:82:b2:2a:0e:e2:03:89:4f:8b:85:61:a5:d4: 6f:54:f4:38 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz OTRFNzExMC8GA1UEBRMoODkxRUQ4QkFBQzJDNzNCRDEzQURDQUExQTE2QUFGMDBE MjI0QTg3NzAeFw0yNTA1MzEwNjM5NDBaFw0yNTA2MDcwNjM5NDBaMBgxFjAUBgNV BAMTDTY4M2FhNDJkLTE0ZjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYaW2BdgdJKkA8up6UUMI4Yj+ppTKcZS2TCIWKNXvjD+WmaF0InnNmvelfO9Ir uPLk03zr2d7dDRDyudNgtpf0BYrQ7aXEkPhlBULLvCztapza88vfG1X55MBgMA0o u9qyVn01qxXfCsXxQ3Mo/HNJ59v5FAmensy7avShRhyRamtlL/yk90Hl+u2hfkcc 655RO+ExUZV2VDpDsP8qLD2Ves/j40FwvOOqd6YP6Aw+BW3MXqFMeU/HpH+L9Cwl dyGW5jTErdBr4pBdCQ3wKYpbZQNZFughkllyrhBOD/Nr0Fgi0NN5RqtNbLY1idfy PKRLUwaeGYxAtjWdvlbJ03qxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUpCvnOESU 9Qto3qLxZNPVux6D/z4wHwYDVR0jBBgwFoAUiR7Yuqwsc70TrcqhoWqvANIkqHcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM5NEU3L0Y0Q0ZEMURBQUM3 MzExRUY4N0ZDNTU0Q0M0RjlBRTAyL2lSN1l1cXdzYzcwVHJjcWhvV3F2QU5Ja3FI Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVI3WXVxd3NjNzBUcmNxaG9XcXZBTklrcUhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM5 NEU3L0Y0Q0ZEMURBQUM3MzExRUY4N0ZDNTU0Q0M0RjlBRTAyL2lSN1l1cXdzYzcw VHJjcWhvV3F2QU5Ja3FIYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAOmLU9dg74UhZn5RgeFdgiCrxQGrOR7xtX4tp9+0H6ym520IFfs85v5y 3SJku+zBhLoSksGF4WRaNZELVkmJJ2hnnlg5cAlwy6fi0qEK+bSNqDSFKfoXw+Kb ZpYSPeSkVsrLUKw56xt1y1GHZeb9fg3tZ6xg07FKNspBp+uIckXNfwvLtJVk4jb8 PpAnhKmg8o5fZzo3eZ5/x487ZadKxoUyaz2g9AQfOo1u85Z/i8V9UMV5gRsXfIE9 mLCzNSM+wKP7DkVYvuQG4J2odrrvT2ovLGokeQ80RNxc0oiBR4CcpsbudB0Df4cs gkAXIiligrIqDuIDiU+LhWGl1G9U9Dg= -----END CERTIFICATE-----Generated at Sat May 31 16:39:44 2025 by rpki-client