$ rpki-client -vvf rpki.apnic.net/member_repository/A913E03C/B6E0F4AA1D9A11E28921298808B02CD2/0Iw24m8k-51RTztAqON6mgS1gCU.mft File: 0Iw24m8k-51RTztAqON6mgS1gCU.mft (raw, json) Hash identifier: eAZGQYeNQmkNfRx42YQNZN5w6sgHSZ1SC/HdS23pZgE= Subject key identifier: 03:51:79:73:F6:92:A5:90:3E:59:12:AD:4E:F8:10:F7:FE:B8:81:4F Authority key identifier: D0:8C:36:E2:6F:24:FB:9D:51:4F:3B:40:A8:E3:7A:9A:04:B5:80:25 Certificate issuer: /CN=A913E03C/serialNumber=D08C36E26F24FB9D514F3B40A8E37A9A04B58025 Certificate serial: 3485 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Iw24m8k-51RTztAqON6mgS1gCU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E03C/B6E0F4AA1D9A11E28921298808B02CD2/0Iw24m8k-51RTztAqON6mgS1gCU.mft Manifest number: 3484 Signing time: Sat 31 May 2025 14:56:06 +0000 Manifest this update: Sat 31 May 2025 14:56:06 +0000 Manifest next update: Sat 07 Jun 2025 14:56:06 +0000 Files and hashes: 1: 0Iw24m8k-51RTztAqON6mgS1gCU.crl (hash: kgTpx5OUpkK56YYiPm7iO7e08a8J7Z/jWQ93O3v/Lqk=) 2: 1D790596F25D11EF8C5D7036C4F9AE02.roa (hash: 0c5mooek/SI4tHJlanxjMJ+LPip9Hy2VF66plGlTaFA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E03C/B6E0F4AA1D9A11E28921298808B02CD2/0Iw24m8k-51RTztAqON6mgS1gCU.crl rsync://rpki.apnic.net/member_repository/A913E03C/B6E0F4AA1D9A11E28921298808B02CD2/0Iw24m8k-51RTztAqON6mgS1gCU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Iw24m8k-51RTztAqON6mgS1gCU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 14:56:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13445 (0x3485) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E03C, serialNumber=D08C36E26F24FB9D514F3B40A8E37A9A04B58025 Validity Not Before: May 31 14:56:06 2025 GMT Not After : Jun 7 14:56:06 2025 GMT Subject: CN=683b1886-d550 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:67:20:cd:0d:a9:a0:c8:d7:84:9b:a9:94:9d: 82:25:ee:16:b7:ed:ed:17:24:7c:16:4a:38:ee:24: e7:ee:b6:d4:d0:8e:d8:de:7f:0b:88:ae:d3:c2:b7: 48:51:2a:13:17:d1:e2:49:1c:08:58:dd:ce:03:33: d9:b3:f2:d9:e0:4e:98:64:40:3f:b5:f6:b9:3e:49: d0:a4:54:49:e7:6b:53:d5:61:e9:77:30:57:39:97: 97:7d:8e:2e:1f:8d:e0:34:d1:13:e5:35:52:59:83: d0:8b:1e:b7:84:66:79:0d:a2:39:c6:7e:54:1c:f1: c1:57:bd:2e:a3:51:f1:cc:1c:6b:65:1c:7b:5b:03: f4:d2:48:0c:d4:c2:45:0b:04:b0:fd:a9:30:d1:2a: 74:b7:4f:60:fe:6d:76:03:0f:b2:f3:aa:40:53:b7: 14:d9:99:a3:5d:cd:e1:f4:d8:77:9d:16:29:3f:ad: d2:79:bf:5c:b3:cf:bb:bc:56:3d:72:e8:5f:37:2a: 73:93:a2:be:ab:c3:f6:2f:15:39:43:e5:ea:20:8f: 58:15:31:3e:d3:ce:70:e9:79:d5:62:5d:bd:f1:8a: aa:a4:bc:24:4d:3f:ff:a4:58:a5:b1:17:8d:b7:88: 4e:e8:29:a5:e3:ee:dc:b4:4e:a7:85:05:c6:68:ba: 05:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:51:79:73:F6:92:A5:90:3E:59:12:AD:4E:F8:10:F7:FE:B8:81:4F X509v3 Authority Key Identifier: keyid:D0:8C:36:E2:6F:24:FB:9D:51:4F:3B:40:A8:E3:7A:9A:04:B5:80:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E03C/B6E0F4AA1D9A11E28921298808B02CD2/0Iw24m8k-51RTztAqON6mgS1gCU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Iw24m8k-51RTztAqON6mgS1gCU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E03C/B6E0F4AA1D9A11E28921298808B02CD2/0Iw24m8k-51RTztAqON6mgS1gCU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:6b:74:d0:17:b7:f7:e6:9b:d3:d8:ea:6c:a7:03:5c:bf:42: 14:7b:a1:e3:b6:f6:7a:39:f1:f3:31:b6:96:4c:5f:ed:87:3b: a7:ee:58:1d:ed:3a:7d:ee:12:47:88:97:13:ff:03:00:41:ab: c4:0c:b7:79:61:34:38:ca:0f:e5:7d:12:d8:54:d3:d4:b1:ab: 72:df:a5:ca:7f:80:6a:0d:4b:d6:df:35:92:82:51:16:a5:77: a6:89:1b:7a:f2:53:ce:0d:6e:c6:af:01:51:0c:75:32:cc:cb: d8:81:54:be:84:07:14:ac:7b:bb:ed:91:13:77:b2:1a:95:4c: c5:7b:9a:92:e6:45:61:55:b2:67:e3:db:ae:46:94:64:39:35: 1e:a6:da:50:db:d2:a1:af:0a:7e:0c:6c:f1:5c:0d:e5:08:29: 62:97:81:51:4f:92:05:40:a0:07:ce:ba:ae:5b:17:97:4d:bd: 0e:1d:75:61:33:40:97:c2:c2:21:b3:72:de:91:b6:0e:3e:3a: f2:61:73:3c:d9:40:6b:93:22:f2:0a:db:be:c5:de:4e:77:15: ad:9c:77:24:6c:7a:71:c1:a6:df:93:d9:f8:ec:d2:5a:2c:7b: f6:4e:42:92:56:5e:9a:62:44:ea:73:f7:22:df:84:76:d2:7b: 45:fd:26:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UwM0MxMTAvBgNVBAUTKEQwOEMzNkUyNkYyNEZCOUQ1MTRGM0I0MEE4RTM3QTlB MDRCNTgwMjUwHhcNMjUwNTMxMTQ1NjA2WhcNMjUwNjA3MTQ1NjA2WjAYMRYwFAYD VQQDEw02ODNiMTg4Ni1kNTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAomcgzQ2poMjXhJuplJ2CJe4Wt+3tFyR8Fko47iTn7rbU0I7Y3n8LiK7TwrdI USoTF9HiSRwIWN3OAzPZs/LZ4E6YZEA/tfa5PknQpFRJ52tT1WHpdzBXOZeXfY4u H43gNNET5TVSWYPQix63hGZ5DaI5xn5UHPHBV70uo1HxzBxrZRx7WwP00kgM1MJF CwSw/akw0Sp0t09g/m12Aw+y86pAU7cU2ZmjXc3h9Nh3nRYpP63Seb9cs8+7vFY9 cuhfNypzk6K+q8P2LxU5Q+XqII9YFTE+085w6XnVYl298YqqpLwkTT//pFilsReN t4hO6Cml4+7ctE6nhQXGaLoFLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFANReXP2 kqWQPlkSrU74EPf+uIFPMB8GA1UdIwQYMBaAFNCMNuJvJPudUU87QKjjepoEtYAl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTAzQy9CNkUwRjRBQTFE OUExMUUyODkyMTI5ODgwOEIwMkNEMi8wSXcyNG04ay01MVJUenRBcU9ONm1nUzFn Q1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBJdzI0bThrLTUxUlR6dEFxT042bWdTMWdDVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTAzQy9CNkUwRjRBQTFEOUExMUUyODkyMTI5ODgwOEIwMkNEMi8wSXcyNG04ay01 MVJUenRBcU9ONm1nUzFnQ1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWa3TQF7f35pvT2OpspwNcv0IUe6HjtvZ6OfHzMbaWTF/thzun7lgd 7Tp97hJHiJcT/wMAQavEDLd5YTQ4yg/lfRLYVNPUsaty36XKf4BqDUvW3zWSglEW pXemiRt68lPODW7GrwFRDHUyzMvYgVS+hAcUrHu77ZETd7IalUzFe5qS5kVhVbJn 49uuRpRkOTUeptpQ29Khrwp+DGzxXA3lCClil4FRT5IFQKAHzrquWxeXTb0OHXVh M0CXwsIhs3LekbYOPjryYXM82UBrkyLyCtu+xd5OdxWtnHckbHpxwabfk9n47NJa LHv2TkKSVl6aYkTqc/ci34R20ntF/SZz -----END CERTIFICATE-----Generated at Sat May 31 17:48:42 2025 by rpki-client