$ rpki-client -vvf rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/ISYbiXSYk8OzGEG5b-P7YyMDLxg.mft File: ISYbiXSYk8OzGEG5b-P7YyMDLxg.mft (raw, json) Hash identifier: zpPyWvPIuLwMVBMKsEvwAOKrOpXkDIh2ufHAFiBJODY= Subject key identifier: 9E:EE:8B:85:7F:DF:02:EB:17:29:CD:19:84:32:EC:56:B4:83:0D:EA Authority key identifier: 21:26:1B:89:74:98:93:C3:B3:18:41:B9:6F:E3:FB:63:23:03:2F:18 Certificate issuer: /CN=A913F2E2/serialNumber=21261B89749893C3B31841B96FE3FB6323032F18 Certificate serial: A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ISYbiXSYk8OzGEG5b-P7YyMDLxg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/ISYbiXSYk8OzGEG5b-P7YyMDLxg.mft Manifest number: A7 Signing time: Sat 31 May 2025 05:45:47 +0000 Manifest this update: Sat 31 May 2025 05:45:47 +0000 Manifest next update: Sat 07 Jun 2025 05:45:47 +0000 Files and hashes: 1: ISYbiXSYk8OzGEG5b-P7YyMDLxg.crl (hash: smy+4fkHGqBatU3BLh1uLUNC/gd8eu3qJAFhz+DK9ko=) 2: A8051CC4508011EF81053074C4F9AE02.roa (hash: cDS5FdTBOYoVAs3WZmJDzExZ2RFGAHrfOHhqQyrBupo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/ISYbiXSYk8OzGEG5b-P7YyMDLxg.crl rsync://rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/ISYbiXSYk8OzGEG5b-P7YyMDLxg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ISYbiXSYk8OzGEG5b-P7YyMDLxg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:45:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 169 (0xa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F2E2, serialNumber=21261B89749893C3B31841B96FE3FB6323032F18 Validity Not Before: May 31 05:45:47 2025 GMT Not After : Jun 7 05:45:47 2025 GMT Subject: CN=683a978b-a7f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:55:1e:39:36:2b:34:8d:39:d0:da:ab:28:0c: f7:be:c7:9e:45:89:84:d2:18:a0:08:df:ba:ce:53: 84:11:6d:9f:89:eb:58:6a:11:81:4c:25:20:96:6c: db:e9:18:76:08:1b:b2:51:d4:ca:1a:8c:5d:58:d8: e4:9d:c9:e7:6c:c1:1d:83:57:77:71:c7:1e:8a:1f: 36:cb:2f:23:45:69:cf:92:00:77:8b:6d:dc:f7:17: 84:0b:26:ab:cf:16:7f:b7:fd:90:5e:02:12:0a:3b: 6f:50:ec:ed:2a:ad:4b:af:45:a2:33:fe:34:16:3b: ea:65:4d:41:57:c5:00:26:c8:9f:68:e1:32:5d:fa: 4c:6c:33:cd:7a:73:f7:01:2c:e5:6c:04:70:e3:01: 8c:41:7d:c2:07:46:63:32:11:74:ae:f0:69:75:a1: 07:dd:73:3c:d5:0c:83:d9:d9:c9:be:5a:f0:cf:e9: 56:6b:44:23:38:22:21:0e:aa:21:fb:13:79:90:fd: 01:58:b7:59:43:09:77:e1:1a:75:51:92:bf:89:d5: 68:db:09:d9:70:cb:fa:db:79:bd:2b:3c:26:09:66: 77:68:92:9d:2a:9f:99:e0:62:bb:4f:4c:7c:79:7e: 23:86:49:59:26:cf:1f:b4:fd:82:c2:10:b9:e4:7c: 35:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:EE:8B:85:7F:DF:02:EB:17:29:CD:19:84:32:EC:56:B4:83:0D:EA X509v3 Authority Key Identifier: keyid:21:26:1B:89:74:98:93:C3:B3:18:41:B9:6F:E3:FB:63:23:03:2F:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/ISYbiXSYk8OzGEG5b-P7YyMDLxg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ISYbiXSYk8OzGEG5b-P7YyMDLxg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/ISYbiXSYk8OzGEG5b-P7YyMDLxg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:04:76:12:36:ee:60:96:b7:22:a8:20:d2:d1:65:6a:9e:cf: d3:65:32:e3:0e:2f:1a:c9:1c:ce:c9:88:59:ff:73:b3:c4:1a: ab:d3:92:23:be:6e:2d:05:50:89:1a:67:2c:3e:3d:9d:7b:c1: 84:64:a0:fb:7b:3e:82:de:40:8f:bc:1b:31:ce:9b:f0:3f:07: 05:5d:21:95:54:8e:cb:0c:b8:a0:3e:c8:5d:56:27:70:dc:59: 08:7a:9d:8f:b7:da:6b:41:db:5a:52:66:3e:a8:b7:61:27:61: 18:b2:99:be:7e:92:0a:6b:9c:40:ab:fd:30:c1:91:33:ed:b7: d3:ce:a7:d8:df:db:27:07:86:f5:17:20:04:fd:ed:de:9e:dd: 86:22:de:93:d2:1c:07:6f:98:ac:ff:f1:a0:1a:2d:b2:bd:4f: 36:a5:f1:81:0d:26:be:9b:6d:22:fb:13:f6:d1:3b:15:4e:10: 89:87:81:65:ab:7e:4d:a5:ea:fb:f1:a9:33:a1:cd:2b:00:7d: 04:70:1a:bb:d7:20:d3:c2:64:2e:af:a5:cd:15:0a:7f:e0:72: 18:66:a4:0b:62:14:9b:69:1c:10:8b:a5:f9:70:1b:1c:1b:90: ed:60:a7:ae:a4:1d:36:67:fe:12:3b:41:b9:f2:1a:de:a9:44: bd:53:1e:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0YyRTIxMTAvBgNVBAUTKDIxMjYxQjg5NzQ5ODkzQzNCMzE4NDFCOTZGRTNGQjYz MjMwMzJGMTgwHhcNMjUwNTMxMDU0NTQ3WhcNMjUwNjA3MDU0NTQ3WjAYMRYwFAYD VQQDEw02ODNhOTc4Yi1hN2Y2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt1UeOTYrNI050NqrKAz3vseeRYmE0higCN+6zlOEEW2fietYahGBTCUglmzb 6Rh2CBuyUdTKGoxdWNjkncnnbMEdg1d3ccceih82yy8jRWnPkgB3i23c9xeECyar zxZ/t/2QXgISCjtvUOztKq1Lr0WiM/40FjvqZU1BV8UAJsifaOEyXfpMbDPNenP3 ASzlbARw4wGMQX3CB0ZjMhF0rvBpdaEH3XM81QyD2dnJvlrwz+lWa0QjOCIhDqoh +xN5kP0BWLdZQwl34Rp1UZK/idVo2wnZcMv623m9KzwmCWZ3aJKdKp+Z4GK7T0x8 eX4jhklZJs8ftP2CwhC55Hw1wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ7ui4V/ 3wLrFynNGYQy7Fa0gw3qMB8GA1UdIwQYMBaAFCEmG4l0mJPDsxhBuW/j+2MjAy8Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjJFMi9DNUI2QjkzNjQ0 MDQxMUVGQjlBNjJDMERDNEY5QUUwMi9JU1liaVhTWWs4T3pHRUc1Yi1QN1l5TURM eGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lTWWJpWFNZazhPekdFRzViLVA3WXlNREx4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjJFMi9DNUI2QjkzNjQ0MDQxMUVGQjlBNjJDMERDNEY5QUUwMi9JU1liaVhTWWs4 T3pHRUc1Yi1QN1l5TURMeGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFBHYSNu5glrciqCDS0WVqns/TZTLjDi8ayRzOyYhZ/3OzxBqr05Ij vm4tBVCJGmcsPj2de8GEZKD7ez6C3kCPvBsxzpvwPwcFXSGVVI7LDLigPshdVidw 3FkIep2Pt9prQdtaUmY+qLdhJ2EYspm+fpIKa5xAq/0wwZEz7bfTzqfY39snB4b1 FyAE/e3ent2GIt6T0hwHb5is//GgGi2yvU82pfGBDSa+m20i+xP20TsVThCJh4Fl q35Nper78akzoc0rAH0EcBq71yDTwmQur6XNFQp/4HIYZqQLYhSbaRwQi6X5cBsc G5DtYKeupB02Z/4SO0G58hreqUS9Ux6w -----END CERTIFICATE-----Generated at Sat May 31 16:33:10 2025 by rpki-client