$ rpki-client -vvf rpki.apnic.net/member_repository/A914022F/7C644426776411EBB1C4F545C4F9AE02/IUsvz0K7K5iQWEXXM9lF2VwtyhI.mft File: IUsvz0K7K5iQWEXXM9lF2VwtyhI.mft (raw, json) Hash identifier: Xyi+aq9fRBiW0yhp14jP4aEoAgJ3QRkl0Knzh71SOno= Subject key identifier: A5:DC:2E:82:9D:D2:96:B5:75:F4:02:58:5A:A4:CD:8F:93:F1:45:39 Authority key identifier: 21:4B:2F:CF:42:BB:2B:98:90:58:45:D7:33:D9:45:D9:5C:2D:CA:12 Certificate issuer: /CN=A914022F/serialNumber=214B2FCF42BB2B98905845D733D945D95C2DCA12 Certificate serial: 0690 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUsvz0K7K5iQWEXXM9lF2VwtyhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914022F/7C644426776411EBB1C4F545C4F9AE02/IUsvz0K7K5iQWEXXM9lF2VwtyhI.mft Manifest number: 0686 Signing time: Fri 30 May 2025 22:30:06 +0000 Manifest this update: Fri 30 May 2025 22:30:06 +0000 Manifest next update: Fri 06 Jun 2025 22:30:06 +0000 Files and hashes: 1: IUsvz0K7K5iQWEXXM9lF2VwtyhI.crl (hash: 2YHX1rw37GTNO0zyZx4ubJVT/00rHKxSoq9zrORVOOQ=) 2: 24F33D7877AF11EB8E972C66C4F9AE02.roa (hash: 08F6ONsLtIONFt4iRDBy4HnEz2B6jrKqNj5tRZhjdMY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914022F/7C644426776411EBB1C4F545C4F9AE02/IUsvz0K7K5iQWEXXM9lF2VwtyhI.crl rsync://rpki.apnic.net/member_repository/A914022F/7C644426776411EBB1C4F545C4F9AE02/IUsvz0K7K5iQWEXXM9lF2VwtyhI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUsvz0K7K5iQWEXXM9lF2VwtyhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:30:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1680 (0x690) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914022F, serialNumber=214B2FCF42BB2B98905845D733D945D95C2DCA12 Validity Not Before: May 30 22:30:06 2025 GMT Not After : Jun 6 22:30:06 2025 GMT Subject: CN=683a316e-2703 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:41:b2:11:bf:c1:57:8c:ea:34:70:8c:20:d2: 35:1e:a6:5d:e5:f0:71:f2:e4:9a:df:a4:fc:39:e9: 00:af:e2:0d:83:96:dc:ba:ac:70:7d:09:4a:47:e0: 5b:e4:1b:fc:d3:85:26:dc:dc:a4:d4:77:da:e4:ec: 47:03:28:a6:34:43:04:b7:98:6d:2d:63:bf:8d:32: e3:81:40:6d:ae:28:2b:6e:ab:7b:23:d9:ae:68:03: 3c:03:d4:6a:d5:54:f6:1b:87:8f:88:d6:29:09:da: 03:3e:ec:55:87:57:65:53:3f:39:aa:5b:18:d8:f5: 24:58:65:36:5b:8e:10:04:8f:fc:22:71:94:8f:eb: f0:6f:da:44:c6:9b:69:3f:64:52:95:49:ce:72:76: ce:d6:e5:4f:e7:39:ea:1f:4e:9d:ce:36:ac:56:ee: b0:d0:6d:09:8b:d4:f9:dc:40:8d:ab:70:0f:24:ce: 11:8d:54:dd:0d:f0:5e:47:94:b2:75:7f:58:6e:6e: 51:a2:2f:76:22:84:fb:a9:53:9b:0d:33:73:76:6f: 23:2d:c5:1d:13:63:95:7e:1d:1b:e9:cd:0e:43:a8: 74:e2:8b:db:5c:d9:ab:fa:db:1d:5c:78:c8:fa:d0: ae:69:7d:c4:25:61:45:38:e7:ba:16:56:da:e5:de: 8c:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:DC:2E:82:9D:D2:96:B5:75:F4:02:58:5A:A4:CD:8F:93:F1:45:39 X509v3 Authority Key Identifier: keyid:21:4B:2F:CF:42:BB:2B:98:90:58:45:D7:33:D9:45:D9:5C:2D:CA:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914022F/7C644426776411EBB1C4F545C4F9AE02/IUsvz0K7K5iQWEXXM9lF2VwtyhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUsvz0K7K5iQWEXXM9lF2VwtyhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914022F/7C644426776411EBB1C4F545C4F9AE02/IUsvz0K7K5iQWEXXM9lF2VwtyhI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:b0:ae:85:91:4e:b0:f8:b3:33:c3:90:10:1f:24:f8:79:84: 35:95:65:5f:eb:79:61:af:fd:56:be:50:ec:19:d4:67:29:f8: 90:b4:84:69:de:d4:61:e5:b0:d0:20:77:cf:79:3f:81:54:55: b3:23:0a:f4:ba:2b:40:a8:7b:e4:d6:36:5f:07:22:ba:e6:94: 00:e4:2b:4f:b3:41:1e:6e:b6:ea:08:ba:07:6c:3a:24:cf:d5: 18:e5:cb:d8:75:bf:df:76:30:ff:04:11:95:0c:eb:30:1a:a3: c5:ae:fb:83:6b:30:e4:f7:b4:89:b0:16:99:4c:bd:4f:04:20: 1c:bf:2b:e0:1e:0d:7c:1d:f1:cc:6d:87:c5:db:b7:01:a2:2a: cb:c8:85:95:5c:2d:07:0c:9d:3d:2a:a4:aa:5c:22:cb:5b:b6: 4b:b3:d8:fb:33:9d:33:3e:00:e8:97:53:4e:76:20:75:9c:c2: fb:60:02:cb:d2:13:03:22:22:d7:a5:65:e3:c6:ca:61:d8:56: d0:24:5b:fd:fd:01:47:2f:c4:10:82:a3:5f:50:50:c3:23:af: 22:f5:d7:f0:82:d7:b9:b9:54:55:00:18:f2:d5:3d:44:89:db: 0c:22:10:16:ad:14:6e:88:8b:28:59:9c:75:4b:af:fa:fa:9b: f4:a0:92:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDAyMkYxMTAvBgNVBAUTKDIxNEIyRkNGNDJCQjJCOTg5MDU4NDVENzMzRDk0NUQ5 NUMyRENBMTIwHhcNMjUwNTMwMjIzMDA2WhcNMjUwNjA2MjIzMDA2WjAYMRYwFAYD VQQDEw02ODNhMzE2ZS0yNzAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyEGyEb/BV4zqNHCMINI1HqZd5fBx8uSa36T8OekAr+INg5bcuqxwfQlKR+Bb 5Bv804Um3Nyk1Hfa5OxHAyimNEMEt5htLWO/jTLjgUBtrigrbqt7I9muaAM8A9Rq 1VT2G4ePiNYpCdoDPuxVh1dlUz85qlsY2PUkWGU2W44QBI/8InGUj+vwb9pExptp P2RSlUnOcnbO1uVP5znqH06dzjasVu6w0G0Ji9T53ECNq3APJM4RjVTdDfBeR5Sy dX9Ybm5Roi92IoT7qVObDTNzdm8jLcUdE2OVfh0b6c0OQ6h04ovbXNmr+tsdXHjI +tCuaX3EJWFFOOe6Flba5d6M5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKXcLoKd 0pa1dfQCWFqkzY+T8UU5MB8GA1UdIwQYMBaAFCFLL89CuyuYkFhF1zPZRdlcLcoS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDIyRi83QzY0NDQyNjc3 NjQxMUVCQjFDNEY1NDVDNEY5QUUwMi9JVXN2ejBLN0s1aVFXRVhYTTlsRjJWd3R5 aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lVc3Z6MEs3SzVpUVdFWFhNOWxGMlZ3dHloSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDIyRi83QzY0NDQyNjc3NjQxMUVCQjFDNEY1NDVDNEY5QUUwMi9JVXN2ejBLN0s1 aVFXRVhYTTlsRjJWd3R5aEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7sK6FkU6w+LMzw5AQHyT4eYQ1lWVf63lhr/1WvlDsGdRnKfiQtIRp 3tRh5bDQIHfPeT+BVFWzIwr0uitAqHvk1jZfByK65pQA5CtPs0EebrbqCLoHbDok z9UY5cvYdb/fdjD/BBGVDOswGqPFrvuDazDk97SJsBaZTL1PBCAcvyvgHg18HfHM bYfF27cBoirLyIWVXC0HDJ09KqSqXCLLW7ZLs9j7M50zPgDol1NOdiB1nML7YALL 0hMDIiLXpWXjxsph2FbQJFv9/QFHL8QQgqNfUFDDI68i9dfwgte5uVRVABjy1T1E idsMIhAWrRRuiIsoWZx1S6/6+pv0oJKW -----END CERTIFICATE-----Generated at Sat May 31 17:34:20 2025 by rpki-client