$ rpki-client -vvf rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft File: -ibzSoM5sd823JwRkSBXw6WD9nM.mft (raw, json) Hash identifier: UDASIORSvi3gr7be1du1pg8GicUVk1PXiQaYDLGfFsE= Subject key identifier: B4:D7:D6:CD:4E:C7:B1:82:68:1C:50:4F:64:52:7D:34:54:75:A5:AF Authority key identifier: FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 Certificate issuer: /CN=A914711C/serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Certificate serial: 034B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft Manifest number: 0347 Signing time: Sat 31 May 2025 01:13:37 +0000 Manifest this update: Sat 31 May 2025 01:13:37 +0000 Manifest next update: Sat 07 Jun 2025 01:13:37 +0000 Files and hashes: 1: -ibzSoM5sd823JwRkSBXw6WD9nM.crl (hash: Ma+8DaHzApAXm+BmHDURzsLYqejZeuzv+Rsxm3b+vSk=) 2: 1AF42E76BBAC11EC8A07FE72C4F9AE02.roa (hash: tS4gG0LjmBm3ltjMZ5kv+K9nl4H0wVgEe2zGi8+aIMI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:13:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 843 (0x34b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914711C, serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Validity Not Before: May 31 01:13:37 2025 GMT Not After : Jun 7 01:13:37 2025 GMT Subject: CN=683a57c1-a212 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:74:fb:67:e6:e3:4f:60:0d:5c:90:c6:69:13: 41:0a:18:de:f3:74:52:b5:c9:c9:39:09:1e:87:02: 02:0d:be:61:07:aa:46:72:aa:cc:ff:b8:41:9d:52: fa:7c:6f:be:0c:a9:d9:53:49:23:99:90:23:c6:7a: 77:93:b2:64:7d:1c:19:1c:4c:02:19:26:42:7b:a4: 81:ac:d3:42:e4:f4:98:50:96:6c:88:cb:01:07:8e: 71:c0:e6:36:02:48:70:e0:f6:a0:e7:63:92:4f:ed: 01:5a:30:38:16:02:4c:da:df:29:c9:4a:20:cb:66: e5:8a:f7:9c:94:24:2b:c6:38:11:0f:b2:c4:ca:6d: d1:3e:79:ee:ae:9c:71:d4:87:f8:25:38:62:58:2b: 85:e8:65:78:0b:dc:9b:0d:09:0e:85:d4:ac:8c:80: 08:19:5e:ca:6f:9f:2c:49:7b:94:e5:8f:b2:20:35: a8:ed:0f:66:28:b4:26:19:dc:8f:c9:b2:10:be:3c: e4:68:28:bf:26:d0:89:b3:9d:28:51:8b:72:85:d2: c2:52:32:07:d1:71:40:f1:ab:68:85:2b:7a:52:a5: db:7c:4a:d3:8e:df:49:59:8e:2c:5e:d6:1f:37:ae: 71:3c:78:9d:56:e6:50:f1:b1:74:69:f3:6a:fa:dc: e3:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:D7:D6:CD:4E:C7:B1:82:68:1C:50:4F:64:52:7D:34:54:75:A5:AF X509v3 Authority Key Identifier: keyid:FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:14:7c:d8:64:54:70:9f:23:b3:63:b4:5f:70:8d:ed:7b:d5: df:82:a3:dc:a7:bb:a4:dc:6f:c0:65:7d:c1:4e:a7:3a:7e:de: 4e:a6:e0:f5:de:0a:c8:d3:e0:db:d5:ae:03:c8:20:cb:0e:86: 50:07:ce:99:ea:47:80:ad:ff:76:74:fc:bc:a8:5a:6f:91:f6: 39:77:f1:cb:f8:2e:90:15:6f:e4:87:0c:a1:dd:9b:86:86:8a: d5:4a:1c:bc:75:22:9c:8b:9d:f6:24:b3:e3:0b:f2:64:9b:0f: 59:98:59:c4:f9:80:67:7d:c5:48:25:85:b8:6a:3d:51:d0:dc: 40:82:d5:2a:88:41:f0:d7:62:7b:00:ae:55:a4:23:2b:ea:54: d8:3d:1b:55:f4:29:16:b1:76:8a:d3:0f:56:7d:ad:df:35:2a: 73:a1:d6:ed:56:99:97:c7:36:9f:40:ea:46:c1:bd:ff:23:63: 1d:2a:e0:c8:73:cd:d6:27:6c:2d:ea:98:5f:91:55:02:7b:46: 51:71:6d:a6:ed:92:f4:a8:4a:81:a2:8d:13:23:f2:9e:d9:69: 12:e3:a9:a5:05:60:7b:fa:96:75:64:d4:95:c0:43:b2:72:32: 70:06:03:34:cb:a9:7b:a1:6c:b7:98:ed:2b:60:d6:e4:22:77: 5d:0b:88:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcxMUMxMTAvBgNVBAUTKEZBMjZGMzRBODMzOUIxREYzNkRDOUMxMTkxMjA1N0Mz QTU4M0Y2NzMwHhcNMjUwNTMxMDExMzM3WhcNMjUwNjA3MDExMzM3WjAYMRYwFAYD VQQDEw02ODNhNTdjMS1hMjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA13T7Z+bjT2ANXJDGaRNBChje83RStcnJOQkehwICDb5hB6pGcqrM/7hBnVL6 fG++DKnZU0kjmZAjxnp3k7JkfRwZHEwCGSZCe6SBrNNC5PSYUJZsiMsBB45xwOY2 Akhw4Pag52OST+0BWjA4FgJM2t8pyUogy2bliveclCQrxjgRD7LEym3RPnnurpxx 1If4JThiWCuF6GV4C9ybDQkOhdSsjIAIGV7Kb58sSXuU5Y+yIDWo7Q9mKLQmGdyP ybIQvjzkaCi/JtCJs50oUYtyhdLCUjIH0XFA8atohSt6UqXbfErTjt9JWY4sXtYf N65xPHidVuZQ8bF0afNq+tzjhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLTX1s1O x7GCaBxQT2RSfTRUdaWvMB8GA1UdIwQYMBaAFPom80qDObHfNtycEZEgV8Olg/Zz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzExQy9BOEFDNzI1MEJC QTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNkODIzSndSa1NCWHc2V0Q5 bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1pYnpTb001c2Q4MjNKd1JrU0JYdzZXRDluTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzExQy9BOEFDNzI1MEJCQTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNk ODIzSndSa1NCWHc2V0Q5bk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdFHzYZFRwnyOzY7RfcI3te9XfgqPcp7uk3G/AZX3BTqc6ft5OpuD1 3grI0+Db1a4DyCDLDoZQB86Z6keArf92dPy8qFpvkfY5d/HL+C6QFW/khwyh3ZuG horVShy8dSKci532JLPjC/Jkmw9ZmFnE+YBnfcVIJYW4aj1R0NxAgtUqiEHw12J7 AK5VpCMr6lTYPRtV9CkWsXaK0w9Wfa3fNSpzodbtVpmXxzafQOpGwb3/I2MdKuDI c83WJ2wt6phfkVUCe0ZRcW2m7ZL0qEqBoo0TI/Ke2WkS46mlBWB7+pZ1ZNSVwEOy cjJwBgM0y6l7oWy3mO0rYNbkInddC4iD -----END CERTIFICATE-----Generated at Sat May 31 16:38:52 2025 by rpki-client