$ rpki-client -vvf rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft File: IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft (raw, json) Hash identifier: R1vm6BuWEZ8CSNNZWy2Ii+bQF6OnIo47agTrZhea0O4= Subject key identifier: B9:BE:2D:34:93:16:49:23:65:25:27:29:E5:0F:96:61:27:DF:C9:FA Authority key identifier: 22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 Certificate issuer: /CN=A914C475/serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Certificate serial: 06F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft Manifest number: 0BFD Signing time: Fri 30 May 2025 18:51:27 +0000 Manifest this update: Fri 30 May 2025 18:51:27 +0000 Manifest next update: Fri 06 Jun 2025 18:51:27 +0000 Files and hashes: 1: IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl (hash: QBZudjM8ssaRTOEjdMlmL+PfMQ5pLZ6n853n/Loi42k=) 2: 01283BC2532011EBAE6D1F37C4F9AE02.roa (hash: +Gukm6enyIbdbaf1JuwEUsgqXGQfDTqeuMKRTtycATA=) 3: D6F76118231C11EF84144357C4F9AE02.roa (hash: es734osl5liZ5XtweVos6tWec0UeUjh4JQH+2AuNXUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:51:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1783 (0x6f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C475, serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Validity Not Before: May 30 18:51:27 2025 GMT Not After : Jun 6 18:51:27 2025 GMT Subject: CN=6839fe2f-cca2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:d5:6d:a5:1a:72:72:82:c6:e5:6e:3a:ac:a6: 6a:06:eb:71:82:47:c9:3f:87:75:f0:fa:9e:0a:c4: 95:17:58:72:15:eb:3f:c8:97:44:41:10:5b:b1:88: cb:86:c3:48:44:84:a4:c6:a0:8d:94:8b:33:c8:02: 71:5b:fa:e5:36:88:a7:b3:ee:20:8a:62:3f:2f:88: d5:aa:37:2d:a3:44:a7:03:64:9b:3a:16:ab:1c:4f: 6d:f7:04:b3:4c:0c:2c:f7:68:14:db:54:b1:8a:9f: 26:ca:a2:4a:01:28:d2:2e:d1:43:3d:57:44:29:46: cb:d4:ce:e4:04:83:68:c0:5b:37:06:f0:5c:18:0c: e2:d3:ee:eb:ae:c5:79:0d:9a:b9:a3:9c:2a:57:d2: 65:63:f6:30:2a:4a:a1:84:b6:9e:16:df:d3:55:a0: 2b:ae:15:92:6d:66:a9:3a:66:0e:bc:d8:25:da:9c: a3:10:ca:2f:f1:57:37:b5:6f:02:06:4b:2c:dc:e8: df:38:39:7c:6b:db:27:95:da:dc:f1:eb:4b:ed:a8: 3d:31:95:d2:6b:4f:f0:a4:85:b2:16:fe:4b:16:4c: a1:f4:7a:06:20:ed:7c:c8:9a:b0:89:9a:ca:99:55: 63:21:10:e0:31:41:aa:0a:8e:99:fb:72:37:c1:46: 6a:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:BE:2D:34:93:16:49:23:65:25:27:29:E5:0F:96:61:27:DF:C9:FA X509v3 Authority Key Identifier: keyid:22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:53:fe:e8:bb:4c:d1:1b:38:0d:81:cf:b5:eb:26:0c:3e:b0: 1e:8d:94:1c:4e:7f:93:1a:69:28:b4:9a:e0:88:95:2e:84:3c: b4:14:f2:5a:13:67:09:97:b8:5a:80:7c:c0:55:da:f1:fa:91: 6d:fd:93:30:20:5a:65:61:ac:0e:ec:6f:41:78:24:3d:7b:90: 95:61:bc:4f:9f:f1:98:23:30:67:d5:8b:9a:98:b3:1d:41:71: 4c:ad:5e:bf:c4:70:78:73:c2:01:23:09:9e:76:26:53:d9:28: b0:f3:37:a1:c8:47:1a:c2:a4:fd:f8:c3:db:e9:cd:ed:54:da: 20:54:2a:5e:7d:d4:f2:00:d0:95:56:ef:d8:2c:44:58:ee:24: bd:20:2e:93:17:7f:c2:d1:22:75:c0:4a:73:9e:96:10:a3:90: 23:23:f2:98:d9:ce:49:66:ca:93:ad:04:e5:44:77:03:e8:6a: 36:ef:8c:46:5f:e5:be:55:42:a0:92:60:f2:af:e9:03:24:36: bc:10:bf:0a:bb:39:81:0d:2c:06:85:ff:58:2c:bd:e9:34:f0: e2:7b:7b:ed:f4:de:55:f9:7b:86:23:6e:9e:c1:14:10:3a:39: b3:56:4e:72:27:e3:e2:4e:7e:e1:e1:a2:2b:5a:c6:86:77:2e: 84:c6:5f:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0NzUxMTAvBgNVBAUTKDIyODUwN0VGRjgxQUEyOEU0OTFFMzI2RkJEMURDM0Iz QzkwODcyQjgwHhcNMjUwNTMwMTg1MTI3WhcNMjUwNjA2MTg1MTI3WjAYMRYwFAYD VQQDEw02ODM5ZmUyZi1jY2EyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1tVtpRpycoLG5W46rKZqButxgkfJP4d18PqeCsSVF1hyFes/yJdEQRBbsYjL hsNIRISkxqCNlIszyAJxW/rlNoins+4gimI/L4jVqjcto0SnA2SbOharHE9t9wSz TAws92gU21Sxip8myqJKASjSLtFDPVdEKUbL1M7kBINowFs3BvBcGAzi0+7rrsV5 DZq5o5wqV9JlY/YwKkqhhLaeFt/TVaArrhWSbWapOmYOvNgl2pyjEMov8Vc3tW8C Bkss3OjfODl8a9snldrc8etL7ag9MZXSa0/wpIWyFv5LFkyh9HoGIO18yJqwiZrK mVVjIRDgMUGqCo6Z+3I3wUZqkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLm+LTST FkkjZSUnKeUPlmEn38n6MB8GA1UdIwQYMBaAFCKFB+/4GqKOSR4yb70dw7PJCHK4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzQ3NS9FMDIyQTA1ODBF OTExMUVBQjBFODc0NDFDNEY5QUUwMi9Jb1VIN19nYW9vNUpIakp2dlIzRHM4a0lj cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lvVUg3X2dhb281SkhqSnZ2UjNEczhrSWNyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzQ3NS9FMDIyQTA1ODBFOTExMUVBQjBFODc0NDFDNEY5QUUwMi9Jb1VIN19nYW9v NUpIakp2dlIzRHM4a0ljcmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0U/7ou0zRGzgNgc+16yYMPrAejZQcTn+TGmkotJrgiJUuhDy0FPJa E2cJl7hagHzAVdrx+pFt/ZMwIFplYawO7G9BeCQ9e5CVYbxPn/GYIzBn1YuamLMd QXFMrV6/xHB4c8IBIwmediZT2Siw8zehyEcawqT9+MPb6c3tVNogVCpefdTyANCV Vu/YLERY7iS9IC6TF3/C0SJ1wEpznpYQo5AjI/KY2c5JZsqTrQTlRHcD6Go274xG X+W+VUKgkmDyr+kDJDa8EL8KuzmBDSwGhf9YLL3pNPDie3vt9N5V+XuGI26ewRQQ OjmzVk5yJ+PiTn7h4aIrWsaGdy6Exl/j -----END CERTIFICATE-----Generated at Sat May 31 17:23:40 2025 by rpki-client