$ rpki-client -vvf rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft File: Ad9hVyR3ojDnn48oz91tKDd_Iis.mft (raw, json) Hash identifier: JFSg31kmYsWjvJ7ejYvFj18J9wARg2UIX1U7kHK6p8k= Subject key identifier: 16:24:00:18:28:E7:1B:BD:F7:41:C6:F6:8A:69:B1:05:81:48:56:7F Authority key identifier: 01:DF:61:57:24:77:A2:30:E7:9F:8F:28:CF:DD:6D:28:37:7F:22:2B Certificate issuer: /CN=A914E5AE/serialNumber=01DF61572477A230E79F8F28CFDD6D28377F222B Certificate serial: 051C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ad9hVyR3ojDnn48oz91tKDd_Iis.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft Manifest number: 0515 Signing time: Wed 04 Jun 2025 23:28:48 +0000 Manifest this update: Wed 04 Jun 2025 23:28:47 +0000 Manifest next update: Wed 11 Jun 2025 23:28:47 +0000 Files and hashes: 1: Ad9hVyR3ojDnn48oz91tKDd_Iis.crl (hash: nDQvW2jwr4OP+WxDfb1/9RohXz2Ym30UGlz/eaBUsEo=) 2: C847114C07D411ECBF875117C4F9AE02.roa (hash: MMhekj2SFZKQhejre+/ZuSr0R5tKH64F+RFediiHsYQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.crl rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ad9hVyR3ojDnn48oz91tKDd_Iis.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 23:28:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1308 (0x51c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E5AE, serialNumber=01DF61572477A230E79F8F28CFDD6D28377F222B Validity Not Before: Jun 4 23:28:47 2025 GMT Not After : Jun 11 23:28:47 2025 GMT Subject: CN=6840d6af-716e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:a6:56:01:14:71:6c:eb:35:0f:7d:9c:76:7a: 82:a9:86:bf:20:20:8b:a7:b4:17:ab:80:77:a1:44: ac:4e:ab:7a:11:43:b4:a3:b7:66:1f:78:9d:d4:a4: 92:ef:8a:9f:32:5d:ab:cf:81:a7:74:dc:34:7a:b2: f0:9b:58:56:00:2f:05:bc:7d:17:cb:db:c4:b4:74: 4c:fa:2c:8c:20:12:54:14:14:37:88:e0:ae:a1:e5: 5f:88:7b:97:f8:60:b6:95:78:a9:f9:4c:4f:27:38: b9:d2:16:83:6c:11:8d:0c:e9:8f:07:f9:34:8e:9c: 2a:77:22:41:78:bf:fe:f4:22:d4:ce:c7:63:f1:84: 12:91:c3:ed:83:c9:65:a3:c7:d5:49:ce:ea:0b:b1: d2:02:b0:9d:11:e0:79:35:0d:e2:3f:fa:2a:24:f1: d7:f6:92:f2:53:b6:3d:08:bb:62:f0:e4:a0:7d:92: ce:a3:95:5e:45:42:5c:0d:b9:b1:5f:c5:aa:db:37: f2:10:2e:ef:02:54:92:ab:f5:dc:c8:7d:d9:e1:2b: a4:14:1a:6d:16:66:45:c6:a6:3a:da:a3:b5:21:32: 67:69:7e:85:af:c8:2f:14:e8:01:2e:b5:14:ed:93: f8:7e:d3:4a:34:80:ca:ec:ad:a4:ab:a2:5a:68:0e: 78:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:24:00:18:28:E7:1B:BD:F7:41:C6:F6:8A:69:B1:05:81:48:56:7F X509v3 Authority Key Identifier: keyid:01:DF:61:57:24:77:A2:30:E7:9F:8F:28:CF:DD:6D:28:37:7F:22:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ad9hVyR3ojDnn48oz91tKDd_Iis.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:15:f4:51:b0:2c:3e:d3:42:9a:37:1c:79:56:13:57:8f:4a: 53:66:ec:27:7b:63:55:2a:72:54:30:ac:46:1e:aa:8e:10:24: 28:c4:75:5c:75:75:68:2d:55:74:8c:07:99:e6:c1:3c:81:61: 21:1e:53:57:7f:18:0a:36:27:51:31:e8:68:03:7f:f9:3b:78: 2f:da:2e:08:51:5a:4e:ae:03:f2:dc:08:fd:e2:a1:59:97:58: 48:18:8e:bf:63:e4:ad:a1:be:5e:fe:d0:05:ff:b8:74:e0:45: 0e:99:27:61:e0:67:19:22:29:e1:9e:d1:de:36:9b:9c:a0:42: 67:ef:54:23:46:8e:e7:89:19:b5:75:cc:65:91:7b:ed:c1:12: 86:1d:23:86:17:ea:29:5f:c4:94:5e:02:a7:7e:ba:80:bc:bc: b7:e7:ba:2a:75:fb:19:d6:ce:01:22:7f:89:ce:b6:92:57:f5: 9f:80:fd:65:d4:49:f9:5f:aa:b0:30:f8:6a:60:f1:4c:bf:6a: c1:c4:af:2c:6c:6f:90:b6:1d:32:c5:14:61:a7:55:53:4c:c4: 8d:04:7f:5b:3b:58:73:60:05:25:a4:53:6c:7b:b6:c6:21:bc: b4:59:3a:03:45:00:bc:81:f7:d0:92:69:d7:4f:32:73:69:f3: c3:f5:e0:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU1QUUxMTAvBgNVBAUTKDAxREY2MTU3MjQ3N0EyMzBFNzlGOEYyOENGREQ2RDI4 Mzc3RjIyMkIwHhcNMjUwNjA0MjMyODQ3WhcNMjUwNjExMjMyODQ3WjAYMRYwFAYD VQQDEw02ODQwZDZhZi03MTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwKZWARRxbOs1D32cdnqCqYa/ICCLp7QXq4B3oUSsTqt6EUO0o7dmH3id1KSS 74qfMl2rz4GndNw0erLwm1hWAC8FvH0Xy9vEtHRM+iyMIBJUFBQ3iOCuoeVfiHuX +GC2lXip+UxPJzi50haDbBGNDOmPB/k0jpwqdyJBeL/+9CLUzsdj8YQSkcPtg8ll o8fVSc7qC7HSArCdEeB5NQ3iP/oqJPHX9pLyU7Y9CLti8OSgfZLOo5VeRUJcDbmx X8Wq2zfyEC7vAlSSq/XcyH3Z4SukFBptFmZFxqY62qO1ITJnaX6Fr8gvFOgBLrUU 7ZP4ftNKNIDK7K2kq6JaaA548QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBYkABgo 5xu990HG9oppsQWBSFZ/MB8GA1UdIwQYMBaAFAHfYVckd6Iw55+PKM/dbSg3fyIr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTVBRS80NkQ0MjJGMDA3 RDIxMUVDQUE4MkI2MTFDNEY5QUUwMi9BZDloVnlSM29qRG5uNDhvejkxdEtEZF9J aXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FkOWhWeVIzb2pEbm40OG96OTF0S0RkX0lpcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTVBRS80NkQ0MjJGMDA3RDIxMUVDQUE4MkI2MTFDNEY5QUUwMi9BZDloVnlSM29q RG5uNDhvejkxdEtEZF9JaXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4FfRRsCw+00KaNxx5VhNXj0pTZuwne2NVKnJUMKxGHqqOECQoxHVc dXVoLVV0jAeZ5sE8gWEhHlNXfxgKNidRMehoA3/5O3gv2i4IUVpOrgPy3Aj94qFZ l1hIGI6/Y+Stob5e/tAF/7h04EUOmSdh4GcZIinhntHeNpucoEJn71QjRo7niRm1 dcxlkXvtwRKGHSOGF+opX8SUXgKnfrqAvLy357oqdfsZ1s4BIn+JzraSV/WfgP1l 1En5X6qwMPhqYPFMv2rBxK8sbG+Qth0yxRRhp1VTTMSNBH9bO1hzYAUlpFNse7bG Iby0WToDRQC8gffQkmnXTzJzafPD9eAX -----END CERTIFICATE-----Generated at Thu Jun 5 19:47:06 2025 by rpki-client