$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft File: iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft (raw, json) Hash identifier: 4hPUUAFtu9s6pVmX5eSLbnVIyK6nnH3J5cbiL3VIe6g= Subject key identifier: 41:26:6B:99:B5:18:79:0B:98:4E:B8:06:BA:E4:F3:26:83:9B:63:D5 Authority key identifier: 88:87:CF:6C:F5:10:2F:0F:B7:13:F4:C4:A1:BD:E3:89:48:1F:1C:44 Certificate issuer: /CN=A9157DA0/serialNumber=8887CF6CF5102F0FB713F4C4A1BDE389481F1C44 Certificate serial: 34A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft Manifest number: 3492 Signing time: Sat 31 May 2025 14:35:24 +0000 Manifest this update: Sat 31 May 2025 14:35:24 +0000 Manifest next update: Sat 07 Jun 2025 14:35:24 +0000 Files and hashes: 1: iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl (hash: 1JB5r7NPVnDaFncbx0YrNZ0GAUNLKBm2l1qeleXxUhc=) 2: E5A47506DFCE11EFBC4CD631C4F9AE02.roa (hash: c4SXQlCG+2MPlFiFY6VkhLPxbsV0onAe5fUK8o5OyyY=) 3: E52708AADFCE11EFBC4CD631C4F9AE02.roa (hash: /pC0o36JZbc/+sMAFn6ZasM1rRw+KC7uxqzujpRX3bY=) 4: E4BA3CE8DFCE11EFBC4CD631C4F9AE02.roa (hash: MbcvEjB6bBsz71diYW6luEzJdUqDQqlK0r5oh/a4AKQ=) 5: E7CA9A12F28F11EF94898048C4F9AE02.roa (hash: 81pcSGnQVVs4NUfFkM30moatmNOjQUrd7XABbRORB0M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 14:35:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13474 (0x34a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DA0, serialNumber=8887CF6CF5102F0FB713F4C4A1BDE389481F1C44 Validity Not Before: May 31 14:35:24 2025 GMT Not After : Jun 7 14:35:24 2025 GMT Subject: CN=683b13ac-b5ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:36:7c:ec:86:8c:fa:7c:9e:2e:61:0d:e1:d0: d3:71:b3:38:2c:71:59:d7:28:74:df:52:a4:2a:bf: ce:2b:57:de:e4:ed:a7:bd:d2:f4:99:7f:9e:9a:53: 82:61:1c:d7:7d:ff:7b:76:43:2e:46:b2:c3:b4:1d: 97:58:ab:f4:3d:9c:16:8f:95:b9:c1:57:81:5d:4c: c8:32:da:c2:62:f8:dc:23:f7:24:92:97:4d:32:ba: ee:21:5f:d8:59:3e:1d:b7:ff:b4:2a:77:69:66:9a: 33:5f:5a:c3:a3:c3:3a:3c:35:38:0c:8e:66:09:9e: 5f:f1:a5:86:27:c3:47:4d:7f:ba:47:94:c7:c1:2a: 27:19:86:ec:78:2f:f8:d1:6b:5b:fe:3a:dd:6a:15: 41:79:3a:16:b4:a7:6b:4b:eb:6e:2e:f1:9f:de:a3: 46:46:6b:01:83:ab:52:e5:a2:d3:f4:50:61:46:17: 24:f2:5c:87:a1:a9:d6:e8:a6:9a:12:23:fd:7f:3e: 26:fe:0a:0a:f6:9d:0c:89:2b:b5:0f:b8:fc:9f:4a: cb:e9:4c:27:1d:15:68:f1:38:70:08:88:8a:af:68: 58:6a:7d:57:4b:c4:10:94:4d:c7:c2:62:dd:ff:7c: 07:e0:a9:49:c4:c1:47:fb:20:27:77:bb:aa:99:e7: c6:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:26:6B:99:B5:18:79:0B:98:4E:B8:06:BA:E4:F3:26:83:9B:63:D5 X509v3 Authority Key Identifier: keyid:88:87:CF:6C:F5:10:2F:0F:B7:13:F4:C4:A1:BD:E3:89:48:1F:1C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:9c:6d:d8:af:b2:11:0b:2d:09:3d:08:be:ae:de:38:4a:16: f0:92:4e:56:8b:30:9f:30:71:a5:b4:78:99:80:04:a6:31:d6: 38:8a:6d:31:73:2f:24:6c:f2:80:3d:e8:ae:2b:f9:fa:2a:e0: 79:20:47:7a:8b:32:d4:f4:12:fc:a4:21:54:26:b6:07:e3:21: 96:ba:83:eb:f8:0d:c0:4c:e5:ba:3e:3d:20:c9:b7:a6:03:1a: df:bf:f7:29:3d:2c:b2:8b:5c:32:7e:d7:37:1f:ae:bc:c1:3d: 09:3f:10:2e:c8:c2:99:64:a1:8c:cc:c4:d7:88:64:32:c9:5d: 3b:f4:58:fd:b5:aa:92:23:bf:23:4c:e5:1e:bf:c8:ce:d0:e8: ec:bf:2a:36:00:1e:76:6e:f4:dc:8f:c3:a4:76:e4:0e:a2:88: 86:ba:c4:f2:81:36:3d:1c:49:9b:1d:f8:d3:2c:2a:69:1c:ec: 87:fc:69:f6:e6:a5:f5:db:db:16:73:8a:19:ee:d1:88:38:20: d1:bd:4c:7e:3c:81:21:fc:00:4a:c6:ca:da:79:96:0c:44:46: 68:0b:69:32:7d:ff:43:ba:3c:65:9a:e4:7b:e8:47:fa:79:39: 4b:61:c2:75:8f:0c:56:6e:37:fc:40:80:79:ac:d5:ad:11:14: 7d:54:a1:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQTAxMTAvBgNVBAUTKDg4ODdDRjZDRjUxMDJGMEZCNzEzRjRDNEExQkRFMzg5 NDgxRjFDNDQwHhcNMjUwNTMxMTQzNTI0WhcNMjUwNjA3MTQzNTI0WjAYMRYwFAYD VQQDEw02ODNiMTNhYy1iNWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmzZ87IaM+nyeLmEN4dDTcbM4LHFZ1yh031KkKr/OK1fe5O2nvdL0mX+emlOC YRzXff97dkMuRrLDtB2XWKv0PZwWj5W5wVeBXUzIMtrCYvjcI/ckkpdNMrruIV/Y WT4dt/+0KndpZpozX1rDo8M6PDU4DI5mCZ5f8aWGJ8NHTX+6R5THwSonGYbseC/4 0Wtb/jrdahVBeToWtKdrS+tuLvGf3qNGRmsBg6tS5aLT9FBhRhck8lyHoanW6Kaa EiP9fz4m/goK9p0MiSu1D7j8n0rL6UwnHRVo8ThwCIiKr2hYan1XS8QQlE3HwmLd /3wH4KlJxMFH+yAnd7uqmefGOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEEma5m1 GHkLmE64Brrk8yaDm2PVMB8GA1UdIwQYMBaAFIiHz2z1EC8PtxP0xKG944lIHxxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBMC8zQTBEOTMxMDFE OEMxMUUyOEVGRjU3RTcwOEIwMkNEMi9pSWZQYlBVUUx3LTNFX1RFb2IzamlVZ2ZI RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lJZlBiUFVRTHctM0VfVEVvYjNqaVVnZkhFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBMC8zQTBEOTMxMDFEOEMxMUUyOEVGRjU3RTcwOEIwMkNEMi9pSWZQYlBVUUx3 LTNFX1RFb2IzamlVZ2ZIRVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7nG3Yr7IRCy0JPQi+rt44Shbwkk5WizCfMHGltHiZgASmMdY4im0x cy8kbPKAPeiuK/n6KuB5IEd6izLU9BL8pCFUJrYH4yGWuoPr+A3ATOW6Pj0gybem Axrfv/cpPSyyi1wyftc3H668wT0JPxAuyMKZZKGMzMTXiGQyyV079Fj9taqSI78j TOUev8jO0Ojsvyo2AB52bvTcj8OkduQOooiGusTygTY9HEmbHfjTLCppHOyH/Gn2 5qX129sWc4oZ7tGIOCDRvUx+PIEh/ABKxsraeZYMREZoC2kyff9DujxlmuR76Ef6 eTlLYcJ1jwxWbjf8QIB5rNWtERR9VKE4 -----END CERTIFICATE-----Generated at Sat May 31 16:56:10 2025 by rpki-client