$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft File: iuWu7yqR89-GYD7cVP6ExbtXnBU.mft (raw, json) Hash identifier: tYEVupwev2wZlAJ4kcmNLzBaEt/ydC6s1GF/qk5EF5I= Subject key identifier: C2:7B:70:D2:99:44:3A:7F:BC:8F:85:11:1E:6E:2D:75:F3:9F:EE:26 Authority key identifier: 8A:E5:AE:EF:2A:91:F3:DF:86:60:3E:DC:54:FE:84:C5:BB:57:9C:15 Certificate issuer: /CN=A9167CB5/serialNumber=8AE5AEEF2A91F3DF86603EDC54FE84C5BB579C15 Certificate serial: BA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft Manifest number: B9 Signing time: Sun 01 Jun 2025 05:37:38 +0000 Manifest this update: Sun 01 Jun 2025 05:37:37 +0000 Manifest next update: Sun 08 Jun 2025 05:37:37 +0000 Files and hashes: 1: iuWu7yqR89-GYD7cVP6ExbtXnBU.crl (hash: 9qeDdqQX7Ntsbh+9096Axokm0u95wsJhlkrFWh3zVPQ=) 2: D055D382225711EF975F6747C4F9AE02.roa (hash: vSUF8UhOaMH+V+SNryLP4jUhOyX0+t5vpdmlCLCB3Cc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.crl rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 05:37:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 186 (0xba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CB5, serialNumber=8AE5AEEF2A91F3DF86603EDC54FE84C5BB579C15 Validity Not Before: Jun 1 05:37:37 2025 GMT Not After : Jun 8 05:37:37 2025 GMT Subject: CN=683be721-6c02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c0:24:c0:8c:67:38:03:89:2c:36:64:1d:b8: b1:32:ae:1b:14:cc:98:83:91:3b:eb:40:33:df:b1: da:bf:30:83:ae:c7:26:af:94:9c:36:fd:36:e6:7f: dd:c5:70:08:b5:c7:b1:a8:fe:d8:6b:75:9f:27:45: 63:d4:1a:fe:9d:67:42:a9:c3:c8:0c:f9:a6:29:4c: 98:bf:70:ba:99:80:e7:7a:ae:0c:91:14:a1:8f:02: cf:b5:11:b0:54:f0:a9:fe:32:bb:ef:97:42:16:54: dc:64:97:fb:82:b2:c8:2e:ad:54:75:c8:41:4c:78: 5f:53:17:2b:83:5c:79:be:d4:95:f0:a0:4a:e6:e8: 5a:e1:e4:f2:e3:87:63:d9:83:91:84:5b:f0:79:ab: 48:21:36:78:63:c6:e2:e0:73:29:8c:17:d0:82:4c: 1e:a6:96:2d:a6:99:94:a3:a4:29:f4:22:b1:11:9c: 98:14:a6:83:84:1b:72:0d:30:fa:b9:1c:6b:bc:b1: 59:d7:52:f0:90:55:8b:78:d0:f5:58:99:c0:6c:9e: 76:89:d1:0a:81:4d:09:e3:c9:de:f4:e5:01:e9:21: c8:7e:40:08:e0:16:f0:60:33:ae:79:b3:86:6f:83: df:f6:26:d4:9a:29:db:fe:26:25:20:ed:01:28:c3: 0b:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:7B:70:D2:99:44:3A:7F:BC:8F:85:11:1E:6E:2D:75:F3:9F:EE:26 X509v3 Authority Key Identifier: keyid:8A:E5:AE:EF:2A:91:F3:DF:86:60:3E:DC:54:FE:84:C5:BB:57:9C:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:21:28:7c:a7:42:30:4e:d3:a8:40:f3:29:9f:ad:24:77:ae: ad:ce:d9:0e:5a:6f:ae:db:18:37:85:4d:6c:05:1a:a7:40:50: dd:d9:53:8e:a5:fd:9d:52:3a:f4:e6:09:74:1a:49:d5:1f:6a: 0d:b2:15:f4:82:16:ed:68:91:4c:d0:30:85:0d:ee:e6:f3:38: 78:cf:ec:c2:65:f6:ef:99:e8:a9:d0:57:23:32:23:8e:f9:b1: 57:95:26:05:a7:c5:c4:cf:25:0a:3e:68:ba:98:dd:cf:a2:61: 9f:f7:67:a5:c3:00:84:c1:e2:d5:d4:62:a0:fc:de:36:65:11: 75:fb:fd:d6:6d:64:79:3f:ba:9f:60:a1:9d:64:95:ac:5b:e9: d0:c7:4c:a2:30:b0:88:c5:27:23:27:4f:1d:7c:50:9a:d5:a2: 38:a5:20:85:86:f8:99:58:a1:e3:3a:d9:70:8e:5f:ec:d1:c5: 07:01:19:98:61:88:fa:98:17:44:31:62:a6:c4:02:1f:9e:8c: e6:e8:48:e8:80:1c:94:50:d8:ba:45:bc:8b:cb:a0:26:d0:47: d9:70:73:87:65:15:e8:f2:8b:eb:41:69:95:a7:4c:d7:c0:a4: 50:cd:5e:7c:e8:19:db:3c:02:ad:68:7a:00:ed:94:94:29:07: 46:8b:68:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQjUxMTAvBgNVBAUTKDhBRTVBRUVGMkE5MUYzREY4NjYwM0VEQzU0RkU4NEM1 QkI1NzlDMTUwHhcNMjUwNjAxMDUzNzM3WhcNMjUwNjA4MDUzNzM3WjAYMRYwFAYD VQQDEw02ODNiZTcyMS02YzAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwcAkwIxnOAOJLDZkHbixMq4bFMyYg5E760Az37HavzCDrscmr5ScNv025n/d xXAItcexqP7Ya3WfJ0Vj1Br+nWdCqcPIDPmmKUyYv3C6mYDneq4MkRShjwLPtRGw VPCp/jK775dCFlTcZJf7grLILq1UdchBTHhfUxcrg1x5vtSV8KBK5uha4eTy44dj 2YORhFvweatIITZ4Y8bi4HMpjBfQgkweppYtppmUo6Qp9CKxEZyYFKaDhBtyDTD6 uRxrvLFZ11LwkFWLeND1WJnAbJ52idEKgU0J48ne9OUB6SHIfkAI4BbwYDOuebOG b4Pf9ibUminb/iYlIO0BKMMLNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMJ7cNKZ RDp/vI+FER5uLXXzn+4mMB8GA1UdIwQYMBaAFIrlru8qkfPfhmA+3FT+hMW7V5wV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NCNS9FRkQ0N0Q1NDIy NTYxMUVGQjc1NjFGNDZDNEY5QUUwMi9pdVd1N3lxUjg5LUdZRDdjVlA2RXhidFhu QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2l1V3U3eXFSODktR1lEN2NWUDZFeGJ0WG5CVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NCNS9FRkQ0N0Q1NDIyNTYxMUVGQjc1NjFGNDZDNEY5QUUwMi9pdVd1N3lxUjg5 LUdZRDdjVlA2RXhidFhuQlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmISh8p0IwTtOoQPMpn60kd66tztkOWm+u2xg3hU1sBRqnQFDd2VOO pf2dUjr05gl0GknVH2oNshX0ghbtaJFM0DCFDe7m8zh4z+zCZfbvmeip0FcjMiOO +bFXlSYFp8XEzyUKPmi6mN3PomGf92elwwCEweLV1GKg/N42ZRF1+/3WbWR5P7qf YKGdZJWsW+nQx0yiMLCIxScjJ08dfFCa1aI4pSCFhviZWKHjOtlwjl/s0cUHARmY YYj6mBdEMWKmxAIfnozm6EjogByUUNi6RbyLy6Am0EfZcHOHZRXo8ovrQWmVp0zX wKRQzV586BnbPAKtaHoA7ZSUKQdGi2ie -----END CERTIFICATE-----Generated at Mon Jun 2 21:03:19 2025 by rpki-client