$ rpki-client -vvf rpki.apnic.net/member_repository/A9169382/A5FB81581CD911EC92AD571CC4F9AE02/IRcCLfYdpCG55OG7hIPYXkmCv5E.mft File: IRcCLfYdpCG55OG7hIPYXkmCv5E.mft (raw, json) Hash identifier: EVuUuYW6LCGLGVHJZ+0y5YPWy0JjrPLRrz3M1ayPLa4= Subject key identifier: B5:E2:8E:78:C5:C8:5F:39:9D:10:7B:BF:95:77:15:6B:57:B3:7E:6D Authority key identifier: 21:17:02:2D:F6:1D:A4:21:B9:E4:E1:BB:84:83:D8:5E:49:82:BF:91 Certificate issuer: /CN=A9169382/serialNumber=2117022DF61DA421B9E4E1BB8483D85E4982BF91 Certificate serial: 04E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IRcCLfYdpCG55OG7hIPYXkmCv5E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169382/A5FB81581CD911EC92AD571CC4F9AE02/IRcCLfYdpCG55OG7hIPYXkmCv5E.mft Manifest number: 04DD Signing time: Fri 30 May 2025 23:58:11 +0000 Manifest this update: Fri 30 May 2025 23:58:10 +0000 Manifest next update: Fri 06 Jun 2025 23:58:10 +0000 Files and hashes: 1: IRcCLfYdpCG55OG7hIPYXkmCv5E.crl (hash: W/4cJrREc0o+KVAEz39+1RtEpUfpGNHLO+79TgQ9Q5M=) 2: E41BF8841CDC11ECBA794120C4F9AE02.roa (hash: U/+wPqrKrJC011IcABNzpIvFcS1/P1nom9ZdkuvcUss=) 3: B5D70D9ACE3311EFA7B9B640C4F9AE02.roa (hash: eFUfIoic8XWxnlHcYYzBMeRdJXcAiXS5ahGJK7+zPi4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169382/A5FB81581CD911EC92AD571CC4F9AE02/IRcCLfYdpCG55OG7hIPYXkmCv5E.crl rsync://rpki.apnic.net/member_repository/A9169382/A5FB81581CD911EC92AD571CC4F9AE02/IRcCLfYdpCG55OG7hIPYXkmCv5E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IRcCLfYdpCG55OG7hIPYXkmCv5E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:58:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1251 (0x4e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169382, serialNumber=2117022DF61DA421B9E4E1BB8483D85E4982BF91 Validity Not Before: May 30 23:58:10 2025 GMT Not After : Jun 6 23:58:10 2025 GMT Subject: CN=683a4613-9f12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:6d:55:d6:03:ca:eb:f0:17:b7:56:f8:ab:e6: 37:b6:08:b8:b2:41:90:b8:a3:e6:0e:8a:f4:dc:76: d0:4d:61:32:46:56:9b:82:ea:94:4b:4c:e2:3c:5a: 45:96:0c:0c:f1:77:1d:32:dc:1b:21:e3:09:b1:49: fd:8d:b6:a6:da:08:60:8b:f7:d1:e8:e3:74:a5:bb: 57:39:67:e4:47:01:87:74:c0:d6:bd:9b:7b:d5:43: be:d7:80:32:19:0c:35:47:0f:ae:10:a9:2b:e2:d0: 5e:49:06:7a:5f:c2:18:2a:1a:9a:8c:a6:84:db:dd: fc:e8:78:ff:97:8c:1b:dd:66:e1:bb:1d:69:bb:b7: 85:ab:7c:ff:5c:80:f7:24:3a:e2:51:e2:ee:a7:e2: e1:10:a3:a2:1c:25:87:4a:8b:6d:c3:2a:0f:85:2b: 5e:a8:f4:2b:4e:c6:0f:bb:0a:0d:d0:b0:25:be:52: 6a:8e:e6:03:2d:b7:51:f6:bf:1c:7b:63:81:52:3b: 0c:d2:fb:bf:cc:55:89:14:20:f3:b2:3e:fc:95:30: c8:0e:29:91:83:96:35:dd:8d:5c:f5:a5:43:78:1d: aa:b9:45:c0:c6:53:f5:eb:43:04:15:e0:2d:7b:40: fa:e3:12:65:1e:e6:ba:0f:5d:e5:3b:27:45:b3:11: 1c:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:E2:8E:78:C5:C8:5F:39:9D:10:7B:BF:95:77:15:6B:57:B3:7E:6D X509v3 Authority Key Identifier: keyid:21:17:02:2D:F6:1D:A4:21:B9:E4:E1:BB:84:83:D8:5E:49:82:BF:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169382/A5FB81581CD911EC92AD571CC4F9AE02/IRcCLfYdpCG55OG7hIPYXkmCv5E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IRcCLfYdpCG55OG7hIPYXkmCv5E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169382/A5FB81581CD911EC92AD571CC4F9AE02/IRcCLfYdpCG55OG7hIPYXkmCv5E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:40:07:e8:21:59:8f:55:26:ed:7c:85:63:90:3c:25:f3:41: 70:aa:2d:70:1b:14:70:82:59:89:c1:1e:19:2c:1a:db:aa:4b: 87:19:c8:9f:c3:08:4c:00:0e:aa:12:85:6a:77:ea:3b:5c:a1: 0e:57:cc:05:32:8e:10:d4:a8:db:7e:bb:a3:f1:54:8e:53:d6: 2c:eb:67:d1:87:98:11:80:c6:34:76:72:92:c7:98:b5:c7:4e: 65:94:7c:4b:13:46:bc:e5:cb:b1:61:97:8b:d9:9d:51:50:02: 8e:50:a8:dd:14:14:99:26:52:40:b5:6c:43:02:d2:3e:7b:93: 3e:98:db:86:e8:7e:e9:43:5b:3f:a5:eb:6b:0d:1f:ee:ff:91: 6f:76:78:ca:e0:63:46:2f:33:c1:9c:fd:24:03:f1:6c:ae:51: a0:aa:f1:20:6d:e6:c3:89:9c:5e:a6:0e:d8:c5:af:63:37:8c: bf:00:f8:15:43:ea:d6:11:63:da:27:8c:81:9c:b1:b2:4e:4a: d4:43:57:58:e8:04:4f:f6:d2:71:bd:98:01:bc:1b:4a:8c:0e: 98:9d:5a:7b:88:18:37:3e:11:7c:b7:87:ea:a4:f5:66:41:02: dd:0e:ca:f8:43:cb:5a:da:0c:17:b8:ad:93:ae:b2:77:30:aa: 51:8d:36:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjkzODIxMTAvBgNVBAUTKDIxMTcwMjJERjYxREE0MjFCOUU0RTFCQjg0ODNEODVF NDk4MkJGOTEwHhcNMjUwNTMwMjM1ODEwWhcNMjUwNjA2MjM1ODEwWjAYMRYwFAYD VQQDEw02ODNhNDYxMy05ZjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzm1V1gPK6/AXt1b4q+Y3tgi4skGQuKPmDor03HbQTWEyRlabguqUS0ziPFpF lgwM8XcdMtwbIeMJsUn9jbam2ghgi/fR6ON0pbtXOWfkRwGHdMDWvZt71UO+14Ay GQw1Rw+uEKkr4tBeSQZ6X8IYKhqajKaE29386Hj/l4wb3Wbhux1pu7eFq3z/XID3 JDriUeLup+LhEKOiHCWHSottwyoPhSteqPQrTsYPuwoN0LAlvlJqjuYDLbdR9r8c e2OBUjsM0vu/zFWJFCDzsj78lTDIDimRg5Y13Y1c9aVDeB2quUXAxlP160MEFeAt e0D64xJlHua6D13lOydFsxEcFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLXijnjF yF85nRB7v5V3FWtXs35tMB8GA1UdIwQYMBaAFCEXAi32HaQhueThu4SD2F5Jgr+R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTM4Mi9BNUZCODE1ODFD RDkxMUVDOTJBRDU3MUNDNEY5QUUwMi9JUmNDTGZZZHBDRzU1T0c3aElQWVhrbUN2 NUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lSY0NMZllkcENHNTVPRzdoSVBZWGttQ3Y1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTM4Mi9BNUZCODE1ODFDRDkxMUVDOTJBRDU3MUNDNEY5QUUwMi9JUmNDTGZZZHBD RzU1T0c3aElQWVhrbUN2NUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkQAfoIVmPVSbtfIVjkDwl80Fwqi1wGxRwglmJwR4ZLBrbqkuHGcif wwhMAA6qEoVqd+o7XKEOV8wFMo4Q1Kjbfruj8VSOU9Ys62fRh5gRgMY0dnKSx5i1 x05llHxLE0a85cuxYZeL2Z1RUAKOUKjdFBSZJlJAtWxDAtI+e5M+mNuG6H7pQ1s/ petrDR/u/5FvdnjK4GNGLzPBnP0kA/FsrlGgqvEgbebDiZxepg7Yxa9jN4y/APgV Q+rWEWPaJ4yBnLGyTkrUQ1dY6ARP9tJxvZgBvBtKjA6YnVp7iBg3PhF8t4fqpPVm QQLdDsr4Q8ta2gwXuK2TrrJ3MKpRjTY+ -----END CERTIFICATE-----Generated at Sat May 31 16:29:34 2025 by rpki-client