$ rpki-client -vvf rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft File: cIW1tFSazbW2wnBMhbp4h2D4iic.mft (raw, json) Hash identifier: ImQZsasSIskPMcpI+W2IRpQEjCWNuumHjmRX7bwHJLI= Subject key identifier: EF:F0:B3:7F:F4:F1:E8:AD:57:42:51:A5:41:0B:A8:17:67:38:EB:42 Authority key identifier: 70:85:B5:B4:54:9A:CD:B5:B6:C2:70:4C:85:BA:78:87:60:F8:8A:27 Certificate issuer: /CN=A91722A3/serialNumber=7085B5B4549ACDB5B6C2704C85BA788760F88A27 Certificate serial: 0B8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft Manifest number: 0B82 Signing time: Fri 06 Jun 2025 19:04:55 +0000 Manifest this update: Fri 06 Jun 2025 19:04:55 +0000 Manifest next update: Fri 13 Jun 2025 19:04:55 +0000 Files and hashes: 1: cIW1tFSazbW2wnBMhbp4h2D4iic.crl (hash: JZWLl8HyfPLg8pB4t8qhZIc/6Y66m5ht0pXyBkjCdog=) 2: 002DDDC22B9D11EA92F3094CC4F9AE02.roa (hash: sV6ALO0axr/VXMBheoOGm2xJXWMWbMsVRF9rlXmaHds=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.crl rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 19:04:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2954 (0xb8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91722A3, serialNumber=7085B5B4549ACDB5B6C2704C85BA788760F88A27 Validity Not Before: Jun 6 19:04:55 2025 GMT Not After : Jun 13 19:04:55 2025 GMT Subject: CN=68433bd7-80fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ca:f8:b5:bf:fc:7e:2f:f2:4d:57:62:56:9e: 9d:ed:cd:06:03:f8:71:32:0d:19:7d:c3:9d:35:a9: 75:ae:58:25:72:e8:b4:10:da:d9:4b:21:7f:2f:b0: f6:40:d3:79:d8:dd:a9:08:64:23:80:5b:96:95:fb: 62:ae:c4:2c:b4:f3:de:ce:63:25:3d:89:e4:e0:35: 60:c3:1f:49:4c:da:51:ef:0a:4e:23:9d:a3:e2:5c: 95:26:2a:6a:92:14:23:b9:4c:9d:1d:69:4d:27:00: ed:0e:d5:57:db:1a:45:da:e4:45:17:f4:c6:7a:29: a0:81:51:70:6c:71:74:2d:9d:88:d1:21:90:fb:89: ce:11:81:63:af:a0:16:73:d8:ff:a4:c2:7a:e8:95: 0b:d8:33:a1:28:be:5f:b9:cd:6c:17:eb:ec:6b:6a: 73:86:24:c0:c1:14:f2:96:c2:86:5f:1f:48:70:0a: 1b:07:2e:00:66:22:dd:5d:d0:cc:fb:8a:9c:4f:5c: f6:c0:84:05:8a:82:7a:46:99:4b:97:06:6c:62:5d: 1a:ab:5b:93:cb:2c:95:56:38:28:9b:48:60:36:41: 9d:7b:3b:e7:69:2a:c6:b0:b9:88:31:48:78:8b:23: 91:00:29:e6:33:41:fe:2c:50:a1:f1:fd:ef:1b:a6: 0f:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:F0:B3:7F:F4:F1:E8:AD:57:42:51:A5:41:0B:A8:17:67:38:EB:42 X509v3 Authority Key Identifier: keyid:70:85:B5:B4:54:9A:CD:B5:B6:C2:70:4C:85:BA:78:87:60:F8:8A:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:aa:80:ef:a9:7b:15:ab:9c:61:70:4d:4d:8e:f7:b8:ba:cc: fd:69:52:da:cf:94:63:5d:a4:ca:b1:8d:28:13:b9:1d:15:64: 77:b7:2a:10:a2:33:59:1e:c5:f4:82:63:5e:0a:d5:82:88:39: 79:aa:8c:c8:1c:82:34:43:9a:9f:90:ba:da:5a:c5:df:85:b8: 46:a9:c7:3f:eb:64:64:c7:85:4f:ce:57:6c:33:2a:de:7a:0c: 5c:8b:40:c4:41:3a:2c:8a:5f:bb:86:e4:3e:7a:60:fe:52:d5: ba:9e:9b:21:9a:5b:a6:9b:81:8d:87:30:df:c2:3a:52:d0:1d: b1:53:09:8b:a4:60:cb:0f:5d:c5:22:3b:dd:c7:42:1c:14:99: 70:0b:ff:28:ad:e2:c6:e1:70:2b:ac:1b:d9:b6:61:e6:d2:e9: 86:cd:62:a1:ff:ad:84:b5:e3:56:3b:03:12:fc:48:0f:98:37: 3f:f2:25:54:7d:09:1b:1b:3a:9b:c5:ab:5f:07:ee:f8:12:47: 5b:ff:4c:51:77:f9:a5:26:a8:85:e2:2d:f0:b3:3d:2a:6a:72: b5:72:0a:c9:57:41:84:32:a0:00:a5:c1:97:5f:6d:a1:ca:1d: 52:94:da:cd:7a:a3:27:47:7e:1c:5e:2f:b6:45:40:76:28:b7: 12:4a:fb:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIyQTMxMTAvBgNVBAUTKDcwODVCNUI0NTQ5QUNEQjVCNkMyNzA0Qzg1QkE3ODg3 NjBGODhBMjcwHhcNMjUwNjA2MTkwNDU1WhcNMjUwNjEzMTkwNDU1WjAYMRYwFAYD VQQDEw02ODQzM2JkNy04MGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArMr4tb/8fi/yTVdiVp6d7c0GA/hxMg0ZfcOdNal1rlglcui0ENrZSyF/L7D2 QNN52N2pCGQjgFuWlftirsQstPPezmMlPYnk4DVgwx9JTNpR7wpOI52j4lyVJipq khQjuUydHWlNJwDtDtVX2xpF2uRFF/TGeimggVFwbHF0LZ2I0SGQ+4nOEYFjr6AW c9j/pMJ66JUL2DOhKL5fuc1sF+vsa2pzhiTAwRTylsKGXx9IcAobBy4AZiLdXdDM +4qcT1z2wIQFioJ6RplLlwZsYl0aq1uTyyyVVjgom0hgNkGdezvnaSrGsLmIMUh4 iyORACnmM0H+LFCh8f3vG6YPQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO/ws3/0 8eitV0JRpUELqBdnOOtCMB8GA1UdIwQYMBaAFHCFtbRUms21tsJwTIW6eIdg+Ion MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjJBMy9DMDJEODVERTJC OUIxMUVBOTcyQ0RGNDZDNEY5QUUwMi9jSVcxdEZTYXpiVzJ3bkJNaGJwNGgyRDRp aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NJVzF0RlNhemJXMnduQk1oYnA0aDJENGlpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjJBMy9DMDJEODVERTJCOUIxMUVBOTcyQ0RGNDZDNEY5QUUwMi9jSVcxdEZTYXpi VzJ3bkJNaGJwNGgyRDRpaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZqoDvqXsVq5xhcE1Njve4usz9aVLaz5RjXaTKsY0oE7kdFWR3tyoQ ojNZHsX0gmNeCtWCiDl5qozIHII0Q5qfkLraWsXfhbhGqcc/62Rkx4VPzldsMyre egxci0DEQTosil+7huQ+emD+UtW6npshmlumm4GNhzDfwjpS0B2xUwmLpGDLD13F Ijvdx0IcFJlwC/8oreLG4XArrBvZtmHm0umGzWKh/62EteNWOwMS/EgPmDc/8iVU fQkbGzqbxatfB+74Ekdb/0xRd/mlJqiF4i3wsz0qanK1cgrJV0GEMqAApcGXX22h yh1SlNrNeqMnR34cXi+2RUB2KLcSSvuk -----END CERTIFICATE-----Generated at Sat Jun 7 06:01:03 2025 by rpki-client