$ rpki-client -vvf rpki.apnic.net/member_repository/A917336A/8F5A93565AEA11EF94E93D6EC4F9AE02/IdPtIffN68fQDxu3oJURuVze_iM.mft File: IdPtIffN68fQDxu3oJURuVze_iM.mft (raw, json) Hash identifier: 7uCOKWrSoSzm/HfnN+YIiGZ5zYPT+sJnUoKjZH5Ceds= Subject key identifier: D4:7D:E2:29:42:E6:AE:64:CC:DD:50:56:34:05:73:C1:D2:05:07:A1 Authority key identifier: 21:D3:ED:21:F7:CD:EB:C7:D0:0F:1B:B7:A0:95:11:B9:5C:DE:FE:23 Certificate issuer: /CN=A917336A/serialNumber=21D3ED21F7CDEBC7D00F1BB7A09511B95CDEFE23 Certificate serial: 9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IdPtIffN68fQDxu3oJURuVze_iM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917336A/8F5A93565AEA11EF94E93D6EC4F9AE02/IdPtIffN68fQDxu3oJURuVze_iM.mft Manifest number: 97 Signing time: Sat 31 May 2025 05:55:42 +0000 Manifest this update: Sat 31 May 2025 05:55:41 +0000 Manifest next update: Sat 07 Jun 2025 05:55:41 +0000 Files and hashes: 1: IdPtIffN68fQDxu3oJURuVze_iM.crl (hash: gGIk/NnQrhb49OWtpF9c2kLp/nW0Pw7TbcNih65YBkM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917336A/8F5A93565AEA11EF94E93D6EC4F9AE02/IdPtIffN68fQDxu3oJURuVze_iM.crl rsync://rpki.apnic.net/member_repository/A917336A/8F5A93565AEA11EF94E93D6EC4F9AE02/IdPtIffN68fQDxu3oJURuVze_iM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IdPtIffN68fQDxu3oJURuVze_iM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 159 (0x9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917336A, serialNumber=21D3ED21F7CDEBC7D00F1BB7A09511B95CDEFE23 Validity Not Before: May 31 05:55:41 2025 GMT Not After : Jun 7 05:55:41 2025 GMT Subject: CN=683a99de-6893 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:5c:df:fc:1f:e7:01:94:44:e8:52:05:e9:43: cc:68:71:7c:4d:08:7a:d0:7f:68:a9:85:e3:9c:38: 92:87:ad:cf:b1:50:b3:e7:a3:a2:a3:bd:d1:57:65: 04:b2:de:f8:5a:cc:20:bd:ee:4e:16:56:0c:8f:45: 72:6a:aa:40:fe:cc:5c:8c:3f:09:0d:33:06:5f:17: 36:f8:19:c4:a2:41:82:0d:16:bb:e1:6c:91:1a:44: f2:38:43:f3:b8:0e:5b:e9:4a:30:35:f0:63:c0:4c: 85:db:7f:74:84:cd:33:6d:ec:25:c7:3f:ab:be:6b: 27:2f:77:13:76:2f:19:d9:77:28:14:67:b7:1b:a0: 08:30:2d:24:d8:c8:d2:0f:3f:a5:37:15:57:d3:43: ea:b5:7e:8e:f3:e9:fc:d7:8c:8b:1a:8a:07:25:b9: d4:a7:69:b6:1b:39:a7:82:70:b2:de:81:c3:ea:8a: c9:ea:e4:e5:49:da:f9:8e:d7:5d:40:7a:62:9d:02: 19:95:3a:b2:2f:82:0f:0e:38:28:e2:69:fb:d1:b6: 92:ec:d6:c7:77:39:8b:da:60:85:28:6a:6d:fd:e0: 29:30:03:d2:de:77:d3:f3:12:1a:ac:cb:d1:f1:b8: 83:bd:10:cc:98:5a:cb:08:01:4e:73:3c:83:e5:ea: a0:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:7D:E2:29:42:E6:AE:64:CC:DD:50:56:34:05:73:C1:D2:05:07:A1 X509v3 Authority Key Identifier: keyid:21:D3:ED:21:F7:CD:EB:C7:D0:0F:1B:B7:A0:95:11:B9:5C:DE:FE:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917336A/8F5A93565AEA11EF94E93D6EC4F9AE02/IdPtIffN68fQDxu3oJURuVze_iM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IdPtIffN68fQDxu3oJURuVze_iM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917336A/8F5A93565AEA11EF94E93D6EC4F9AE02/IdPtIffN68fQDxu3oJURuVze_iM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:ed:8d:2f:15:ee:0d:46:bc:50:e2:a4:21:e3:06:da:3f:eb: 86:da:00:dc:04:82:b3:e9:84:79:d6:e6:1d:c4:a0:62:c2:7f: 60:fa:e7:99:d3:ee:ec:d3:d8:e7:4f:2e:06:4c:b4:f3:fe:be: 5a:e9:12:7a:29:92:26:b5:46:15:43:e2:01:e4:f9:0c:41:57: cf:e5:c3:79:8e:10:24:48:f1:f8:43:63:af:1b:d4:f0:c9:26: 7e:11:e1:2a:62:9c:7c:d6:cf:e8:bb:4d:99:c1:70:9d:04:e9: 14:d1:9e:fe:c7:21:e5:df:a5:4b:de:73:38:fa:2e:c4:72:29: a9:1f:82:b9:4c:07:d5:37:d7:3f:3e:9b:a0:09:3c:9f:ea:f2: 4c:c9:f5:83:1a:74:c0:4b:cd:13:c9:42:c6:05:82:01:99:67: 02:b9:6e:e8:6e:c2:f4:85:18:6f:7a:dc:aa:ad:0b:06:20:06: 36:f6:e9:31:8d:45:f3:e0:51:4a:19:81:95:57:12:fd:ea:bc: b1:69:bf:d3:c0:79:87:1b:b3:01:f5:98:9b:df:f2:26:e8:63: 13:79:79:a1:1e:bc:df:30:cb:27:c5:37:ce:a8:f2:58:6c:de: 7c:ba:44:e5:58:33:b2:f3:eb:87:09:d0:b0:86:e8:be:1f:a1: 38:d4:67:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzMzNkExMTAvBgNVBAUTKDIxRDNFRDIxRjdDREVCQzdEMDBGMUJCN0EwOTUxMUI5 NUNERUZFMjMwHhcNMjUwNTMxMDU1NTQxWhcNMjUwNjA3MDU1NTQxWjAYMRYwFAYD VQQDEw02ODNhOTlkZS02ODkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyFzf/B/nAZRE6FIF6UPMaHF8TQh60H9oqYXjnDiSh63PsVCz56Oio73RV2UE st74Wswgve5OFlYMj0VyaqpA/sxcjD8JDTMGXxc2+BnEokGCDRa74WyRGkTyOEPz uA5b6UowNfBjwEyF2390hM0zbewlxz+rvmsnL3cTdi8Z2XcoFGe3G6AIMC0k2MjS Dz+lNxVX00PqtX6O8+n814yLGooHJbnUp2m2GzmngnCy3oHD6orJ6uTlSdr5jtdd QHpinQIZlTqyL4IPDjgo4mn70baS7NbHdzmL2mCFKGpt/eApMAPS3nfT8xIarMvR 8biDvRDMmFrLCAFOczyD5eqgTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNR94ilC 5q5kzN1QVjQFc8HSBQehMB8GA1UdIwQYMBaAFCHT7SH3zevH0A8bt6CVEblc3v4j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzM2QS84RjVBOTM1NjVB RUExMUVGOTRFOTNENkVDNEY5QUUwMi9JZFB0SWZmTjY4ZlFEeHUzb0pVUnVWemVf aU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lkUHRJZmZONjhmUUR4dTNvSlVSdVZ6ZV9pTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzM2QS84RjVBOTM1NjVBRUExMUVGOTRFOTNENkVDNEY5QUUwMi9JZFB0SWZmTjY4 ZlFEeHUzb0pVUnVWemVfaU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBV7Y0vFe4NRrxQ4qQh4wbaP+uG2gDcBIKz6YR51uYdxKBiwn9g+ueZ 0+7s09jnTy4GTLTz/r5a6RJ6KZImtUYVQ+IB5PkMQVfP5cN5jhAkSPH4Q2OvG9Tw ySZ+EeEqYpx81s/ou02ZwXCdBOkU0Z7+xyHl36VL3nM4+i7EcimpH4K5TAfVN9c/ PpugCTyf6vJMyfWDGnTAS80TyULGBYIBmWcCuW7obsL0hRhvetyqrQsGIAY29ukx jUXz4FFKGYGVVxL96ryxab/TwHmHG7MB9Zib3/Im6GMTeXmhHrzfMMsnxTfOqPJY bN58ukTlWDOy8+uHCdCwhui+H6E41Gfr -----END CERTIFICATE-----Generated at Sat May 31 16:40:45 2025 by rpki-client