$ rpki-client -vvf rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft File: ItPpdE2tSXUDbMQirBHEBHIOZuo.mft (raw, json) Hash identifier: LoGqCSBN44Kl604IAsMi+TOQOA/bynur1gjkWg6nKDI= Subject key identifier: 0A:F1:1A:8C:82:4B:49:F9:D5:EC:62:C7:CB:D5:7C:D4:3E:41:51:E5 Authority key identifier: 22:D3:E9:74:4D:AD:49:75:03:6C:C4:22:AC:11:C4:04:72:0E:66:EA Certificate issuer: /CN=A917A4F7/serialNumber=22D3E9744DAD4975036CC422AC11C404720E66EA Certificate serial: 0124 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItPpdE2tSXUDbMQirBHEBHIOZuo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft Manifest number: 0122 Signing time: Sat 31 May 2025 04:19:19 +0000 Manifest this update: Sat 31 May 2025 04:19:18 +0000 Manifest next update: Sat 07 Jun 2025 04:19:18 +0000 Files and hashes: 1: ItPpdE2tSXUDbMQirBHEBHIOZuo.crl (hash: Yr7IKiA86APXiXDxe7IK8zP4v4baS/L8s8WOQoKbjos=) 2: 9BE3C7087E8311EEBC7E6681C4F9AE02.roa (hash: dQp1RFXkmdHYdN2uYRrVX4OpwPj5pGn/GAC5Xyj0LE8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.crl rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItPpdE2tSXUDbMQirBHEBHIOZuo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:19:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 292 (0x124) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A4F7, serialNumber=22D3E9744DAD4975036CC422AC11C404720E66EA Validity Not Before: May 31 04:19:18 2025 GMT Not After : Jun 7 04:19:18 2025 GMT Subject: CN=683a8347-1e02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e5:69:c0:9d:f6:3f:5d:9e:70:da:52:00:fd: 77:21:f2:fd:eb:6b:61:57:c4:c2:52:35:78:11:fa: 15:b2:7b:7d:84:68:91:30:9a:6f:f1:c0:e5:68:6c: 4c:2f:da:7b:f8:15:ef:c7:f9:84:a9:52:6c:7d:b8: 34:b8:bd:dc:ef:5d:e6:b6:5f:53:31:3d:b7:fe:09: 31:24:3c:a7:a2:1d:09:a9:e2:21:56:a6:9e:57:37: 26:ab:24:c2:cf:3e:6b:c1:9f:98:ee:7b:1c:bc:e4: 73:29:44:cc:0a:cf:aa:95:94:69:34:b2:2d:8d:b2: 84:5f:09:6f:ac:12:a5:b9:f3:f3:97:89:a6:a6:bd: 44:f0:c5:1e:0e:7d:f2:0f:40:e0:17:4d:35:af:49: f4:91:f9:0f:12:14:fb:0c:b4:65:8e:73:0e:27:5b: 87:28:fd:0a:3f:95:9f:66:87:50:cf:8b:4f:f2:29: 2e:2d:f4:ff:fd:3e:f6:e4:d4:66:92:2b:54:46:3a: 8a:56:5d:61:5f:f0:eb:6f:9f:5e:79:75:f8:96:25: 29:2f:ea:99:0e:79:6d:57:48:e1:96:3b:3e:9e:d9: 1e:61:aa:ef:a5:c2:0d:76:b3:e9:07:ee:f9:1f:e3: eb:97:ff:53:78:d4:fa:0f:60:3a:4e:07:90:a6:13: 5f:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:F1:1A:8C:82:4B:49:F9:D5:EC:62:C7:CB:D5:7C:D4:3E:41:51:E5 X509v3 Authority Key Identifier: keyid:22:D3:E9:74:4D:AD:49:75:03:6C:C4:22:AC:11:C4:04:72:0E:66:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItPpdE2tSXUDbMQirBHEBHIOZuo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:3a:14:4b:18:2c:dc:85:6c:ca:ce:92:38:03:5c:c3:67:a4: d4:e1:ad:16:f2:ff:9e:13:96:3b:1f:14:c3:57:5c:16:95:51: 0d:29:2a:0c:f8:d7:0d:a3:07:e8:06:53:68:cf:63:f4:1b:48: b0:cd:83:d0:28:76:c6:05:31:2b:28:32:ff:9f:45:cb:fc:1c: 0b:86:48:7b:ac:f8:6d:3f:28:3f:7d:1b:01:9e:1e:eb:2e:52: da:3c:d8:d2:47:79:4b:33:64:1f:5b:3e:15:93:a4:51:16:61: 04:7e:e2:7c:11:c9:81:06:7d:f9:2e:6c:51:4a:a1:0d:ef:97: 80:6f:d1:ae:f5:76:51:8d:ea:7a:8d:25:96:b9:8a:0f:e8:f3: 15:ec:3c:f1:fc:bd:31:d0:85:52:ea:85:c9:24:bf:af:27:a4: c5:43:f0:19:c2:ec:0e:71:80:c7:28:93:e1:91:ac:32:28:27: a0:7b:99:33:d9:4b:7f:15:c6:aa:59:fa:90:5c:3e:9a:a4:55: 1e:78:47:0a:dc:da:5f:94:51:de:9a:7b:59:11:fe:cc:ea:75: 68:27:4b:ac:2b:a7:7d:7a:35:4c:6f:8a:c0:45:4c:d9:5a:cd: c3:5f:1e:82:76:5a:1f:59:89:73:da:03:42:0c:ce:a9:dd:d2: bc:38:65:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E0RjcxMTAvBgNVBAUTKDIyRDNFOTc0NERBRDQ5NzUwMzZDQzQyMkFDMTFDNDA0 NzIwRTY2RUEwHhcNMjUwNTMxMDQxOTE4WhcNMjUwNjA3MDQxOTE4WjAYMRYwFAYD VQQDEw02ODNhODM0Ny0xZTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOVpwJ32P12ecNpSAP13IfL962thV8TCUjV4EfoVsnt9hGiRMJpv8cDlaGxM L9p7+BXvx/mEqVJsfbg0uL3c713mtl9TMT23/gkxJDynoh0JqeIhVqaeVzcmqyTC zz5rwZ+Y7nscvORzKUTMCs+qlZRpNLItjbKEXwlvrBKlufPzl4mmpr1E8MUeDn3y D0DgF001r0n0kfkPEhT7DLRljnMOJ1uHKP0KP5WfZodQz4tP8ikuLfT//T725NRm kitURjqKVl1hX/Drb59eeXX4liUpL+qZDnltV0jhljs+ntkeYarvpcINdrPpB+75 H+Prl/9TeNT6D2A6TgeQphNfCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFArxGoyC S0n51exix8vVfNQ+QVHlMB8GA1UdIwQYMBaAFCLT6XRNrUl1A2zEIqwRxARyDmbq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTRGNy8yQTQ4OTM4NjdF ODIxMUVFOTlEQTlCN0FDNEY5QUUwMi9JdFBwZEUydFNYVURiTVFpckJIRUJISU9a dW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l0UHBkRTJ0U1hVRGJNUWlyQkhFQkhJT1p1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTRGNy8yQTQ4OTM4NjdFODIxMUVFOTlEQTlCN0FDNEY5QUUwMi9JdFBwZEUydFNY VURiTVFpckJIRUJISU9adW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJOhRLGCzchWzKzpI4A1zDZ6TU4a0W8v+eE5Y7HxTDV1wWlVENKSoM +NcNowfoBlNoz2P0G0iwzYPQKHbGBTErKDL/n0XL/BwLhkh7rPhtPyg/fRsBnh7r LlLaPNjSR3lLM2QfWz4Vk6RRFmEEfuJ8EcmBBn35LmxRSqEN75eAb9Gu9XZRjep6 jSWWuYoP6PMV7Dzx/L0x0IVS6oXJJL+vJ6TFQ/AZwuwOcYDHKJPhkawyKCege5kz 2Ut/FcaqWfqQXD6apFUeeEcK3NpflFHemntZEf7M6nVoJ0usK6d9ejVMb4rARUzZ Ws3DXx6CdlofWYlz2gNCDM6p3dK8OGVj -----END CERTIFICATE-----Generated at Sat May 31 15:16:23 2025 by rpki-client