$ rpki-client -vvf rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft File: ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft (raw, json) Hash identifier: Ixk9ceJ4g++OmJlmSzMAfmiOlPMgF4RERROx6B0dWMA= Subject key identifier: 8A:96:CC:EC:92:0A:09:FC:C1:7B:90:E4:5E:17:3D:91:BC:DC:F8:91 Authority key identifier: 8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A Certificate issuer: /CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Certificate serial: 1D3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft Manifest number: 1CC8 Signing time: Fri 30 May 2025 16:22:21 +0000 Manifest this update: Fri 30 May 2025 16:22:20 +0000 Manifest next update: Fri 06 Jun 2025 16:22:20 +0000 Files and hashes: 1: ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl (hash: aCsa0wFzleBHzTODloR7qVzpY6fjxD9Y9GHGJ539aWE=) 2: 5AF6DD08FAE611EF88903035C4F9AE02.roa (hash: KNe37v08jiMTHI1bvjZ6KE/Vcj+r6uVPwkyGH49Kddo=) 3: 75D2A3666E8011EF92BDE465C4F9AE02.roa (hash: ibfU8LeRFc29BiPbfaOtCj5JQq97ZqfQqw4BbP5mq+Q=) 4: 3BDD23E27CA611EE82D65D19C4F9AE02.roa (hash: DWVN0wHi6QUPs6snWtASAJaDoQXZR8E1QW/cZGA9SNI=) 5: 2F9A7A1648FC11EBBAE0991CC4F9AE02.roa (hash: EyyP05+w3I6zJfg1bK7YEVwaO6aHmtM/Fo2uP4RPYlc=) 6: 84064494E48F11EF8386EA50C4F9AE02.roa (hash: d3vLmOzYTOa3NHb3yIWalGAnlNbBjiF+dtQHwr43NhM=) 7: 87F433B2234C11EBA94AE637C4F9AE02.roa (hash: aPQE1e4nKCiHqR/TnLkZpZpyO3+vgwvIqog88dCR8mk=) 8: 3EF78CAA9DF911EF971AD149C4F9AE02.roa (hash: JvMqjKLoQToshoNSeubhlEpU1GQez85G+xjPh2YQQpU=) 9: D3C8593E905E11EFAF2C185CC4F9AE02.roa (hash: mX5h1pe0z8G3BqKuVtzq+wiHKMx8BkOvpXEXAJFLe90=) 10: CCD092AE4E6411EF92C0EC3AC4F9AE02.roa (hash: UwXH1XygsxxIwL/5ppPhVWdo9CvnJPBBvjk5qqmH4lU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:22:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7485 (0x1d3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A84A, serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Validity Not Before: May 30 16:22:20 2025 GMT Not After : Jun 6 16:22:20 2025 GMT Subject: CN=6839db3d-b7dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:45:39:95:70:ba:35:52:c4:3e:e8:ec:48:f5: 85:02:71:a9:e2:a2:1c:c5:dc:d9:f9:b0:81:20:c6: 79:80:05:e2:44:04:12:fb:3e:9b:69:32:32:02:c2: 62:49:9a:32:4a:8d:fa:8f:18:74:b8:2f:95:fe:d1: cc:a6:e8:71:34:f4:db:5e:6e:8f:1a:6b:07:79:00: 6e:a4:cd:1e:62:9f:8b:6d:fa:93:9c:a6:07:34:08: 25:bb:1f:23:05:23:11:a7:33:4d:31:c1:ec:28:fc: 00:07:03:a5:7a:5d:6c:81:c8:ff:6e:ef:28:be:1f: 7b:85:4d:49:d2:15:32:2c:7e:83:66:47:6b:2d:cb: 10:8c:c1:9d:af:c8:14:22:ff:1f:c8:a5:23:ee:07: 38:d5:bf:16:bb:dd:d2:c7:a4:4a:eb:de:f0:17:60: 1d:01:45:1d:ab:16:ec:9c:32:99:3a:48:7f:4f:5e: cf:d9:d3:cb:9f:f1:e7:c9:f2:02:6d:ea:5a:5e:ab: 7b:40:64:39:36:e5:6f:61:e8:21:7d:a9:01:27:1f: 6f:09:43:17:66:ad:6a:f3:d6:71:10:ae:2c:32:2d: e8:5e:e6:89:5d:66:73:f9:b9:51:e3:bd:9c:c5:e3: 0a:6d:97:89:82:0d:5c:8b:a5:e8:f1:83:a9:22:4d: aa:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:96:CC:EC:92:0A:09:FC:C1:7B:90:E4:5E:17:3D:91:BC:DC:F8:91 X509v3 Authority Key Identifier: keyid:8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:d3:6c:1a:aa:c4:9e:d3:c6:37:af:84:a8:0d:6e:88:25:ef: 74:72:10:6f:46:0b:1d:50:d7:38:a3:e7:82:62:e4:bc:a7:01: 0a:3d:3b:05:55:e7:a4:08:46:f2:db:da:f5:d0:20:36:4b:fb: d0:5e:81:5c:fd:58:41:52:00:0e:fc:e8:91:dc:ba:0f:5d:75: a3:30:90:96:36:12:6b:5f:7a:35:26:7d:1c:fc:54:99:0e:c7: 39:44:33:1c:f3:f1:51:9e:73:36:eb:7a:41:43:4e:83:fc:64: 0a:eb:32:32:f0:ab:fe:df:00:23:ed:a2:3a:b6:c2:a4:33:a9: 14:4b:e4:c4:af:f2:fc:12:82:dc:d8:8e:c2:49:ec:8a:74:45: ad:4b:57:41:22:9b:85:7f:d6:0c:7c:ee:f0:cf:1c:cd:ea:2e: f2:e6:7b:84:ec:a3:7d:ce:ed:8c:56:93:f0:aa:71:60:9b:c4: 51:47:ff:20:83:31:1f:5f:b8:fd:61:4b:ee:78:89:a4:f3:d5: 91:bf:3b:57:5a:43:00:2a:a1:72:5f:4b:7f:c5:64:82:ca:4d: b2:93:65:f5:2b:ac:c7:1d:da:b1:81:c2:f5:85:b6:a7:dd:b4: d7:25:25:84:b4:09:a6:68:a7:ec:9e:be:d7:88:62:de:ae:5e: 32:4e:9f:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E4NEExMTAvBgNVBAUTKDhBMUExMEVCOEZCQTQ1QzIxNTJDQTg5NTZGNDMyRjlB ODEzOTYwM0EwHhcNMjUwNTMwMTYyMjIwWhcNMjUwNjA2MTYyMjIwWjAYMRYwFAYD VQQDEw02ODM5ZGIzZC1iN2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUU5lXC6NVLEPujsSPWFAnGp4qIcxdzZ+bCBIMZ5gAXiRAQS+z6baTIyAsJi SZoySo36jxh0uC+V/tHMpuhxNPTbXm6PGmsHeQBupM0eYp+LbfqTnKYHNAglux8j BSMRpzNNMcHsKPwABwOlel1sgcj/bu8ovh97hU1J0hUyLH6DZkdrLcsQjMGdr8gU Iv8fyKUj7gc41b8Wu93Sx6RK697wF2AdAUUdqxbsnDKZOkh/T17P2dPLn/HnyfIC bepaXqt7QGQ5NuVvYeghfakBJx9vCUMXZq1q89ZxEK4sMi3oXuaJXWZz+blR472c xeMKbZeJgg1ci6Xo8YOpIk2qWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIqWzOyS Cgn8wXuQ5F4XPZG83PiRMB8GA1UdIwQYMBaAFIoaEOuPukXCFSyolW9DL5qBOWA6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTg0QS8xODA1MTkxQUUx RUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJjSVZMS2lWYjBNdm1vRTVZ RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lob1E2NC02UmNJVkxLaVZiME12bW9FNVlEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTg0QS8xODA1MTkxQUUxRUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJj SVZMS2lWYjBNdm1vRTVZRG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBP02waqsSe08Y3r4SoDW6IJe90chBvRgsdUNc4o+eCYuS8pwEKPTsF VeekCEby29r10CA2S/vQXoFc/VhBUgAO/OiR3LoPXXWjMJCWNhJrX3o1Jn0c/FSZ Dsc5RDMc8/FRnnM263pBQ06D/GQK6zIy8Kv+3wAj7aI6tsKkM6kUS+TEr/L8EoLc 2I7CSeyKdEWtS1dBIpuFf9YMfO7wzxzN6i7y5nuE7KN9zu2MVpPwqnFgm8RRR/8g gzEfX7j9YUvueImk89WRvztXWkMAKqFyX0t/xWSCyk2yk2X1K6zHHdqxgcL1hban 3bTXJSWEtAmmaKfsnr7XiGLerl4yTp/u -----END CERTIFICATE-----Generated at Sat May 31 16:29:33 2025 by rpki-client