$ rpki-client -vvf rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.mft File: ivWYKUtrI6E57fVPJCi8YZZRqhc.mft (raw, json) Hash identifier: NQlA4QfIi2KAIpCMPB9xIEZKwe5BMKAyKkZ3v7gQqYY= Subject key identifier: AA:3C:D7:A8:CC:3F:F1:1C:AC:08:B1:F2:B5:16:10:31:64:8B:CA:42 Authority key identifier: 8A:F5:98:29:4B:6B:23:A1:39:ED:F5:4F:24:28:BC:61:96:51:AA:17 Certificate issuer: /CN=A917DB77/serialNumber=8AF598294B6B23A139EDF54F2428BC619651AA17 Certificate serial: 04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ivWYKUtrI6E57fVPJCi8YZZRqhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.mft Manifest number: 03 Signing time: Sat 05 Jul 2025 08:32:52 +0000 Manifest this update: Sat 05 Jul 2025 08:32:51 +0000 Manifest next update: Sat 12 Jul 2025 08:32:51 +0000 Files and hashes: 1: ivWYKUtrI6E57fVPJCi8YZZRqhc.crl (hash: ZaA5OvjScUR+v8n7+6sh4wuYQY8rD1shV7H1Lhoxa9c=) 2: 69F70CA058AC11F09233031BC4F9AE02.roa (hash: 2Puhp7/s84Ka+c1PIsRk7dV+hCO9uJyQczuwL9aw3Io=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.crl rsync://rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ivWYKUtrI6E57fVPJCi8YZZRqhc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Jul 2025 08:32:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DB77, serialNumber=8AF598294B6B23A139EDF54F2428BC619651AA17 Validity Not Before: Jul 5 08:32:51 2025 GMT Not After : Jul 12 08:32:51 2025 GMT Subject: CN=6868e333-0843 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:b8:fd:27:56:d4:09:4c:9d:34:8c:7b:df:59: 9a:17:5c:d2:7a:9f:ed:48:81:7a:10:a8:e3:48:d1: ba:bf:31:74:cc:f2:ad:f8:bf:25:dd:d5:6f:c1:9e: d9:63:3b:fd:a7:d9:b2:2a:5b:9c:d5:b2:f5:55:fe: c9:76:fc:43:ae:6e:60:13:c9:14:f6:94:f2:02:5c: 79:de:09:85:c7:9f:73:d0:e8:46:94:23:ef:e1:de: 6d:ae:28:54:95:5d:b5:6f:92:f4:65:77:d5:03:4d: d4:d3:48:5a:3d:39:ba:d0:2c:3c:96:b0:04:40:b2: f9:b9:fa:46:dc:42:5c:df:a2:fa:93:52:34:76:65: 1a:0e:31:b5:61:e9:e4:62:cf:1f:5b:50:14:20:e9: 86:fb:02:57:3d:48:fe:94:43:c5:8f:40:60:67:3b: 4c:c1:c8:34:62:a0:75:58:e6:a0:66:80:34:ce:1e: ac:4e:96:27:ed:40:93:4a:91:a2:7a:e7:ca:2d:09: 16:08:2b:62:c9:22:b8:22:b5:ff:99:e8:2d:a8:b1: aa:9c:9f:73:f0:5b:ac:73:1f:2a:c1:ed:5f:45:01: 32:e0:71:e2:73:d7:c5:57:d3:bc:c6:8b:18:99:eb: 0b:4e:cd:c3:94:f8:16:d3:dc:0d:aa:db:e8:28:9b: b2:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:3C:D7:A8:CC:3F:F1:1C:AC:08:B1:F2:B5:16:10:31:64:8B:CA:42 X509v3 Authority Key Identifier: keyid:8A:F5:98:29:4B:6B:23:A1:39:ED:F5:4F:24:28:BC:61:96:51:AA:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ivWYKUtrI6E57fVPJCi8YZZRqhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:ab:8d:72:86:23:f2:18:ea:d6:7d:a1:aa:b5:19:da:44:f8: f6:72:77:0f:73:af:f7:68:32:59:43:46:ab:06:2b:32:5a:5a: 01:14:37:09:bc:eb:94:fa:90:a7:d4:c1:4e:e1:b3:6c:61:f5: 2a:fb:ca:97:58:38:06:9c:91:21:c2:41:84:66:74:2f:06:fc: 26:e4:aa:d1:84:b0:aa:06:5f:f1:bd:b5:1b:dc:5b:6f:ed:99: dc:ba:10:7f:2c:c2:62:69:e4:c6:83:59:12:a4:ec:f9:91:56: 6c:3e:d0:ab:c6:a9:c3:15:0e:25:46:14:ef:22:80:7d:75:a1: cf:a3:e7:7e:1b:b7:22:af:88:c3:f6:5b:83:2c:92:0b:11:2c: f2:d7:68:bb:41:e9:7a:27:cb:7b:bc:0b:30:01:52:9f:5a:38: 2b:3f:44:b1:5e:11:ed:05:b1:96:22:d7:9c:4f:5c:25:62:9a: a2:8d:02:83:e1:f4:f8:19:23:be:ed:43:73:48:b5:95:00:68: fc:29:02:1d:c7:e8:18:c1:67:74:1b:0e:7e:68:f5:ad:60:10: 89:1a:8a:9d:c7:66:99:b4:4d:34:33:a7:18:5f:a6:15:d3:ba: 36:02:fc:1a:ef:8e:77:8f:75:3a:51:d9:e2:e1:ed:1f:ac:ba: e4:0d:2d:d8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 REI3NzExMC8GA1UEBRMoOEFGNTk4Mjk0QjZCMjNBMTM5RURGNTRGMjQyOEJDNjE5 NjUxQUExNzAeFw0yNTA3MDUwODMyNTFaFw0yNTA3MTIwODMyNTFaMBgxFjAUBgNV BAMTDTY4NjhlMzMzLTA4NDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCeuP0nVtQJTJ00jHvfWZoXXNJ6n+1IgXoQqONI0bq/MXTM8q34vyXd1W/Bntlj O/2n2bIqW5zVsvVV/sl2/EOubmATyRT2lPICXHneCYXHn3PQ6EaUI+/h3m2uKFSV XbVvkvRld9UDTdTTSFo9ObrQLDyWsARAsvm5+kbcQlzfovqTUjR2ZRoOMbVh6eRi zx9bUBQg6Yb7Alc9SP6UQ8WPQGBnO0zByDRioHVY5qBmgDTOHqxOliftQJNKkaJ6 58otCRYIK2LJIrgitf+Z6C2osaqcn3PwW6xzHyrB7V9FATLgceJz18VX07zGixiZ 6wtOzcOU+BbT3A2q2+gom7JrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqjzXqMw/ 8RysCLHytRYQMWSLykIwHwYDVR0jBBgwFoAUivWYKUtrI6E57fVPJCi8YZZRqhcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdEQjc3LzkzNEUzNTYyNThB QTExRjBCMkVFQTExNEM0RjlBRTAyL2l2V1lLVXRySTZFNTdmVlBKQ2k4WVpaUnFo Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaXZXWUtVdHJJNkU1N2ZWUEpDaThZWlpScWhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdE Qjc3LzkzNEUzNTYyNThBQTExRjBCMkVFQTExNEM0RjlBRTAyL2l2V1lLVXRySTZF NTdmVlBKQ2k4WVpaUnFoYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMKrjXKGI/IY6tZ9oaq1GdpE+PZydw9zr/doMllDRqsGKzJaWgEUNwm8 65T6kKfUwU7hs2xh9Sr7ypdYOAackSHCQYRmdC8G/CbkqtGEsKoGX/G9tRvcW2/t mdy6EH8swmJp5MaDWRKk7PmRVmw+0KvGqcMVDiVGFO8igH11oc+j534btyKviMP2 W4MskgsRLPLXaLtB6Xony3u8CzABUp9aOCs/RLFeEe0FsZYi15xPXCVimqKNAoPh 9PgZI77tQ3NItZUAaPwpAh3H6BjBZ3QbDn5o9a1gEIkaip3HZpm0TTQzpxhfphXT ujYC/BrvjnePdTpR2eLh7R+suuQNLdg= -----END CERTIFICATE-----Generated at Mon Jul 7 09:43:38 2025 by rpki-client