$ rpki-client -vvf rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.mft File: -IHZTXommvaISDplHTc5GOeGUB4.mft (raw, json) Hash identifier: 7o/p3MSVzJ5zzJIMS2E74XltxlJH66Nv/8GTeZje+ng= Subject key identifier: 9D:25:B7:F7:7B:10:DD:55:46:DB:5A:60:F6:1C:CC:91:AB:11:4E:08 Authority key identifier: F8:81:D9:4D:7A:26:9A:F6:88:48:3A:65:1D:37:39:18:E7:86:50:1E Certificate issuer: /CN=A9182644/serialNumber=F881D94D7A269AF688483A651D373918E786501E Certificate serial: 015C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IHZTXommvaISDplHTc5GOeGUB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.mft Manifest number: 0158 Signing time: Sat 31 May 2025 03:43:41 +0000 Manifest this update: Sat 31 May 2025 03:43:41 +0000 Manifest next update: Sat 07 Jun 2025 03:43:41 +0000 Files and hashes: 1: -IHZTXommvaISDplHTc5GOeGUB4.crl (hash: 3nlfBRITz6es5M9yxvhAyqhblNl9aeYoB82FyGKIz/s=) 2: 8A50B69C2F2B11EE8CD3F880C4F9AE02.roa (hash: 749u4lopn9W/FVK2H662IjT0Y70cK7ANdEZnlQh0KN8=) 3: 89E0172A2F2B11EE8CD3F880C4F9AE02.roa (hash: JpEflAmkAjQw8fDsB0P7evpxNWtbBcByQzIhr/Rv/Wo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.crl rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IHZTXommvaISDplHTc5GOeGUB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:43:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 348 (0x15c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182644, serialNumber=F881D94D7A269AF688483A651D373918E786501E Validity Not Before: May 31 03:43:41 2025 GMT Not After : Jun 7 03:43:41 2025 GMT Subject: CN=683a7aed-3018 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:92:f2:15:df:36:b8:f1:f9:c9:19:27:d8:59: 19:b4:a6:8e:c2:05:56:58:9a:77:bb:b2:cb:ba:64: ef:77:09:80:ba:1d:70:a9:69:a1:64:fc:bd:1c:b5: 44:f6:08:8d:b7:51:88:59:8a:4e:25:7a:09:42:d1: 0e:44:60:14:c3:2c:b6:6b:55:21:f3:75:22:a7:e3: c5:b3:98:94:00:e5:74:4c:e4:64:41:6c:4b:31:05: b8:a8:cb:cc:cc:7d:12:07:16:df:48:93:05:e4:c7: cb:63:63:6e:d9:a3:92:01:75:e8:73:64:38:db:6f: 61:4c:c4:43:92:52:d7:be:04:08:d5:ee:5d:52:be: 95:88:72:7e:ad:9f:28:bc:63:de:90:57:80:8b:25: a7:9a:28:ea:60:2b:5a:e7:bd:53:c9:e7:bf:58:41: 05:af:77:c0:70:e0:f7:2f:87:ee:e6:4c:7d:9c:d9: 8e:91:d0:63:fb:a5:06:7c:cb:91:55:a9:4b:a5:ae: 9e:9f:80:28:57:d0:07:1a:8a:45:e3:84:e3:59:04: 7c:f4:e4:30:56:93:3b:96:b1:77:08:38:78:05:90: 91:59:21:a5:3d:57:83:fc:81:5c:3a:65:6b:c4:d0: f1:2a:6e:2e:08:6c:ba:18:e6:6b:a0:ad:94:7b:87: 15:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:25:B7:F7:7B:10:DD:55:46:DB:5A:60:F6:1C:CC:91:AB:11:4E:08 X509v3 Authority Key Identifier: keyid:F8:81:D9:4D:7A:26:9A:F6:88:48:3A:65:1D:37:39:18:E7:86:50:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IHZTXommvaISDplHTc5GOeGUB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:07:42:27:a7:15:08:f2:b7:8f:93:99:74:ae:93:a4:21:e5: 8e:67:ef:7e:cf:5b:c5:66:4c:59:af:bf:63:79:9b:1a:f7:d2: c2:8d:08:d4:38:cf:a3:24:aa:d1:8b:d9:03:e8:a1:e5:bf:84: a1:ca:b7:0d:1b:4f:fc:50:1d:2a:0b:26:3b:66:4b:85:27:41: 03:a7:7c:ec:da:92:c9:2b:a4:7d:e0:7d:ab:dc:0d:32:ec:e8: 1c:f6:f1:49:5a:70:ce:77:7a:11:b4:d8:65:0d:83:80:92:fe: 6f:dc:da:bb:e5:76:b4:17:9e:f0:b7:3e:9d:34:3b:6a:af:e5: 33:24:b5:83:2d:d9:ae:96:e2:06:91:0e:ca:c5:ed:6e:75:fd: 52:cc:60:9e:d1:70:ed:77:b7:aa:1d:77:23:96:f1:1d:46:06: cf:b7:4f:93:bb:72:41:f0:17:82:0b:9e:cd:05:f8:72:d2:71: 43:e5:ef:10:0e:77:0c:af:cb:7d:bd:14:dd:54:3b:c4:57:b0: a4:41:58:68:a9:74:2b:7c:bc:78:82:93:cf:bc:bf:32:9d:63: 0f:1f:c1:fb:30:cc:86:48:ae:96:4e:ec:7b:eb:fd:25:12:2a: 27:98:f0:4d:a5:d2:14:1a:6e:95:77:c2:3d:0f:20:ff:58:33: 06:db:9a:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI2NDQxMTAvBgNVBAUTKEY4ODFEOTREN0EyNjlBRjY4ODQ4M0E2NTFEMzczOTE4 RTc4NjUwMUUwHhcNMjUwNTMxMDM0MzQxWhcNMjUwNjA3MDM0MzQxWjAYMRYwFAYD VQQDEw02ODNhN2FlZC0zMDE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsJLyFd82uPH5yRkn2FkZtKaOwgVWWJp3u7LLumTvdwmAuh1wqWmhZPy9HLVE 9giNt1GIWYpOJXoJQtEORGAUwyy2a1Uh83Uip+PFs5iUAOV0TORkQWxLMQW4qMvM zH0SBxbfSJMF5MfLY2Nu2aOSAXXoc2Q4229hTMRDklLXvgQI1e5dUr6ViHJ+rZ8o vGPekFeAiyWnmijqYCta571Tyee/WEEFr3fAcOD3L4fu5kx9nNmOkdBj+6UGfMuR ValLpa6en4AoV9AHGopF44TjWQR89OQwVpM7lrF3CDh4BZCRWSGlPVeD/IFcOmVr xNDxKm4uCGy6GOZroK2Ue4cVOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ0lt/d7 EN1VRttaYPYczJGrEU4IMB8GA1UdIwQYMBaAFPiB2U16Jpr2iEg6ZR03ORjnhlAe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjY0NC9CRjEzMUQzNDJE MDAxMUVFOUQxMEZGMThDNEY5QUUwMi8tSUhaVFhvbW12YUlTRHBsSFRjNUdPZUdV QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1JSFpUWG9tbXZhSVNEcGxIVGM1R09lR1VCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjY0NC9CRjEzMUQzNDJEMDAxMUVFOUQxMEZGMThDNEY5QUUwMi8tSUhaVFhvbW12 YUlTRHBsSFRjNUdPZUdVQjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgB0InpxUI8rePk5l0rpOkIeWOZ+9+z1vFZkxZr79jeZsa99LCjQjU OM+jJKrRi9kD6KHlv4ShyrcNG0/8UB0qCyY7ZkuFJ0EDp3zs2pLJK6R94H2r3A0y 7Ogc9vFJWnDOd3oRtNhlDYOAkv5v3Nq75Xa0F57wtz6dNDtqr+UzJLWDLdmuluIG kQ7Kxe1udf1SzGCe0XDtd7eqHXcjlvEdRgbPt0+Tu3JB8BeCC57NBfhy0nFD5e8Q DncMr8t9vRTdVDvEV7CkQVhoqXQrfLx4gpPPvL8ynWMPH8H7MMyGSK6WTux76/0l EionmPBNpdIUGm6Vd8I9DyD/WDMG25pz -----END CERTIFICATE-----Generated at Sat May 31 17:06:30 2025 by rpki-client