$ rpki-client -vvf rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.mft File: IjvhmJLm5stAbl-plW3bzqlcu0Y.mft (raw, json) Hash identifier: iebWYgf89fk5WN004l9M/mT852qMvM0NZG9Y6Mb+pEs= Subject key identifier: 9C:91:66:39:E1:84:9F:82:48:7F:6E:6D:99:98:C3:C4:B5:3F:C7:E4 Authority key identifier: 22:3B:E1:98:92:E6:E6:CB:40:6E:5F:A9:95:6D:DB:CE:A9:5C:BB:46 Certificate issuer: /CN=A918E6B7/serialNumber=223BE19892E6E6CB406E5FA9956DDBCEA95CBB46 Certificate serial: 101A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IjvhmJLm5stAbl-plW3bzqlcu0Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.mft Manifest number: 100E Signing time: Fri 30 May 2025 17:36:52 +0000 Manifest this update: Fri 30 May 2025 17:36:52 +0000 Manifest next update: Fri 06 Jun 2025 17:36:52 +0000 Files and hashes: 1: IjvhmJLm5stAbl-plW3bzqlcu0Y.crl (hash: kNqxc5xSLglIn0c4p66U5a1J/iSMtqir4hYXeX/NJCA=) 2: 42CBE6BE29F111EEAECAED6FC4F9AE02.roa (hash: SSjTjiJw3UBo/Mme4Kl37l1zxjxnCDkxVmhI1OR3EOw=) 3: 608836D046B111E98B793856C4F9AE02.roa (hash: Ls4h/fmzmMgVY9fuRoj+7ux+D5fYwsPV37oBSFEiAic=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.crl rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IjvhmJLm5stAbl-plW3bzqlcu0Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:36:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4122 (0x101a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E6B7, serialNumber=223BE19892E6E6CB406E5FA9956DDBCEA95CBB46 Validity Not Before: May 30 17:36:52 2025 GMT Not After : Jun 6 17:36:52 2025 GMT Subject: CN=6839ecb4-314c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ba:25:2d:1a:2b:7d:82:8a:ba:06:ed:26:fe: 85:d4:5d:e7:65:c3:69:fb:ac:c5:bd:f5:18:73:04: 4f:40:6b:c2:fd:d9:f2:f6:b1:6f:f3:86:a2:fe:c3: 15:64:86:ee:1e:7b:0a:6c:d3:07:17:61:ad:0a:05: 89:ad:1b:02:fc:70:2b:22:5d:9c:ea:46:38:20:be: 2a:a4:8b:46:e8:01:fe:6d:48:14:2a:c6:c8:6d:a0: 6d:f7:c3:63:c8:16:c8:a4:d6:c2:bc:c9:36:36:02: 98:c8:9f:2f:d8:a0:d9:32:8a:a5:7d:2f:e7:6f:84: fa:b3:d0:45:64:b9:ab:96:f0:a4:ff:ca:58:7d:55: 52:b4:a5:a0:e9:49:6c:59:75:53:20:fe:87:b2:2b: 12:a4:0f:a6:1e:5e:96:ca:21:a5:75:00:ed:9d:4b: e6:42:e2:28:82:d4:cf:d3:01:91:04:84:d3:44:1d: 13:9e:13:d0:33:64:51:31:85:55:f3:fd:43:95:cb: 06:e1:67:f4:0f:e4:f8:b1:eb:b3:86:4b:5b:39:e9: 08:9a:57:44:5e:a5:90:bd:44:6a:40:8f:33:86:6f: d8:86:6b:40:a8:63:cb:72:7f:2c:55:07:7c:44:7e: 47:11:cd:80:8a:5b:68:cd:2d:99:00:90:3a:d9:2a: 27:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:91:66:39:E1:84:9F:82:48:7F:6E:6D:99:98:C3:C4:B5:3F:C7:E4 X509v3 Authority Key Identifier: keyid:22:3B:E1:98:92:E6:E6:CB:40:6E:5F:A9:95:6D:DB:CE:A9:5C:BB:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IjvhmJLm5stAbl-plW3bzqlcu0Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:a1:3c:34:58:fb:c9:3c:b0:9b:4c:8d:7a:0c:bd:1d:ba:a3: 5f:2f:d9:e0:31:94:6e:17:2c:e6:45:8e:16:35:0b:93:c4:33: 7b:81:2b:e6:dc:c6:ef:a2:ab:5a:59:1e:39:71:ae:37:54:2c: 89:5c:b3:b6:61:e2:de:e1:6a:68:39:04:36:18:89:95:a1:47: ae:bc:da:95:3a:51:a3:ca:be:b6:ab:66:71:1f:8a:2a:dd:60: 8f:eb:b8:52:88:8a:89:c6:4f:5a:ab:c2:70:4b:93:ae:88:a3: c9:98:91:41:cf:c4:c5:61:4c:14:c1:07:d7:6f:0b:b1:66:d2: 19:f0:0f:e6:d5:37:b6:70:76:da:48:58:a8:a8:05:62:d7:2b: 81:c8:74:29:ea:d6:3e:c9:04:e4:d4:fb:06:7f:b5:91:82:c7: fa:43:8d:e2:fb:ef:f1:1a:31:d3:17:9d:1e:ef:66:7f:8f:58: 2f:7c:f7:bb:9a:cf:35:6e:80:15:12:96:0d:0f:e9:ce:ff:a1: 9b:9a:49:7e:85:56:72:37:54:64:f9:6c:e9:a5:15:b8:b1:e3: 71:44:fe:96:1f:ef:86:a3:12:d5:36:a0:b0:68:bd:b6:28:46: b8:78:47:86:5c:96:98:fa:82:32:71:eb:43:2b:2d:ac:4d:9b: bd:b0:56:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEBowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU2QjcxMTAvBgNVBAUTKDIyM0JFMTk4OTJFNkU2Q0I0MDZFNUZBOTk1NkREQkNF QTk1Q0JCNDYwHhcNMjUwNTMwMTczNjUyWhcNMjUwNjA2MTczNjUyWjAYMRYwFAYD VQQDEw02ODM5ZWNiNC0zMTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqrolLRorfYKKugbtJv6F1F3nZcNp+6zFvfUYcwRPQGvC/dny9rFv84ai/sMV ZIbuHnsKbNMHF2GtCgWJrRsC/HArIl2c6kY4IL4qpItG6AH+bUgUKsbIbaBt98Nj yBbIpNbCvMk2NgKYyJ8v2KDZMoqlfS/nb4T6s9BFZLmrlvCk/8pYfVVStKWg6Uls WXVTIP6HsisSpA+mHl6WyiGldQDtnUvmQuIogtTP0wGRBITTRB0TnhPQM2RRMYVV 8/1DlcsG4Wf0D+T4seuzhktbOekImldEXqWQvURqQI8zhm/YhmtAqGPLcn8sVQd8 RH5HEc2AiltozS2ZAJA62SondwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJyRZjnh hJ+CSH9ubZmYw8S1P8fkMB8GA1UdIwQYMBaAFCI74ZiS5ubLQG5fqZVt286pXLtG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTZCNy9CNkE5RjI2MDQ2 QUMxMUU5OTYwODgzNDhDNEY5QUUwMi9JanZobUpMbTVzdEFibC1wbFczYnpxbGN1 MFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lqdmhtSkxtNXN0QWJsLXBsVzNienFsY3UwWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTZCNy9CNkE5RjI2MDQ2QUMxMUU5OTYwODgzNDhDNEY5QUUwMi9JanZobUpMbTVz dEFibC1wbFczYnpxbGN1MFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1oTw0WPvJPLCbTI16DL0duqNfL9ngMZRuFyzmRY4WNQuTxDN7gSvm 3MbvoqtaWR45ca43VCyJXLO2YeLe4WpoOQQ2GImVoUeuvNqVOlGjyr62q2ZxH4oq 3WCP67hSiIqJxk9aq8JwS5OuiKPJmJFBz8TFYUwUwQfXbwuxZtIZ8A/m1Te2cHba SFioqAVi1yuByHQp6tY+yQTk1PsGf7WRgsf6Q43i++/xGjHTF50e72Z/j1gvfPe7 ms81boAVEpYND+nO/6Gbmkl+hVZyN1Rk+WzppRW4seNxRP6WH++GoxLVNqCwaL22 KEa4eEeGXJaY+oIycetDKy2sTZu9sFbR -----END CERTIFICATE-----Generated at Sat May 31 17:34:17 2025 by rpki-client