$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft File: IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft (raw, json) Hash identifier: qjzyfvi2rvfmHK0Pw/OvE1pBIxul+r0Bq1qp1F6s0qg= Subject key identifier: 03:CE:47:B3:91:40:08:26:6F:D2:B3:C5:D7:DD:34:39:48:28:E9:3E Authority key identifier: 22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 Certificate issuer: /CN=A9195BA9/serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Certificate serial: 09C6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft Manifest number: 09BA Signing time: Sat 31 May 2025 20:05:24 +0000 Manifest this update: Sat 31 May 2025 20:05:23 +0000 Manifest next update: Sat 07 Jun 2025 20:05:23 +0000 Files and hashes: 1: IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl (hash: KjHhXxXKDfd7DI4bf7dcoahcjcbclBl73OoL2p4HglI=) 2: 543CDDF0839011EAB5B82263C4F9AE02.roa (hash: PG+DCY3DsnT1DiiJh/CX8LITvJqbEq/+Av+Qqgc42Yc=) 3: 54DD69FA839011EAB5B82263C4F9AE02.roa (hash: YJ7W6HYFgOqdoVWF2hJtmCaUJf59puKnAmoMTngU5VA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:05:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2502 (0x9c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9, serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Validity Not Before: May 31 20:05:23 2025 GMT Not After : Jun 7 20:05:23 2025 GMT Subject: CN=683b6103-c894 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:37:77:4a:18:2d:a5:89:79:f4:a2:90:b1:c8: f8:c8:c4:83:43:1d:ba:fc:f6:47:02:74:9b:a2:18: 77:a1:dd:6e:69:4c:bc:15:9b:17:40:18:33:1a:3f: d4:bf:ad:9e:a8:d0:53:e6:5f:b5:b2:53:7c:7e:65: 12:5e:32:79:0c:89:5b:a5:ee:44:70:5c:d8:66:7c: 13:ce:40:9d:ec:2e:24:ce:df:dc:86:61:51:70:af: 0a:1b:a9:1a:5d:07:f5:e3:6a:72:6c:e5:60:d9:e4: 8b:fa:d6:e1:65:23:9a:09:14:0a:6d:2e:aa:07:6e: db:06:81:bc:f1:42:bc:b8:b8:82:62:eb:37:0d:23: d0:e9:24:99:7f:8c:ab:2f:fa:1c:6c:57:17:7b:a7: b0:0b:15:ff:8a:b0:a3:e9:e8:8b:7b:01:ca:e5:d4: f0:2d:ca:19:7c:69:8a:8d:93:bc:f0:28:f2:21:0b: ff:a8:92:5c:31:d9:77:2c:93:6c:a9:a4:56:d9:57: aa:c6:0d:21:6e:00:07:46:5f:b0:1d:c9:59:a6:30: 42:b2:83:e7:bf:a3:fe:9a:6e:a6:94:f9:ee:54:d2: c5:5f:9b:04:2e:49:04:46:94:0d:01:89:66:1c:c7: 47:27:89:ad:09:b3:b5:4c:4b:b0:a0:8b:10:2c:90: 54:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:CE:47:B3:91:40:08:26:6F:D2:B3:C5:D7:DD:34:39:48:28:E9:3E X509v3 Authority Key Identifier: keyid:22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:98:62:be:83:18:dc:25:b0:d5:bd:ff:26:da:d9:0b:38:e3: d6:1e:2f:6a:e2:97:1f:f0:ee:1a:65:7c:f1:58:82:e5:84:42: 4c:d2:8c:54:1e:d6:fb:96:62:8d:6f:fc:3f:dd:0e:c2:ae:a7: 67:a7:70:0c:33:bb:7e:32:0f:f7:e6:94:bf:fd:01:bc:4b:ad: 35:8e:be:8a:eb:bd:bb:7f:22:d3:fb:c1:85:52:b1:3e:c3:04: c6:d8:02:b0:44:af:0f:73:d5:4a:79:bf:5b:eb:c7:5c:0c:c5: cd:77:a5:03:f1:4d:72:17:cb:96:48:b9:a9:e1:10:ad:34:40: 91:c3:b6:55:b9:f6:58:d0:6d:bf:30:eb:f4:45:ef:2f:29:d7: fa:4f:b1:0d:c4:4e:47:e3:57:e5:73:ec:ef:b2:71:bf:ba:9f: 05:b7:48:63:38:73:2e:d9:b4:b9:26:34:6e:82:91:3b:ec:44: 2d:64:9f:ef:58:4a:2c:be:9c:d7:68:40:33:a8:a7:78:cd:65: cb:0a:28:d2:bf:78:94:84:ca:ad:61:11:71:d5:c3:87:7b:bc: a0:d7:81:5b:59:24:0a:29:9f:5b:2c:15:26:ae:9e:27:82:f6: 0c:98:ca:da:6e:63:16:d4:94:31:b3:fb:38:cf:f8:9d:b7:e2: f6:ad:8a:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKDIyNDVBRDkxNTQzQUREQUQ3ODEyM0RENDE1RDY1OUJC NTJENUZCNjIwHhcNMjUwNTMxMjAwNTIzWhcNMjUwNjA3MjAwNTIzWjAYMRYwFAYD VQQDEw02ODNiNjEwMy1jODk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtjd3ShgtpYl59KKQscj4yMSDQx26/PZHAnSbohh3od1uaUy8FZsXQBgzGj/U v62eqNBT5l+1slN8fmUSXjJ5DIlbpe5EcFzYZnwTzkCd7C4kzt/chmFRcK8KG6ka XQf142pybOVg2eSL+tbhZSOaCRQKbS6qB27bBoG88UK8uLiCYus3DSPQ6SSZf4yr L/ocbFcXe6ewCxX/irCj6eiLewHK5dTwLcoZfGmKjZO88CjyIQv/qJJcMdl3LJNs qaRW2Veqxg0hbgAHRl+wHclZpjBCsoPnv6P+mm6mlPnuVNLFX5sELkkERpQNAYlm HMdHJ4mtCbO1TEuwoIsQLJBUXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAPOR7OR QAgmb9KzxdfdNDlIKOk+MB8GA1UdIwQYMBaAFCJFrZFUOt2teBI91BXWWbtS1fti MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9EODkxNDc4Qzgz OEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNhMTRFajNVRmRaWnUxTFYt MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lrV3RrVlE2M2ExNEVqM1VGZFpadTFMVi0ySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUJBOS9EODkxNDc4QzgzOEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNh MTRFajNVRmRaWnUxTFYtMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmmGK+gxjcJbDVvf8m2tkLOOPWHi9q4pcf8O4aZXzxWILlhEJM0oxU Htb7lmKNb/w/3Q7Crqdnp3AMM7t+Mg/35pS//QG8S601jr6K6727fyLT+8GFUrE+ wwTG2AKwRK8Pc9VKeb9b68dcDMXNd6UD8U1yF8uWSLmp4RCtNECRw7ZVufZY0G2/ MOv0Re8vKdf6T7ENxE5H41flc+zvsnG/up8Ft0hjOHMu2bS5JjRugpE77EQtZJ/v WEosvpzXaEAzqKd4zWXLCijSv3iUhMqtYRFx1cOHe7yg14FbWSQKKZ9bLBUmrp4n gvYMmMrabmMW1JQxs/s4z/idt+L2rYpS -----END CERTIFICATE-----Generated at Mon Jun 2 22:09:00 2025 by rpki-client