$ rpki-client -vvf rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft File: iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft (raw, json) Hash identifier: mh0pUrR/A+Y6NMh8NSrMAJEiJts8qiI/u2YR/42+ni8= Subject key identifier: 9C:F5:9D:36:84:A8:EA:27:F6:94:D9:BC:06:FC:DB:30:33:77:3F:3A Authority key identifier: 89:0B:1D:EF:E8:8D:59:19:6B:CC:7B:65:26:8C:62:E8:6E:54:D4:6D Certificate issuer: /CN=A9195F7B/serialNumber=890B1DEFE88D59196BCC7B65268C62E86E54D46D Certificate serial: 011A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft Manifest number: 010B Signing time: Sat 31 May 2025 04:46:27 +0000 Manifest this update: Sat 31 May 2025 04:46:27 +0000 Manifest next update: Sat 07 Jun 2025 04:46:27 +0000 Files and hashes: 1: iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl (hash: ekoPUgpmXsty+qUAA5wvLJiWGxLrZRDu7ug2q3igg/c=) 2: 87662556555511EF88D9F680C4F9AE02.roa (hash: k8ciaOJiovKzhjLhsMW8Olbo59H12ftecdkV4UavoKg=) 3: F406C3F26AE311EF82D7860FC4F9AE02.roa (hash: BGxl2SOPQW6C/i2r2VN80go3aEYSETpmK67AkebR/E4=) 4: D7FEF354562111EFA7B3F00AC4F9AE02.roa (hash: Z74c44o/GimXrdeWvw94wRAl3MPTrcV7W0A3AuI0ILk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:46:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 282 (0x11a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195F7B, serialNumber=890B1DEFE88D59196BCC7B65268C62E86E54D46D Validity Not Before: May 31 04:46:27 2025 GMT Not After : Jun 7 04:46:27 2025 GMT Subject: CN=683a89a3-b259 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c6:44:36:48:0f:58:8c:64:1e:68:e8:d2:5b: b5:4b:1a:21:e7:08:6f:d0:37:7c:21:59:60:39:03: b5:5a:c8:08:af:a7:39:23:4f:d2:ce:10:0c:06:12: b1:42:d8:d5:01:bd:3b:8f:98:32:75:bf:42:8e:c5: b8:30:44:f3:d4:d5:2c:9b:ec:83:ae:fc:1a:d4:d9: 78:a1:89:6d:ce:f9:d7:01:c6:ac:16:c9:c5:41:f7: fd:ec:81:98:3a:75:79:33:d8:6b:b2:f9:6d:8a:70: 91:54:d4:81:88:49:ce:b2:b4:46:f9:af:7c:26:e3: bd:76:b8:36:8d:64:13:13:aa:cb:ab:32:83:b4:38: 54:f1:c3:1b:db:ed:4b:3c:e6:89:79:4f:5f:63:a7: 91:d5:ce:4d:0b:82:cb:eb:9f:1d:0d:14:1a:98:1b: 78:99:d9:74:ec:49:6b:04:e4:cd:c3:58:95:a6:75: 83:b8:09:01:90:46:83:26:04:35:b9:63:da:eb:d8: 65:0e:13:84:bb:ac:e4:11:10:59:21:b5:83:0e:b2: 57:4b:bf:b6:38:84:ff:a7:bf:aa:41:62:af:fa:39: 9d:ab:a4:eb:e9:0a:b4:b8:2c:90:b7:49:a2:d9:a7: 2f:cb:7c:60:60:71:fa:bd:1b:00:49:d8:fb:4c:d8: 75:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:F5:9D:36:84:A8:EA:27:F6:94:D9:BC:06:FC:DB:30:33:77:3F:3A X509v3 Authority Key Identifier: keyid:89:0B:1D:EF:E8:8D:59:19:6B:CC:7B:65:26:8C:62:E8:6E:54:D4:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:f0:f7:f2:41:00:1e:39:27:2e:6b:a0:63:72:51:23:bd:8e: df:47:a6:0b:18:fa:ca:da:f9:74:fc:d0:54:97:e0:6b:95:d4: cb:f0:7a:48:21:02:89:51:24:d1:1c:f1:2f:db:97:aa:5a:96: eb:43:67:f3:33:5d:e0:1e:cd:1f:c8:e9:a0:11:36:5f:99:6d: 49:9c:cb:f3:29:41:af:52:54:1c:aa:70:52:f9:60:36:c6:8a: 1e:de:7d:25:fb:6a:60:1b:f6:7a:b1:d1:8f:6b:c8:ab:8e:8e: ef:f4:74:79:f1:f2:40:01:ee:0f:72:07:fd:55:28:35:d5:98: f3:1e:12:3d:41:d2:17:be:db:80:f6:36:3d:b3:20:08:8e:af: d0:e8:96:7c:e9:af:af:64:33:9c:38:65:89:3b:97:be:e4:5b: aa:0f:46:30:6b:b9:ae:13:28:c9:da:26:6f:df:36:d2:19:46: 69:66:95:8e:cc:75:3c:fc:86:a4:ea:25:77:1e:01:49:31:6e: a2:e2:07:cc:44:0c:73:67:f5:ca:81:fa:da:75:a1:24:a5:4a: 7c:6f:d6:f5:91:2a:76:1e:b5:99:1e:8a:c0:2e:92:ea:7b:38: 80:55:0c:1c:f1:06:b6:14:2e:f3:8e:20:5e:c8:cc:4d:8b:34: ac:09:20:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVGN0IxMTAvBgNVBAUTKDg5MEIxREVGRTg4RDU5MTk2QkNDN0I2NTI2OEM2MkU4 NkU1NEQ0NkQwHhcNMjUwNTMxMDQ0NjI3WhcNMjUwNjA3MDQ0NjI3WjAYMRYwFAYD VQQDEw02ODNhODlhMy1iMjU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt8ZENkgPWIxkHmjo0lu1Sxoh5whv0Dd8IVlgOQO1WsgIr6c5I0/SzhAMBhKx QtjVAb07j5gydb9CjsW4METz1NUsm+yDrvwa1Nl4oYltzvnXAcasFsnFQff97IGY OnV5M9hrsvltinCRVNSBiEnOsrRG+a98JuO9drg2jWQTE6rLqzKDtDhU8cMb2+1L POaJeU9fY6eR1c5NC4LL658dDRQamBt4mdl07ElrBOTNw1iVpnWDuAkBkEaDJgQ1 uWPa69hlDhOEu6zkERBZIbWDDrJXS7+2OIT/p7+qQWKv+jmdq6Tr6Qq0uCyQt0mi 2acvy3xgYHH6vRsASdj7TNh19wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJz1nTaE qOon9pTZvAb82zAzdz86MB8GA1UdIwQYMBaAFIkLHe/ojVkZa8x7ZSaMYuhuVNRt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUY3Qi9BMTMxQjM5NEJC MzkxMUVFQTY1NTQxN0VDNEY5QUUwMi9pUXNkNy1pTldSbHJ6SHRsSm94aTZHNVUx RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lRc2Q3LWlOV1JscnpIdGxKb3hpNkc1VTFHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUY3Qi9BMTMxQjM5NEJCMzkxMUVFQTY1NTQxN0VDNEY5QUUwMi9pUXNkNy1pTldS bHJ6SHRsSm94aTZHNVUxRzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQ8PfyQQAeOScua6BjclEjvY7fR6YLGPrK2vl0/NBUl+BrldTL8HpI IQKJUSTRHPEv25eqWpbrQ2fzM13gHs0fyOmgETZfmW1JnMvzKUGvUlQcqnBS+WA2 xooe3n0l+2pgG/Z6sdGPa8irjo7v9HR58fJAAe4Pcgf9VSg11ZjzHhI9QdIXvtuA 9jY9syAIjq/Q6JZ86a+vZDOcOGWJO5e+5FuqD0Ywa7muEyjJ2iZv3zbSGUZpZpWO zHU8/Iak6iV3HgFJMW6i4gfMRAxzZ/XKgfradaEkpUp8b9b1kSp2HrWZHorALpLq eziAVQwc8Qa2FC7zjiBeyMxNizSsCSAy -----END CERTIFICATE-----Generated at Sat May 31 17:18:48 2025 by rpki-client