$ rpki-client -vvf rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.mft File: IffNCqAWhDVSmHRj5kIpcu8DnOg.mft (raw, json) Hash identifier: yUQE5gGgizme6F0ZjWUnYsiyRp2uK6J4FwO1EArg5do= Subject key identifier: E4:CA:09:5F:BF:6C:9D:95:9E:8D:E7:0F:98:84:2F:34:9B:B1:64:87 Authority key identifier: 21:F7:CD:0A:A0:16:84:35:52:98:74:63:E6:42:29:72:EF:03:9C:E8 Certificate issuer: /CN=A919710C/serialNumber=21F7CD0AA016843552987463E6422972EF039CE8 Certificate serial: 0471 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IffNCqAWhDVSmHRj5kIpcu8DnOg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.mft Manifest number: 046A Signing time: Sat 31 May 2025 00:19:52 +0000 Manifest this update: Sat 31 May 2025 00:19:52 +0000 Manifest next update: Sat 07 Jun 2025 00:19:52 +0000 Files and hashes: 1: IffNCqAWhDVSmHRj5kIpcu8DnOg.crl (hash: lJyc4MTLFjh51iOtfm1k572Ev02ZYcdq1a4K6sN1Sgs=) 2: F47ED252878B11EEA8C62644C4F9AE02.roa (hash: qTXBNw7mfhaErKZnovnNFuD402t8u0aLC3Cx70bCvCg=) 3: E097013E910C11EFB994E187C4F9AE02.roa (hash: 6iwr6VYb5feSdMcufjsCe6jPARf4GSvhQnloLGq2csk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.crl rsync://rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IffNCqAWhDVSmHRj5kIpcu8DnOg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:19:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1137 (0x471) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919710C, serialNumber=21F7CD0AA016843552987463E6422972EF039CE8 Validity Not Before: May 31 00:19:52 2025 GMT Not After : Jun 7 00:19:52 2025 GMT Subject: CN=683a4b28-215f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ea:a2:e8:e8:7f:b4:83:41:04:d9:32:ea:de: 30:68:c7:99:40:fc:9e:74:d6:1c:28:5f:8b:96:5e: 7b:83:c3:44:46:a3:a4:d9:d3:5a:9c:f3:cb:65:7c: 3d:d6:4a:00:c1:80:c0:ef:0a:5b:ea:fb:a9:8e:6d: d9:a2:eb:29:da:e9:11:be:fa:1f:0d:03:b3:fc:11: 4a:97:75:20:c0:69:c2:27:6c:83:35:7e:b8:d3:27: 86:25:d9:49:e0:c2:65:01:0f:66:d9:27:b4:cc:16: ea:53:a9:f8:2d:2f:25:06:7f:f3:6c:c0:5f:cc:85: f2:04:0e:f8:d2:b0:cb:42:35:4e:45:5b:06:23:96: 5d:37:04:ab:8c:40:9a:2b:44:87:0a:b6:ea:e8:d8: 4e:78:6d:e7:77:4f:88:84:e0:9b:95:d5:30:f7:87: bd:9a:51:88:ef:81:78:64:5b:96:f0:f5:77:0a:c4: 3b:b1:0a:46:de:c1:07:0c:42:fe:f1:b0:0a:8b:c5: 35:c7:14:dc:fa:31:68:33:46:a9:53:b2:13:79:7d: 83:cb:b9:c9:b6:58:6a:5b:bc:ac:60:6a:00:56:e5: d8:f5:60:e4:c2:cb:4c:f0:9e:25:57:8c:74:02:43: b7:68:92:46:36:fb:98:c3:45:84:4e:9d:29:5c:52: 8f:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:CA:09:5F:BF:6C:9D:95:9E:8D:E7:0F:98:84:2F:34:9B:B1:64:87 X509v3 Authority Key Identifier: keyid:21:F7:CD:0A:A0:16:84:35:52:98:74:63:E6:42:29:72:EF:03:9C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IffNCqAWhDVSmHRj5kIpcu8DnOg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:d2:6b:dd:79:04:61:c3:21:68:d6:e4:ec:7e:7d:0d:9e:39: e8:08:9e:e9:65:84:f3:f6:41:4e:18:15:ce:01:86:21:99:b1: a4:54:c0:0e:e5:b5:61:a7:fb:d6:ab:7a:83:39:30:20:22:a4: d1:1c:d8:b0:b3:08:71:c1:6a:e5:9d:7e:9a:19:33:ad:66:33: c2:0b:f9:c2:74:1b:32:6f:90:6f:0f:82:98:49:c4:ce:7e:84: 29:ac:c5:db:63:8e:35:27:4c:2c:e5:6f:be:f8:22:85:3e:15: bb:42:ed:31:fe:25:88:e6:7f:5a:9e:0c:a8:5c:fe:5a:41:15: 9d:24:22:91:2f:e7:69:40:50:8e:7e:5b:ba:a2:a7:c9:b1:a6: ee:af:ec:55:ab:4f:56:75:d2:2c:dd:9d:a6:cf:c9:86:36:28: d3:96:91:1c:80:25:14:76:8b:e4:f9:7b:5d:f0:1d:64:ac:12: e3:7c:68:01:56:ec:d1:b8:94:87:95:ad:4b:2d:bc:17:81:7a: 2d:26:fe:83:14:87:b7:ab:7c:53:5b:f3:cf:45:82:f2:c7:3a: e2:d8:ed:aa:6b:f6:5c:2e:23:b4:11:9f:5a:7d:20:0a:dc:79: f6:99:f2:94:f2:be:80:7b:9d:5e:a5:8a:0e:21:b0:b0:4e:e0: bb:bb:92:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcxMEMxMTAvBgNVBAUTKDIxRjdDRDBBQTAxNjg0MzU1Mjk4NzQ2M0U2NDIyOTcy RUYwMzlDRTgwHhcNMjUwNTMxMDAxOTUyWhcNMjUwNjA3MDAxOTUyWjAYMRYwFAYD VQQDEw02ODNhNGIyOC0yMTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApuqi6Oh/tINBBNky6t4waMeZQPyedNYcKF+Lll57g8NERqOk2dNanPPLZXw9 1koAwYDA7wpb6vupjm3Zousp2ukRvvofDQOz/BFKl3UgwGnCJ2yDNX640yeGJdlJ 4MJlAQ9m2Se0zBbqU6n4LS8lBn/zbMBfzIXyBA740rDLQjVORVsGI5ZdNwSrjECa K0SHCrbq6NhOeG3nd0+IhOCbldUw94e9mlGI74F4ZFuW8PV3CsQ7sQpG3sEHDEL+ 8bAKi8U1xxTc+jFoM0apU7ITeX2Dy7nJtlhqW7ysYGoAVuXY9WDkwstM8J4lV4x0 AkO3aJJGNvuYw0WETp0pXFKPBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOTKCV+/ bJ2Vno3nD5iELzSbsWSHMB8GA1UdIwQYMBaAFCH3zQqgFoQ1Uph0Y+ZCKXLvA5zo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzEwQy8yRjM2NzYxMjRC NjAxMUVDOTU1NERDNTBDNEY5QUUwMi9JZmZOQ3FBV2hEVlNtSFJqNWtJcGN1OERu T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lmZk5DcUFXaERWU21IUmo1a0lwY3U4RG5PZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzEwQy8yRjM2NzYxMjRCNjAxMUVDOTU1NERDNTBDNEY5QUUwMi9JZmZOQ3FBV2hE VlNtSFJqNWtJcGN1OERuT2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBT0mvdeQRhwyFo1uTsfn0NnjnoCJ7pZYTz9kFOGBXOAYYhmbGkVMAO 5bVhp/vWq3qDOTAgIqTRHNiwswhxwWrlnX6aGTOtZjPCC/nCdBsyb5BvD4KYScTO foQprMXbY441J0ws5W+++CKFPhW7Qu0x/iWI5n9angyoXP5aQRWdJCKRL+dpQFCO flu6oqfJsabur+xVq09WddIs3Z2mz8mGNijTlpEcgCUUdovk+Xtd8B1krBLjfGgB VuzRuJSHla1LLbwXgXotJv6DFIe3q3xTW/PPRYLyxzri2O2qa/ZcLiO0EZ9afSAK 3Hn2mfKU8r6Ae51epYoOIbCwTuC7u5KX -----END CERTIFICATE-----Generated at Sat May 31 17:03:27 2025 by rpki-client