$ rpki-client -vvf rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft File: tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft (raw, json) Hash identifier: a8G4pU0ojAWEOMbt0tCw6pP3Y/v/xPzaAE1UMMp08V0= Subject key identifier: 02:75:85:61:FB:D2:61:DC:57:AD:73:5B:01:F2:E6:2C:03:BF:9F:FF Authority key identifier: B4:86:5E:3B:E9:C5:69:D2:B9:3F:2C:35:1C:AB:24:D1:50:6A:AC:0D Certificate issuer: /CN=A9197CBD/serialNumber=B4865E3BE9C569D2B93F2C351CAB24D1506AAC0D Certificate serial: 010A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft Manifest number: 0106 Signing time: Sun 01 Jun 2025 04:44:09 +0000 Manifest this update: Sun 01 Jun 2025 04:44:09 +0000 Manifest next update: Sun 08 Jun 2025 04:44:09 +0000 Files and hashes: 1: tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl (hash: FlyFR9RSomnBRv1L+gzI3V3/hqRUpU6x6ZfbGn+ZXB8=) 2: 4074E5EA7B1D11EFB5696E45C4F9AE02.roa (hash: 1SdPp/miyItNAEGeBSAKuJFOP+wIUKHiHtHU72zXu1w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 04:44:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 266 (0x10a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197CBD, serialNumber=B4865E3BE9C569D2B93F2C351CAB24D1506AAC0D Validity Not Before: Jun 1 04:44:09 2025 GMT Not After : Jun 8 04:44:09 2025 GMT Subject: CN=683bda99-a71f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:59:fa:0a:64:e7:13:4c:b1:c5:4a:c7:e1:b7: 62:1e:75:cc:e4:32:36:ae:c9:31:74:b1:80:5a:6f: ee:79:3a:f5:5f:f0:25:54:51:64:5c:54:0b:43:5f: e2:4d:e4:79:b5:45:5b:eb:18:98:df:19:35:84:3e: 55:3f:14:26:08:99:a9:ea:5a:2e:47:06:34:f8:2c: 05:b0:be:dd:b1:cd:da:43:54:0d:21:a3:f6:81:6e: 24:d4:0b:98:9c:83:cb:dc:78:06:3f:18:8e:a2:39: 7d:36:08:91:c8:7f:b8:32:5b:ac:0d:56:08:4e:10: 39:26:d3:f0:13:3a:69:90:41:25:1e:c2:d0:0e:c1: 58:f2:1b:a5:3b:5d:26:7c:d4:dc:a2:a5:b8:b2:8b: 7d:b8:6c:f4:c4:2a:34:3f:a0:7c:ae:58:aa:43:90: 97:38:7d:38:e8:57:58:02:a0:92:57:55:be:9a:e2: 24:3d:8d:88:29:22:51:22:cb:3a:ca:fc:b0:54:80: 93:99:45:52:c5:55:e6:02:f5:00:86:82:73:cd:e1: 18:2d:0b:95:22:b3:1b:03:e0:ad:15:2c:55:3b:7a: 7e:74:dc:06:d2:a7:1a:7b:f2:56:14:c2:77:7b:05: 95:d6:1e:bc:cd:2a:ca:94:42:84:d6:a0:d2:85:5e: 13:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:75:85:61:FB:D2:61:DC:57:AD:73:5B:01:F2:E6:2C:03:BF:9F:FF X509v3 Authority Key Identifier: keyid:B4:86:5E:3B:E9:C5:69:D2:B9:3F:2C:35:1C:AB:24:D1:50:6A:AC:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:63:d4:be:71:b5:62:55:86:92:10:4b:90:b6:6f:b0:d4:49: 0b:ca:2d:96:b8:e1:0e:a4:58:78:7d:67:58:dc:96:be:cf:ad: 64:c1:7d:aa:51:c0:c8:7e:bb:49:cd:91:d6:25:a9:a8:10:26: 7c:c4:dc:18:f3:f9:cd:dd:8f:34:20:5d:40:21:ee:e2:89:71: 1c:2e:c1:6e:60:7c:88:fa:3b:3b:ae:3d:9a:44:ef:b8:dc:d8: 20:b5:9a:85:5b:c8:61:54:ae:26:66:57:fe:57:5d:5e:ff:36: 78:10:9e:9c:63:ff:8e:78:5a:3a:93:54:58:ad:28:58:d0:ce: 69:24:3a:29:03:7a:76:0d:15:9e:9f:65:cb:4e:15:8a:d5:d7: f9:c0:3d:b2:c0:60:e5:d7:5c:ef:4d:da:1a:4c:d7:0c:65:bd: ec:5d:b3:8a:c9:c9:da:b0:41:fb:6c:27:38:83:f6:4e:61:88: 84:8e:c7:ca:7e:aa:86:d8:5b:e1:70:84:bf:98:56:bd:e6:da: 94:3f:e6:e0:80:61:de:f6:ab:29:93:cc:b4:0a:b2:cd:b6:87: b0:b6:56:12:97:c4:cb:79:6a:ad:e1:cb:d7:75:40:57:c2:c4: 23:68:71:7c:b3:29:d3:1d:53:7e:1d:1d:7b:96:57:0e:de:ee: 42:22:ee:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdDQkQxMTAvBgNVBAUTKEI0ODY1RTNCRTlDNTY5RDJCOTNGMkMzNTFDQUIyNEQx NTA2QUFDMEQwHhcNMjUwNjAxMDQ0NDA5WhcNMjUwNjA4MDQ0NDA5WjAYMRYwFAYD VQQDEw02ODNiZGE5OS1hNzFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuFn6CmTnE0yxxUrH4bdiHnXM5DI2rskxdLGAWm/ueTr1X/AlVFFkXFQLQ1/i TeR5tUVb6xiY3xk1hD5VPxQmCJmp6louRwY0+CwFsL7dsc3aQ1QNIaP2gW4k1AuY nIPL3HgGPxiOojl9NgiRyH+4MlusDVYIThA5JtPwEzppkEElHsLQDsFY8hulO10m fNTcoqW4sot9uGz0xCo0P6B8rliqQ5CXOH046FdYAqCSV1W+muIkPY2IKSJRIss6 yvywVICTmUVSxVXmAvUAhoJzzeEYLQuVIrMbA+CtFSxVO3p+dNwG0qcae/JWFMJ3 ewWV1h68zSrKlEKE1qDShV4TwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAJ1hWH7 0mHcV61zWwHy5iwDv5//MB8GA1UdIwQYMBaAFLSGXjvpxWnSuT8sNRyrJNFQaqwN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0NCRC8zNTcwREYyRUIx MTQxMUVFOTVFNzQzNjVDNEY5QUUwMi90SVplTy1uRmFkSzVQeXcxSEtzazBWQnFy QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RJWmVPLW5GYWRLNVB5dzFIS3NrMFZCcXJBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0NCRC8zNTcwREYyRUIxMTQxMUVFOTVFNzQzNjVDNEY5QUUwMi90SVplTy1uRmFk SzVQeXcxSEtzazBWQnFyQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOY9S+cbViVYaSEEuQtm+w1EkLyi2WuOEOpFh4fWdY3Ja+z61kwX2q UcDIfrtJzZHWJamoECZ8xNwY8/nN3Y80IF1AIe7iiXEcLsFuYHyI+js7rj2aRO+4 3NggtZqFW8hhVK4mZlf+V11e/zZ4EJ6cY/+OeFo6k1RYrShY0M5pJDopA3p2DRWe n2XLThWK1df5wD2ywGDl11zvTdoaTNcMZb3sXbOKycnasEH7bCc4g/ZOYYiEjsfK fqqG2FvhcIS/mFa95tqUP+bggGHe9qspk8y0CrLNtoewtlYSl8TLeWqt4cvXdUBX wsQjaHF8synTHVN+HR17llcO3u5CIu6D -----END CERTIFICATE-----Generated at Mon Jun 2 19:42:34 2025 by rpki-client