$ rpki-client -vvf rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft File: IW4UMOXDDg0jp10HDbeJi5CEl5k.mft (raw, json) Hash identifier: zgeny+KSIfQywuelxEjAKBncNN2xUirFrUGGPkYmcko= Subject key identifier: 3B:9B:77:2E:6B:AC:D9:CD:63:96:25:6A:2F:2A:21:C9:9B:04:34:03 Authority key identifier: 21:6E:14:30:E5:C3:0E:0D:23:A7:5D:07:0D:B7:89:8B:90:84:97:99 Certificate issuer: /CN=A919A5B5/serialNumber=216E1430E5C30E0D23A75D070DB7898B90849799 Certificate serial: 07AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft Manifest number: 07A8 Signing time: Fri 30 May 2025 21:29:34 +0000 Manifest this update: Fri 30 May 2025 21:29:34 +0000 Manifest next update: Fri 06 Jun 2025 21:29:34 +0000 Files and hashes: 1: IW4UMOXDDg0jp10HDbeJi5CEl5k.crl (hash: TtDqRM97D0BeneMFHSW0OVXnZKjK7DHHEiPAPJGJzi8=) 2: ACD444282EC911EB99EC263DC4F9AE02.roa (hash: DLKvz3rwnGGBIag3RK7ssCkmYQ1hx8lImaGotS18Gqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.crl rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:29:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1967 (0x7af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A5B5, serialNumber=216E1430E5C30E0D23A75D070DB7898B90849799 Validity Not Before: May 30 21:29:34 2025 GMT Not After : Jun 6 21:29:34 2025 GMT Subject: CN=683a233e-2305 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ed:ab:87:98:95:f9:8c:87:8c:d3:20:2d:2a: bb:00:e6:6c:e3:18:1d:f2:79:60:59:a1:37:c6:46: 4e:9e:c3:55:cb:17:dd:a8:94:d7:80:8b:fd:b5:3b: 2d:d5:11:f0:fe:d4:90:72:ee:8c:32:b0:e9:cd:c2: 50:0a:0b:ee:56:e6:c8:7a:4c:eb:17:bc:48:0f:e0: c0:0a:f3:3b:f1:f6:69:71:55:1f:a0:9a:21:5e:1c: 9e:39:64:37:2c:a2:26:7a:04:0a:e4:20:e2:c4:09: 73:31:24:90:31:5b:38:65:73:fa:fc:d0:b6:63:bb: 3c:7f:8a:b8:91:a3:83:ec:35:7b:29:27:ff:57:04: 90:98:9a:8c:30:1f:0a:5c:8b:25:98:c9:6f:cf:4d: 2c:aa:c5:d7:42:3b:8c:44:28:63:7e:0c:2d:a5:1e: 42:5e:a4:65:b6:4a:97:22:25:be:51:0f:75:1d:4c: a1:99:26:d7:bc:a6:dc:a7:a1:2f:48:b0:a5:7f:5b: b2:f8:7d:73:10:be:5a:a5:ce:a5:50:97:22:9e:9a: 2d:68:10:30:bb:5d:ab:bd:6d:62:19:b6:bf:a5:64: 5a:27:32:6b:80:c8:7a:48:d3:23:52:56:4d:09:13: d3:77:5b:e6:4d:58:b3:6e:6f:e0:6a:cb:a5:c5:3a: 4b:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:9B:77:2E:6B:AC:D9:CD:63:96:25:6A:2F:2A:21:C9:9B:04:34:03 X509v3 Authority Key Identifier: keyid:21:6E:14:30:E5:C3:0E:0D:23:A7:5D:07:0D:B7:89:8B:90:84:97:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:88:61:03:9c:a4:7d:83:d5:1b:1a:f9:6b:b1:46:33:72:0f: a3:9d:1e:a5:a5:f6:f3:4a:2d:c4:8b:8b:be:f5:15:6e:ac:80: 70:fe:26:12:05:cf:6c:34:a0:72:78:02:4b:cc:4e:4c:b4:07: 0c:35:53:ce:09:f8:b6:e7:9d:16:f1:08:2e:d4:41:4d:93:c3: b5:45:c8:12:99:06:1a:f7:0e:7d:0c:b5:3e:6f:d8:c1:9b:8f: 69:1b:ab:40:c4:00:aa:6c:9b:6d:97:f7:90:6c:95:df:9d:f4: 2f:06:de:cf:c1:ac:8c:7c:dc:23:74:11:56:45:30:29:0c:dc: 87:95:22:2a:af:72:d8:5c:cf:e9:3b:92:c1:45:bf:16:ba:97: 54:75:bd:c7:21:84:1a:19:db:3c:b4:a8:7a:73:e4:70:f5:f7: fc:d3:11:46:dd:5b:e4:90:92:a2:b8:53:b3:d5:bd:91:ab:82: f8:fb:8f:f1:35:98:84:3b:90:01:67:88:29:90:17:6d:8a:fb: e9:24:7b:06:61:23:19:48:67:40:22:f0:aa:b0:3a:48:c6:5a: 76:d1:f4:71:5e:79:77:95:3b:61:71:6a:bc:55:99:80:a4:20: bb:4d:10:1a:5f:31:1d:26:a2:46:08:9b:84:eb:99:62:ff:92: e3:cf:a0:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB68wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE1QjUxMTAvBgNVBAUTKDIxNkUxNDMwRTVDMzBFMEQyM0E3NUQwNzBEQjc4OThC OTA4NDk3OTkwHhcNMjUwNTMwMjEyOTM0WhcNMjUwNjA2MjEyOTM0WjAYMRYwFAYD VQQDEw02ODNhMjMzZS0yMzA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4e2rh5iV+YyHjNMgLSq7AOZs4xgd8nlgWaE3xkZOnsNVyxfdqJTXgIv9tTst 1RHw/tSQcu6MMrDpzcJQCgvuVubIekzrF7xID+DACvM78fZpcVUfoJohXhyeOWQ3 LKImegQK5CDixAlzMSSQMVs4ZXP6/NC2Y7s8f4q4kaOD7DV7KSf/VwSQmJqMMB8K XIslmMlvz00sqsXXQjuMRChjfgwtpR5CXqRltkqXIiW+UQ91HUyhmSbXvKbcp6Ev SLClf1uy+H1zEL5apc6lUJcinpotaBAwu12rvW1iGba/pWRaJzJrgMh6SNMjUlZN CRPTd1vmTVizbm/gasulxTpLVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDubdy5r rNnNY5Ylai8qIcmbBDQDMB8GA1UdIwQYMBaAFCFuFDDlww4NI6ddBw23iYuQhJeZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTVCNS81ODNDQzRENDAz QkUxMUVCQTY0OTIyMEJDNEY5QUUwMi9JVzRVTU9YRERnMGpwMTBIRGJlSmk1Q0Vs NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lXNFVNT1hERGcwanAxMEhEYmVKaTVDRWw1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTVCNS81ODNDQzRENDAzQkUxMUVCQTY0OTIyMEJDNEY5QUUwMi9JVzRVTU9YRERn MGpwMTBIRGJlSmk1Q0VsNWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/iGEDnKR9g9UbGvlrsUYzcg+jnR6lpfbzSi3Ei4u+9RVurIBw/iYS Bc9sNKByeAJLzE5MtAcMNVPOCfi2550W8Qgu1EFNk8O1RcgSmQYa9w59DLU+b9jB m49pG6tAxACqbJttl/eQbJXfnfQvBt7PwayMfNwjdBFWRTApDNyHlSIqr3LYXM/p O5LBRb8WupdUdb3HIYQaGds8tKh6c+Rw9ff80xFG3VvkkJKiuFOz1b2Rq4L4+4/x NZiEO5ABZ4gpkBdtivvpJHsGYSMZSGdAIvCqsDpIxlp20fRxXnl3lTthcWq8VZmA pCC7TRAaXzEdJqJGCJuE65li/5Ljz6Bo -----END CERTIFICATE-----Generated at Sat May 31 16:35:05 2025 by rpki-client