$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.mft File: ixqAZb6Iqmwbo_7bVOCH59KttN4.mft (raw, json) Hash identifier: elRj4nQTNRJT80hA3UQ0ofnN6nx0CgI0MBEDJgKtnoM= Subject key identifier: B0:8D:3A:F9:43:51:F1:45:7A:00:44:90:6E:0C:6C:18:5F:45:56:54 Authority key identifier: 8B:1A:80:65:BE:88:AA:6C:1B:A3:FE:DB:54:E0:87:E7:D2:AD:B4:DE Certificate issuer: /CN=A91DC068/serialNumber=8B1A8065BE88AA6C1BA3FEDB54E087E7D2ADB4DE Certificate serial: F1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ixqAZb6Iqmwbo_7bVOCH59KttN4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.mft Manifest number: ED Signing time: Sun 01 Jun 2025 05:01:21 +0000 Manifest this update: Sun 01 Jun 2025 05:01:20 +0000 Manifest next update: Sun 08 Jun 2025 05:01:20 +0000 Files and hashes: 1: ixqAZb6Iqmwbo_7bVOCH59KttN4.crl (hash: VvZtdIUpCg2Z8pNoVXxHYZoGpqBcOXFfg4n151ZAZ8Y=) 2: 4DDA8A18D5DD11EEA5B1C711C4F9AE02.roa (hash: FHRlsB48eK0jdLR0VwZXrRd3F+Rj548sH8y8zKsy5+s=) 3: 4D69D2D2D5DD11EEA5B1C711C4F9AE02.roa (hash: PAO2tzUE6VhuIQPWRUUuXZiVK/zRgbkDyCoIJqVq33M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.crl rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ixqAZb6Iqmwbo_7bVOCH59KttN4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 05:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 241 (0xf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC068, serialNumber=8B1A8065BE88AA6C1BA3FEDB54E087E7D2ADB4DE Validity Not Before: Jun 1 05:01:20 2025 GMT Not After : Jun 8 05:01:20 2025 GMT Subject: CN=683bdea0-e19b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:45:fd:a8:b1:da:dc:4f:27:70:9f:13:83:ce: dc:a3:9b:76:a2:35:67:69:4d:56:a7:27:05:a7:57: 8d:56:41:3d:09:95:72:12:44:dc:35:c0:59:e3:7b: 9d:5f:cc:d9:23:4f:76:70:02:60:df:d7:fb:2e:2c: cf:df:6d:2c:46:12:2d:06:74:0e:df:57:ae:e2:62: 26:25:87:fa:a7:68:3f:22:42:c8:8a:62:90:09:ad: cd:a8:74:94:72:1a:bf:ac:21:5c:76:05:81:98:bb: bb:52:a4:6a:54:2d:2e:37:2e:61:5d:88:88:60:6c: 1b:d9:3f:42:58:38:c6:17:51:44:e1:5c:64:8c:3a: c1:c2:f3:54:01:f1:0f:35:46:df:e5:81:70:80:46: 15:fe:11:05:15:af:dc:9a:9c:76:a1:5a:35:89:e0: a9:0b:09:03:cd:4d:5b:64:f2:52:6b:5b:e1:cf:cb: b0:5e:a7:bc:1c:66:d8:3e:30:bc:11:04:49:6d:47: dd:6c:a9:25:36:4c:dd:8c:d7:34:9e:86:d2:75:76: 71:7e:67:ce:1f:63:00:e4:68:be:c6:88:82:19:7e: 61:3c:5f:af:a6:42:07:6f:2f:0a:93:0f:b1:22:21: f1:3b:42:36:12:ee:5d:6a:52:71:bc:2d:7c:fc:4d: 39:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:8D:3A:F9:43:51:F1:45:7A:00:44:90:6E:0C:6C:18:5F:45:56:54 X509v3 Authority Key Identifier: keyid:8B:1A:80:65:BE:88:AA:6C:1B:A3:FE:DB:54:E0:87:E7:D2:AD:B4:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ixqAZb6Iqmwbo_7bVOCH59KttN4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:7a:16:6c:7f:b6:78:13:c7:f7:5c:32:62:6e:6f:49:87:47: f7:ee:19:dc:43:9e:54:59:6f:a7:85:71:be:3d:d5:6a:0e:b5: 4e:55:da:64:da:51:2e:86:3f:b9:41:34:8d:03:05:b5:bd:11: 27:0a:4b:7a:2f:2b:62:5b:3e:88:7a:38:85:e4:c9:b7:6f:7c: ed:06:7a:40:34:d7:de:7a:8f:59:40:9c:a1:be:59:a7:f9:2e: 47:d2:0f:bd:35:df:57:73:dc:4c:fa:ad:2f:92:a3:a6:04:04: 2a:22:52:77:ee:66:f6:c8:35:83:66:d6:85:58:0a:27:96:b7: b5:26:e2:94:69:c3:46:94:78:1f:59:cc:9b:68:f1:c6:88:31: d1:0c:1b:8d:cb:be:f7:b1:fa:33:b2:9a:2f:16:b0:6c:a5:16: e6:14:3c:91:48:33:8c:13:2c:71:b2:9c:31:be:ab:f4:70:44: f0:68:46:1e:62:1a:27:30:84:ca:ea:40:19:68:3a:91:0f:bc: 79:84:35:7f:60:98:96:a2:31:1d:a7:82:de:6d:ef:a2:92:fa: 5a:39:80:b8:f4:93:6f:30:79:42:4c:9b:e7:8f:49:e5:b5:f2: da:7f:fc:34:a3:52:46:09:95:6c:17:f6:9a:dc:b6:b7:15:ce: 33:cf:11:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMwNjgxMTAvBgNVBAUTKDhCMUE4MDY1QkU4OEFBNkMxQkEzRkVEQjU0RTA4N0U3 RDJBREI0REUwHhcNMjUwNjAxMDUwMTIwWhcNMjUwNjA4MDUwMTIwWjAYMRYwFAYD VQQDEw02ODNiZGVhMC1lMTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArEX9qLHa3E8ncJ8Tg87co5t2ojVnaU1WpycFp1eNVkE9CZVyEkTcNcBZ43ud X8zZI092cAJg39f7LizP320sRhItBnQO31eu4mImJYf6p2g/IkLIimKQCa3NqHSU chq/rCFcdgWBmLu7UqRqVC0uNy5hXYiIYGwb2T9CWDjGF1FE4VxkjDrBwvNUAfEP NUbf5YFwgEYV/hEFFa/cmpx2oVo1ieCpCwkDzU1bZPJSa1vhz8uwXqe8HGbYPjC8 EQRJbUfdbKklNkzdjNc0nobSdXZxfmfOH2MA5Gi+xoiCGX5hPF+vpkIHby8Kkw+x IiHxO0I2Eu5dalJxvC18/E05fQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLCNOvlD UfFFegBEkG4MbBhfRVZUMB8GA1UdIwQYMBaAFIsagGW+iKpsG6P+21Tgh+fSrbTe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzA2OC9ENzdCOUQ2NkQ1 QzQxMUVFODlDMTk3MERDNEY5QUUwMi9peHFBWmI2SXFtd2JvXzdiVk9DSDU5S3R0 TjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2l4cUFaYjZJcW13Ym9fN2JWT0NINTlLdHRONC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzA2OC9ENzdCOUQ2NkQ1QzQxMUVFODlDMTk3MERDNEY5QUUwMi9peHFBWmI2SXFt d2JvXzdiVk9DSDU5S3R0TjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSehZsf7Z4E8f3XDJibm9Jh0f37hncQ55UWW+nhXG+PdVqDrVOVdpk 2lEuhj+5QTSNAwW1vREnCkt6LytiWz6IejiF5Mm3b3ztBnpANNfeeo9ZQJyhvlmn +S5H0g+9Nd9Xc9xM+q0vkqOmBAQqIlJ37mb2yDWDZtaFWAonlre1JuKUacNGlHgf WcybaPHGiDHRDBuNy773sfozspovFrBspRbmFDyRSDOMEyxxspwxvqv0cETwaEYe YhonMITK6kAZaDqRD7x5hDV/YJiWojEdp4Lebe+ikvpaOYC49JNvMHlCTJvnj0nl tfLaf/w0o1JGCZVsF/aa3La3Fc4zzxHF -----END CERTIFICATE-----Generated at Mon Jun 2 21:46:09 2025 by rpki-client