$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft File: iBzVaxmrfMJiYzdmnqtzClWnLLY.mft (raw, json) Hash identifier: fRrppSjgCjhFzjFQFZIFeULSomCwMUjm9GaB1EnVWa8= Subject key identifier: EE:AE:0E:83:7F:2B:54:96:19:EF:F7:05:61:8A:51:9D:44:67:45:4D Authority key identifier: 88:1C:D5:6B:19:AB:7C:C2:62:63:37:66:9E:AB:73:0A:55:A7:2C:B6 Certificate issuer: /CN=A91ED9F9/serialNumber=881CD56B19AB7CC2626337669EAB730A55A72CB6 Certificate serial: FB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft Manifest number: F7 Signing time: Sun 01 Jun 2025 04:55:38 +0000 Manifest this update: Sun 01 Jun 2025 04:55:38 +0000 Manifest next update: Sun 08 Jun 2025 04:55:38 +0000 Files and hashes: 1: iBzVaxmrfMJiYzdmnqtzClWnLLY.crl (hash: RZQZ1Tf2zwE7x+pI1Z4cEqrUELlwWETziWjgex5X8W0=) 2: D714E00CB26F11EFB2BFFC58C4F9AE02.roa (hash: fbK8JApyPVI7CqfBV4idqbGNutPDQ+/1nnEJoajk5Ao=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.crl rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 04:55:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 251 (0xfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED9F9, serialNumber=881CD56B19AB7CC2626337669EAB730A55A72CB6 Validity Not Before: Jun 1 04:55:38 2025 GMT Not After : Jun 8 04:55:38 2025 GMT Subject: CN=683bdd4a-e9c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:09:72:88:2d:1a:c4:33:20:8f:f0:93:28:d0: b5:2b:16:1b:52:57:63:09:b3:56:7f:7d:b2:a1:36: b3:3d:5f:18:79:cd:5d:df:d2:66:3f:bc:a3:43:f2: de:10:91:71:56:6c:66:4e:b7:da:f0:5b:39:2f:04: ec:7d:64:16:2e:a3:4b:db:bc:73:f5:e0:b6:d9:ed: 95:93:dc:7b:7e:64:ab:09:16:57:95:bf:c8:f0:c2: c9:02:49:f3:59:6b:d7:5f:25:4e:db:e5:17:9e:a9: 5e:68:fe:5a:9b:7a:9d:db:93:02:7a:7f:28:cb:49: ab:1b:8c:3b:11:b1:3f:b5:3b:a0:7f:a4:88:42:30: de:8e:83:32:89:82:5b:ac:25:1f:aa:d3:60:ba:ac: 2c:14:26:52:5a:99:29:8a:1f:f2:50:7f:dd:c0:78: 3b:e8:af:10:72:9e:c5:d2:07:86:1d:89:09:23:db: 10:a7:cd:43:50:6b:8b:d7:18:fe:e3:ec:5f:70:fe: 55:17:eb:ab:68:e1:af:e5:35:6b:69:7c:48:c0:2f: ea:1c:74:0c:75:ec:49:b2:f5:f5:0c:ab:67:97:01: c4:cb:c1:88:3a:8a:e9:14:1f:75:29:ed:41:ba:68: c7:c1:ab:81:27:0a:2f:44:5c:a9:7e:97:95:55:fa: 8e:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:AE:0E:83:7F:2B:54:96:19:EF:F7:05:61:8A:51:9D:44:67:45:4D X509v3 Authority Key Identifier: keyid:88:1C:D5:6B:19:AB:7C:C2:62:63:37:66:9E:AB:73:0A:55:A7:2C:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:3e:a5:e6:4c:b3:55:28:d1:d2:ab:96:df:fe:27:e2:a6:c2: 3b:e0:81:38:dd:8e:77:fd:92:f1:7b:38:5d:f9:5e:56:33:a4: bf:a7:c6:27:a3:fb:65:c3:e1:71:c3:82:43:34:6f:4f:97:05: 86:bf:86:07:ad:4a:45:2b:7c:08:73:0a:6c:eb:8d:73:d7:0e: 41:85:6d:b3:9d:90:f4:dd:a9:a3:e8:b4:75:bf:56:d6:66:b6: c9:73:8c:55:04:4e:4c:3b:2b:4e:4d:d4:68:9e:77:75:fa:5d: b4:ca:04:1d:29:28:17:55:f2:d4:60:84:3f:c8:70:58:48:41: f0:65:59:b3:97:78:29:69:3c:dd:77:ad:b5:4f:59:7f:86:44: b2:72:bc:b5:5f:72:e4:9e:07:a4:28:a6:2a:f5:d2:84:84:83: e0:c7:a6:0e:71:70:23:1d:80:f9:e0:f3:03:05:9e:4f:73:83: 7a:2a:69:f2:06:61:8c:94:3a:45:ca:14:6b:9e:36:51:3a:f9: e1:80:d9:c6:c8:75:2c:ce:18:8a:c3:00:4c:96:1f:5f:9b:0f: a7:97:d4:c4:66:d4:b9:bc:75:ec:51:86:25:cb:cf:35:fc:ca: a3:f7:d4:36:0c:f3:ea:6c:08:64:33:51:30:f5:9c:92:2c:f2: dd:53:a8:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ5RjkxMTAvBgNVBAUTKDg4MUNENTZCMTlBQjdDQzI2MjYzMzc2NjlFQUI3MzBB NTVBNzJDQjYwHhcNMjUwNjAxMDQ1NTM4WhcNMjUwNjA4MDQ1NTM4WjAYMRYwFAYD VQQDEw02ODNiZGQ0YS1lOWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3glyiC0axDMgj/CTKNC1KxYbUldjCbNWf32yoTazPV8Yec1d39JmP7yjQ/Le EJFxVmxmTrfa8Fs5LwTsfWQWLqNL27xz9eC22e2Vk9x7fmSrCRZXlb/I8MLJAknz WWvXXyVO2+UXnqleaP5am3qd25MCen8oy0mrG4w7EbE/tTugf6SIQjDejoMyiYJb rCUfqtNguqwsFCZSWpkpih/yUH/dwHg76K8Qcp7F0geGHYkJI9sQp81DUGuL1xj+ 4+xfcP5VF+uraOGv5TVraXxIwC/qHHQMdexJsvX1DKtnlwHEy8GIOorpFB91Ke1B umjHwauBJwovRFypfpeVVfqOGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO6uDoN/ K1SWGe/3BWGKUZ1EZ0VNMB8GA1UdIwQYMBaAFIgc1WsZq3zCYmM3Zp6rcwpVpyy2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDlGOS81RjM3OURCMEM5 NTIxMUVFQjdBRERENEVDNEY5QUUwMi9pQnpWYXhtcmZNSmlZemRtbnF0ekNsV25M TFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lCelZheG1yZk1KaVl6ZG1ucXR6Q2xXbkxMWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDlGOS81RjM3OURCMEM5NTIxMUVFQjdBRERENEVDNEY5QUUwMi9pQnpWYXhtcmZN SmlZemRtbnF0ekNsV25MTFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtPqXmTLNVKNHSq5bf/ifipsI74IE43Y53/ZLxezhd+V5WM6S/p8Yn o/tlw+Fxw4JDNG9PlwWGv4YHrUpFK3wIcwps641z1w5BhW2znZD03amj6LR1v1bW ZrbJc4xVBE5MOytOTdRonnd1+l20ygQdKSgXVfLUYIQ/yHBYSEHwZVmzl3gpaTzd d621T1l/hkSycry1X3LkngekKKYq9dKEhIPgx6YOcXAjHYD54PMDBZ5Pc4N6Kmny BmGMlDpFyhRrnjZROvnhgNnGyHUszhiKwwBMlh9fmw+nl9TEZtS5vHXsUYYly881 /Mqj99Q2DPPqbAhkM1Ew9ZySLPLdU6j1 -----END CERTIFICATE-----Generated at Mon Jun 2 19:46:28 2025 by rpki-client