$ rpki-client -vvf rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft File: IcuqoETeGlZkRp9Bi80Id7ITlzo.mft (raw, json) Hash identifier: xwvQ3VuB1gqFfWj5TY8KOpoPC2NECbK9rDY6aQxtJ+Y= Subject key identifier: B3:B8:83:3B:3E:8C:B2:DD:60:70:A5:D1:91:B1:6D:74:23:97:CA:FD Authority key identifier: 21:CB:AA:A0:44:DE:1A:56:64:46:9F:41:8B:CD:08:77:B2:13:97:3A Certificate issuer: /CN=A911393B/serialNumber=21CBAAA044DE1A5664469F418BCD0877B213973A Certificate serial: 014B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft Manifest number: 0148 Signing time: Thu 03 Jul 2025 04:22:27 +0000 Manifest this update: Thu 03 Jul 2025 04:22:27 +0000 Manifest next update: Thu 10 Jul 2025 04:22:27 +0000 Files and hashes: 1: IcuqoETeGlZkRp9Bi80Id7ITlzo.crl (hash: NfWlnBL+LhzgdPVzhSqBdhkhLxeMyXjkbpeLm2ljDjw=) 2: 6538D178628E11EEBF375134C4F9AE02.roa (hash: a5Qs3LUcbSVUj/0GZbXTErNFIjAHGfhVv7lawUtiA/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.crl rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 331 (0x14b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911393B, serialNumber=21CBAAA044DE1A5664469F418BCD0877B213973A Validity Not Before: Jul 3 04:22:27 2025 GMT Not After : Jul 10 04:22:27 2025 GMT Subject: CN=68660583-1fef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c2:aa:f0:73:38:ba:df:f7:94:6b:8d:21:2e: 02:6c:04:4a:e3:6b:da:9a:53:5a:f0:27:fd:b5:39: 0a:ea:ff:91:14:b1:8c:73:43:d9:e8:09:5f:8a:25: 1a:54:6b:38:c6:53:e1:64:cc:53:e6:6c:27:f1:e7: 07:87:09:21:eb:56:c0:44:8a:b3:05:2b:c2:a9:34: d3:b0:01:c7:62:2d:62:8b:7e:07:0e:97:80:bd:ea: 8c:61:02:23:c5:be:b0:0e:79:6f:ad:48:d0:24:93: b7:c5:70:1c:b4:d0:b9:f1:1a:a9:02:72:31:02:40: 2d:27:04:b9:98:2b:e0:d9:ab:10:8b:10:40:fc:b1: 6d:39:9e:c6:8d:91:35:95:89:dc:e7:bb:5a:e4:3e: de:8a:80:c5:60:c9:77:68:db:f0:0d:c4:ce:04:84: 80:55:64:f8:57:3a:10:02:41:ac:1a:e4:24:bc:9c: a8:66:41:41:aa:31:48:ad:3a:c1:8b:d7:47:88:ad: 89:d4:40:a7:ee:fc:c5:64:22:e9:32:f1:cb:fb:49: 1f:37:35:10:52:fc:90:2e:29:4b:28:83:60:58:a4: f7:80:a8:84:8f:96:cb:3e:b8:92:6d:a2:de:42:f5: 2e:bb:86:80:56:9a:60:45:e1:38:22:c9:3b:54:73: 21:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:B8:83:3B:3E:8C:B2:DD:60:70:A5:D1:91:B1:6D:74:23:97:CA:FD X509v3 Authority Key Identifier: keyid:21:CB:AA:A0:44:DE:1A:56:64:46:9F:41:8B:CD:08:77:B2:13:97:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:4a:a1:36:d6:cd:19:c5:fa:13:cd:a9:13:7f:eb:a0:82:c2: 4c:e7:8a:c3:50:b6:7e:ce:95:3b:80:d3:dd:8a:af:ff:e7:fc: 35:af:fd:82:bb:e1:18:a4:ba:d2:ce:9e:8d:c4:f9:86:2d:5d: 13:1e:8d:2e:12:a2:87:d7:44:a9:1e:b0:75:66:12:69:a0:85: 13:10:29:42:4e:7d:24:3a:6b:20:b4:10:47:06:d5:0f:e9:6e: 95:e0:e0:df:75:45:db:8e:c2:08:24:a9:75:32:2c:b9:27:b0: a2:4b:04:29:2a:59:b6:b5:ef:27:87:52:85:fe:ce:3e:79:65: cd:ba:44:7d:15:20:2a:59:5f:ed:40:ff:37:28:45:9b:f1:a1: 10:38:e3:15:39:94:37:80:06:0f:ef:8f:47:e6:db:de:9c:06: 32:ef:11:e3:f7:99:89:ed:4e:50:09:1b:02:4e:01:b7:87:9d: d1:bd:a8:46:5e:bd:0b:76:56:87:9f:6e:84:cd:c2:05:f3:08: 03:7a:60:b3:8e:09:96:ae:5a:c6:bc:6d:fa:a5:99:de:c6:c8: f3:ed:03:08:5e:86:c3:33:08:36:b1:26:d2:97:0b:ed:b4:5b: 4d:5d:66:58:a7:f7:6f:2f:a9:ba:f7:f8:db:54:91:80:59:78: 21:f4:fe:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTM5M0IxMTAvBgNVBAUTKDIxQ0JBQUEwNDRERTFBNTY2NDQ2OUY0MThCQ0QwODc3 QjIxMzk3M0EwHhcNMjUwNzAzMDQyMjI3WhcNMjUwNzEwMDQyMjI3WjAYMRYwFAYD VQQDEw02ODY2MDU4My0xZmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArsKq8HM4ut/3lGuNIS4CbARK42vamlNa8Cf9tTkK6v+RFLGMc0PZ6AlfiiUa VGs4xlPhZMxT5mwn8ecHhwkh61bARIqzBSvCqTTTsAHHYi1ii34HDpeAveqMYQIj xb6wDnlvrUjQJJO3xXActNC58RqpAnIxAkAtJwS5mCvg2asQixBA/LFtOZ7GjZE1 lYnc57ta5D7eioDFYMl3aNvwDcTOBISAVWT4VzoQAkGsGuQkvJyoZkFBqjFIrTrB i9dHiK2J1ECn7vzFZCLpMvHL+0kfNzUQUvyQLilLKINgWKT3gKiEj5bLPriSbaLe QvUuu4aAVppgReE4Isk7VHMhPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLO4gzs+ jLLdYHCl0ZGxbXQjl8r9MB8GA1UdIwQYMBaAFCHLqqBE3hpWZEafQYvNCHeyE5c6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzkzQi82N0QwOEJBODYy OEMxMUVFOTU2NUI1NjlDNEY5QUUwMi9JY3Vxb0VUZUdsWmtScDlCaTgwSWQ3SVRs em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljdXFvRVRlR2xaa1JwOUJpODBJZDdJVGx6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MzkzQi82N0QwOEJBODYyOEMxMUVFOTU2NUI1NjlDNEY5QUUwMi9JY3Vxb0VUZUds WmtScDlCaTgwSWQ3SVRsem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4SqE21s0ZxfoTzakTf+uggsJM54rDULZ+zpU7gNPdiq//5/w1r/2C u+EYpLrSzp6NxPmGLV0THo0uEqKH10SpHrB1ZhJpoIUTEClCTn0kOmsgtBBHBtUP 6W6V4ODfdUXbjsIIJKl1Miy5J7CiSwQpKlm2te8nh1KF/s4+eWXNukR9FSAqWV/t QP83KEWb8aEQOOMVOZQ3gAYP749H5tvenAYy7xHj95mJ7U5QCRsCTgG3h53RvahG Xr0LdlaHn26EzcIF8wgDemCzjgmWrlrGvG36pZnexsjz7QMIXobDMwg2sSbSlwvt tFtNXWZYp/dvL6m69/jbVJGAWXgh9P4Y -----END CERTIFICATE-----Generated at Thu Jul 3 08:02:36 2025 by rpki-client