$ rpki-client -vvf rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft File: ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft (raw, json) Hash identifier: ed+qNsrtrlh2fqsJoKTA37qK7IfcTzN+/DOq72CMX/U= Subject key identifier: 31:45:64:3C:42:D4:D9:2C:FF:30:50:B0:FF:27:60:06:33:08:A5:07 Authority key identifier: 21:34:36:BA:23:A9:AF:25:0B:F2:5D:DE:A5:0C:76:22:19:F9:06:BC Certificate issuer: /CN=A912382E/serialNumber=213436BA23A9AF250BF25DDEA50C762219F906BC Certificate serial: 18B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ITQ2uiOpryUL8l3epQx2Ihn5Brw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft Manifest number: 18AD Signing time: Wed 02 Jul 2025 16:36:23 +0000 Manifest this update: Wed 02 Jul 2025 16:36:23 +0000 Manifest next update: Wed 09 Jul 2025 16:36:23 +0000 Files and hashes: 1: ITQ2uiOpryUL8l3epQx2Ihn5Brw.crl (hash: 9DIcXHs4ctiFNJyMF6pUINAmjefj1Cwsy084bAsbBqk=) 2: BD843CCE984011E79A256C82C4F9AE02.roa (hash: cv0ZUc0lebxpCeCaHLbic5zL6MtIPbL3843SH+qN9Dk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.crl rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ITQ2uiOpryUL8l3epQx2Ihn5Brw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:36:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6326 (0x18b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912382E, serialNumber=213436BA23A9AF250BF25DDEA50C762219F906BC Validity Not Before: Jul 2 16:36:23 2025 GMT Not After : Jul 9 16:36:23 2025 GMT Subject: CN=68656007-fc64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:68:e3:1a:d7:cf:dc:ce:7e:30:e7:0e:8b:34: 59:f4:9c:3c:53:49:3d:53:a8:6f:ba:1b:10:2f:67: 52:02:0a:f8:f3:34:f4:d0:50:df:8a:7d:21:1b:e3: e4:e0:69:8a:88:c8:2c:c8:55:35:6e:19:95:07:93: 26:3e:91:40:02:cd:fa:fe:b2:e3:ac:86:42:d5:fc: 26:c3:b9:bf:af:1a:0c:b3:94:1b:9e:de:84:83:dd: 65:e0:9e:95:dd:70:75:9e:70:70:77:f8:42:a7:c6: 75:40:9c:4f:be:af:4c:53:52:77:2a:bb:e7:94:a5: 81:13:97:cb:4c:d6:cc:97:b5:be:5a:9d:d9:0e:95: 42:b7:ce:3d:2e:7b:e5:52:2b:f6:68:70:7a:6e:41: 68:4d:48:c6:e1:2e:98:62:1d:b1:ff:68:45:ca:d1: 81:de:7e:5f:cc:3b:05:2f:f1:e9:81:83:de:7b:12: ed:1d:9b:e8:68:a5:f5:d5:3d:8c:e8:50:36:94:6d: 09:e6:4f:fc:14:75:ee:81:9a:8c:7c:91:0d:c5:b6: 16:2f:8d:e5:f5:74:cf:37:7f:96:0e:a0:59:c7:b6: 77:89:de:b2:c9:97:7c:fe:f7:ea:37:df:fa:6a:80: 16:a9:04:f2:29:c1:c2:8e:75:1f:08:66:2a:bf:59: 79:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:45:64:3C:42:D4:D9:2C:FF:30:50:B0:FF:27:60:06:33:08:A5:07 X509v3 Authority Key Identifier: keyid:21:34:36:BA:23:A9:AF:25:0B:F2:5D:DE:A5:0C:76:22:19:F9:06:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ITQ2uiOpryUL8l3epQx2Ihn5Brw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:34:a3:04:a9:45:d2:b0:d6:71:f6:6f:cf:f1:bd:e3:31:e4: 4a:90:8c:f5:e7:e4:8b:0c:f7:d7:c7:a5:bf:bb:4f:b8:bf:8e: 29:79:d4:49:0d:2c:63:37:1b:e2:d9:68:16:26:cf:84:e2:a6: c5:7a:d5:9e:98:16:dc:d1:b3:53:2c:c5:af:35:7d:49:6f:d1: 99:89:ea:af:62:f7:f9:fd:0b:44:6d:13:b1:d7:e1:11:db:a7: 07:05:2d:04:75:6e:b1:ab:f8:aa:eb:65:a3:5d:88:a8:e1:49: 5b:27:16:99:2b:46:ef:64:42:fd:50:98:cf:5b:47:d1:ce:fc: 1b:10:b1:b0:db:63:ab:43:19:66:61:d1:a5:cf:e6:83:74:53: a1:8d:ff:45:88:bc:ad:30:28:61:7e:65:b4:e0:3a:5d:1b:ae: 7d:35:4c:96:39:c0:31:e6:bd:a5:4d:15:8d:a7:7a:e7:07:d9: a0:e4:c1:63:22:28:21:6e:32:68:fc:d7:62:d7:f6:7b:79:d4: 14:a5:7e:e5:1a:21:9b:f4:be:c4:fc:03:39:0b:17:66:f6:cb: 5b:0c:b1:dd:63:c5:db:0e:8a:bc:94:54:56:68:97:88:fa:df: a1:2e:ce:ec:ee:7a:56:f4:4f:db:a0:21:c3:ce:78:87:8d:f8: a9:4e:bd:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGLYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4MkUxMTAvBgNVBAUTKDIxMzQzNkJBMjNBOUFGMjUwQkYyNURERUE1MEM3NjIy MTlGOTA2QkMwHhcNMjUwNzAyMTYzNjIzWhcNMjUwNzA5MTYzNjIzWjAYMRYwFAYD VQQDEw02ODY1NjAwNy1mYzY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsWjjGtfP3M5+MOcOizRZ9Jw8U0k9U6hvuhsQL2dSAgr48zT00FDfin0hG+Pk 4GmKiMgsyFU1bhmVB5MmPpFAAs36/rLjrIZC1fwmw7m/rxoMs5Qbnt6Eg91l4J6V 3XB1nnBwd/hCp8Z1QJxPvq9MU1J3KrvnlKWBE5fLTNbMl7W+Wp3ZDpVCt849Lnvl Uiv2aHB6bkFoTUjG4S6YYh2x/2hFytGB3n5fzDsFL/HpgYPeexLtHZvoaKX11T2M 6FA2lG0J5k/8FHXugZqMfJENxbYWL43l9XTPN3+WDqBZx7Z3id6yyZd8/vfqN9/6 aoAWqQTyKcHCjnUfCGYqv1l5yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDFFZDxC 1Nks/zBQsP8nYAYzCKUHMB8GA1UdIwQYMBaAFCE0Nrojqa8lC/Jd3qUMdiIZ+Qa8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzgyRS8zMTFFQUM1Njk4 NDAxMUU3Qjc2OEVCODFDNEY5QUUwMi9JVFEydWlPcHJ5VUw4bDNlcFF4MklobjVC cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lUUTJ1aU9wcnlVTDhsM2VwUXgySWhuNUJydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzgyRS8zMTFFQUM1Njk4NDAxMUU3Qjc2OEVCODFDNEY5QUUwMi9JVFEydWlPcHJ5 VUw4bDNlcFF4MklobjVCcncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJNKMEqUXSsNZx9m/P8b3jMeRKkIz15+SLDPfXx6W/u0+4v44pedRJ DSxjNxvi2WgWJs+E4qbFetWemBbc0bNTLMWvNX1Jb9GZieqvYvf5/QtEbROx1+ER 26cHBS0EdW6xq/iq62WjXYio4UlbJxaZK0bvZEL9UJjPW0fRzvwbELGw22OrQxlm YdGlz+aDdFOhjf9FiLytMChhfmW04DpdG659NUyWOcAx5r2lTRWNp3rnB9mg5MFj IighbjJo/Ndi1/Z7edQUpX7lGiGb9L7E/AM5Cxdm9stbDLHdY8XbDoq8lFRWaJeI +t+hLs7s7npW9E/boCHDzniHjfipTr0I -----END CERTIFICATE-----Generated at Fri Jul 4 08:06:07 2025 by rpki-client