$ rpki-client -vvf rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft File: Icv-KamU2PngPkxNRObPW2SLeOw.mft (raw, json) Hash identifier: 2f5a/h9ZRPGlccQq7lt6IQvflZpHShElRmEi8/TbWvk= Subject key identifier: 9F:62:41:FD:83:33:D0:DC:97:37:1D:61:F0:34:BE:EA:92:EE:93:85 Authority key identifier: 21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC Certificate issuer: /CN=A91272F9/serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC Certificate serial: 12D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft Manifest number: 12C4 Signing time: Fri 04 Jul 2025 17:20:44 +0000 Manifest this update: Fri 04 Jul 2025 17:20:43 +0000 Manifest next update: Fri 11 Jul 2025 17:20:43 +0000 Files and hashes: 1: Icv-KamU2PngPkxNRObPW2SLeOw.crl (hash: 5pEQ8zd94+oQZV4XlY4uz6vIkALoMzogK/2d9fc6cuo=) 2: AA5A77C88DB811EBA0613421C4F9AE02.roa (hash: fNoRTJRcUq+MisSf8jbpZwfIe00iU+V6oUD6yiNy/5Y=) 3: A5393FF2E70911E8B4D19B84C4F9AE02.roa (hash: 9kzHJ+mrOXjrh7/imCy9YTTgW8CKx7edCdpIZZ1nyQU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.crl rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4822 (0x12d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91272F9, serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC Validity Not Before: Jul 4 17:20:43 2025 GMT Not After : Jul 11 17:20:43 2025 GMT Subject: CN=68680d6c-c64a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:7b:75:46:20:a1:2b:3b:73:5e:7b:8a:89:89: 6d:99:43:a0:f7:d1:8a:1b:ba:11:e5:6c:4d:fc:bd: eb:db:46:1c:80:fc:f2:25:66:01:47:45:be:f6:1e: fd:25:8c:4b:63:fa:43:40:2f:42:87:f7:75:b1:75: 7a:ee:fa:59:a0:d9:c3:b7:98:7d:e1:7d:50:8a:77: 00:44:16:97:e2:bb:30:26:96:13:e7:b9:a7:57:3c: 89:3e:80:b7:a8:e5:b5:54:22:9e:5b:de:ed:ae:df: ef:50:c2:6e:a5:0f:2d:69:a2:26:e5:db:7f:1d:fc: cd:84:5e:29:44:8a:b9:33:bd:23:a1:bf:1b:37:69: f1:14:32:7f:c1:7e:25:3e:7d:97:b4:a9:30:32:29: 19:bc:f9:10:d3:12:92:02:3f:ee:9b:96:7b:4f:2f: 20:28:08:8a:e1:80:4a:f1:63:cf:70:fb:9a:81:0c: 23:70:5f:9f:79:3e:a4:40:e2:32:ad:47:68:62:3c: e3:ae:5b:d1:e3:73:c0:31:80:fc:a0:c0:b8:1a:9a: 2e:a0:83:47:7e:17:7b:29:16:e8:62:a9:a1:3b:f7: 89:7c:2e:d1:2a:98:29:bf:76:43:81:98:2c:e5:ba: 43:cf:3f:31:c3:41:b8:58:7c:a3:24:55:f1:d2:7f: 5b:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:62:41:FD:83:33:D0:DC:97:37:1D:61:F0:34:BE:EA:92:EE:93:85 X509v3 Authority Key Identifier: keyid:21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:ca:34:7d:a6:7b:85:4e:6c:e0:15:ee:9e:e2:ca:33:9c:45: f0:fd:42:06:8c:40:cd:6e:22:96:8a:04:5c:54:d8:b1:a5:63: 75:e6:0f:20:71:95:34:6e:ac:b1:83:12:f9:a1:8b:8f:c5:42: 0d:a7:dd:3d:0e:2b:4d:cf:1e:fa:e5:fe:03:2b:84:b8:94:c6: 1b:f6:21:87:9a:39:51:e2:af:e7:3f:1d:98:05:b1:52:ab:0e: 3e:46:9b:c8:e5:8a:4b:08:97:b4:24:4d:be:32:e0:3d:d0:5c: c2:9d:0a:61:a6:cf:f3:3b:e6:91:64:53:10:98:ec:4d:ce:7a: 63:77:2b:c5:8b:0a:1f:bc:95:cf:b9:24:b0:cf:86:4a:4f:57: b0:c9:21:b0:5b:f2:97:cd:92:7a:e8:d9:34:13:f4:60:1b:31: 47:a8:a3:ed:f0:c7:d1:86:9c:e0:1e:31:01:e4:89:d0:dd:25: 94:33:50:09:1a:b3:e8:ae:9d:04:42:90:b2:75:b3:8a:46:44: 56:a2:02:ac:a0:1a:a4:eb:d3:8f:d2:49:d2:5e:f5:a5:58:dc: e5:92:6d:f5:05:c1:40:02:cc:db:83:10:8c:13:61:96:34:d2: c0:ac:03:cb:7b:46:86:8a:2f:2f:da:28:d4:b7:9d:91:31:a2: da:3b:71:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEtYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjcyRjkxMTAvBgNVBAUTKDIxQ0JGRTI5QTk5NEQ4RjlFMDNFNEM0RDQ0RTZDRjVC NjQ4Qjc4RUMwHhcNMjUwNzA0MTcyMDQzWhcNMjUwNzExMTcyMDQzWjAYMRYwFAYD VQQDEw02ODY4MGQ2Yy1jNjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyHt1RiChKztzXnuKiYltmUOg99GKG7oR5WxN/L3r20YcgPzyJWYBR0W+9h79 JYxLY/pDQC9Ch/d1sXV67vpZoNnDt5h94X1QincARBaX4rswJpYT57mnVzyJPoC3 qOW1VCKeW97trt/vUMJupQ8taaIm5dt/HfzNhF4pRIq5M70job8bN2nxFDJ/wX4l Pn2XtKkwMikZvPkQ0xKSAj/um5Z7Ty8gKAiK4YBK8WPPcPuagQwjcF+feT6kQOIy rUdoYjzjrlvR43PAMYD8oMC4GpouoINHfhd7KRboYqmhO/eJfC7RKpgpv3ZDgZgs 5bpDzz8xw0G4WHyjJFXx0n9bxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ9iQf2D M9DclzcdYfA0vuqS7pOFMB8GA1UdIwQYMBaAFCHL/implNj54D5MTUTmz1tki3js MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzJGOS9EMkVENDlDMkMy NkQxMUU4QkFCRTExNjVDNEY5QUUwMi9JY3YtS2FtVTJQbmdQa3hOUk9iUFcyU0xl T3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljdi1LYW1VMlBuZ1BreE5ST2JQVzJTTGVPdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzJGOS9EMkVENDlDMkMyNkQxMUU4QkFCRTExNjVDNEY5QUUwMi9JY3YtS2FtVTJQ bmdQa3hOUk9iUFcyU0xlT3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBryjR9pnuFTmzgFe6e4soznEXw/UIGjEDNbiKWigRcVNixpWN15g8g cZU0bqyxgxL5oYuPxUINp909DitNzx765f4DK4S4lMYb9iGHmjlR4q/nPx2YBbFS qw4+RpvI5YpLCJe0JE2+MuA90FzCnQphps/zO+aRZFMQmOxNznpjdyvFiwofvJXP uSSwz4ZKT1ewySGwW/KXzZJ66Nk0E/RgGzFHqKPt8MfRhpzgHjEB5InQ3SWUM1AJ GrPorp0EQpCydbOKRkRWogKsoBqk69OP0knSXvWlWNzlkm31BcFAAszbgxCME2GW NNLArAPLe0aGii8v2ijUt52RMaLaO3GG -----END CERTIFICATE-----Generated at Fri Jul 4 19:05:40 2025 by rpki-client