$ rpki-client -vvf rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft File: 1iOjklgIuuhMJxThaoeEBOBgSNE.mft (raw, json) Hash identifier: w/V7Z/czbWw2KjIOP0gyBn/6Po1gJQWT7vkibax6pxY= Subject key identifier: EB:95:EE:F7:8D:44:08:79:D0:C0:02:58:C9:8F:87:31:80:A3:2B:32 Authority key identifier: D6:23:A3:92:58:08:BA:E8:4C:27:14:E1:6A:87:84:04:E0:60:48:D1 Certificate issuer: /CN=A912A1E7/serialNumber=D623A3925808BAE84C2714E16A878404E06048D1 Certificate serial: 0536 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft Manifest number: 052F Signing time: Wed 02 Jul 2025 23:52:08 +0000 Manifest this update: Wed 02 Jul 2025 23:52:07 +0000 Manifest next update: Wed 09 Jul 2025 23:52:07 +0000 Files and hashes: 1: 1iOjklgIuuhMJxThaoeEBOBgSNE.crl (hash: M6U3LkjfzUlXS0OHDlg12W46OcBvk904qRt4j9Q+PRE=) 2: C3BF0EF80A5F11EC8EDB0221C4F9AE02.roa (hash: lwH3/LI1XgonY5xgqpT7sakTv0eerZuuX+aDEUruDuA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.crl rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:52:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1334 (0x536) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A1E7, serialNumber=D623A3925808BAE84C2714E16A878404E06048D1 Validity Not Before: Jul 2 23:52:07 2025 GMT Not After : Jul 9 23:52:07 2025 GMT Subject: CN=6865c627-0c00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c2:a2:a2:5f:07:b9:4a:11:14:d7:7c:74:ef: 84:b3:76:d1:02:df:3a:67:cd:81:ce:05:c1:14:fb: 53:41:7a:ef:7d:e8:4e:c9:44:2f:f9:74:20:db:35: e5:f9:55:69:43:c1:74:bb:7b:34:3a:cf:89:1d:8a: f9:91:4c:dd:62:83:d3:23:7a:74:f7:4e:70:e2:37: 3c:57:ba:e9:23:3b:14:f3:03:97:3b:e9:90:e1:a9: c6:22:67:51:20:7c:f6:1c:c9:7d:8f:4e:63:e7:f8: ed:ac:98:48:c0:2e:0b:70:79:24:64:21:4a:a2:2d: 56:40:4c:ae:09:ad:f4:3d:ff:b3:29:72:f1:85:f7: 64:25:50:5d:b3:e9:9c:cd:6a:8a:5b:ea:b8:2d:5a: 70:92:79:26:9c:95:49:cd:6d:a5:1e:57:5e:57:55: 09:48:83:7e:78:06:47:13:05:5e:dc:2b:52:c8:73: f1:62:7d:d6:4d:7b:51:1f:70:7f:6b:4e:15:c3:ff: be:b2:92:b7:43:fd:6e:78:6a:80:9b:bc:c2:75:4b: 5e:a8:f6:2a:08:f0:fa:54:86:c3:61:bf:23:0a:1e: 8c:df:af:33:a6:c1:16:04:b3:a8:92:d5:60:87:d8: be:11:13:fc:9d:54:15:aa:ff:2e:fb:ba:ce:fb:69: 35:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:95:EE:F7:8D:44:08:79:D0:C0:02:58:C9:8F:87:31:80:A3:2B:32 X509v3 Authority Key Identifier: keyid:D6:23:A3:92:58:08:BA:E8:4C:27:14:E1:6A:87:84:04:E0:60:48:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:42:7c:38:a1:f9:4a:db:6e:b5:b8:74:f2:4b:c0:11:d3:4f: c8:de:bf:f0:8a:62:d6:03:a7:be:20:ea:0e:63:cb:01:02:bd: 1d:c6:e1:ec:51:43:76:ff:54:e8:de:b9:81:4c:50:c2:b7:f0: ae:77:61:af:60:cb:50:80:cb:ef:2b:1b:3a:ed:ab:e8:22:b6: e5:ce:14:a2:02:08:32:c4:f1:34:fa:45:75:71:d7:04:09:a5: 95:39:21:f7:c9:b1:9b:44:95:c1:5f:dd:06:2a:b5:e5:b0:fd: 32:0b:46:d3:ee:be:fa:6a:d5:f2:77:05:e8:12:50:d6:39:19: 4b:7d:f1:53:21:fe:f4:8b:47:9f:2a:fb:f1:f9:3e:13:b0:f4: c9:16:f8:ce:8c:14:ef:c8:7c:df:89:41:59:37:1b:a1:47:c4: f3:8c:c0:13:7b:7a:85:28:d4:5c:57:c7:cc:e7:b2:dc:3a:fb: 6d:68:61:d3:e5:fc:14:12:a4:f7:f8:02:28:b1:97:98:81:fa: 68:03:17:8d:bb:67:74:7e:8c:66:d9:55:6c:d2:b0:34:5b:83: 88:01:fb:39:1b:e5:48:b0:d2:7e:89:98:cc:9b:f5:b0:b3:97: a3:76:ae:e9:81:18:51:89:79:76:44:7c:aa:f8:50:16:f3:b5: 92:a0:ff:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkExRTcxMTAvBgNVBAUTKEQ2MjNBMzkyNTgwOEJBRTg0QzI3MTRFMTZBODc4NDA0 RTA2MDQ4RDEwHhcNMjUwNzAyMjM1MjA3WhcNMjUwNzA5MjM1MjA3WjAYMRYwFAYD VQQDEw02ODY1YzYyNy0wYzAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArsKiol8HuUoRFNd8dO+Es3bRAt86Z82BzgXBFPtTQXrvfehOyUQv+XQg2zXl +VVpQ8F0u3s0Os+JHYr5kUzdYoPTI3p0905w4jc8V7rpIzsU8wOXO+mQ4anGImdR IHz2HMl9j05j5/jtrJhIwC4LcHkkZCFKoi1WQEyuCa30Pf+zKXLxhfdkJVBds+mc zWqKW+q4LVpwknkmnJVJzW2lHldeV1UJSIN+eAZHEwVe3CtSyHPxYn3WTXtRH3B/ a04Vw/++spK3Q/1ueGqAm7zCdUteqPYqCPD6VIbDYb8jCh6M368zpsEWBLOoktVg h9i+ERP8nVQVqv8u+7rO+2k1rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOuV7veN RAh50MACWMmPhzGAoysyMB8GA1UdIwQYMBaAFNYjo5JYCLroTCcU4WqHhATgYEjR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTFFNy8xMEZBQkVEMjAy NTUxMUVDOEVEMjQwODVDNEY5QUUwMi8xaU9qa2xnSXV1aE1KeFRoYW9lRUJPQmdT TkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFpT2prbGdJdXVoTUp4VGhhb2VFQk9CZ1NORS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTFFNy8xMEZBQkVEMjAyNTUxMUVDOEVEMjQwODVDNEY5QUUwMi8xaU9qa2xnSXV1 aE1KeFRoYW9lRUJPQmdTTkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvQnw4oflK2261uHTyS8AR00/I3r/wimLWA6e+IOoOY8sBAr0dxuHs UUN2/1To3rmBTFDCt/Cud2GvYMtQgMvvKxs67avoIrblzhSiAggyxPE0+kV1cdcE CaWVOSH3ybGbRJXBX90GKrXlsP0yC0bT7r76atXydwXoElDWORlLffFTIf70i0ef Kvvx+T4TsPTJFvjOjBTvyHzfiUFZNxuhR8TzjMATe3qFKNRcV8fM57LcOvttaGHT 5fwUEqT3+AIosZeYgfpoAxeNu2d0foxm2VVs0rA0W4OIAfs5G+VIsNJ+iZjMm/Ww s5ejdq7pgRhRiXl2RHyq+FAW87WSoP94 -----END CERTIFICATE-----Generated at Thu Jul 3 09:01:17 2025 by rpki-client