$ rpki-client -vvf rpki.apnic.net/member_repository/A913AD90/0300C5140F0A11EF90C8A132C4F9AE02/iAkYqHVvBJMaMvTOo0HE8j-tUO8.mft File: iAkYqHVvBJMaMvTOo0HE8j-tUO8.mft (raw, json) Hash identifier: jYtwNNLBTphZ1hyEKOW7JEW+4a0PgVfg+3wucaWxQ5g= Subject key identifier: 21:2F:1C:90:18:39:9B:AA:F0:84:9F:82:99:85:FD:2A:82:B4:CD:68 Authority key identifier: 88:09:18:A8:75:6F:04:93:1A:32:F4:CE:A3:41:C4:F2:3F:AD:50:EF Certificate issuer: /CN=A913AD90/serialNumber=880918A8756F04931A32F4CEA341C4F23FAD50EF Certificate serial: E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iAkYqHVvBJMaMvTOo0HE8j-tUO8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AD90/0300C5140F0A11EF90C8A132C4F9AE02/iAkYqHVvBJMaMvTOo0HE8j-tUO8.mft Manifest number: DF Signing time: Tue 01 Jul 2025 06:09:15 +0000 Manifest this update: Tue 01 Jul 2025 06:09:14 +0000 Manifest next update: Tue 08 Jul 2025 06:09:14 +0000 Files and hashes: 1: iAkYqHVvBJMaMvTOo0HE8j-tUO8.crl (hash: rthlTbeZv+IhanE2beabVUl1f+oKJbzVxKVUnHpPiVo=) 2: 5DB3B5AA145C11EFAE012A55C4F9AE02.roa (hash: IjBd7XUR2i0dTIqKZWCJ7zm+gZSogWBX4IMREVDmhgQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AD90/0300C5140F0A11EF90C8A132C4F9AE02/iAkYqHVvBJMaMvTOo0HE8j-tUO8.crl rsync://rpki.apnic.net/member_repository/A913AD90/0300C5140F0A11EF90C8A132C4F9AE02/iAkYqHVvBJMaMvTOo0HE8j-tUO8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iAkYqHVvBJMaMvTOo0HE8j-tUO8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 06:09:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AD90, serialNumber=880918A8756F04931A32F4CEA341C4F23FAD50EF Validity Not Before: Jul 1 06:09:14 2025 GMT Not After : Jul 8 06:09:14 2025 GMT Subject: CN=68637b8a-934d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:81:01:b5:65:2f:50:f9:f2:80:62:87:ad:b9: d2:0b:3d:1c:8b:c6:83:dd:e0:6c:13:0f:44:89:66: 9c:a4:23:0e:7d:12:d9:25:a6:fd:95:c5:cb:79:4a: 96:44:c3:83:be:53:98:d1:1d:e1:f6:5a:10:15:ca: 2f:67:72:8f:d7:26:62:4f:e0:4a:fd:98:d7:a2:d1: 6b:ed:d3:d7:b9:f3:22:23:02:d0:82:87:20:a8:5e: cf:f5:31:bc:36:1b:aa:62:d6:54:6d:5a:42:71:7b: ff:2c:0d:6d:d5:9e:34:75:0f:7d:be:96:59:0e:6c: 0b:02:ab:38:31:85:8c:9e:26:21:a5:d1:02:c3:92: d8:d7:16:29:1b:c0:dd:66:62:1c:2a:12:29:49:1f: 90:17:46:d3:17:af:9c:2b:6f:1c:aa:b9:ea:c6:98: 20:60:14:d6:05:1e:4a:db:95:bd:96:4d:fd:3c:db: f2:68:e6:1a:63:c9:90:dd:b4:21:d0:35:75:ed:97: 06:85:07:6a:a8:25:fa:1f:e6:6b:b8:c8:98:eb:fd: 1c:48:3e:80:64:f2:6e:6f:dc:8b:05:b0:6a:32:59: 60:40:7d:37:fd:4c:12:ae:d1:4c:9e:af:46:89:35: 1b:83:90:29:47:0c:45:b7:ee:c9:94:83:f1:0a:d4: 92:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:2F:1C:90:18:39:9B:AA:F0:84:9F:82:99:85:FD:2A:82:B4:CD:68 X509v3 Authority Key Identifier: keyid:88:09:18:A8:75:6F:04:93:1A:32:F4:CE:A3:41:C4:F2:3F:AD:50:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AD90/0300C5140F0A11EF90C8A132C4F9AE02/iAkYqHVvBJMaMvTOo0HE8j-tUO8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iAkYqHVvBJMaMvTOo0HE8j-tUO8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AD90/0300C5140F0A11EF90C8A132C4F9AE02/iAkYqHVvBJMaMvTOo0HE8j-tUO8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:2a:78:6c:c9:8b:b5:f7:e2:97:f0:64:20:f3:4e:7a:0f:0d: 0b:79:e9:92:b1:91:59:23:68:b7:1d:7a:db:3b:f7:97:33:d5: 44:b8:81:f2:d5:96:a7:63:0a:ce:82:53:d4:d9:13:7e:42:41: 3e:6c:00:c6:9e:28:24:81:60:8f:4d:53:17:8a:f0:c6:50:43: 24:8a:99:e7:6b:23:50:f7:62:01:44:4b:1e:14:dd:f6:44:95: 3c:b2:11:c0:f1:fa:3b:4d:4b:63:70:e3:b9:51:c7:e5:2d:8f: ff:2c:95:a6:b7:14:61:a5:07:80:ae:7e:0e:9d:d9:b8:35:72: 0a:b6:ed:10:6f:6f:bf:d2:64:b1:7d:d3:2d:e4:e6:8e:d9:a4: f5:bc:34:c7:4c:d1:2a:07:68:f2:ff:b3:93:b5:7d:67:60:a7: eb:8e:81:51:d9:90:73:f9:4c:4f:29:43:90:13:86:e6:64:3e: fa:c5:85:01:14:aa:2e:ba:20:92:df:f3:71:94:01:1c:12:f7: c3:d9:db:36:c0:a5:8b:db:69:d2:1a:3c:4a:be:5a:6b:3a:ae: 1c:d5:dc:56:e6:48:7e:07:cf:1b:a2:88:89:a7:ff:6b:92:d6: c8:18:15:ac:5c:b9:c6:53:f8:a4:1c:03:e6:ed:ed:5c:24:01: 43:bc:9c:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FEOTAxMTAvBgNVBAUTKDg4MDkxOEE4NzU2RjA0OTMxQTMyRjRDRUEzNDFDNEYy M0ZBRDUwRUYwHhcNMjUwNzAxMDYwOTE0WhcNMjUwNzA4MDYwOTE0WjAYMRYwFAYD VQQDEw02ODYzN2I4YS05MzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsoEBtWUvUPnygGKHrbnSCz0ci8aD3eBsEw9EiWacpCMOfRLZJab9lcXLeUqW RMODvlOY0R3h9loQFcovZ3KP1yZiT+BK/ZjXotFr7dPXufMiIwLQgocgqF7P9TG8 NhuqYtZUbVpCcXv/LA1t1Z40dQ99vpZZDmwLAqs4MYWMniYhpdECw5LY1xYpG8Dd ZmIcKhIpSR+QF0bTF6+cK28cqrnqxpggYBTWBR5K25W9lk39PNvyaOYaY8mQ3bQh 0DV17ZcGhQdqqCX6H+ZruMiY6/0cSD6AZPJub9yLBbBqMllgQH03/UwSrtFMnq9G iTUbg5ApRwxFt+7JlIPxCtSSmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCEvHJAY OZuq8ISfgpmF/SqCtM1oMB8GA1UdIwQYMBaAFIgJGKh1bwSTGjL0zqNBxPI/rVDv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUQ5MC8wMzAwQzUxNDBG MEExMUVGOTBDOEExMzJDNEY5QUUwMi9pQWtZcUhWdkJKTWFNdlRPbzBIRThqLXRV TzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lBa1lxSFZ2QkpNYU12VE9vMEhFOGotdFVPOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUQ5MC8wMzAwQzUxNDBGMEExMUVGOTBDOEExMzJDNEY5QUUwMi9pQWtZcUhWdkJK TWFNdlRPbzBIRThqLXRVTzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4KnhsyYu19+KX8GQg8056Dw0LeemSsZFZI2i3HXrbO/eXM9VEuIHy 1ZanYwrOglPU2RN+QkE+bADGnigkgWCPTVMXivDGUEMkipnnayNQ92IBREseFN32 RJU8shHA8fo7TUtjcOO5UcflLY//LJWmtxRhpQeArn4Ondm4NXIKtu0Qb2+/0mSx fdMt5OaO2aT1vDTHTNEqB2jy/7OTtX1nYKfrjoFR2ZBz+UxPKUOQE4bmZD76xYUB FKouuiCS3/NxlAEcEvfD2ds2wKWL22nSGjxKvlprOq4c1dxW5kh+B88booiJp/9r ktbIGBWsXLnGU/ikHAPm7e1cJAFDvJzH -----END CERTIFICATE-----Generated at Thu Jul 3 06:10:05 2025 by rpki-client