$ rpki-client -vvf rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.mft File: IiyUNfXVTN9jafhecaodhG7MXz4.mft (raw, json) Hash identifier: EpeU/DgV4cNWDXA+7ceH0BwUlVVW3O2slLib9ZH2yGs= Subject key identifier: 90:80:DB:5F:93:92:A3:E9:F3:A0:B6:0B:A7:7C:B3:5B:C0:F7:D0:C1 Authority key identifier: 22:2C:94:35:F5:D5:4C:DF:63:69:F8:5E:71:AA:1D:84:6E:CC:5F:3E Certificate issuer: /CN=A9142E4E/serialNumber=222C9435F5D54CDF6369F85E71AA1D846ECC5F3E Certificate serial: 0C59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiyUNfXVTN9jafhecaodhG7MXz4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.mft Manifest number: 0C50 Signing time: Wed 02 Jul 2025 18:40:38 +0000 Manifest this update: Wed 02 Jul 2025 18:40:38 +0000 Manifest next update: Wed 09 Jul 2025 18:40:38 +0000 Files and hashes: 1: IiyUNfXVTN9jafhecaodhG7MXz4.crl (hash: 8IR4/n8udAvCPMLdcNCW+rmPne/C43SEOKN9uS0yHsM=) 2: 778B8788063711EA981E916CC4F9AE02.roa (hash: ZF76+TdQMAvJkkO6rvtsiHzBwUDEVkLOtw/tW67c6tM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.crl rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiyUNfXVTN9jafhecaodhG7MXz4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:40:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3161 (0xc59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142E4E, serialNumber=222C9435F5D54CDF6369F85E71AA1D846ECC5F3E Validity Not Before: Jul 2 18:40:38 2025 GMT Not After : Jul 9 18:40:38 2025 GMT Subject: CN=68657d26-e3e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:98:5d:59:47:1b:87:db:2f:e9:bd:fb:73:60: e4:4b:ac:e1:ae:65:5e:47:8c:f1:58:f5:7a:0c:23: d3:e7:04:57:9b:ee:d1:fd:09:b8:bd:62:cd:98:fe: fd:fe:ee:33:ed:9d:c2:8b:f2:35:4a:96:3d:ca:97: 00:8e:1d:15:88:7f:85:2b:70:da:a1:6b:87:fd:26: 0c:50:46:f5:05:c1:57:7e:6c:0d:1d:0f:9a:25:a3: 5c:46:32:b5:74:4c:f0:75:80:43:fb:ff:98:d5:aa: a4:59:21:38:12:12:b4:39:13:73:c7:b9:4c:12:a9: a3:42:85:3b:6c:c8:41:1a:56:ed:4d:e1:73:24:32: 2b:ea:7e:bd:1c:a5:8c:1d:94:ce:e8:c7:a8:60:3b: 2b:ca:81:ea:21:a3:1e:aa:a6:eb:ec:55:d6:85:d1: 8c:5b:8a:4a:0e:9e:65:cd:08:7b:19:4c:02:0a:09: 03:92:03:bd:16:bb:45:2a:a1:a7:37:49:79:b5:88: 79:07:75:83:5f:d9:d7:95:b6:60:0d:7e:eb:a5:c3: f8:5f:ef:f3:54:9e:03:3f:3a:7d:47:5f:5b:01:18: 63:12:2a:51:b8:81:b4:81:a9:a3:e7:fd:ac:8d:02: cc:9d:e0:13:4e:92:1e:d8:aa:c3:cc:d7:6b:cd:da: b8:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:80:DB:5F:93:92:A3:E9:F3:A0:B6:0B:A7:7C:B3:5B:C0:F7:D0:C1 X509v3 Authority Key Identifier: keyid:22:2C:94:35:F5:D5:4C:DF:63:69:F8:5E:71:AA:1D:84:6E:CC:5F:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiyUNfXVTN9jafhecaodhG7MXz4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:79:4f:3e:ad:ac:d1:af:00:24:a3:d6:bf:61:18:f8:14:40: 83:5e:d9:51:a6:b6:a9:ff:82:3e:a3:f2:16:7b:81:59:4d:b4: f8:2a:1a:be:3d:dc:85:b5:44:5b:bc:40:41:88:ce:2f:fe:fd: 4c:55:a6:fb:64:58:fc:fe:52:e0:ca:c1:41:47:e9:98:74:fd: b5:b1:6f:aa:6c:b3:59:0c:fa:c0:6f:3c:0f:a5:a8:a8:9e:84: 8f:98:17:11:eb:ad:55:73:24:53:5f:6e:e7:ac:74:dd:35:89: cc:6e:bf:9b:85:34:64:9e:8a:e4:04:ae:37:39:dd:38:94:9f: 14:c0:1a:b9:b3:29:e1:2e:34:f3:dd:7b:47:19:42:92:bc:e6: e8:6e:40:82:32:84:10:29:8f:fe:66:6e:26:9c:a1:a7:32:00: fe:81:bf:c7:4d:2a:7b:e1:2f:53:a9:9a:64:9c:d6:39:ef:8e: 12:39:c7:d0:66:99:32:ac:f2:c6:78:c0:b0:8b:29:b6:36:83: 2b:dd:a6:c5:84:a2:10:65:10:33:2e:a7:bd:fe:e7:cd:b3:de: ee:63:0a:a1:05:ec:e0:00:97:ea:37:c7:7e:b2:ff:bb:b3:c2: 38:0f:48:c6:df:25:d7:39:c7:79:9c:d0:70:5c:f0:c7:ad:a0: 0a:52:06:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJFNEUxMTAvBgNVBAUTKDIyMkM5NDM1RjVENTRDREY2MzY5Rjg1RTcxQUExRDg0 NkVDQzVGM0UwHhcNMjUwNzAyMTg0MDM4WhcNMjUwNzA5MTg0MDM4WjAYMRYwFAYD VQQDEw02ODY1N2QyNi1lM2UyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJhdWUcbh9sv6b37c2DkS6zhrmVeR4zxWPV6DCPT5wRXm+7R/Qm4vWLNmP79 /u4z7Z3Ci/I1SpY9ypcAjh0ViH+FK3DaoWuH/SYMUEb1BcFXfmwNHQ+aJaNcRjK1 dEzwdYBD+/+Y1aqkWSE4EhK0ORNzx7lMEqmjQoU7bMhBGlbtTeFzJDIr6n69HKWM HZTO6MeoYDsryoHqIaMeqqbr7FXWhdGMW4pKDp5lzQh7GUwCCgkDkgO9FrtFKqGn N0l5tYh5B3WDX9nXlbZgDX7rpcP4X+/zVJ4DPzp9R19bARhjEipRuIG0gamj5/2s jQLMneATTpIe2KrDzNdrzdq4JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJCA21+T kqPp86C2C6d8s1vA99DBMB8GA1UdIwQYMBaAFCIslDX11UzfY2n4XnGqHYRuzF8+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkU0RS9DMTczQ0RFODA2 MzYxMUVBQjI0OUI5NkJDNEY5QUUwMi9JaXlVTmZYVlROOWphZmhlY2FvZGhHN01Y ejQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lpeVVOZlhWVE45amFmaGVjYW9kaEc3TVh6NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkU0RS9DMTczQ0RFODA2MzYxMUVBQjI0OUI5NkJDNEY5QUUwMi9JaXlVTmZYVlRO OWphZmhlY2FvZGhHN01YejQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0eU8+razRrwAko9a/YRj4FECDXtlRprap/4I+o/IWe4FZTbT4Khq+ PdyFtURbvEBBiM4v/v1MVab7ZFj8/lLgysFBR+mYdP21sW+qbLNZDPrAbzwPpaio noSPmBcR661VcyRTX27nrHTdNYnMbr+bhTRknorkBK43Od04lJ8UwBq5synhLjTz 3XtHGUKSvObobkCCMoQQKY/+Zm4mnKGnMgD+gb/HTSp74S9TqZpknNY5744SOcfQ ZpkyrPLGeMCwiym2NoMr3abFhKIQZRAzLqe9/ufNs97uYwqhBezgAJfqN8d+sv+7 s8I4D0jG3yXXOcd5nNBwXPDHraAKUgYK -----END CERTIFICATE-----Generated at Thu Jul 3 04:31:36 2025 by rpki-client