$ rpki-client -vvf rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft File: IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft (raw, json) Hash identifier: 1HQ/++BlPNLFtZ/cNRRLRPBTntUyK4N9YjDjsOZ/Xgs= Subject key identifier: ED:2A:F7:D9:30:EA:E0:2F:32:8E:F8:3C:94:2B:C8:B5:CF:1E:C1:0B Authority key identifier: 22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 Certificate issuer: /CN=A914C475/serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Certificate serial: 0708 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft Manifest number: 0C0E Signing time: Wed 02 Jul 2025 18:52:33 +0000 Manifest this update: Wed 02 Jul 2025 18:52:32 +0000 Manifest next update: Wed 09 Jul 2025 18:52:32 +0000 Files and hashes: 1: IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl (hash: xIDPNBtbzO+K9bxoUIhjp2pNSYMFADvZgvf6WyWxBds=) 2: 01283BC2532011EBAE6D1F37C4F9AE02.roa (hash: +Gukm6enyIbdbaf1JuwEUsgqXGQfDTqeuMKRTtycATA=) 3: D6F76118231C11EF84144357C4F9AE02.roa (hash: es734osl5liZ5XtweVos6tWec0UeUjh4JQH+2AuNXUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:52:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1800 (0x708) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C475, serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Validity Not Before: Jul 2 18:52:32 2025 GMT Not After : Jul 9 18:52:32 2025 GMT Subject: CN=68657ff0-2012 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:18:a0:e3:69:bc:5e:44:f9:50:77:2d:d6:a9: 5d:ab:08:e4:e0:81:c3:10:3f:d2:13:5d:13:ae:12: 24:20:6d:66:a4:3d:c0:8d:fe:aa:07:6d:01:0a:53: 70:ef:b8:f6:7e:ef:c3:d4:bd:2d:84:f2:f6:79:7c: 7c:10:1b:dc:e8:29:25:e7:c1:f9:c5:7f:07:a4:ea: ee:0b:65:83:ad:b5:cc:4b:b5:e2:a1:37:a3:be:3b: d2:28:9a:e1:2c:a3:8d:ae:0c:d1:b4:4e:c8:8d:e9: f4:05:24:71:f4:e9:29:54:d1:c8:a0:dc:87:2d:8d: 6b:b8:98:1d:5e:b5:52:5a:91:e4:f3:4b:3d:00:ab: 97:14:d0:5c:e5:af:27:a8:f7:d4:b8:15:2a:1c:05: dd:fb:92:c2:94:77:2d:c7:64:e1:1d:b3:67:c7:ec: bc:7a:c3:7b:0d:a0:64:67:c5:d8:60:ad:13:17:ef: 4f:ce:56:27:96:b4:f4:a2:4f:07:a6:af:30:f7:20: c2:95:f1:6f:e9:a7:cb:15:87:fd:3d:cb:08:6f:a4: 73:2c:e8:d6:f5:44:11:a0:53:9d:3b:eb:23:10:45: dd:89:c1:74:e5:03:25:a7:7d:47:04:df:64:ec:79: 8e:df:c7:15:cd:d6:32:3c:7a:e3:2a:88:58:a9:c5: 75:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:2A:F7:D9:30:EA:E0:2F:32:8E:F8:3C:94:2B:C8:B5:CF:1E:C1:0B X509v3 Authority Key Identifier: keyid:22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:c2:d3:6e:18:b6:8f:f9:3c:4c:81:9e:e7:b0:f0:89:6e:54: 22:00:5d:06:6c:42:c5:e9:86:69:b3:47:82:a8:45:9a:bc:4a: 40:fe:c7:12:0f:50:d2:d9:80:79:16:79:e0:f7:71:68:ce:97: 26:14:20:17:62:e9:74:cd:9c:84:d0:b6:48:95:84:89:a3:11: 3d:cc:dd:17:92:91:39:dc:cc:88:ca:1a:9f:2e:a7:30:71:30: d5:ca:7e:f3:eb:31:ff:c4:b1:1d:69:25:ed:b5:d5:ca:ee:59: 67:54:3e:19:09:3a:d7:db:d3:5d:0e:4c:7d:6b:bf:51:77:ec: a6:0b:ca:44:f4:f7:fe:b0:5b:60:fb:46:67:5a:8b:f2:46:df: f7:bc:14:c2:6f:44:38:c2:16:f5:19:ec:d4:e4:8f:d8:0f:0d: e8:ee:ca:18:7b:43:c0:5a:af:ec:86:e2:69:35:fe:61:95:a5: 1e:96:ea:10:ba:f6:1e:2c:4a:ab:0d:d3:03:d4:ea:b8:df:7c: 9a:24:82:e7:dd:3a:ca:6e:96:98:3d:ec:07:93:e0:30:f9:54: af:6b:70:03:ee:68:eb:45:8b:e3:66:5e:43:0e:2a:ab:d0:d1: bb:4b:93:f0:e4:b5:60:77:5b:bb:9f:a7:22:92:03:37:5e:c0: c1:68:ea:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0NzUxMTAvBgNVBAUTKDIyODUwN0VGRjgxQUEyOEU0OTFFMzI2RkJEMURDM0Iz QzkwODcyQjgwHhcNMjUwNzAyMTg1MjMyWhcNMjUwNzA5MTg1MjMyWjAYMRYwFAYD VQQDEw02ODY1N2ZmMC0yMDEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqxig42m8XkT5UHct1qldqwjk4IHDED/SE10TrhIkIG1mpD3Ajf6qB20BClNw 77j2fu/D1L0thPL2eXx8EBvc6Ckl58H5xX8HpOruC2WDrbXMS7XioTejvjvSKJrh LKONrgzRtE7Ijen0BSRx9OkpVNHIoNyHLY1ruJgdXrVSWpHk80s9AKuXFNBc5a8n qPfUuBUqHAXd+5LClHctx2ThHbNnx+y8esN7DaBkZ8XYYK0TF+9PzlYnlrT0ok8H pq8w9yDClfFv6afLFYf9PcsIb6RzLOjW9UQRoFOdO+sjEEXdicF05QMlp31HBN9k 7HmO38cVzdYyPHrjKohYqcV1wQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO0q99kw 6uAvMo74PJQryLXPHsELMB8GA1UdIwQYMBaAFCKFB+/4GqKOSR4yb70dw7PJCHK4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzQ3NS9FMDIyQTA1ODBF OTExMUVBQjBFODc0NDFDNEY5QUUwMi9Jb1VIN19nYW9vNUpIakp2dlIzRHM4a0lj cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lvVUg3X2dhb281SkhqSnZ2UjNEczhrSWNyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzQ3NS9FMDIyQTA1ODBFOTExMUVBQjBFODc0NDFDNEY5QUUwMi9Jb1VIN19nYW9v NUpIakp2dlIzRHM4a0ljcmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKwtNuGLaP+TxMgZ7nsPCJblQiAF0GbELF6YZps0eCqEWavEpA/scS D1DS2YB5Fnng93FozpcmFCAXYul0zZyE0LZIlYSJoxE9zN0XkpE53MyIyhqfLqcw cTDVyn7z6zH/xLEdaSXttdXK7llnVD4ZCTrX29NdDkx9a79Rd+ymC8pE9Pf+sFtg +0ZnWovyRt/3vBTCb0Q4whb1GezU5I/YDw3o7soYe0PAWq/shuJpNf5hlaUeluoQ uvYeLEqrDdMD1Oq433yaJILn3TrKbpaYPewHk+Aw+VSva3AD7mjrRYvjZl5DDiqr 0NG7S5Pw5LVgd1u7n6cikgM3XsDBaOrd -----END CERTIFICATE-----Generated at Thu Jul 3 01:32:41 2025 by rpki-client