$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft File: IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft (raw, json) Hash identifier: OW5OGqBeVrFp74OpCNwOANgtTb7ZJbkvSTCddGj+Rps= Subject key identifier: 4C:4E:31:18:5E:C1:C1:F5:04:EB:85:86:BC:4A:46:A5:DA:64:8D:33 Authority key identifier: 20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 Certificate issuer: /CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Certificate serial: 08B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft Manifest number: 07D5 Signing time: Wed 02 Jul 2025 21:55:59 +0000 Manifest this update: Wed 02 Jul 2025 21:55:59 +0000 Manifest next update: Wed 09 Jul 2025 21:55:59 +0000 Files and hashes: 1: IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl (hash: BdoJx2gNjapWQzEAujgYT812cOAdXW0pCnEDVyBSEqs=) 2: AF96D07C2A4111EBA1B1BB3DC4F9AE02.roa (hash: OUr5YhEI5I46t9dp5HHmzabUoP4eaFJHW5ko53IBkdo=) 3: AC0C25102A4111EBA1B1BB3DC4F9AE02.roa (hash: 5y6r5SgE+1dulXmKZWvDkPSlG//7DJyCV8Qy0mpz3H8=) 4: AEF56D7C2A4111EBA1B1BB3DC4F9AE02.roa (hash: ru4CDY9kB7xpZ7Gn5BJCqXlyrSix5gXPE9YTTMWfsno=) 5: 6A0673EE2A4311EBBD69BE46C4F9AE02.roa (hash: pljZ5ks8zWLJ41xwtC7HEEzJ6OzoY7GJ/ohRRrP+jLs=) 6: CC4A3EAC0EDF11F0915E3563C4F9AE02.roa (hash: ZOEl/EUL9Kcp7Oe2ySY5gCeqAoMs/cWZLqeYM9bpOY4=) 7: 55493366013C11ED9864F33CC4F9AE02.roa (hash: Zz0XV9+8+vmeI0zGikQ8f9l71NMdTwf/sbSc3+uKywY=) 8: AE58A49C2A4111EBA1B1BB3DC4F9AE02.roa (hash: DxsPcmRyMvqxvilkvhZcPekY1GWFfShT1K4h6XO4HIU=) 9: 689E513E2A4311EBBD69BE46C4F9AE02.roa (hash: FezbKF9kO0jDnIHasf+ZGAxTpu3bLao4gPSsw3YsObk=) 10: B0177DBC2A4111EBA1B1BB3DC4F9AE02.roa (hash: GoONDGq2mntV4VCH8ruKRLPZW7gF389h40xYTQMS4WY=) 11: AD3146462A4111EBA1B1BB3DC4F9AE02.roa (hash: 5ouufnP7Ctej4xce5TMz+xAplrLrKCKTZMwQ7r/Y7pY=) 12: 5F0436A08AAF11EE93D5E566C4F9AE02.roa (hash: eYqTvYLPgNnCsX8XZsOGNBvCb+uxIeIiPxmKdWTMhWU=) 13: B18D8C2C2A4111EBA1B1BB3DC4F9AE02.roa (hash: lBS8kvbF9qc+MDE0imJFbA2HjjKTcdMHa+qxsQV+XxU=) 14: 682125602A4311EBBD69BE46C4F9AE02.roa (hash: YyMxfaGjaUTR1RTEiaJ/8xWo+/v0LKLkSrPTK2mFwLE=) 15: AB656EC82A4111EBA1B1BB3DC4F9AE02.roa (hash: lktIkPl22eqSwsqChqGX/PiBITeHZ0j0XKVggRutMPM=) 16: 6B40A6762A4311EBBD69BE46C4F9AE02.roa (hash: cu/hrl9QOHrjIrKvHn9h0AfjeVMiF3XF5XO5n2p3i90=) 17: ADB367482A4111EBA1B1BB3DC4F9AE02.roa (hash: /NbIlZMNBHck/exxSqKy2xdIIBSuAAci2V/DM520lf4=) 18: B223E3C02A4111EBA1B1BB3DC4F9AE02.roa (hash: X4XJ5Vg4GOFvVKCrXpY0V9iGok/qikvYBC+EwepyjvQ=) 19: B1B2A55C0EDF11F083641863C4F9AE02.roa (hash: 8hVuLTJi6ZBFEA7PgLYldN5wqIC3eyPB2IN11kuWnOg=) 20: AAD2DA9A2A4111EBA1B1BB3DC4F9AE02.roa (hash: o3tJcryC81c5rX1xhCkHjKVGZCjhtaRQoK8u6zdAIkI=) 21: B374E3E62A4111EBA1B1BB3DC4F9AE02.roa (hash: 2eG1w6WyySFQyTBuUnlx+QPyjc5U3cUmwkkEHL8GJmA=) 22: EBDB1D16FD7A11EF9979942FC4F9AE02.roa (hash: NNAqDSA6qZkwyXwW5LJm0ax1QL7uOfCZD/otvzKqxLc=) 23: 696CCB682A4311EBBD69BE46C4F9AE02.roa (hash: S9g/XqrkQ3EKwy6SH+loLjPtlBRwhe3c36A/g6yjOOI=) 24: 6AB096D02A4311EBBD69BE46C4F9AE02.roa (hash: ANMNSNrxUbzfsYrPHlGwfWZQPT20tqofz6iu/oLsKk4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:55:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2229 (0x8b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC5D, serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Validity Not Before: Jul 2 21:55:59 2025 GMT Not After : Jul 9 21:55:59 2025 GMT Subject: CN=6865aaef-e263 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9f:2b:d8:16:16:e3:53:c7:fc:8c:56:46:65: 1b:e8:ba:7e:41:4d:45:a0:e9:82:3e:9f:c5:43:1d: 14:2e:90:fe:45:53:f4:a5:a4:1c:29:12:da:03:f2: 51:56:ef:f7:3a:e2:96:15:db:82:bb:63:05:a5:f5: 49:2c:f1:4b:5b:ba:03:00:4d:31:3e:b3:c1:26:5a: d0:14:77:97:44:d4:dd:59:6c:7d:60:b8:9f:83:0c: b0:6b:75:15:b9:99:f1:94:67:03:e7:cb:3e:3e:a9: 05:3e:7e:9b:98:f3:ea:0b:9f:56:ac:7d:52:9e:93: 8b:58:f5:bd:26:c5:8a:a2:6e:80:40:e1:77:cc:06: 9b:c7:1c:3f:b8:24:cd:6a:5a:4f:df:0c:e2:eb:80: 85:bf:61:6b:a1:2b:d6:3b:85:c8:28:20:34:b4:e3: d7:04:fd:51:56:2f:06:73:54:98:95:0b:64:43:a6: 13:bd:df:cd:4d:fa:94:b5:ba:16:5f:99:54:b0:ba: aa:65:9d:20:d0:dc:d0:97:58:d1:f9:b5:0d:32:eb: 4f:c3:b4:1f:c1:c3:66:d9:55:a1:23:2f:0b:86:22: aa:ab:e1:67:75:3b:0a:5b:7d:36:dd:6f:0b:70:7d: 7f:56:dd:17:ce:1f:c7:5e:9b:d4:27:d5:e6:46:a4: 70:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:4E:31:18:5E:C1:C1:F5:04:EB:85:86:BC:4A:46:A5:DA:64:8D:33 X509v3 Authority Key Identifier: keyid:20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:a8:00:6a:a5:08:f5:06:3b:67:3e:00:af:72:8c:93:57:68: 51:87:5d:0b:22:f7:ae:9f:ad:d7:c9:f9:6b:67:0c:a9:c8:f9: 9a:11:69:8a:33:78:03:65:d5:e6:4c:33:06:c1:41:8b:01:1c: b7:18:be:3a:43:d3:25:b9:03:c1:44:86:73:51:88:c7:a9:39: 44:7b:ac:d6:67:71:ae:25:eb:37:7c:a5:d2:a8:f4:7a:87:2b: b1:dc:4b:80:bb:ae:24:21:fc:e6:ff:76:a0:38:2f:01:cb:35: 32:90:0b:0c:01:59:25:be:50:3a:f8:f8:f7:48:67:a8:81:bb: d8:dc:3a:66:5b:be:df:39:34:f5:ea:b6:a8:c7:d7:d8:06:15: d9:18:22:aa:25:a4:1c:0b:cf:bb:7c:4b:10:79:97:27:df:6f: 8d:00:45:61:15:86:bc:1f:a2:75:f2:1f:f3:e6:f1:42:ea:01: c7:35:a1:e0:c9:10:38:f3:0a:65:58:55:49:02:3e:e3:6d:59: e6:3f:2c:0d:57:fe:81:8b:80:f8:bd:f6:d3:98:dd:ad:bc:fd: 58:7f:82:a1:d7:b6:ea:6b:05:ca:fe:52:2c:fa:4d:5d:8c:f0: cf:d9:30:fe:72:db:d7:77:b5:90:32:34:6f:d4:a4:e8:86:42: 03:7f:5e:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNUQxMTAvBgNVBAUTKDIwRjI1MzFBN0JBODIxMkQyQkIwOTAwRDU3NjM3MkQz M0Y4NDY5MjgwHhcNMjUwNzAyMjE1NTU5WhcNMjUwNzA5MjE1NTU5WjAYMRYwFAYD VQQDEw02ODY1YWFlZi1lMjYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZ8r2BYW41PH/IxWRmUb6Lp+QU1FoOmCPp/FQx0ULpD+RVP0paQcKRLaA/JR Vu/3OuKWFduCu2MFpfVJLPFLW7oDAE0xPrPBJlrQFHeXRNTdWWx9YLifgwywa3UV uZnxlGcD58s+PqkFPn6bmPPqC59WrH1SnpOLWPW9JsWKom6AQOF3zAabxxw/uCTN alpP3wzi64CFv2FroSvWO4XIKCA0tOPXBP1RVi8Gc1SYlQtkQ6YTvd/NTfqUtboW X5lUsLqqZZ0g0NzQl1jR+bUNMutPw7QfwcNm2VWhIy8LhiKqq+FndTsKW3023W8L cH1/Vt0Xzh/HXpvUJ9XmRqRwbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFExOMRhe wcH1BOuFhrxKRqXaZI0zMB8GA1UdIwQYMBaAFCDyUxp7qCEtK7CQDVdjctM/hGko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1RC8zOUU3MTQ2QzJB MzMxMUVCOTI5REMwN0NDNEY5QUUwMi9JUEpUR251b0lTMHJzSkFOVjJOeTB6LUVh U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lQSlRHbnVvSVMwcnNKQU5WMk55MHotRWFTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 REM1RC8zOUU3MTQ2QzJBMzMxMUVCOTI5REMwN0NDNEY5QUUwMi9JUEpUR251b0lT MHJzSkFOVjJOeTB6LUVhU2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4qABqpQj1BjtnPgCvcoyTV2hRh10LIveun63XyflrZwypyPmaEWmK M3gDZdXmTDMGwUGLARy3GL46Q9MluQPBRIZzUYjHqTlEe6zWZ3GuJes3fKXSqPR6 hyux3EuAu64kIfzm/3agOC8ByzUykAsMAVklvlA6+Pj3SGeogbvY3DpmW77fOTT1 6raox9fYBhXZGCKqJaQcC8+7fEsQeZcn32+NAEVhFYa8H6J18h/z5vFC6gHHNaHg yRA48wplWFVJAj7jbVnmPywNV/6Bi4D4vfbTmN2tvP1Yf4Kh17bqawXK/lIs+k1d jPDP2TD+ctvXd7WQMjRv1KTohkIDf14e -----END CERTIFICATE-----Generated at Thu Jul 3 23:16:29 2025 by rpki-client