$ rpki-client -vvf rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft File: Ad9hVyR3ojDnn48oz91tKDd_Iis.mft (raw, json) Hash identifier: mu8rP1vmsO9veJLk5OcPuAdgOhzqdiED6QdpGfnnJX0= Subject key identifier: FA:BB:6C:D0:D3:8C:13:82:E6:6C:49:BD:40:DE:C6:5E:05:3F:E4:7D Authority key identifier: 01:DF:61:57:24:77:A2:30:E7:9F:8F:28:CF:DD:6D:28:37:7F:22:2B Certificate issuer: /CN=A914E5AE/serialNumber=01DF61572477A230E79F8F28CFDD6D28377F222B Certificate serial: 0529 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ad9hVyR3ojDnn48oz91tKDd_Iis.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft Manifest number: 0522 Signing time: Tue 01 Jul 2025 00:00:28 +0000 Manifest this update: Tue 01 Jul 2025 00:00:28 +0000 Manifest next update: Tue 08 Jul 2025 00:00:28 +0000 Files and hashes: 1: Ad9hVyR3ojDnn48oz91tKDd_Iis.crl (hash: NXEoV6hrurqxbsmHTDIzUXG15fOCA7tAEEtmLYultKg=) 2: C847114C07D411ECBF875117C4F9AE02.roa (hash: MMhekj2SFZKQhejre+/ZuSr0R5tKH64F+RFediiHsYQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.crl rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ad9hVyR3ojDnn48oz91tKDd_Iis.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 00:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1321 (0x529) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E5AE, serialNumber=01DF61572477A230E79F8F28CFDD6D28377F222B Validity Not Before: Jul 1 00:00:28 2025 GMT Not After : Jul 8 00:00:28 2025 GMT Subject: CN=6863251c-2c5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:39:56:9f:06:e3:a2:42:24:3e:a6:28:8e:74: c5:6e:33:a0:36:c6:3e:0b:7b:80:9e:d2:03:43:2f: 57:b2:b0:a3:82:e3:98:ff:1c:3c:6d:e0:8a:d0:af: 79:81:83:65:28:df:90:a4:94:60:7c:38:f8:9b:0f: b8:40:53:1d:35:cd:3b:37:dd:be:1d:82:41:a2:93: 25:16:6d:34:52:7b:06:c0:9f:f5:e5:b6:82:23:cc: b3:f3:ac:28:10:ad:3f:08:10:86:00:88:4f:2e:53: 53:d3:12:55:83:3d:a8:69:18:05:d8:2d:bf:7a:94: 27:e7:ab:1d:a2:3c:d5:8f:b5:f0:7f:1e:6d:8f:75: 95:f8:6e:ed:3d:b8:28:88:72:e1:80:15:73:f3:c3: ec:20:0f:63:8d:6b:c4:42:33:c8:bf:50:73:32:6a: 60:73:8b:97:d2:a2:71:ef:0b:e6:12:50:e1:10:b2: b7:f2:82:a5:aa:d4:e5:a8:e2:7b:ae:f0:73:36:e8: e5:62:58:c7:d2:ed:96:5a:70:fb:47:df:f8:50:6f: 35:3d:4a:6d:59:81:79:57:e5:4f:30:ec:c8:74:c4: 21:a9:b4:25:5a:0d:53:7c:e9:c7:ff:2f:88:f0:df: 65:8c:09:eb:00:3d:61:e1:ee:7b:b4:b5:f0:a6:f9: ab:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:BB:6C:D0:D3:8C:13:82:E6:6C:49:BD:40:DE:C6:5E:05:3F:E4:7D X509v3 Authority Key Identifier: keyid:01:DF:61:57:24:77:A2:30:E7:9F:8F:28:CF:DD:6D:28:37:7F:22:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ad9hVyR3ojDnn48oz91tKDd_Iis.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:7c:70:63:53:aa:c1:12:a9:13:0c:3a:dd:e4:6e:f9:39:47: 0a:ef:a4:48:e1:4b:51:a7:25:5e:f1:4e:d8:77:4b:3e:2f:9f: 8e:71:56:39:4f:9c:2b:51:b2:e3:fc:e3:cf:ba:cb:86:c4:f5: 95:01:dd:9d:87:26:fb:33:a2:e9:ec:04:7d:be:eb:c7:d3:9c: 41:52:0e:1e:cb:a3:17:fe:93:56:59:30:41:e7:94:00:4d:96: e6:ec:04:5d:05:67:a1:c1:fc:ea:c2:32:b5:4a:86:61:ab:ba: 80:e6:4a:f4:4f:94:8c:ba:78:da:b6:b4:b9:79:80:ae:59:21: b0:14:ca:b4:dd:8a:21:74:7d:79:3d:56:98:f3:f9:d2:27:15: 36:6d:c8:59:9d:43:2c:20:1f:b3:5d:38:45:5c:09:9c:f4:45: a1:a3:a6:b8:1f:38:d4:bb:82:a7:b0:e6:d9:a0:b4:3d:ca:31: 6c:35:89:18:a1:4e:c2:8e:9c:2d:39:b8:2c:b7:04:e8:9e:81: 0a:13:40:2b:8b:dd:df:e2:55:0a:7c:36:93:07:95:63:a7:0d: 29:fe:cb:a5:2e:6d:27:2e:3e:f7:d6:02:84:9e:c8:9b:68:0e: 2d:6a:6d:48:90:51:1b:10:ad:6f:cc:8c:5f:69:5d:dc:0a:d9: da:22:70:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU1QUUxMTAvBgNVBAUTKDAxREY2MTU3MjQ3N0EyMzBFNzlGOEYyOENGREQ2RDI4 Mzc3RjIyMkIwHhcNMjUwNzAxMDAwMDI4WhcNMjUwNzA4MDAwMDI4WjAYMRYwFAYD VQQDEw02ODYzMjUxYy0yYzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2zlWnwbjokIkPqYojnTFbjOgNsY+C3uAntIDQy9XsrCjguOY/xw8beCK0K95 gYNlKN+QpJRgfDj4mw+4QFMdNc07N92+HYJBopMlFm00UnsGwJ/15baCI8yz86wo EK0/CBCGAIhPLlNT0xJVgz2oaRgF2C2/epQn56sdojzVj7Xwfx5tj3WV+G7tPbgo iHLhgBVz88PsIA9jjWvEQjPIv1BzMmpgc4uX0qJx7wvmElDhELK38oKlqtTlqOJ7 rvBzNujlYljH0u2WWnD7R9/4UG81PUptWYF5V+VPMOzIdMQhqbQlWg1TfOnH/y+I 8N9ljAnrAD1h4e57tLXwpvmrDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPq7bNDT jBOC5mxJvUDexl4FP+R9MB8GA1UdIwQYMBaAFAHfYVckd6Iw55+PKM/dbSg3fyIr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTVBRS80NkQ0MjJGMDA3 RDIxMUVDQUE4MkI2MTFDNEY5QUUwMi9BZDloVnlSM29qRG5uNDhvejkxdEtEZF9J aXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FkOWhWeVIzb2pEbm40OG96OTF0S0RkX0lpcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTVBRS80NkQ0MjJGMDA3RDIxMUVDQUE4MkI2MTFDNEY5QUUwMi9BZDloVnlSM29q RG5uNDhvejkxdEtEZF9JaXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBufHBjU6rBEqkTDDrd5G75OUcK76RI4UtRpyVe8U7Yd0s+L5+OcVY5 T5wrUbLj/OPPusuGxPWVAd2dhyb7M6Lp7AR9vuvH05xBUg4ey6MX/pNWWTBB55QA TZbm7ARdBWehwfzqwjK1SoZhq7qA5kr0T5SMunjatrS5eYCuWSGwFMq03YohdH15 PVaY8/nSJxU2bchZnUMsIB+zXThFXAmc9EWho6a4HzjUu4KnsObZoLQ9yjFsNYkY oU7CjpwtObgstwTonoEKE0Ari93f4lUKfDaTB5Vjpw0p/sulLm0nLj731gKEnsib aA4tam1IkFEbEK1vzIxfaV3cCtnaInCH -----END CERTIFICATE-----Generated at Tue Jul 1 13:20:20 2025 by rpki-client