$ rpki-client -vvf rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft File: IpO9TF5PmillNYywGN8-Tu5N8c8.mft (raw, json) Hash identifier: RW6TBVdUXgo3seRRgauR0KrzaZUevb2AJQajOgJ46M0= Subject key identifier: 64:D5:63:E0:36:C4:4F:27:D1:00:30:F0:D1:9A:2A:5B:C2:86:43:A5 Authority key identifier: 22:93:BD:4C:5E:4F:9A:29:65:35:8C:B0:18:DF:3E:4E:EE:4D:F1:CF Certificate issuer: /CN=A915177C/serialNumber=2293BD4C5E4F9A2965358CB018DF3E4EEE4DF1CF Certificate serial: 2FF9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft Manifest number: 2FD5 Signing time: Wed 02 Jul 2025 15:34:49 +0000 Manifest this update: Wed 02 Jul 2025 15:34:49 +0000 Manifest next update: Wed 09 Jul 2025 15:34:49 +0000 Files and hashes: 1: IpO9TF5PmillNYywGN8-Tu5N8c8.crl (hash: u5HXcHpxeUM7NID1jQxQuBk47Nr27JK7/lrXdTzHG20=) 2: 149AB4BE7CE911EEB9A02D83C4F9AE02.roa (hash: E2NZXpYraOPVv0cpnUWbQpkzMNGT1LYi52LyYrBbmwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.crl rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 15:34:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12281 (0x2ff9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915177C, serialNumber=2293BD4C5E4F9A2965358CB018DF3E4EEE4DF1CF Validity Not Before: Jul 2 15:34:49 2025 GMT Not After : Jul 9 15:34:49 2025 GMT Subject: CN=68655199-3198 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:cf:15:b3:a8:e3:d5:6f:47:9e:5d:09:84:4c: 06:77:53:2f:0e:d0:12:f4:62:d9:fe:dc:96:8e:0e: 87:74:6a:2f:62:50:10:75:03:66:75:89:7e:c3:02: 8d:e2:9e:9e:22:8a:26:b9:25:57:1c:11:af:05:76: f7:11:86:45:b2:8c:7e:40:2e:e4:35:8b:0f:59:bf: a3:4e:df:cd:82:1b:f0:ba:37:ad:ff:ee:cb:42:30: 85:06:b3:31:90:c6:14:2b:87:7c:ff:5b:e2:2e:06: dd:3e:a9:0d:0b:8f:d0:69:f4:a9:19:56:3b:45:3a: bd:69:df:ad:a2:33:e0:c1:d1:29:49:ec:cb:81:22: 0f:47:98:0b:b3:d3:8c:95:f9:de:bb:fa:1e:05:90: a1:1f:6e:f8:0f:af:65:da:b2:a6:bf:3e:67:9e:b2: ef:ae:7f:1a:1b:18:ca:aa:af:19:7b:fc:f8:42:7e: be:7f:e2:6f:ea:5f:fa:9d:28:7f:41:7c:dd:37:8f: 3b:ea:d0:8b:b3:e8:64:6c:8d:c0:7f:74:b4:ce:d0: c5:67:ae:dc:23:be:b3:98:7f:3f:f7:eb:2f:00:1e: b2:fc:71:28:d5:55:40:5e:2a:8a:53:aa:a7:db:1e: de:1a:e2:62:d1:24:1b:e1:f3:91:2d:a6:5e:d7:ce: 58:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:D5:63:E0:36:C4:4F:27:D1:00:30:F0:D1:9A:2A:5B:C2:86:43:A5 X509v3 Authority Key Identifier: keyid:22:93:BD:4C:5E:4F:9A:29:65:35:8C:B0:18:DF:3E:4E:EE:4D:F1:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:32:d5:4b:e0:0d:4d:a2:23:c9:84:de:dd:34:03:bf:22:ce: d3:32:65:d7:aa:2e:27:af:fe:a0:3e:82:71:a7:8d:c6:a2:14: 72:e0:a1:95:fe:5d:5f:a2:a0:48:48:ba:cc:95:79:a3:9d:e8: ed:d8:7b:65:f9:05:ab:19:28:05:84:f2:96:0d:8a:3d:d7:82: 14:67:13:37:73:56:c4:a5:12:60:c0:3d:47:b1:1c:62:d8:e9: aa:8b:41:4b:aa:a9:55:91:66:5d:0f:86:0a:a3:f2:f9:d7:b2: 82:a1:80:38:ab:f7:ce:29:ed:e9:79:50:7e:44:98:ac:90:e6: c3:db:70:63:02:d4:65:fa:a6:7d:44:88:5e:bf:b7:20:0f:c4: b5:84:f7:dd:bd:86:53:85:d3:3e:ba:3b:e2:80:4a:3d:c8:f1: e0:fa:f6:72:1b:fe:e1:bd:82:bf:10:68:3c:17:2a:37:f9:24: 33:6b:3f:95:0f:8f:62:19:58:d1:1f:81:df:05:a3:8b:0e:af: cb:6d:d0:28:ce:70:8d:4e:33:64:bd:a3:6a:9c:22:5a:75:24: a6:b7:51:2d:5c:29:49:e4:9d:4c:3a:83:c3:aa:55:61:b9:0f: 21:44:94:8f:41:f0:ce:35:f7:cc:1c:de:86:8d:55:35:f2:55: ba:c5:9e:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICL/kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE3N0MxMTAvBgNVBAUTKDIyOTNCRDRDNUU0RjlBMjk2NTM1OENCMDE4REYzRTRF RUU0REYxQ0YwHhcNMjUwNzAyMTUzNDQ5WhcNMjUwNzA5MTUzNDQ5WjAYMRYwFAYD VQQDEw02ODY1NTE5OS0zMTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyM8Vs6jj1W9Hnl0JhEwGd1MvDtAS9GLZ/tyWjg6HdGovYlAQdQNmdYl+wwKN 4p6eIoomuSVXHBGvBXb3EYZFsox+QC7kNYsPWb+jTt/Nghvwujet/+7LQjCFBrMx kMYUK4d8/1viLgbdPqkNC4/QafSpGVY7RTq9ad+tojPgwdEpSezLgSIPR5gLs9OM lfneu/oeBZChH274D69l2rKmvz5nnrLvrn8aGxjKqq8Ze/z4Qn6+f+Jv6l/6nSh/ QXzdN4876tCLs+hkbI3Af3S0ztDFZ67cI76zmH8/9+svAB6y/HEo1VVAXiqKU6qn 2x7eGuJi0SQb4fORLaZe185Y5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGTVY+A2 xE8n0QAw8NGaKlvChkOlMB8GA1UdIwQYMBaAFCKTvUxeT5opZTWMsBjfPk7uTfHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTc3Qy85MjRDRENDMDE0 MzAxMUUzQTBCMTlGMkE1OTExRUEzMi9JcE85VEY1UG1pbGxOWXl3R044LVR1NU44 YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lwTzlURjVQbWlsbE5ZeXdHTjgtVHU1TjhjOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTc3Qy85MjRDRENDMDE0MzAxMUUzQTBCMTlGMkE1OTExRUEzMi9JcE85VEY1UG1p bGxOWXl3R044LVR1NU44YzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPMtVL4A1NoiPJhN7dNAO/Is7TMmXXqi4nr/6gPoJxp43GohRy4KGV /l1foqBISLrMlXmjnejt2Htl+QWrGSgFhPKWDYo914IUZxM3c1bEpRJgwD1HsRxi 2Omqi0FLqqlVkWZdD4YKo/L517KCoYA4q/fOKe3peVB+RJiskObD23BjAtRl+qZ9 RIhev7cgD8S1hPfdvYZThdM+ujvigEo9yPHg+vZyG/7hvYK/EGg8Fyo3+SQzaz+V D49iGVjRH4HfBaOLDq/LbdAoznCNTjNkvaNqnCJadSSmt1EtXClJ5J1MOoPDqlVh uQ8hRJSPQfDONffMHN6GjVU18lW6xZ4/ -----END CERTIFICATE-----Generated at Thu Jul 3 08:51:20 2025 by rpki-client