$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft File: iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft (raw, json) Hash identifier: JgMSNmmnDFu2rOBMgBWONaQ1obIIwib1Ck4ZS4ftVnA= Subject key identifier: 3F:8B:F0:39:17:48:0F:27:EF:98:96:9E:BE:27:C2:17:ED:C1:7D:80 Authority key identifier: 88:87:CF:6C:F5:10:2F:0F:B7:13:F4:C4:A1:BD:E3:89:48:1F:1C:44 Certificate issuer: /CN=A9157DA0/serialNumber=8887CF6CF5102F0FB713F4C4A1BDE389481F1C44 Certificate serial: 34BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft Manifest number: 34AB Signing time: Fri 04 Jul 2025 14:41:34 +0000 Manifest this update: Fri 04 Jul 2025 14:41:33 +0000 Manifest next update: Fri 11 Jul 2025 14:41:33 +0000 Files and hashes: 1: iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl (hash: 4xf7pwGDdNvnBOqOstTG0p00d5yCmWENLhj7Ef9mNy4=) 2: 10BC8836509B11F0A1C78F35C4F9AE02.roa (hash: 5P8iz2/f75JawHS84+uOtc39+Wj5fIfZ/CgqWjpJHIs=) 3: E52708AADFCE11EFBC4CD631C4F9AE02.roa (hash: /pC0o36JZbc/+sMAFn6ZasM1rRw+KC7uxqzujpRX3bY=) 4: 075152B253CB11F09DA22358C4F9AE02.roa (hash: zuQumTbCd8/+WRCpCpTlfL5cCnKF+yOSXxN8EoHEiUM=) 5: E4BA3CE8DFCE11EFBC4CD631C4F9AE02.roa (hash: H2psEBDgMdRvNZgUPZApVJCLqrPQ8EnSpGElYQR9ZLA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13503 (0x34bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DA0, serialNumber=8887CF6CF5102F0FB713F4C4A1BDE389481F1C44 Validity Not Before: Jul 4 14:41:33 2025 GMT Not After : Jul 11 14:41:33 2025 GMT Subject: CN=6867e81d-5f62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:63:11:32:23:db:aa:97:a5:4e:ed:6f:f9:bc: 71:af:3d:7d:a6:55:5a:b1:28:76:0b:bd:e8:18:69: 4d:51:6f:ef:6e:a1:d5:72:55:09:62:fe:97:e9:b3: 7c:5c:7b:38:13:bd:4c:f6:1e:59:49:12:bd:86:db: 68:f8:d7:00:ef:5b:7f:7f:47:20:34:d7:f2:8c:e5: 88:30:29:32:a9:5d:c6:84:7d:da:9d:91:0e:1c:51: 76:59:3a:c7:30:5a:86:7d:29:2e:87:9c:6e:62:35: 3c:56:38:f5:69:3e:62:e4:35:80:49:9e:f2:af:e5: 00:04:cc:98:6b:9e:3b:79:5c:93:f1:f6:fa:8d:d1: 38:f6:6b:f4:68:ca:1e:ef:69:01:ef:00:7d:83:38: bb:6b:e9:49:a7:6c:b5:c0:7a:a7:af:6c:b7:b0:d3: 44:d0:a5:bd:68:d8:00:ae:26:d1:6b:44:ab:96:0f: e2:99:ab:c3:eb:ab:92:b4:07:5d:7c:b5:f2:cd:66: 20:43:91:29:50:77:1a:82:27:d8:6a:dc:a0:ab:75: 1d:22:2d:2d:de:0e:87:b2:df:a9:72:ee:3a:a3:9e: 69:c0:d5:f9:7b:3b:53:12:1c:54:0f:ae:b9:83:a9: 47:00:9e:49:70:2b:8d:44:80:ea:be:b1:fa:91:a5: 76:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:8B:F0:39:17:48:0F:27:EF:98:96:9E:BE:27:C2:17:ED:C1:7D:80 X509v3 Authority Key Identifier: keyid:88:87:CF:6C:F5:10:2F:0F:B7:13:F4:C4:A1:BD:E3:89:48:1F:1C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:d2:52:0d:a6:d8:3f:3d:60:b3:90:ab:7a:6f:89:59:df:00: 1a:af:ae:97:b0:c9:4d:99:e3:2a:76:22:7f:84:fc:84:04:a5: 39:03:9f:b8:79:3c:86:4b:fe:b1:a6:cd:2c:60:4d:42:3d:af: a7:39:8a:11:1d:58:61:48:08:9e:d9:2c:e9:28:27:0b:6f:ed: 11:f1:1b:21:ac:99:06:d0:8d:16:f4:de:38:e9:c3:81:bb:23: 05:a6:46:11:4e:fb:55:db:a9:72:72:50:44:ac:f1:3d:72:6c: 25:b0:ed:59:63:97:30:76:d6:a0:f2:60:fc:95:cf:ac:72:1b: 7f:82:09:8c:5e:3b:d8:19:64:62:ed:0b:4d:c8:2b:5b:38:90: fa:42:a4:03:ab:13:84:8a:83:b7:12:5c:89:df:bd:17:59:51: 0d:79:04:54:c7:3c:11:bc:c1:9f:7c:1b:a9:41:6b:85:d3:a1: 44:e5:fc:8f:4b:34:c5:fe:42:08:90:e8:6d:ce:03:36:d3:4e: 2d:79:cb:06:89:52:5f:53:f5:f6:88:13:04:bb:69:5d:2e:21: 4c:89:59:ae:57:98:df:93:f6:7d:83:ca:3d:27:d7:14:1c:4e: a6:42:f1:07:b1:8f:37:c4:e6:b9:72:59:d8:50:56:f6:5e:e7: 97:3b:d9:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQTAxMTAvBgNVBAUTKDg4ODdDRjZDRjUxMDJGMEZCNzEzRjRDNEExQkRFMzg5 NDgxRjFDNDQwHhcNMjUwNzA0MTQ0MTMzWhcNMjUwNzExMTQ0MTMzWjAYMRYwFAYD VQQDEw02ODY3ZTgxZC01ZjYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0GMRMiPbqpelTu1v+bxxrz19plVasSh2C73oGGlNUW/vbqHVclUJYv6X6bN8 XHs4E71M9h5ZSRK9htto+NcA71t/f0cgNNfyjOWIMCkyqV3GhH3anZEOHFF2WTrH MFqGfSkuh5xuYjU8Vjj1aT5i5DWASZ7yr+UABMyYa547eVyT8fb6jdE49mv0aMoe 72kB7wB9gzi7a+lJp2y1wHqnr2y3sNNE0KW9aNgAribRa0Srlg/imavD66uStAdd fLXyzWYgQ5EpUHcagifYatygq3UdIi0t3g6Hst+pcu46o55pwNX5eztTEhxUD665 g6lHAJ5JcCuNRIDqvrH6kaV2GQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD+L8DkX SA8n75iWnr4nwhftwX2AMB8GA1UdIwQYMBaAFIiHz2z1EC8PtxP0xKG944lIHxxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBMC8zQTBEOTMxMDFE OEMxMUUyOEVGRjU3RTcwOEIwMkNEMi9pSWZQYlBVUUx3LTNFX1RFb2IzamlVZ2ZI RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lJZlBiUFVRTHctM0VfVEVvYjNqaVVnZkhFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBMC8zQTBEOTMxMDFEOEMxMUUyOEVGRjU3RTcwOEIwMkNEMi9pSWZQYlBVUUx3 LTNFX1RFb2IzamlVZ2ZIRVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAI0lINptg/PWCzkKt6b4lZ3wAar66XsMlNmeMqdiJ/hPyEBKU5A5+4 eTyGS/6xps0sYE1CPa+nOYoRHVhhSAie2SzpKCcLb+0R8RshrJkG0I0W9N446cOB uyMFpkYRTvtV26lyclBErPE9cmwlsO1ZY5cwdtag8mD8lc+scht/ggmMXjvYGWRi 7QtNyCtbOJD6QqQDqxOEioO3ElyJ370XWVENeQRUxzwRvMGffBupQWuF06FE5fyP SzTF/kIIkOhtzgM2004tecsGiVJfU/X2iBMEu2ldLiFMiVmuV5jfk/Z9g8o9J9cU HE6mQvEHsY83xOa5clnYUFb2XueXO9k3 -----END CERTIFICATE-----Generated at Sun Jul 6 00:22:21 2025 by rpki-client