$ rpki-client -vvf rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft File: iCJHhVdMHyPKnEOe2PVTiPamjOI.mft (raw, json) Hash identifier: DsjKjPl5UD5x5ivAtf6k/L8tRc31bdv1Nm0X8lQsCXg= Subject key identifier: DF:B7:FA:42:48:85:53:B9:B8:C3:C7:86:6C:22:96:71:19:E2:6B:58 Authority key identifier: 88:22:47:85:57:4C:1F:23:CA:9C:43:9E:D8:F5:53:88:F6:A6:8C:E2 Certificate issuer: /CN=A91689B7/serialNumber=88224785574C1F23CA9C439ED8F55388F6A68CE2 Certificate serial: 0200 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iCJHhVdMHyPKnEOe2PVTiPamjOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft Manifest number: 01FA Signing time: Thu 03 Jul 2025 02:32:15 +0000 Manifest this update: Thu 03 Jul 2025 02:32:14 +0000 Manifest next update: Thu 10 Jul 2025 02:32:14 +0000 Files and hashes: 1: iCJHhVdMHyPKnEOe2PVTiPamjOI.crl (hash: XEC8RYK6KJkmOJBW0Gt25Bq3gm5E8AWrZLOKad37FR0=) 2: 2455276E39B311EEA6DFE66BC4F9AE02.roa (hash: i/snzsv5ugVK5M4wkOzh02txTFh9Vl9HyndyddhSqd8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.crl rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iCJHhVdMHyPKnEOe2PVTiPamjOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:32:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 512 (0x200) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91689B7, serialNumber=88224785574C1F23CA9C439ED8F55388F6A68CE2 Validity Not Before: Jul 3 02:32:14 2025 GMT Not After : Jul 10 02:32:14 2025 GMT Subject: CN=6865ebae-2513 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:34:31:9f:6d:62:be:29:82:48:f9:74:db:c8: d0:62:3b:04:17:52:04:d0:d3:83:4f:4f:8f:39:21: 83:23:98:a0:39:05:7c:1e:4b:22:fc:e6:41:fc:69: 6f:7d:3c:5d:06:72:05:b0:88:8a:11:35:8e:bd:8d: ad:e5:de:fd:f8:1e:35:99:1e:bc:ac:26:66:be:89: e2:29:e1:62:72:d7:42:05:01:37:82:11:30:ae:3c: fb:b8:c8:30:02:32:43:ce:0d:6c:95:12:6a:c7:94: 2e:ea:3d:8d:53:cf:fd:f8:58:55:f5:4c:00:7a:11: de:69:b3:24:42:8d:a7:30:84:1c:80:8b:d4:15:17: 5a:b8:82:5b:f4:81:f9:09:1c:a7:d3:31:ec:cc:cb: fc:e4:99:c0:4d:d3:e3:15:a4:ab:d1:7a:ab:00:67: 12:9c:8f:aa:09:cf:0a:af:b3:06:db:bb:d1:00:5a: a2:2b:68:18:2d:a5:7d:19:a5:10:20:ab:b9:8c:8d: f7:1d:dd:5c:ee:fd:11:68:cc:eb:36:2f:ac:27:c8: f0:eb:63:7f:99:85:c3:19:d2:6a:34:97:ee:42:48: b0:a2:0a:c0:9c:ec:0d:78:5d:66:44:ad:70:80:2d: 37:ea:fb:7b:c1:3e:e1:98:cf:29:11:b8:bf:ce:a6: 19:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:B7:FA:42:48:85:53:B9:B8:C3:C7:86:6C:22:96:71:19:E2:6B:58 X509v3 Authority Key Identifier: keyid:88:22:47:85:57:4C:1F:23:CA:9C:43:9E:D8:F5:53:88:F6:A6:8C:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iCJHhVdMHyPKnEOe2PVTiPamjOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:30:6f:a9:e3:2f:f4:45:88:8e:e8:f4:6f:06:29:75:3b:87: 7b:08:32:19:36:dc:6e:d9:b0:0a:7d:ea:c9:36:9a:f8:f5:f7: c3:2e:ce:81:96:b3:01:22:58:7e:39:cd:13:0b:10:38:11:4b: bb:4a:3a:0e:aa:14:85:0a:52:76:75:08:d5:75:d0:ca:d9:04: b7:4d:95:42:3c:98:1b:af:54:23:ff:af:6a:8a:6c:5f:eb:fe: 3c:cc:f9:89:0c:f2:2b:2f:bf:cc:e9:ad:1b:05:b2:05:60:c6: d0:24:c3:1c:3e:86:b1:0f:5c:06:4b:59:e6:78:40:0a:28:01: 91:11:3b:11:50:c6:c1:f5:eb:34:2a:e7:a4:ca:05:11:0c:9b: d2:2d:dd:ab:49:c6:02:86:1e:06:a3:1a:39:ad:81:58:a1:9b: 04:81:c9:bf:6d:48:08:25:e8:48:4c:2f:cf:99:ae:04:53:3e: e9:83:c5:c9:5b:fd:3e:d2:ae:e0:48:a8:80:cd:97:b8:be:51: 41:82:72:1c:89:f5:86:94:bd:87:a1:8d:6d:a1:f0:90:bc:da: 8e:fb:a4:7c:06:80:1d:8b:29:86:de:2e:68:4d:a8:b1:d1:26: 7e:36:f2:1c:4d:c0:c2:06:bc:c1:ed:d7:2f:4d:cf:78:7e:12: b6:28:b7:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg5QjcxMTAvBgNVBAUTKDg4MjI0Nzg1NTc0QzFGMjNDQTlDNDM5RUQ4RjU1Mzg4 RjZBNjhDRTIwHhcNMjUwNzAzMDIzMjE0WhcNMjUwNzEwMDIzMjE0WjAYMRYwFAYD VQQDEw02ODY1ZWJhZS0yNTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3TQxn21ivimCSPl028jQYjsEF1IE0NODT0+POSGDI5igOQV8Hksi/OZB/Glv fTxdBnIFsIiKETWOvY2t5d79+B41mR68rCZmvoniKeFictdCBQE3ghEwrjz7uMgw AjJDzg1slRJqx5Qu6j2NU8/9+FhV9UwAehHeabMkQo2nMIQcgIvUFRdauIJb9IH5 CRyn0zHszMv85JnATdPjFaSr0XqrAGcSnI+qCc8Kr7MG27vRAFqiK2gYLaV9GaUQ IKu5jI33Hd1c7v0RaMzrNi+sJ8jw62N/mYXDGdJqNJfuQkiwogrAnOwNeF1mRK1w gC036vt7wT7hmM8pEbi/zqYZzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN+3+kJI hVO5uMPHhmwilnEZ4mtYMB8GA1UdIwQYMBaAFIgiR4VXTB8jypxDntj1U4j2pozi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODlCNy9CMUU1NEFCODU2 QTIxMUVEQjRBMUIyMjVDNEY5QUUwMi9pQ0pIaFZkTUh5UEtuRU9lMlBWVGlQYW1q T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lDSkhoVmRNSHlQS25FT2UyUFZUaVBhbWpPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODlCNy9CMUU1NEFCODU2QTIxMUVEQjRBMUIyMjVDNEY5QUUwMi9pQ0pIaFZkTUh5 UEtuRU9lMlBWVGlQYW1qT0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPMG+p4y/0RYiO6PRvBil1O4d7CDIZNtxu2bAKferJNpr49ffDLs6B lrMBIlh+Oc0TCxA4EUu7SjoOqhSFClJ2dQjVddDK2QS3TZVCPJgbr1Qj/69qimxf 6/48zPmJDPIrL7/M6a0bBbIFYMbQJMMcPoaxD1wGS1nmeEAKKAGRETsRUMbB9es0 KuekygURDJvSLd2rScYChh4Goxo5rYFYoZsEgcm/bUgIJehITC/Pma4EUz7pg8XJ W/0+0q7gSKiAzZe4vlFBgnIcifWGlL2HoY1tofCQvNqO+6R8BoAdiymG3i5oTaix 0SZ+NvIcTcDCBrzB7dcvTc94fhK2KLdO -----END CERTIFICATE-----Generated at Thu Jul 3 21:28:26 2025 by rpki-client