$ rpki-client -vvf rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft File: IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft (raw, json) Hash identifier: Z2XFlXZYKE63z3Wz8ZU1u4vJ5uG/AMrczuxkwX7K1xw= Subject key identifier: 39:94:C3:C9:3A:CD:6D:C5:2F:A6:41:4A:34:63:5C:64:23:3D:8F:E8 Authority key identifier: 21:0F:F1:66:68:DF:96:3B:E0:FC:A9:06:93:39:17:FF:ED:ED:9F:95 Certificate issuer: /CN=A9170BBF/serialNumber=210FF16668DF963BE0FCA906933917FFEDED9F95 Certificate serial: 04C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft Manifest number: 04BD Signing time: Thu 03 Jul 2025 00:13:07 +0000 Manifest this update: Thu 03 Jul 2025 00:13:07 +0000 Manifest next update: Thu 10 Jul 2025 00:13:07 +0000 Files and hashes: 1: IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl (hash: a8UHEtv8/j3WDTr48fF3jPy2+yVEGFEyYTTAeJiw4O0=) 2: 06CAA9C230C211ECBB5A4116C4F9AE02.roa (hash: CU8ZA4/4TdlPTUdktMFTY7GCuwd/QCyrxC7+CMDATDo=) 3: 0628D74630C211ECBB5A4116C4F9AE02.roa (hash: yUQWHT36J9pLE1kpKGBgRzyjB4VNhd4/HCHR7qeOtAQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:13:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1223 (0x4c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170BBF, serialNumber=210FF16668DF963BE0FCA906933917FFEDED9F95 Validity Not Before: Jul 3 00:13:07 2025 GMT Not After : Jul 10 00:13:07 2025 GMT Subject: CN=6865cb13-10af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:9b:7b:c2:0c:96:c3:52:19:e8:b6:c5:61:8e: 2b:2d:0e:bd:cf:51:28:99:ca:8b:7e:fd:cc:4a:07: 0e:89:29:f6:bc:b6:1e:94:7d:78:36:02:a6:82:22: be:1f:c1:e4:07:7f:5c:0e:db:a3:aa:d1:d2:b1:4d: e1:cc:f2:11:dc:49:53:cc:80:8b:73:75:ce:b1:4b: b9:0e:2d:57:a5:cf:b6:54:28:9a:77:b2:ba:14:49: 57:82:4f:75:9b:22:91:67:00:94:4e:98:07:c9:2e: e7:6e:ba:bd:9d:01:69:ae:89:e6:6c:45:c3:db:5a: b4:b8:f5:04:48:8e:e1:d2:fc:f8:c5:fa:14:ec:7d: 84:be:8f:46:8b:cd:e5:40:14:65:f1:f8:e1:62:b8: d4:b0:45:b1:de:01:a5:7a:5d:45:31:87:50:e6:50: 14:07:71:3b:27:e5:10:ec:a5:a0:74:0d:5b:e0:d3: 27:ca:2c:6d:10:a7:07:c9:a8:56:d9:9e:44:db:f6: fd:01:3e:ce:82:8c:37:f5:fe:74:58:3b:65:f0:25: 42:a2:cd:6c:4b:ba:cd:c7:a8:d5:01:98:12:32:6a: 97:5a:f9:22:e7:f3:ec:3c:0e:86:2b:07:ad:c2:61: ae:cf:70:c2:ec:9d:9e:96:6f:b3:7d:dc:2f:ab:76: c4:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:94:C3:C9:3A:CD:6D:C5:2F:A6:41:4A:34:63:5C:64:23:3D:8F:E8 X509v3 Authority Key Identifier: keyid:21:0F:F1:66:68:DF:96:3B:E0:FC:A9:06:93:39:17:FF:ED:ED:9F:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:a4:c0:79:3a:12:da:dc:96:c8:49:dd:1b:84:f8:85:d9:41: e5:3f:6b:33:71:53:e3:cb:0a:e2:e9:35:e9:db:99:1c:71:42: dd:ab:b6:39:65:4c:d5:1f:8f:90:4f:df:29:90:d3:40:9a:62: c0:dc:44:21:02:ee:02:a9:df:08:b1:c2:d9:5c:09:6f:85:32: 69:5e:a5:82:96:e3:13:69:78:5c:59:ad:33:56:b7:ea:19:89: bb:a5:31:18:46:0a:4a:4c:27:47:0c:b4:d5:d5:fc:6d:2c:8f: e5:37:c8:58:78:ec:83:01:8e:6d:92:73:f7:cc:9c:f8:ac:0d: a4:ad:61:63:2e:d4:7a:2d:02:93:f4:2f:a8:cc:ff:0a:8d:81: bc:02:9b:96:d0:7c:da:36:23:65:ba:4b:f5:9d:90:02:ec:08: be:a8:55:c9:f3:ba:45:ee:58:85:47:1f:3c:cc:f7:b2:4d:70: 63:63:c9:5f:89:b2:40:3f:25:79:19:8e:f3:50:28:03:d6:94: 8d:ea:23:66:7a:6e:d4:1e:dc:84:79:e0:9d:2e:b6:85:47:b7: 14:b5:58:df:66:ac:4c:fd:0f:81:66:3b:65:fe:60:de:26:09: c2:a1:f1:01:f8:97:e6:51:c6:ee:13:cf:6c:89:33:7c:2d:b0: 81:fc:63:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBCQkYxMTAvBgNVBAUTKDIxMEZGMTY2NjhERjk2M0JFMEZDQTkwNjkzMzkxN0ZG RURFRDlGOTUwHhcNMjUwNzAzMDAxMzA3WhcNMjUwNzEwMDAxMzA3WjAYMRYwFAYD VQQDEw02ODY1Y2IxMy0xMGFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuZt7wgyWw1IZ6LbFYY4rLQ69z1EomcqLfv3MSgcOiSn2vLYelH14NgKmgiK+ H8HkB39cDtujqtHSsU3hzPIR3ElTzICLc3XOsUu5Di1Xpc+2VCiad7K6FElXgk91 myKRZwCUTpgHyS7nbrq9nQFpronmbEXD21q0uPUESI7h0vz4xfoU7H2Evo9Gi83l QBRl8fjhYrjUsEWx3gGlel1FMYdQ5lAUB3E7J+UQ7KWgdA1b4NMnyixtEKcHyahW 2Z5E2/b9AT7Ogow39f50WDtl8CVCos1sS7rNx6jVAZgSMmqXWvki5/PsPA6GKwet wmGuz3DC7J2elm+zfdwvq3bENwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDmUw8k6 zW3FL6ZBSjRjXGQjPY/oMB8GA1UdIwQYMBaAFCEP8WZo35Y74PypBpM5F//t7Z+V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEJCRi9FNDkxMTIzQTMw QkYxMUVDQTg1QzQ0MTRDNEY5QUUwMi9JUV94Wm1qZmxqdmdfS2tHa3prWF8tM3Ru NVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lRX3habWpmbGp2Z19La0dremtYXy0zdG41VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEJCRi9FNDkxMTIzQTMwQkYxMUVDQTg1QzQ0MTRDNEY5QUUwMi9JUV94Wm1qZmxq dmdfS2tHa3prWF8tM3RuNVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnpMB5OhLa3JbISd0bhPiF2UHlP2szcVPjywri6TXp25kccULdq7Y5 ZUzVH4+QT98pkNNAmmLA3EQhAu4Cqd8IscLZXAlvhTJpXqWCluMTaXhcWa0zVrfq GYm7pTEYRgpKTCdHDLTV1fxtLI/lN8hYeOyDAY5tknP3zJz4rA2krWFjLtR6LQKT 9C+ozP8KjYG8ApuW0HzaNiNlukv1nZAC7Ai+qFXJ87pF7liFRx88zPeyTXBjY8lf ibJAPyV5GY7zUCgD1pSN6iNmem7UHtyEeeCdLraFR7cUtVjfZqxM/Q+BZjtl/mDe JgnCofEB+JfmUcbuE89siTN8LbCB/GO6 -----END CERTIFICATE-----Generated at Fri Jul 4 18:59:19 2025 by rpki-client