$ rpki-client -vvf rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft File: ItPpdE2tSXUDbMQirBHEBHIOZuo.mft (raw, json) Hash identifier: QhAvipdlt16qi8GIz//pakNkZ7xcbLDB2zHUO9K3g8c= Subject key identifier: F7:44:FB:87:A5:F6:08:7D:03:1B:52:5E:09:9E:64:04:4D:BD:9F:79 Authority key identifier: 22:D3:E9:74:4D:AD:49:75:03:6C:C4:22:AC:11:C4:04:72:0E:66:EA Certificate issuer: /CN=A917A4F7/serialNumber=22D3E9744DAD4975036CC422AC11C404720E66EA Certificate serial: 0137 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItPpdE2tSXUDbMQirBHEBHIOZuo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft Manifest number: 0134 Signing time: Tue 01 Jul 2025 04:58:37 +0000 Manifest this update: Tue 01 Jul 2025 04:58:37 +0000 Manifest next update: Tue 08 Jul 2025 04:58:37 +0000 Files and hashes: 1: ItPpdE2tSXUDbMQirBHEBHIOZuo.crl (hash: dzGJB9+lZ+gJU9PeLwa2p4HtHWB/RPFAPloahr19mMQ=) 2: 9BE3C7087E8311EEBC7E6681C4F9AE02.roa (hash: gkpGu4s3lw8zurLXdvn6Zq+w59lx0+P+q37arJjTECg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.crl rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItPpdE2tSXUDbMQirBHEBHIOZuo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 04:58:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A4F7, serialNumber=22D3E9744DAD4975036CC422AC11C404720E66EA Validity Not Before: Jul 1 04:58:37 2025 GMT Not After : Jul 8 04:58:37 2025 GMT Subject: CN=68636afd-5f59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:df:21:2d:82:d1:a4:15:02:f7:ad:d7:45:d6: ff:56:d3:74:b1:c3:13:ad:90:9d:99:5e:9c:5b:3c: 6e:0f:ff:14:75:63:0c:59:da:e7:f4:68:9c:8d:f0: 40:cc:ae:94:de:75:52:3b:87:bd:78:ce:ec:75:6a: f3:98:48:e0:1f:9c:fd:59:f3:4f:7f:a3:39:3b:de: c2:1c:cb:f3:49:45:f7:3a:48:26:86:29:19:47:67: 04:91:d7:11:09:ac:3a:82:4e:3e:77:b8:e2:a4:e1: 7e:bc:05:86:6d:c9:8e:95:25:f5:d0:29:a5:7f:a3: fe:90:3f:d4:b5:3c:c8:b8:a0:b2:21:01:04:51:3e: 37:77:2e:d9:9b:ac:b5:4a:67:7f:90:2f:55:e1:39: 0c:c1:f5:37:7a:11:7c:3c:c3:0e:08:ce:ea:4c:1b: b9:c9:90:90:72:c2:52:ee:3a:b8:ca:b7:8c:b9:a8: b4:20:cd:ef:e9:95:c7:4a:d5:ad:64:72:a5:72:e6: 2d:d4:2f:23:6d:26:3c:33:40:87:14:b3:ed:a4:8e: 00:86:94:44:71:51:a7:73:32:0b:8f:b3:af:9d:d6: 24:82:5b:e0:29:24:67:d7:1e:3f:d4:03:22:a6:0d: c0:48:e4:be:a7:9b:aa:15:27:94:de:f0:4a:ae:62: 4d:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:44:FB:87:A5:F6:08:7D:03:1B:52:5E:09:9E:64:04:4D:BD:9F:79 X509v3 Authority Key Identifier: keyid:22:D3:E9:74:4D:AD:49:75:03:6C:C4:22:AC:11:C4:04:72:0E:66:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItPpdE2tSXUDbMQirBHEBHIOZuo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:30:cf:65:56:42:97:b2:4f:37:89:9e:20:02:42:bc:66:ac: 44:5d:49:57:3f:7e:f7:db:73:4b:ad:36:2a:98:46:ba:bc:b5: 1d:1e:e1:ec:b5:e6:b9:74:98:e7:7b:53:9f:59:5a:c8:95:b6: 37:2b:86:f1:8f:08:37:20:e3:b1:2a:1a:c7:86:e5:0b:97:d3: c4:ca:16:c8:39:1e:1c:ee:f1:28:36:43:7a:8b:11:02:5c:d6: 1f:e4:a9:1f:c3:40:3c:55:9d:01:b8:08:f2:0f:c2:79:73:70: 6a:8e:9f:da:5c:4d:a4:2c:c6:b5:d1:ce:4f:e6:47:d1:95:44: 81:77:4e:e3:f6:cb:2c:1b:96:94:8f:69:5b:61:cb:26:ed:3f: 47:7a:9a:37:17:9f:d9:dd:94:b7:19:82:fe:fa:ec:c0:14:8a: ab:9a:f2:26:c0:5a:d0:86:40:4c:5e:9d:82:6e:71:ae:2e:83: 05:b9:f8:e5:95:2c:30:a9:56:69:96:97:12:9d:e9:42:5c:7c: 4f:af:6b:f8:08:1c:a8:b5:cc:0d:38:03:ae:02:97:5c:4a:97: 91:f3:11:a4:ce:6d:23:f6:14:58:cb:15:45:ac:4c:49:57:f3: f4:6b:a8:84:f5:93:7e:0b:26:5c:22:02:00:05:af:52:78:46: d3:a8:60:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E0RjcxMTAvBgNVBAUTKDIyRDNFOTc0NERBRDQ5NzUwMzZDQzQyMkFDMTFDNDA0 NzIwRTY2RUEwHhcNMjUwNzAxMDQ1ODM3WhcNMjUwNzA4MDQ1ODM3WjAYMRYwFAYD VQQDEw02ODYzNmFmZC01ZjU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtN8hLYLRpBUC963XRdb/VtN0scMTrZCdmV6cWzxuD/8UdWMMWdrn9GicjfBA zK6U3nVSO4e9eM7sdWrzmEjgH5z9WfNPf6M5O97CHMvzSUX3OkgmhikZR2cEkdcR Caw6gk4+d7jipOF+vAWGbcmOlSX10Cmlf6P+kD/UtTzIuKCyIQEEUT43dy7Zm6y1 Smd/kC9V4TkMwfU3ehF8PMMOCM7qTBu5yZCQcsJS7jq4yreMuai0IM3v6ZXHStWt ZHKlcuYt1C8jbSY8M0CHFLPtpI4AhpREcVGnczILj7OvndYkglvgKSRn1x4/1AMi pg3ASOS+p5uqFSeU3vBKrmJN7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPdE+4el 9gh9AxtSXgmeZARNvZ95MB8GA1UdIwQYMBaAFCLT6XRNrUl1A2zEIqwRxARyDmbq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTRGNy8yQTQ4OTM4NjdF ODIxMUVFOTlEQTlCN0FDNEY5QUUwMi9JdFBwZEUydFNYVURiTVFpckJIRUJISU9a dW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l0UHBkRTJ0U1hVRGJNUWlyQkhFQkhJT1p1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTRGNy8yQTQ4OTM4NjdFODIxMUVFOTlEQTlCN0FDNEY5QUUwMi9JdFBwZEUydFNY VURiTVFpckJIRUJISU9adW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNMM9lVkKXsk83iZ4gAkK8ZqxEXUlXP37323NLrTYqmEa6vLUdHuHs tea5dJjne1OfWVrIlbY3K4bxjwg3IOOxKhrHhuULl9PEyhbIOR4c7vEoNkN6ixEC XNYf5Kkfw0A8VZ0BuAjyD8J5c3Bqjp/aXE2kLMa10c5P5kfRlUSBd07j9sssG5aU j2lbYcsm7T9Hepo3F5/Z3ZS3GYL++uzAFIqrmvImwFrQhkBMXp2CbnGuLoMFufjl lSwwqVZplpcSnelCXHxPr2v4CByotcwNOAOuApdcSpeR8xGkzm0j9hRYyxVFrExJ V/P0a6iE9ZN+CyZcIgIABa9SeEbTqGBq -----END CERTIFICATE-----Generated at Tue Jul 1 22:39:51 2025 by rpki-client