$ rpki-client -vvf rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft File: Ic_hSZujbpQWt_68gTw8LqkWvEY.mft (raw, json) Hash identifier: i2eorLhlJXD4IuRtShowlT3Losu2r3zucAlwjfdquUc= Subject key identifier: 67:77:C8:58:36:53:41:DE:39:DD:09:3A:1C:1C:AA:14:C9:9F:7F:B2 Authority key identifier: 21:CF:E1:49:9B:A3:6E:94:16:B7:FE:BC:81:3C:3C:2E:A9:16:BC:46 Certificate issuer: /CN=A917B413/serialNumber=21CFE1499BA36E9416B7FEBC813C3C2EA916BC46 Certificate serial: 0AD6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft Manifest number: 0ACD Signing time: Fri 04 Jul 2025 19:47:56 +0000 Manifest this update: Fri 04 Jul 2025 19:47:55 +0000 Manifest next update: Fri 11 Jul 2025 19:47:55 +0000 Files and hashes: 1: Ic_hSZujbpQWt_68gTw8LqkWvEY.crl (hash: WMsgz2tmaG0Te+94WG7omRPgXhNolebW6/r0a/+uwEc=) 2: 498B6EFE942411EA816FC855C4F9AE02.roa (hash: AU3Frw6p1SnNaYVLPNPNSlHZdunuBupMTCIgXK+Ojng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.crl rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2774 (0xad6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B413, serialNumber=21CFE1499BA36E9416B7FEBC813C3C2EA916BC46 Validity Not Before: Jul 4 19:47:55 2025 GMT Not After : Jul 11 19:47:55 2025 GMT Subject: CN=68682fec-0f78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d8:ea:31:85:e4:2c:52:a7:b8:80:80:4c:0b: 1c:84:60:89:d2:06:16:02:ef:95:60:f1:f1:95:26: 75:32:9d:7f:af:07:de:4d:1b:12:68:58:8f:d1:4d: c9:b3:be:86:8d:73:dc:72:e3:29:80:c8:23:e4:5b: dc:30:08:5a:66:5f:9b:26:b8:bd:c4:9b:eb:0a:91: 35:25:8c:97:47:ba:8b:6a:7f:52:fa:ce:aa:a8:81: 32:a8:63:00:4e:e5:37:ed:6f:e3:e0:6a:fc:e4:62: 6d:6e:51:3b:ac:84:be:31:f2:1d:dc:00:36:05:94: d6:75:23:7e:f7:0d:ce:8f:79:55:b0:3c:0d:e2:62: 88:55:18:3c:7f:41:7a:13:7d:dc:60:bd:7c:fc:6b: 9b:48:a0:4b:5a:db:67:4f:76:08:55:5d:23:5b:a5: 5e:41:f1:78:d6:68:4e:a3:13:1e:1f:6c:85:9e:85: a9:2e:80:f5:c9:e3:b9:dd:7b:d9:2d:99:54:e3:c5: 8c:4c:79:67:32:63:b5:e6:a9:d7:aa:a1:0d:e2:7a: 52:e9:22:84:10:d9:ba:4b:d0:02:c9:36:6a:33:d3: 9a:fa:d1:03:81:9e:7f:62:65:3f:0b:6c:0d:9b:14: c9:57:d0:03:c7:66:6c:3f:41:f8:6a:78:b1:e1:81: 1f:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:77:C8:58:36:53:41:DE:39:DD:09:3A:1C:1C:AA:14:C9:9F:7F:B2 X509v3 Authority Key Identifier: keyid:21:CF:E1:49:9B:A3:6E:94:16:B7:FE:BC:81:3C:3C:2E:A9:16:BC:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:50:2d:0a:b1:12:12:b1:9d:0d:37:1f:b4:11:43:9a:8b:9e: 1f:5d:71:40:df:e9:07:5a:f2:08:25:35:15:36:65:b0:3a:c2: 98:84:d6:17:ec:c1:24:64:71:45:75:40:52:40:ae:6c:57:18: 60:89:b1:00:7b:82:38:6a:93:a4:9b:0d:74:5a:fe:19:09:7b: d4:d4:5c:ee:7a:15:27:ac:84:3d:1f:6a:93:7e:d5:1d:0d:94: 81:06:26:2b:87:dd:db:9f:1b:1d:cb:6e:79:4b:2c:7d:c4:bf: 0c:20:ab:45:ca:cc:0d:d6:57:84:18:8d:1f:3d:95:60:39:b3: 7f:7e:a0:d3:07:92:3b:f0:d6:e4:da:c5:f9:20:be:6e:0d:4e: 61:77:0c:a6:fe:46:88:04:f3:80:06:bc:18:07:27:0e:41:09: d9:5f:a4:fe:70:85:78:ec:ce:42:9b:38:6b:12:2f:f5:2b:2c: 4a:d7:8d:ca:8b:c0:19:12:5f:ec:12:7e:d7:1c:c4:e4:6b:04: a6:93:3b:22:8e:11:da:6e:1b:e8:8b:0f:c7:7e:7a:a1:05:6a: 22:bd:45:d6:b5:8b:47:58:89:23:95:f8:2b:85:58:41:59:8e: d4:3c:75:ab:61:23:04:24:fa:c4:34:86:56:b3:89:d0:42:94: 88:6e:30:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCtYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0MTMxMTAvBgNVBAUTKDIxQ0ZFMTQ5OUJBMzZFOTQxNkI3RkVCQzgxM0MzQzJF QTkxNkJDNDYwHhcNMjUwNzA0MTk0NzU1WhcNMjUwNzExMTk0NzU1WjAYMRYwFAYD VQQDEw02ODY4MmZlYy0wZjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwNjqMYXkLFKnuICATAschGCJ0gYWAu+VYPHxlSZ1Mp1/rwfeTRsSaFiP0U3J s76GjXPccuMpgMgj5FvcMAhaZl+bJri9xJvrCpE1JYyXR7qLan9S+s6qqIEyqGMA TuU37W/j4Gr85GJtblE7rIS+MfId3AA2BZTWdSN+9w3Oj3lVsDwN4mKIVRg8f0F6 E33cYL18/GubSKBLWttnT3YIVV0jW6VeQfF41mhOoxMeH2yFnoWpLoD1yeO53XvZ LZlU48WMTHlnMmO15qnXqqEN4npS6SKEENm6S9ACyTZqM9Oa+tEDgZ5/YmU/C2wN mxTJV9ADx2ZsP0H4anix4YEfxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGd3yFg2 U0HeOd0JOhwcqhTJn3+yMB8GA1UdIwQYMBaAFCHP4Umbo26UFrf+vIE8PC6pFrxG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjQxMy9COEZDQTdCQTUx NkUxMUVBOTgwQTI4N0VDNEY5QUUwMi9JY19oU1p1amJwUVd0XzY4Z1R3OExxa1d2 RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljX2hTWnVqYnBRV3RfNjhnVHc4THFrV3ZFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjQxMy9COEZDQTdCQTUxNkUxMUVBOTgwQTI4N0VDNEY5QUUwMi9JY19oU1p1amJw UVd0XzY4Z1R3OExxa1d2RVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkUC0KsRISsZ0NNx+0EUOai54fXXFA3+kHWvIIJTUVNmWwOsKYhNYX 7MEkZHFFdUBSQK5sVxhgibEAe4I4apOkmw10Wv4ZCXvU1FzuehUnrIQ9H2qTftUd DZSBBiYrh93bnxsdy255Syx9xL8MIKtFyswN1leEGI0fPZVgObN/fqDTB5I78Nbk 2sX5IL5uDU5hdwym/kaIBPOABrwYBycOQQnZX6T+cIV47M5CmzhrEi/1KyxK143K i8AZEl/sEn7XHMTkawSmkzsijhHabhvoiw/HfnqhBWoivUXWtYtHWIkjlfgrhVhB WY7UPHWrYSMEJPrENIZWs4nQQpSIbjAK -----END CERTIFICATE-----Generated at Sat Jul 5 05:22:30 2025 by rpki-client