$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft File: IokuPYxEn1qaxkz8tjS1n2xTE2s.mft (raw, json) Hash identifier: uwKz+BTuAlCIIsoidi+uoFlI14htAV1uyAB2z/Zxtk4= Subject key identifier: F7:75:1C:B1:88:31:DD:90:24:62:C2:3D:CC:40:0C:C4:BA:DF:96:B8 Authority key identifier: 22:89:2E:3D:8C:44:9F:5A:9A:C6:4C:FC:B6:34:B5:9F:6C:53:13:6B Certificate issuer: /CN=A917BB59/serialNumber=22892E3D8C449F5A9AC64CFCB634B59F6C53136B Certificate serial: 07AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft Manifest number: 079D Signing time: Wed 02 Jul 2025 21:36:33 +0000 Manifest this update: Wed 02 Jul 2025 21:36:32 +0000 Manifest next update: Wed 09 Jul 2025 21:36:32 +0000 Files and hashes: 1: IokuPYxEn1qaxkz8tjS1n2xTE2s.crl (hash: IwZZ3VMULHCa2serwCMmSFXNrlySphGlQO9MgdLDSTk=) 2: 7BF36C680DCB11EBA17D032EC4F9AE02.roa (hash: x1swDqDbdRpW1YcvJW4XZPVqkw29NgcBcxcpOtDQ400=) 3: 8FEA9564C2AE11EB94777A0CC4F9AE02.roa (hash: faGNUns0UIB/6rsiDFhIe2V0V3MDd2DqirXM6CF0Z8Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.crl rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:36:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1962 (0x7aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB59, serialNumber=22892E3D8C449F5A9AC64CFCB634B59F6C53136B Validity Not Before: Jul 2 21:36:32 2025 GMT Not After : Jul 9 21:36:32 2025 GMT Subject: CN=6865a661-bf0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0a:94:5c:3f:68:26:93:ec:11:98:1b:91:89: 44:4d:54:c2:19:11:20:1b:ba:0c:50:eb:da:26:55: 57:95:47:e9:be:5b:a6:0e:9c:19:1a:4b:b8:73:a1: a9:00:d2:6d:14:75:a9:9a:eb:97:a7:50:78:4b:85: 74:ff:75:d7:71:f2:25:11:02:a4:fc:ee:d6:6f:d0: d2:cb:5d:46:3a:31:33:52:61:cc:ca:72:cf:3b:42: c3:83:a3:7b:f0:aa:ab:e7:61:74:3a:f4:3e:5f:31: 75:e9:39:b4:3c:0a:36:ee:91:47:a8:80:93:c4:99: 0d:41:03:2f:23:36:05:b7:38:13:53:cd:1b:64:90: 9a:1a:23:1c:26:ae:8b:41:4a:ad:d0:4b:e8:68:09: 12:5d:0d:a1:51:94:b4:45:2a:ed:22:60:f4:70:11: c5:ac:f4:e5:d5:27:fe:84:bd:c5:8c:79:0a:e6:47: 05:d4:a3:b9:c3:8a:67:d1:21:85:3d:a1:63:48:f3: a5:8c:48:83:9c:6b:d6:5a:a2:5e:92:d9:9c:af:7a: 8c:d9:67:06:7d:42:59:09:71:46:85:89:3e:6d:66: 49:16:e4:32:f2:b2:ae:6b:f6:5a:eb:f6:7f:0c:63: 8f:7e:3f:f6:16:15:6c:7a:a7:ca:cd:b2:27:b5:bc: c4:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:75:1C:B1:88:31:DD:90:24:62:C2:3D:CC:40:0C:C4:BA:DF:96:B8 X509v3 Authority Key Identifier: keyid:22:89:2E:3D:8C:44:9F:5A:9A:C6:4C:FC:B6:34:B5:9F:6C:53:13:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:f7:40:52:91:28:90:55:0c:80:a4:cb:99:95:57:81:94:3d: 34:2c:83:0c:4c:39:64:af:62:13:b9:2d:ff:4b:63:25:1f:5c: 62:49:2e:74:60:1c:f6:56:b7:9c:bf:c9:99:57:69:b7:54:ac: a1:20:80:f7:b9:db:ee:ee:d1:70:80:a1:23:48:2a:b1:e1:99: 6c:9c:20:4f:c6:58:1a:1e:7f:92:36:d6:a9:4d:e6:f5:45:db: ed:aa:48:2d:02:04:ea:10:a3:b5:5b:a2:f2:84:c3:73:b0:18: bc:b7:13:34:69:1c:c9:a0:bc:39:e9:9c:44:61:18:92:5a:07: ec:41:be:67:c3:9a:d3:a6:18:7d:8a:07:2b:1b:79:4d:fc:4b: 27:34:4e:c9:05:af:c8:db:41:9e:44:ff:a2:c8:1a:67:9a:8d: 1c:64:c6:7a:3f:ed:fa:d6:c4:26:13:14:f8:6c:5d:3b:cc:90: cf:50:30:d0:bd:b6:94:f2:0d:8a:5e:b7:1b:ab:a2:d3:45:05: 0c:e6:17:e9:5e:e9:32:a9:e6:c7:41:2b:bd:ac:c1:26:85:4e: 23:3f:35:06:7e:38:49:2d:5d:0e:31:94:72:56:be:41:3e:46: 3f:96:55:fa:82:00:2e:c7:f6:5e:08:e6:b4:a3:5b:f8:8c:cf: 4b:94:60:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCNTkxMTAvBgNVBAUTKDIyODkyRTNEOEM0NDlGNUE5QUM2NENGQ0I2MzRCNTlG NkM1MzEzNkIwHhcNMjUwNzAyMjEzNjMyWhcNMjUwNzA5MjEzNjMyWjAYMRYwFAYD VQQDEw02ODY1YTY2MS1iZjBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvwqUXD9oJpPsEZgbkYlETVTCGREgG7oMUOvaJlVXlUfpvlumDpwZGku4c6Gp ANJtFHWpmuuXp1B4S4V0/3XXcfIlEQKk/O7Wb9DSy11GOjEzUmHMynLPO0LDg6N7 8Kqr52F0OvQ+XzF16Tm0PAo27pFHqICTxJkNQQMvIzYFtzgTU80bZJCaGiMcJq6L QUqt0EvoaAkSXQ2hUZS0RSrtImD0cBHFrPTl1Sf+hL3FjHkK5kcF1KO5w4pn0SGF PaFjSPOljEiDnGvWWqJektmcr3qM2WcGfUJZCXFGhYk+bWZJFuQy8rKua/Za6/Z/ DGOPfj/2FhVseqfKzbIntbzEjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPd1HLGI Md2QJGLCPcxADMS635a4MB8GA1UdIwQYMBaAFCKJLj2MRJ9amsZM/LY0tZ9sUxNr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkI1OS9CNjhCOTBENjBE Q0ExMUVCQTdDMkUyMkRDNEY5QUUwMi9Jb2t1UFl4RW4xcWF4a3o4dGpTMW4yeFRF MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lva3VQWXhFbjFxYXhrejh0alMxbjJ4VEUycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkI1OS9CNjhCOTBENjBEQ0ExMUVCQTdDMkUyMkRDNEY5QUUwMi9Jb2t1UFl4RW4x cWF4a3o4dGpTMW4yeFRFMnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBw90BSkSiQVQyApMuZlVeBlD00LIMMTDlkr2ITuS3/S2MlH1xiSS50 YBz2Vrecv8mZV2m3VKyhIID3udvu7tFwgKEjSCqx4ZlsnCBPxlgaHn+SNtapTeb1 RdvtqkgtAgTqEKO1W6LyhMNzsBi8txM0aRzJoLw56ZxEYRiSWgfsQb5nw5rTphh9 igcrG3lN/EsnNE7JBa/I20GeRP+iyBpnmo0cZMZ6P+361sQmExT4bF07zJDPUDDQ vbaU8g2KXrcbq6LTRQUM5hfpXukyqebHQSu9rMEmhU4jPzUGfjhJLV0OMZRyVr5B PkY/llX6ggAux/ZeCOa0o1v4jM9LlGBV -----END CERTIFICATE-----Generated at Thu Jul 3 14:19:22 2025 by rpki-client