$ rpki-client -vvf rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft File: iTEhgF-UFH033MbXS2N4Rvcjl8U.mft (raw, json) Hash identifier: Nhw/fQLpVVa+JFC7IzNH1HOLVlDbJRgJRGuNAJf7Wk0= Subject key identifier: 2A:5C:15:D9:52:13:35:AC:A1:2A:56:D3:2E:8D:C7:6C:DE:AA:1D:71 Authority key identifier: 89:31:21:80:5F:94:14:7D:37:DC:C6:D7:4B:63:78:46:F7:23:97:C5 Certificate issuer: /CN=A917E00F/serialNumber=893121805F94147D37DCC6D74B637846F72397C5 Certificate serial: 0563 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iTEhgF-UFH033MbXS2N4Rvcjl8U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft Manifest number: 0672 Signing time: Mon 30 Jun 2025 23:45:17 +0000 Manifest this update: Mon 30 Jun 2025 23:45:16 +0000 Manifest next update: Mon 07 Jul 2025 23:45:16 +0000 Files and hashes: 1: iTEhgF-UFH033MbXS2N4Rvcjl8U.crl (hash: T5g+0AUhDfsp4qRKY+0LWIAKx624mySuDGqtXcCZn5o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.crl rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iTEhgF-UFH033MbXS2N4Rvcjl8U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 23:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1379 (0x563) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E00F, serialNumber=893121805F94147D37DCC6D74B637846F72397C5 Validity Not Before: Jun 30 23:45:16 2025 GMT Not After : Jul 7 23:45:16 2025 GMT Subject: CN=6863218d-d64d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:fc:b8:11:34:72:0f:4b:9d:b7:39:c5:b8:1c: 4a:e0:3c:b9:fb:67:d4:ea:9c:e2:ae:45:70:eb:20: 90:9c:db:d1:e1:a5:01:de:52:30:5f:b3:b4:52:31: 7d:d1:36:7d:0c:f0:9a:82:c5:62:cb:6e:f1:0b:92: e0:98:3e:31:90:8e:c6:7a:b7:14:ec:3d:25:22:8e: e2:57:cf:cf:ca:0c:f4:f7:e3:c1:f6:c4:44:0d:d0: 0e:22:34:3d:de:af:10:5d:12:1c:f4:bd:8c:a6:5a: a3:1d:04:e6:75:f0:6d:54:fc:6c:ea:79:72:94:8f: 4a:36:b4:47:55:ba:df:93:52:1d:d5:df:20:62:26: cc:9b:f8:39:91:19:b0:55:79:45:74:70:23:f2:62: 58:11:66:50:81:cb:f3:dd:59:9c:f5:f8:b5:88:d8: a2:84:8c:a5:23:9c:3d:8a:a4:0f:15:33:ca:80:ad: fd:f7:86:51:f7:19:eb:77:88:0e:bc:41:b5:2a:ac: a9:26:8c:b7:df:15:ab:b0:17:38:d9:3c:60:41:89: 8d:97:82:12:bb:b6:f6:fa:d0:c9:43:00:8e:c6:92: b7:4d:f4:aa:35:ec:ee:47:dd:17:11:74:c9:90:f1: fd:cc:b5:77:5f:3a:4a:06:df:d2:e5:dd:55:47:a6: f0:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:5C:15:D9:52:13:35:AC:A1:2A:56:D3:2E:8D:C7:6C:DE:AA:1D:71 X509v3 Authority Key Identifier: keyid:89:31:21:80:5F:94:14:7D:37:DC:C6:D7:4B:63:78:46:F7:23:97:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iTEhgF-UFH033MbXS2N4Rvcjl8U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:60:50:42:fd:c5:fb:c2:5c:ea:6b:53:36:a3:09:16:49:df: 22:bc:74:82:56:7b:c1:26:36:6b:53:9a:6a:5f:a2:81:7f:e1: 20:cc:4e:22:6c:3c:51:f4:95:66:24:ab:3d:12:c6:1a:c9:5a: c7:a4:3f:67:b9:22:1b:35:97:a4:7e:68:a1:4c:ad:11:45:44: 18:fe:7e:59:fc:43:b1:42:f1:b7:e5:30:d7:21:71:6d:a8:46: b9:75:b7:59:b5:69:32:f8:a0:8b:4f:24:0a:6f:76:3d:53:91: f5:f0:f2:59:03:ec:1f:33:cb:a6:fc:42:f9:17:47:bb:0d:98: bf:fb:db:ea:b3:25:ff:b3:09:dd:ca:c6:79:44:ae:b6:ea:8c: 60:50:79:38:d1:2d:e5:7c:e3:cc:69:4d:a9:7b:0a:aa:d3:dd: 5e:d7:dd:3b:71:69:d3:35:42:cf:f9:df:aa:9f:f9:38:a3:48: 6c:4a:d0:7f:b8:13:2b:58:11:de:dd:a5:94:81:ac:f4:50:92: e4:db:17:a2:e1:c7:5d:dc:c8:1f:cb:59:27:60:c4:96:86:d1: 0d:9d:1c:f8:aa:ed:ff:ac:d0:e4:56:8b:77:3f:b1:63:b1:28: 8e:25:5e:ad:b8:d0:38:86:e9:a5:bd:9b:84:61:ad:8b:cf:70: d8:78:fd:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwMEYxMTAvBgNVBAUTKDg5MzEyMTgwNUY5NDE0N0QzN0RDQzZENzRCNjM3ODQ2 RjcyMzk3QzUwHhcNMjUwNjMwMjM0NTE2WhcNMjUwNzA3MjM0NTE2WjAYMRYwFAYD VQQDEw02ODYzMjE4ZC1kNjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsfy4ETRyD0udtznFuBxK4Dy5+2fU6pzirkVw6yCQnNvR4aUB3lIwX7O0UjF9 0TZ9DPCagsViy27xC5LgmD4xkI7GercU7D0lIo7iV8/Pygz09+PB9sREDdAOIjQ9 3q8QXRIc9L2MplqjHQTmdfBtVPxs6nlylI9KNrRHVbrfk1Id1d8gYibMm/g5kRmw VXlFdHAj8mJYEWZQgcvz3Vmc9fi1iNiihIylI5w9iqQPFTPKgK3994ZR9xnrd4gO vEG1KqypJoy33xWrsBc42TxgQYmNl4ISu7b2+tDJQwCOxpK3TfSqNezuR90XEXTJ kPH9zLV3XzpKBt/S5d1VR6bwOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCpcFdlS EzWsoSpW0y6Nx2zeqh1xMB8GA1UdIwQYMBaAFIkxIYBflBR9N9zG10tjeEb3I5fF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTAwRi9FREU0OEI5Q0VF MjkxMUVCODA4NEI2MzhDNEY5QUUwMi9pVEVoZ0YtVUZIMDMzTWJYUzJONFJ2Y2ps OFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lURWhnRi1VRkgwMzNNYlhTMk40UnZjamw4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTAwRi9FREU0OEI5Q0VFMjkxMUVCODA4NEI2MzhDNEY5QUUwMi9pVEVoZ0YtVUZI MDMzTWJYUzJONFJ2Y2psOFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPYFBC/cX7wlzqa1M2owkWSd8ivHSCVnvBJjZrU5pqX6KBf+EgzE4i bDxR9JVmJKs9EsYayVrHpD9nuSIbNZekfmihTK0RRUQY/n5Z/EOxQvG35TDXIXFt qEa5dbdZtWky+KCLTyQKb3Y9U5H18PJZA+wfM8um/EL5F0e7DZi/+9vqsyX/swnd ysZ5RK626oxgUHk40S3lfOPMaU2pewqq091e1907cWnTNULP+d+qn/k4o0hsStB/ uBMrWBHe3aWUgaz0UJLk2xei4cdd3Mgfy1knYMSWhtENnRz4qu3/rNDkVot3P7Fj sSiOJV6tuNA4humlvZuEYa2Lz3DYeP0o -----END CERTIFICATE-----Generated at Tue Jul 1 20:39:17 2025 by rpki-client