$ rpki-client -vvf rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/iA5rTc1s7FPI0D10DIjpdzsEexk.mft File: iA5rTc1s7FPI0D10DIjpdzsEexk.mft (raw, json) Hash identifier: NoAICbG9omccvrAgoQS/S8Di15BpFdycYKs74bvwylA= Subject key identifier: EA:A6:A2:07:42:19:F9:BE:71:12:04:66:98:E8:82:44:A1:4B:D5:ED Authority key identifier: 88:0E:6B:4D:CD:6C:EC:53:C8:D0:3D:74:0C:88:E9:77:3B:04:7B:19 Certificate issuer: /CN=A9187465/serialNumber=880E6B4DCD6CEC53C8D03D740C88E9773B047B19 Certificate serial: 1682 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iA5rTc1s7FPI0D10DIjpdzsEexk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/iA5rTc1s7FPI0D10DIjpdzsEexk.mft Manifest number: 166E Signing time: Wed 02 Jul 2025 16:50:13 +0000 Manifest this update: Wed 02 Jul 2025 16:50:12 +0000 Manifest next update: Wed 09 Jul 2025 16:50:12 +0000 Files and hashes: 1: iA5rTc1s7FPI0D10DIjpdzsEexk.crl (hash: 3pVAcG1r5vPDCj7DMX24Awrxp2I2ABbEIILHUwP7gGs=) 2: E1ADA4BC062B11F08449516EC4F9AE02.roa (hash: irCyzZt8lLVT2O/nBYFOPs0nEEY6FDn9ohpC+rSN6lg=) 3: E259315C57CA11EA8D931284C4F9AE02.roa (hash: UF4UGi4YvKSRTlKCNcjEh8f4bqwvLQuk9xLcKAJKTWQ=) 4: 7D2EA194B20711EA8B74F445C4F9AE02.roa (hash: slzLXwHdalwSZSG2cdS37Tf6mGAWnLHG4M+IywxJpUk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/iA5rTc1s7FPI0D10DIjpdzsEexk.crl rsync://rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/iA5rTc1s7FPI0D10DIjpdzsEexk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iA5rTc1s7FPI0D10DIjpdzsEexk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5762 (0x1682) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187465, serialNumber=880E6B4DCD6CEC53C8D03D740C88E9773B047B19 Validity Not Before: Jul 2 16:50:12 2025 GMT Not After : Jul 9 16:50:12 2025 GMT Subject: CN=68656344-737c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:f0:d6:98:ae:be:5f:8c:82:f5:e7:56:94:95: 2d:ae:ab:64:43:a9:1c:d6:34:22:01:a1:7d:5a:23: 95:d6:28:00:3e:80:b9:b1:1c:73:04:39:18:ec:e4: 16:57:81:2c:2b:5b:10:3c:26:ef:aa:7a:0d:0b:0f: c8:56:66:ed:d1:2a:cb:d7:b2:62:e7:22:e2:60:0f: 8a:f5:95:63:fe:36:75:d7:b7:e1:80:95:d6:0e:0e: fb:97:d3:13:83:21:7b:b7:dd:ee:17:33:47:ae:07: e8:19:5a:6c:b0:3e:61:12:be:24:6d:f4:65:a0:df: 75:0e:58:94:5e:97:e9:64:b1:78:73:c6:c5:37:04: ac:df:79:eb:ff:1a:6b:ef:4d:4d:16:59:3c:b6:96: 29:1a:3f:5f:01:92:e2:d9:10:49:95:ca:9e:04:65: bd:4f:5f:7b:bc:c7:68:25:66:9b:5f:69:f7:65:5e: 6a:00:ec:e7:2c:86:80:41:21:72:87:da:a0:9b:76: 7e:c6:ad:21:55:85:2e:80:5e:7a:06:89:7d:7c:45: 60:9c:96:25:bf:5b:86:72:a2:23:5e:88:a2:ca:0f: 55:92:21:fc:41:4f:39:de:8f:c6:c8:8a:7d:d5:36: d6:bc:28:f0:5c:86:84:ba:38:3c:34:68:bd:27:4b: 06:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:A6:A2:07:42:19:F9:BE:71:12:04:66:98:E8:82:44:A1:4B:D5:ED X509v3 Authority Key Identifier: keyid:88:0E:6B:4D:CD:6C:EC:53:C8:D0:3D:74:0C:88:E9:77:3B:04:7B:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/iA5rTc1s7FPI0D10DIjpdzsEexk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iA5rTc1s7FPI0D10DIjpdzsEexk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/iA5rTc1s7FPI0D10DIjpdzsEexk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:8c:5c:d0:97:6f:b9:40:7a:10:09:2e:af:6a:dc:6f:1e:6e: 07:15:95:f1:ff:9a:4a:86:4f:62:5a:b3:30:f2:30:53:1e:f3: 85:3a:11:c8:70:9b:b1:cc:5b:9b:fa:31:93:7e:00:b2:ea:f3: af:ec:32:ed:99:a0:6c:c5:99:35:99:23:2c:4c:f3:a7:bd:5d: eb:e5:f4:c2:14:32:89:77:e8:d8:58:62:a9:da:a8:bf:12:b8: 4d:ce:eb:f1:3a:cf:43:07:3d:fd:df:36:34:21:36:f6:61:de: 69:0b:ce:86:25:c0:77:dc:e1:2f:0d:2c:16:85:9d:ca:26:9a: bd:94:ec:0d:0f:ce:9a:47:c0:69:1e:ad:74:0a:f4:6d:ed:94: ab:d5:d8:2a:72:fd:3a:af:38:bf:de:2a:5d:85:78:bc:5d:f8: b1:52:ba:58:d9:a2:5c:d5:5e:85:4d:29:7a:4b:64:a0:0f:f5: 42:8d:b1:fb:de:9c:57:d2:77:5b:ab:17:eb:a8:3e:87:18:16: ad:7f:ca:6c:ee:51:17:a0:04:e7:93:24:d1:57:d1:a3:45:29: 75:aa:94:24:0e:fa:60:37:53:da:df:7d:8d:7f:4b:1d:8c:47: 3b:b9:f5:fb:cb:b3:fe:ce:78:a1:a3:23:56:a5:dc:c4:8c:c9: 8c:3c:ea:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFoIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc0NjUxMTAvBgNVBAUTKDg4MEU2QjREQ0Q2Q0VDNTNDOEQwM0Q3NDBDODhFOTc3 M0IwNDdCMTkwHhcNMjUwNzAyMTY1MDEyWhcNMjUwNzA5MTY1MDEyWjAYMRYwFAYD VQQDEw02ODY1NjM0NC03MzdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApvDWmK6+X4yC9edWlJUtrqtkQ6kc1jQiAaF9WiOV1igAPoC5sRxzBDkY7OQW V4EsK1sQPCbvqnoNCw/IVmbt0SrL17Ji5yLiYA+K9ZVj/jZ117fhgJXWDg77l9MT gyF7t93uFzNHrgfoGVpssD5hEr4kbfRloN91DliUXpfpZLF4c8bFNwSs33nr/xpr 701NFlk8tpYpGj9fAZLi2RBJlcqeBGW9T197vMdoJWabX2n3ZV5qAOznLIaAQSFy h9qgm3Z+xq0hVYUugF56Bol9fEVgnJYlv1uGcqIjXoiiyg9VkiH8QU853o/GyIp9 1TbWvCjwXIaEujg8NGi9J0sGiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOqmogdC Gfm+cRIEZpjogkShS9XtMB8GA1UdIwQYMBaAFIgOa03NbOxTyNA9dAyI6Xc7BHsZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzQ2NS9CMUFGQjZGQTBB NTMxMUU4QUM3QkVFMkVDNEY5QUUwMi9pQTVyVGMxczdGUEkwRDEwRElqcGR6c0Vl eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lBNXJUYzFzN0ZQSTBEMTBESWpwZHpzRWV4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzQ2NS9CMUFGQjZGQTBBNTMxMUU4QUM3QkVFMkVDNEY5QUUwMi9pQTVyVGMxczdG UEkwRDEwRElqcGR6c0VleGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPjFzQl2+5QHoQCS6vatxvHm4HFZXx/5pKhk9iWrMw8jBTHvOFOhHI cJuxzFub+jGTfgCy6vOv7DLtmaBsxZk1mSMsTPOnvV3r5fTCFDKJd+jYWGKp2qi/ ErhNzuvxOs9DBz393zY0ITb2Yd5pC86GJcB33OEvDSwWhZ3KJpq9lOwND86aR8Bp Hq10CvRt7ZSr1dgqcv06rzi/3ipdhXi8XfixUrpY2aJc1V6FTSl6S2SgD/VCjbH7 3pxX0ndbqxfrqD6HGBatf8ps7lEXoATnkyTRV9GjRSl1qpQkDvpgN1Pa332Nf0sd jEc7ufX7y7P+znihoyNWpdzEjMmMPOpV -----END CERTIFICATE-----Generated at Thu Jul 3 06:04:37 2025 by rpki-client