$ rpki-client -vvf rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft File: iifxtRRZ_TbLLIBghxxVOPnSPX4.mft (raw, json) Hash identifier: WLnTd5ydFEKzXBjD9/LWOQilplPwlJxy+vjuRer7Yws= Subject key identifier: 92:52:D5:5F:E0:E9:01:3D:E9:30:A5:9D:FE:9D:76:44:DA:0C:D8:AC Authority key identifier: 8A:27:F1:B5:14:59:FD:36:CB:2C:80:60:87:1C:55:38:F9:D2:3D:7E Certificate issuer: /CN=A918AACD/serialNumber=8A27F1B51459FD36CB2C8060871C5538F9D23D7E Certificate serial: D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iifxtRRZ_TbLLIBghxxVOPnSPX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft Manifest number: D2 Signing time: Tue 01 Jul 2025 06:13:48 +0000 Manifest this update: Tue 01 Jul 2025 06:13:48 +0000 Manifest next update: Tue 08 Jul 2025 06:13:48 +0000 Files and hashes: 1: iifxtRRZ_TbLLIBghxxVOPnSPX4.crl (hash: Bv8GzV8nhEaQOl8+uyLOuGkyz++twxo0/1pFMnovqks=) 2: 7DA22F2C199D11EFB19DA380C4F9AE02.roa (hash: m/G/Sff8tqA/XbNYboOxx50mkuYuHxKvPy3vRj80oOo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.crl rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iifxtRRZ_TbLLIBghxxVOPnSPX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 06:13:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 212 (0xd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AACD, serialNumber=8A27F1B51459FD36CB2C8060871C5538F9D23D7E Validity Not Before: Jul 1 06:13:48 2025 GMT Not After : Jul 8 06:13:48 2025 GMT Subject: CN=68637c9c-e970 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:11:1d:4b:f5:d7:74:64:a6:c4:c5:e0:26:d2: e4:27:c2:bc:bd:a3:10:a5:f5:17:24:4f:f9:90:e4: 85:6f:20:5a:e1:41:6b:7e:de:1f:e5:1c:2b:7c:28: 84:7e:a2:93:fa:a4:6e:99:28:2d:d5:1c:6e:ed:f4: 1d:82:eb:8f:81:4c:32:5e:75:c9:ab:6a:19:58:5a: 49:e1:65:4b:77:e7:33:34:b5:1a:48:15:18:63:e7: 66:5d:44:6a:4f:f1:c5:00:8b:26:0b:8e:b6:f8:3c: 00:e6:a7:0d:b5:fb:7e:f7:ae:30:73:f0:ab:48:cb: f1:e6:e4:b5:a5:55:ff:d4:66:a1:00:a4:bf:1c:58: a7:4d:0e:7d:11:d7:9c:e9:01:7b:d5:72:97:68:ad: c7:f5:dd:4c:63:41:f2:a0:f5:46:d0:10:9d:98:f5: a9:73:a2:06:53:64:b2:5d:c6:06:bd:9b:ca:d8:0c: 3b:1d:5c:7b:48:3c:cc:9b:9f:62:11:2c:7d:7d:2e: f0:41:14:51:1f:66:18:cc:e6:8d:6a:ae:ac:0d:2e: 44:e7:ff:d9:b1:34:60:d5:9d:ba:f9:66:fe:d0:36: b3:79:1a:d2:59:15:6b:9a:69:10:71:2b:af:e4:1e: 81:d4:b7:44:25:f2:a7:32:bc:40:e1:b4:d3:90:ff: d7:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:52:D5:5F:E0:E9:01:3D:E9:30:A5:9D:FE:9D:76:44:DA:0C:D8:AC X509v3 Authority Key Identifier: keyid:8A:27:F1:B5:14:59:FD:36:CB:2C:80:60:87:1C:55:38:F9:D2:3D:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iifxtRRZ_TbLLIBghxxVOPnSPX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:a2:d7:33:9a:36:3b:b1:80:61:33:94:64:41:d5:a1:0d:a7: 13:c1:12:69:5e:4d:6e:77:59:b3:05:21:73:90:83:cf:ff:0c: b6:fa:1a:d3:5b:b4:0c:84:42:fd:af:d0:67:93:d6:5f:c8:95: ea:d8:e1:a5:38:ee:e2:d0:63:28:80:88:18:c4:ff:1e:fe:19: 8b:fa:f3:43:01:5b:f7:11:44:f1:79:fc:aa:07:d5:97:da:20: ae:2d:e6:c7:8d:a1:5a:7a:47:1b:4a:b5:96:bc:c4:2f:eb:99: 1e:26:88:35:cd:ad:8b:6f:1d:15:02:93:58:69:38:4e:31:81: 88:53:f6:30:e6:31:31:cd:ee:6c:a8:b2:64:03:49:5c:97:e9: 94:71:34:59:54:3c:52:97:57:ca:9c:d2:f7:bb:1c:cf:9d:05: e0:a5:8b:c9:00:5c:e6:6f:e8:d7:e4:d5:a3:bf:f2:d4:ab:ef: a5:97:2b:1f:3f:51:52:b9:b1:33:49:c8:2c:b2:63:cb:24:72: a2:e4:5e:3b:98:b4:f0:bb:ff:c7:91:ab:62:5f:c7:09:e1:d8: 96:b5:47:c1:63:54:75:7e:b4:9b:04:b2:3e:9f:86:4a:f7:29: 5e:98:1d:3b:8e:52:ee:a4:be:d1:0c:e8:97:3a:b7:5c:e4:bf: 39:96:ef:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFBQ0QxMTAvBgNVBAUTKDhBMjdGMUI1MTQ1OUZEMzZDQjJDODA2MDg3MUM1NTM4 RjlEMjNEN0UwHhcNMjUwNzAxMDYxMzQ4WhcNMjUwNzA4MDYxMzQ4WjAYMRYwFAYD VQQDEw02ODYzN2M5Yy1lOTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuhEdS/XXdGSmxMXgJtLkJ8K8vaMQpfUXJE/5kOSFbyBa4UFrft4f5RwrfCiE fqKT+qRumSgt1Rxu7fQdguuPgUwyXnXJq2oZWFpJ4WVLd+czNLUaSBUYY+dmXURq T/HFAIsmC462+DwA5qcNtft+964wc/CrSMvx5uS1pVX/1GahAKS/HFinTQ59Edec 6QF71XKXaK3H9d1MY0HyoPVG0BCdmPWpc6IGU2SyXcYGvZvK2Aw7HVx7SDzMm59i ESx9fS7wQRRRH2YYzOaNaq6sDS5E5//ZsTRg1Z26+Wb+0DazeRrSWRVrmmkQcSuv 5B6B1LdEJfKnMrxA4bTTkP/X0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJJS1V/g 6QE96TClnf6ddkTaDNisMB8GA1UdIwQYMBaAFIon8bUUWf02yyyAYIccVTj50j1+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUFDRC84RUExOUFBMjE5 OUMxMUVGOTY5NzM0N0ZDNEY5QUUwMi9paWZ4dFJSWl9UYkxMSUJnaHh4Vk9QblNQ WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lpZnh0UlJaX1RiTExJQmdoeHhWT1BuU1BYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QUFDRC84RUExOUFBMjE5OUMxMUVGOTY5NzM0N0ZDNEY5QUUwMi9paWZ4dFJSWl9U YkxMSUJnaHh4Vk9QblNQWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbotczmjY7sYBhM5RkQdWhDacTwRJpXk1ud1mzBSFzkIPP/wy2+hrT W7QMhEL9r9Bnk9ZfyJXq2OGlOO7i0GMogIgYxP8e/hmL+vNDAVv3EUTxefyqB9WX 2iCuLebHjaFaekcbSrWWvMQv65keJog1za2Lbx0VApNYaThOMYGIU/Yw5jExze5s qLJkA0lcl+mUcTRZVDxSl1fKnNL3uxzPnQXgpYvJAFzmb+jX5NWjv/LUq++llysf P1FSubEzScgssmPLJHKi5F47mLTwu//HkatiX8cJ4diWtUfBY1R1frSbBLI+n4ZK 9ylemB07jlLupL7RDOiXOrdc5L85lu9N -----END CERTIFICATE-----Generated at Thu Jul 3 00:20:03 2025 by rpki-client