$ rpki-client -vvf rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.mft File: IHRtqWxsk0jpS7t03MtZAcbst7M.mft (raw, json) Hash identifier: N78wFYhCvlnsgT0IqTO8pSfbQleubYF08w66RBg1OoA= Subject key identifier: 80:10:C7:98:CD:9A:D8:5A:66:A8:F2:0D:6D:4E:78:2B:E0:CA:97:6D Authority key identifier: 20:74:6D:A9:6C:6C:93:48:E9:4B:BB:74:DC:CB:59:01:C6:EC:B7:B3 Certificate issuer: /CN=A918BD1A/serialNumber=20746DA96C6C9348E94BBB74DCCB5901C6ECB7B3 Certificate serial: 03BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHRtqWxsk0jpS7t03MtZAcbst7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.mft Manifest number: 03B8 Signing time: Thu 03 Jul 2025 01:03:31 +0000 Manifest this update: Thu 03 Jul 2025 01:03:30 +0000 Manifest next update: Thu 10 Jul 2025 01:03:30 +0000 Files and hashes: 1: IHRtqWxsk0jpS7t03MtZAcbst7M.crl (hash: xK23+zQjJKlXXWJXcUzZMfzzkoVV+glnJn3k6vNOiBY=) 2: FC11F400240611EFA8F45A54C4F9AE02.roa (hash: o33RNCZroDwsAJGcMgsni5M3q2cYV8AkaewWNhrky5w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.crl rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHRtqWxsk0jpS7t03MtZAcbst7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:03:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 959 (0x3bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BD1A, serialNumber=20746DA96C6C9348E94BBB74DCCB5901C6ECB7B3 Validity Not Before: Jul 3 01:03:30 2025 GMT Not After : Jul 10 01:03:30 2025 GMT Subject: CN=6865d6e2-e764 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:c4:c7:eb:45:19:53:77:0e:99:cf:22:cc:85: 14:34:04:74:e4:9b:45:0d:41:bc:c3:33:e2:a1:33: f6:2e:50:29:10:da:7e:c2:ec:45:6f:0d:c5:ce:ec: e7:e4:68:93:14:51:e2:2d:99:4e:a7:07:ad:15:ba: 27:57:ff:64:8e:81:99:3c:24:9e:92:89:66:5d:30: 29:5f:fb:6c:cb:54:b6:41:05:14:63:3f:ac:b2:83: f6:46:66:5c:5a:c1:dc:65:6d:93:c9:97:ee:9e:88: 87:0e:1d:95:69:57:8a:8c:49:ed:f3:69:5f:81:ae: 15:ec:ec:f1:a7:44:e4:76:2c:cc:d7:c1:39:4e:d1: 0e:23:23:b9:15:b4:23:2a:60:c0:7b:a6:b6:a5:9b: d5:dc:f4:eb:2e:13:b2:ee:7b:b4:9f:17:8d:b3:40: 12:e7:3e:1a:b6:5f:52:7d:a5:57:61:62:ea:db:fc: 82:45:e3:c1:0e:cc:12:67:08:da:e6:80:86:bc:bc: 98:18:c0:e8:7c:3b:25:bb:24:90:c2:11:94:10:e0: d5:61:46:13:e7:94:d4:21:93:6f:76:94:32:32:c1: c2:ab:1c:21:10:0a:d2:0e:d0:dc:dd:2d:cf:83:db: b7:d2:ed:73:a4:46:7c:be:d2:11:5f:80:94:df:69: a7:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:10:C7:98:CD:9A:D8:5A:66:A8:F2:0D:6D:4E:78:2B:E0:CA:97:6D X509v3 Authority Key Identifier: keyid:20:74:6D:A9:6C:6C:93:48:E9:4B:BB:74:DC:CB:59:01:C6:EC:B7:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHRtqWxsk0jpS7t03MtZAcbst7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:ee:9d:f2:20:31:e4:cf:98:8f:24:6c:b4:0c:87:58:d8:c2: 19:d5:30:c1:8a:8f:a3:c1:da:35:71:18:c7:2b:67:b7:49:bd: b2:52:8b:f8:a0:99:fb:13:2c:46:f7:2c:64:19:4e:50:0e:2e: ba:85:f7:fc:b1:49:79:67:aa:60:5d:d9:28:3f:eb:c9:cf:3e: 5c:91:d1:8f:eb:2c:9f:89:a3:e5:0f:4c:69:11:4a:eb:65:3d: 1d:b8:3f:81:16:d0:67:b3:64:99:78:70:b0:89:03:97:0e:bc: da:f1:fc:60:1a:9c:04:bd:67:86:a6:b1:56:49:ff:00:81:92: c7:19:86:78:8c:b8:3f:8a:3b:ea:9f:42:ea:6a:ac:88:64:b4: 19:a6:82:2f:90:8d:bb:46:4d:29:3e:47:17:03:e2:cf:e1:7a: 43:55:bd:fd:d6:c0:5b:35:1b:3b:c4:8f:ab:bb:45:93:14:50: bf:37:af:14:d6:99:3a:e4:16:9a:65:ff:7e:63:e2:92:c1:9e: 10:1a:f4:9f:52:85:3d:9c:fb:c3:e1:bb:62:8a:9b:dd:3e:88: 16:37:b7:61:07:77:b9:38:49:c0:4a:fd:a8:90:cd:93:f2:6f: 29:02:56:67:bf:8b:0a:19:c9:fd:d7:3c:2b:3a:da:f1:23:b8: 05:7e:d0:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA78wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJEMUExMTAvBgNVBAUTKDIwNzQ2REE5NkM2QzkzNDhFOTRCQkI3NERDQ0I1OTAx QzZFQ0I3QjMwHhcNMjUwNzAzMDEwMzMwWhcNMjUwNzEwMDEwMzMwWjAYMRYwFAYD VQQDEw02ODY1ZDZlMi1lNzY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp8TH60UZU3cOmc8izIUUNAR05JtFDUG8wzPioTP2LlApENp+wuxFbw3Fzuzn 5GiTFFHiLZlOpwetFbonV/9kjoGZPCSekolmXTApX/tsy1S2QQUUYz+ssoP2RmZc WsHcZW2TyZfunoiHDh2VaVeKjEnt82lfga4V7Ozxp0TkdizM18E5TtEOIyO5FbQj KmDAe6a2pZvV3PTrLhOy7nu0nxeNs0AS5z4atl9SfaVXYWLq2/yCRePBDswSZwja 5oCGvLyYGMDofDsluySQwhGUEODVYUYT55TUIZNvdpQyMsHCqxwhEArSDtDc3S3P g9u30u1zpEZ8vtIRX4CU32mndwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIAQx5jN mthaZqjyDW1OeCvgypdtMB8GA1UdIwQYMBaAFCB0balsbJNI6Uu7dNzLWQHG7Lez MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkQxQS80QzZFQUJFODk5 RDgxMUVDQjlFMzU3NkZDNEY5QUUwMi9JSFJ0cVd4c2swanBTN3QwM010WkFjYnN0 N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lIUnRxV3hzazBqcFM3dDAzTXRaQWNic3Q3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QkQxQS80QzZFQUJFODk5RDgxMUVDQjlFMzU3NkZDNEY5QUUwMi9JSFJ0cVd4c2sw anBTN3QwM010WkFjYnN0N00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBR7p3yIDHkz5iPJGy0DIdY2MIZ1TDBio+jwdo1cRjHK2e3Sb2yUov4 oJn7EyxG9yxkGU5QDi66hff8sUl5Z6pgXdkoP+vJzz5ckdGP6yyfiaPlD0xpEUrr ZT0duD+BFtBns2SZeHCwiQOXDrza8fxgGpwEvWeGprFWSf8AgZLHGYZ4jLg/ijvq n0LqaqyIZLQZpoIvkI27Rk0pPkcXA+LP4XpDVb391sBbNRs7xI+ru0WTFFC/N68U 1pk65BaaZf9+Y+KSwZ4QGvSfUoU9nPvD4btiipvdPogWN7dhB3e5OEnASv2okM2T 8m8pAlZnv4sKGcn91zwrOtrxI7gFftDo -----END CERTIFICATE-----Generated at Fri Jul 4 07:18:00 2025 by rpki-client