$ rpki-client -vvf rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft File: iyhQBa2gBz4MCUttpqOLtR__oaQ.mft (raw, json) Hash identifier: asLYpDpLoOtTn1sI1zxMfBLzk11zYbh9+b1kza/2u04= Subject key identifier: 56:F2:28:E2:8A:33:19:E6:77:EF:BB:58:21:F3:FA:61:4D:F9:11:77 Authority key identifier: 8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 Certificate issuer: /CN=A918D14B/serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Certificate serial: 03E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft Manifest number: 03CE Signing time: Thu 03 Jul 2025 00:59:30 +0000 Manifest this update: Thu 03 Jul 2025 00:59:29 +0000 Manifest next update: Thu 10 Jul 2025 00:59:29 +0000 Files and hashes: 1: iyhQBa2gBz4MCUttpqOLtR__oaQ.crl (hash: d8aUqD5GrMaNxY10Ec1V0/IxrJAfpVoNnIsalKy25Zo=) 2: 58C00854905211EC90E6100FC4F9AE02.roa (hash: 5eLmPskwIg5y4gDpqWBeusWbrOc+t34TIFwmF+boTps=) 3: 989BBF70904F11EC8B118911C4F9AE02.roa (hash: sO6E1E+nR+eYc5iIU6EYUSE2ekfNEYMYq4mKBPQmsro=) 4: 7E8442B68FE511EC94D98C7BC4F9AE02.roa (hash: oJI3ab/8fzhkHDC4Wzdxeh+CGGzoOkYJ9B82+ons7t8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:59:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 993 (0x3e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D14B, serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Validity Not Before: Jul 3 00:59:29 2025 GMT Not After : Jul 10 00:59:29 2025 GMT Subject: CN=6865d5f1-102c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:5d:6c:47:f8:ca:15:99:b9:cc:67:c9:a7:0a: 9a:99:c7:53:ae:f7:45:bf:95:ed:03:04:79:d2:8f: b2:8c:b0:5d:7b:09:de:d8:7f:1e:50:35:73:c4:b5: 85:43:89:0f:ab:ef:ab:45:67:67:3c:01:a6:76:7b: 3d:ac:ad:a8:bb:d3:4f:08:2a:c2:c1:00:b6:d7:a1: cf:e3:92:60:7f:50:fd:28:0f:97:35:0d:1b:2f:00: c1:ad:85:7e:1b:1c:c2:a8:0e:a5:94:e3:53:70:c1: 2a:da:07:46:d2:53:b5:55:2b:95:63:ef:b5:cb:f1: 05:ce:90:b8:e6:ae:9d:61:c5:bb:d4:2e:a3:26:53: 50:13:9b:9e:8e:8f:0e:85:81:4a:11:ce:18:f9:3b: 09:69:37:4a:20:9a:8c:fb:8b:81:e4:2f:76:aa:65: 0d:5b:da:de:a9:9b:cf:f0:3b:81:ca:07:c5:7b:5f: 5c:cf:72:45:b4:fe:59:a1:78:e1:bd:3f:0b:df:aa: fa:da:bf:6a:65:ee:5c:50:e0:ac:de:0d:5b:b4:eb: 04:4d:0d:ed:58:bd:14:80:b0:3f:ec:af:96:2e:b6: 4b:81:22:95:77:18:ad:0d:20:d6:33:c2:5c:d5:ee: a1:7b:d1:75:ec:8e:3c:f1:a3:f9:b3:89:42:ec:f3: 4d:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:F2:28:E2:8A:33:19:E6:77:EF:BB:58:21:F3:FA:61:4D:F9:11:77 X509v3 Authority Key Identifier: keyid:8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:f1:eb:39:83:56:9e:e3:9d:49:09:8d:ae:52:46:7f:ac:22: 7a:93:e0:84:c7:f2:7d:c3:91:24:4d:b2:5b:60:d9:c5:9a:d4: 14:e1:de:ee:49:a7:4c:4d:ce:b9:0c:18:65:32:bf:ff:b7:8c: 41:bf:5c:fe:fe:bf:c6:04:2e:30:87:48:35:54:3c:ab:7b:e1: 66:79:f8:a4:8c:6f:44:1b:9e:38:56:56:9c:ca:6c:fe:fa:31: 79:04:0d:56:48:d8:e1:cb:c1:6a:56:3f:70:80:94:f9:75:fb: 85:c1:ea:0c:ef:72:d1:56:7c:d5:44:09:69:e8:be:b3:b0:35: ea:ac:6b:bf:5d:81:1a:15:ce:e9:57:eb:f6:62:a9:58:aa:88: eb:97:29:de:b2:9f:b7:37:c1:34:0c:e9:1c:e4:5a:2e:15:61: 3f:de:a5:42:70:dd:a2:d8:df:64:b3:a6:da:b6:3d:94:5f:2d: b4:1a:ec:e2:31:1b:a2:d7:ef:54:63:e4:a7:96:e7:bb:63:a5: a0:c3:d3:b2:16:af:8f:7a:42:bd:f7:28:05:6b:75:ff:62:8c: bf:96:7b:cb:2d:45:85:89:8d:b1:df:7d:f6:be:7d:a7:49:11: 07:a7:f6:cc:7c:b5:e0:4d:c6:0f:df:9c:85:2e:e3:b7:6f:37: f9:ef:4b:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQxNEIxMTAvBgNVBAUTKDhCMjg1MDA1QURBMDA3M0UwQzA5NEI2REE2QTM4QkI1 MUZGRkExQTQwHhcNMjUwNzAzMDA1OTI5WhcNMjUwNzEwMDA1OTI5WjAYMRYwFAYD VQQDEw02ODY1ZDVmMS0xMDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwV1sR/jKFZm5zGfJpwqamcdTrvdFv5XtAwR50o+yjLBdewne2H8eUDVzxLWF Q4kPq++rRWdnPAGmdns9rK2ou9NPCCrCwQC216HP45Jgf1D9KA+XNQ0bLwDBrYV+ GxzCqA6llONTcMEq2gdG0lO1VSuVY++1y/EFzpC45q6dYcW71C6jJlNQE5uejo8O hYFKEc4Y+TsJaTdKIJqM+4uB5C92qmUNW9reqZvP8DuBygfFe19cz3JFtP5ZoXjh vT8L36r62r9qZe5cUOCs3g1btOsETQ3tWL0UgLA/7K+WLrZLgSKVdxitDSDWM8Jc 1e6he9F17I488aP5s4lC7PNNaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFbyKOKK Mxnmd++7WCHz+mFN+RF3MB8GA1UdIwQYMBaAFIsoUAWtoAc+DAlLbaaji7Uf/6Gk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDE0Qi85NEM4OThDQzhG RTIxMUVDQThBRkVFNzhDNEY5QUUwMi9peWhRQmEyZ0J6NE1DVXR0cHFPTHRSX19v YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2l5aFFCYTJnQno0TUNVdHRwcU9MdFJfX29hUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDE0Qi85NEM4OThDQzhGRTIxMUVDQThBRkVFNzhDNEY5QUUwMi9peWhRQmEyZ0J6 NE1DVXR0cHFPTHRSX19vYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCi8es5g1ae451JCY2uUkZ/rCJ6k+CEx/J9w5EkTbJbYNnFmtQU4d7u SadMTc65DBhlMr//t4xBv1z+/r/GBC4wh0g1VDyre+FmefikjG9EG544Vlacymz+ +jF5BA1WSNjhy8FqVj9wgJT5dfuFweoM73LRVnzVRAlp6L6zsDXqrGu/XYEaFc7p V+v2YqlYqojrlynesp+3N8E0DOkc5FouFWE/3qVCcN2i2N9ks6batj2UXy20Guzi MRui1+9UY+Snlue7Y6Wgw9OyFq+PekK99ygFa3X/Yoy/lnvLLUWFiY2x3332vn2n SREHp/bMfLXgTcYP35yFLuO3bzf570u2 -----END CERTIFICATE-----Generated at Thu Jul 3 07:11:10 2025 by rpki-client