$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft File: IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft (raw, json) Hash identifier: IC6PDpd9vvvA4JwCUIV/IAJDi+wcKsXke7khqD7L4nI= Subject key identifier: B7:51:47:39:2A:F5:41:32:DD:EB:0F:A8:CD:B7:DB:18:01:39:C0:03 Authority key identifier: 22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 Certificate issuer: /CN=A9195BA9/serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Certificate serial: 09D6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft Manifest number: 09CA Signing time: Wed 02 Jul 2025 20:11:38 +0000 Manifest this update: Wed 02 Jul 2025 20:11:37 +0000 Manifest next update: Wed 09 Jul 2025 20:11:37 +0000 Files and hashes: 1: IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl (hash: T2uGp/UTdcZVHfgMCUNZgNDLZFDW1Dm1c24/rHPnVjc=) 2: 543CDDF0839011EAB5B82263C4F9AE02.roa (hash: PG+DCY3DsnT1DiiJh/CX8LITvJqbEq/+Av+Qqgc42Yc=) 3: 54DD69FA839011EAB5B82263C4F9AE02.roa (hash: YJ7W6HYFgOqdoVWF2hJtmCaUJf59puKnAmoMTngU5VA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:11:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2518 (0x9d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9, serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Validity Not Before: Jul 2 20:11:37 2025 GMT Not After : Jul 9 20:11:37 2025 GMT Subject: CN=6865927a-8d86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:31:c1:2e:f1:57:75:37:82:5a:e5:6f:6c:5c: 56:45:76:a6:46:b3:9f:56:f8:15:98:3b:8b:40:b6: 5b:1a:e1:e3:92:32:10:ac:e0:38:a4:98:af:cb:28: db:64:2e:65:41:54:ab:ef:1f:4a:fd:ba:98:9a:4e: ba:c3:1f:87:7e:19:6e:f7:63:2d:32:a5:4d:ba:9b: 9c:00:f9:01:43:8b:78:4e:be:8d:68:6c:c2:d5:b5: 92:1e:17:1b:33:1a:2f:68:f3:59:ee:b2:55:db:6d: 1c:5d:56:c6:72:c3:18:f1:db:67:b8:d8:f0:bd:32: 62:97:9d:9d:97:10:b7:71:6d:30:0f:4e:ea:db:03: 41:56:1e:44:eb:6f:0c:da:c7:cd:48:30:0a:30:45: f9:07:18:61:4f:b2:57:8b:e8:41:21:a0:74:f7:04: 0c:2a:67:3c:6b:5f:08:8a:44:f9:81:db:e1:39:a1: bc:75:ad:23:9f:ee:c7:9f:dc:52:e1:9f:d5:3e:e5: 1f:4f:94:32:db:01:43:5d:a8:99:ea:69:10:2e:66: 3e:97:c7:88:db:31:1e:0b:9f:33:92:c0:88:d6:c3: f0:16:5e:9d:a0:7e:d1:02:1b:f7:f2:4a:64:00:5a: dd:52:a8:d4:7a:39:5c:74:95:31:87:cf:ef:4a:5c: 28:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:51:47:39:2A:F5:41:32:DD:EB:0F:A8:CD:B7:DB:18:01:39:C0:03 X509v3 Authority Key Identifier: keyid:22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d3:a4:d4:86:e6:45:e4:e3:2a:88:c7:cd:77:f9:60:d6:7e:66: 41:83:a6:2f:22:3c:92:33:78:4d:70:75:34:2c:1c:d9:4a:fc: 98:0d:f1:a6:29:f5:b8:0f:d2:2b:57:32:a1:21:44:04:d1:14: 43:21:76:dd:66:22:b6:1f:e5:e7:5e:e4:46:3d:b7:a3:9e:b6: bc:81:eb:91:71:f5:37:3c:d2:4b:fc:ea:b6:f9:2d:01:6e:da: d5:af:c7:c9:f9:ca:8c:b7:9c:fa:13:97:8f:f8:81:7f:73:4e: ba:81:d7:b8:b7:de:55:87:33:22:53:71:ef:d0:4c:b2:a2:aa: 2d:c6:76:0d:d7:8d:6f:8f:e9:50:74:1c:32:5b:f4:91:bb:4e: 83:fc:27:ed:4f:50:af:aa:cc:8f:a3:eb:9d:f9:1f:dd:b8:3e: 32:93:63:71:8b:32:64:8a:8f:0b:ba:77:e9:e6:65:24:d8:7c: 81:72:1d:48:99:1d:61:19:c5:b5:87:ac:aa:88:52:81:75:db: 03:f9:24:12:1b:25:47:ef:df:3d:45:e1:b4:aa:f9:c9:74:89: 38:f7:71:8f:e6:ba:35:07:a1:87:5d:19:ff:3f:cb:a5:39:f2: f1:63:33:30:f8:2e:13:c2:fc:d3:5a:5e:8d:5b:c0:bb:92:f8: 14:16:4e:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKDIyNDVBRDkxNTQzQUREQUQ3ODEyM0RENDE1RDY1OUJC NTJENUZCNjIwHhcNMjUwNzAyMjAxMTM3WhcNMjUwNzA5MjAxMTM3WjAYMRYwFAYD VQQDEw02ODY1OTI3YS04ZDg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4zHBLvFXdTeCWuVvbFxWRXamRrOfVvgVmDuLQLZbGuHjkjIQrOA4pJivyyjb ZC5lQVSr7x9K/bqYmk66wx+Hfhlu92MtMqVNupucAPkBQ4t4Tr6NaGzC1bWSHhcb MxovaPNZ7rJV220cXVbGcsMY8dtnuNjwvTJil52dlxC3cW0wD07q2wNBVh5E628M 2sfNSDAKMEX5BxhhT7JXi+hBIaB09wQMKmc8a18IikT5gdvhOaG8da0jn+7Hn9xS 4Z/VPuUfT5Qy2wFDXaiZ6mkQLmY+l8eI2zEeC58zksCI1sPwFl6doH7RAhv38kpk AFrdUqjUejlcdJUxh8/vSlwo1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLdRRzkq 9UEy3esPqM232xgBOcADMB8GA1UdIwQYMBaAFCJFrZFUOt2teBI91BXWWbtS1fti MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9EODkxNDc4Qzgz OEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNhMTRFajNVRmRaWnUxTFYt MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lrV3RrVlE2M2ExNEVqM1VGZFpadTFMVi0ySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUJBOS9EODkxNDc4QzgzOEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNh MTRFajNVRmRaWnUxTFYtMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDTpNSG5kXk4yqIx813+WDWfmZBg6YvIjySM3hNcHU0LBzZSvyYDfGm KfW4D9IrVzKhIUQE0RRDIXbdZiK2H+XnXuRGPbejnra8geuRcfU3PNJL/Oq2+S0B btrVr8fJ+cqMt5z6E5eP+IF/c066gde4t95VhzMiU3Hv0EyyoqotxnYN141vj+lQ dBwyW/SRu06D/CftT1CvqsyPo+ud+R/duD4yk2NxizJkio8Lunfp5mUk2HyBch1I mR1hGcW1h6yqiFKBddsD+SQSGyVH7989ReG0qvnJdIk493GP5ro1B6GHXRn/P8ul OfLxYzMw+C4TwvzTWl6NW8C7kvgUFk4K -----END CERTIFICATE-----Generated at Fri Jul 4 03:38:45 2025 by rpki-client