$ rpki-client -vvf rpki.apnic.net/member_repository/A919794D/C2CCE1DCE42411ED9AD5935FC4F9AE02/IMAbBSwVg-NofN7L_BPplBAa1C8.mft File: IMAbBSwVg-NofN7L_BPplBAa1C8.mft (raw, json) Hash identifier: 31D2+A9q9pQcVTsLUQT2JS6sfzdkoa12H4onhHR+ShY= Subject key identifier: 30:36:15:2D:69:39:D9:98:14:DF:A5:ED:89:6B:D2:49:35:5B:77:08 Authority key identifier: 20:C0:1B:05:2C:15:83:E3:68:7C:DE:CB:FC:13:E9:94:10:1A:D4:2F Certificate issuer: /CN=A919794D/serialNumber=20C01B052C1583E3687CDECBFC13E994101AD42F Certificate serial: 019D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IMAbBSwVg-NofN7L_BPplBAa1C8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919794D/C2CCE1DCE42411ED9AD5935FC4F9AE02/IMAbBSwVg-NofN7L_BPplBAa1C8.mft Manifest number: 019A Signing time: Tue 01 Jul 2025 03:46:58 +0000 Manifest this update: Tue 01 Jul 2025 03:46:57 +0000 Manifest next update: Tue 08 Jul 2025 03:46:57 +0000 Files and hashes: 1: IMAbBSwVg-NofN7L_BPplBAa1C8.crl (hash: 5X67zIZxykL7YTdVuee4v0pYCIkfEToS39yLA1vs8mA=) 2: CFC4BC00EB2911ED882B8A32C4F9AE02.roa (hash: KHyj1otfkf2S5YApB/OtC5OI1QkNCQ8X27Eo+XCQipE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919794D/C2CCE1DCE42411ED9AD5935FC4F9AE02/IMAbBSwVg-NofN7L_BPplBAa1C8.crl rsync://rpki.apnic.net/member_repository/A919794D/C2CCE1DCE42411ED9AD5935FC4F9AE02/IMAbBSwVg-NofN7L_BPplBAa1C8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IMAbBSwVg-NofN7L_BPplBAa1C8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 413 (0x19d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919794D, serialNumber=20C01B052C1583E3687CDECBFC13E994101AD42F Validity Not Before: Jul 1 03:46:57 2025 GMT Not After : Jul 8 03:46:57 2025 GMT Subject: CN=68635a32-16ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:94:f3:dd:a5:29:4b:78:c5:af:6d:b7:ec:58: 5d:57:75:eb:23:16:2b:e6:ee:d3:55:be:50:84:d5: 97:ce:20:de:6a:e2:92:f0:7d:72:b7:a5:2e:7d:7f: 63:13:02:c8:65:60:eb:ca:b3:9d:77:7f:fb:ad:82: 0d:e8:fb:de:16:e4:5d:c9:bf:6c:75:d3:52:e7:82: 7e:8a:d9:36:00:eb:ba:dd:39:0a:c6:08:5b:76:95: c9:50:16:c7:b9:ff:f0:15:e7:90:9f:de:eb:67:7c: e9:23:a4:fe:5f:92:ad:92:75:75:e1:39:01:0a:f4: 18:be:e4:57:76:dc:51:35:0a:9c:0d:7c:27:25:b5: be:b0:b1:6d:bc:69:94:db:2e:e1:be:de:c1:4f:70: 39:51:c7:24:05:02:bc:6d:71:20:de:25:96:83:5f: 3e:12:ae:68:f4:b3:96:de:5c:af:0a:ed:28:cc:e8: 35:ef:76:1a:cf:81:3b:49:23:dc:7a:06:1c:58:1e: 00:5b:f6:4a:90:e6:b6:5c:98:1c:97:fb:25:86:05: 1c:cb:6f:dd:2c:f5:c3:a2:ab:c5:c5:9b:85:f1:69: 1a:b3:ae:a8:4e:f9:1a:cd:57:da:af:4c:36:1b:d5: 26:07:a8:08:25:d0:d3:65:df:1d:eb:b4:61:08:8d: a7:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:36:15:2D:69:39:D9:98:14:DF:A5:ED:89:6B:D2:49:35:5B:77:08 X509v3 Authority Key Identifier: keyid:20:C0:1B:05:2C:15:83:E3:68:7C:DE:CB:FC:13:E9:94:10:1A:D4:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919794D/C2CCE1DCE42411ED9AD5935FC4F9AE02/IMAbBSwVg-NofN7L_BPplBAa1C8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IMAbBSwVg-NofN7L_BPplBAa1C8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919794D/C2CCE1DCE42411ED9AD5935FC4F9AE02/IMAbBSwVg-NofN7L_BPplBAa1C8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:ce:a4:f2:af:33:a9:98:21:99:ba:4f:5e:a7:90:cc:7f:8d: 5b:42:15:27:bf:4b:8f:a0:34:0e:67:a8:bf:79:c2:bd:7f:78: 7a:9a:51:75:aa:f6:70:8e:5f:99:20:6c:7e:b6:2e:b3:37:aa: 70:a8:41:4b:4e:0a:68:37:c5:c1:23:e1:1f:a5:51:1a:8e:d4: 14:63:84:f7:6b:5e:14:6a:b9:b3:3a:25:f4:8d:5a:c6:6e:51: 0b:be:11:21:ab:1d:bb:f1:f3:95:c2:9a:74:60:8f:b5:db:01: 8a:23:22:38:d3:bc:c1:e5:52:1a:fb:0b:cf:3f:14:b6:0e:93: 40:4a:f3:f2:e1:f5:48:14:bf:b8:6b:bb:da:b4:73:ad:e0:ef: 08:9c:e1:eb:cf:30:60:16:9a:ec:f1:f5:89:52:0c:d9:a2:c5: 74:2e:f2:14:ff:3f:41:6f:64:ee:79:48:c1:6d:ad:f5:7c:c2: f9:38:32:5d:66:78:a8:ab:47:11:77:a0:48:48:15:35:b0:69: 63:7b:1d:58:86:df:5b:97:0d:e0:ce:49:dc:90:55:2f:e5:86: bd:f6:b1:2a:8b:1b:5e:1d:82:20:ae:c5:f0:f2:bf:8d:22:ff: ff:e7:6c:fc:53:7c:f3:9e:48:8b:af:62:ed:88:d4:51:e8:5b: ec:2f:38:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc5NEQxMTAvBgNVBAUTKDIwQzAxQjA1MkMxNTgzRTM2ODdDREVDQkZDMTNFOTk0 MTAxQUQ0MkYwHhcNMjUwNzAxMDM0NjU3WhcNMjUwNzA4MDM0NjU3WjAYMRYwFAYD VQQDEw02ODYzNWEzMi0xNmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuZTz3aUpS3jFr2237FhdV3XrIxYr5u7TVb5QhNWXziDeauKS8H1yt6UufX9j EwLIZWDryrOdd3/7rYIN6PveFuRdyb9sddNS54J+itk2AOu63TkKxghbdpXJUBbH uf/wFeeQn97rZ3zpI6T+X5KtknV14TkBCvQYvuRXdtxRNQqcDXwnJbW+sLFtvGmU 2y7hvt7BT3A5UcckBQK8bXEg3iWWg18+Eq5o9LOW3lyvCu0ozOg173Yaz4E7SSPc egYcWB4AW/ZKkOa2XJgcl/slhgUcy2/dLPXDoqvFxZuF8Wkas66oTvkazVfar0w2 G9UmB6gIJdDTZd8d67RhCI2ngQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDA2FS1p OdmYFN+l7Ylr0kk1W3cIMB8GA1UdIwQYMBaAFCDAGwUsFYPjaHzey/wT6ZQQGtQv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Nzk0RC9DMkNDRTFEQ0U0 MjQxMUVEOUFENTkzNUZDNEY5QUUwMi9JTUFiQlN3VmctTm9mTjdMX0JQcGxCQWEx QzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lNQWJCU3dWZy1Ob2ZON0xfQlBwbEJBYTFDOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Nzk0RC9DMkNDRTFEQ0U0MjQxMUVEOUFENTkzNUZDNEY5QUUwMi9JTUFiQlN3Vmct Tm9mTjdMX0JQcGxCQWExQzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASzqTyrzOpmCGZuk9ep5DMf41bQhUnv0uPoDQOZ6i/ecK9f3h6mlF1 qvZwjl+ZIGx+ti6zN6pwqEFLTgpoN8XBI+EfpVEajtQUY4T3a14UarmzOiX0jVrG blELvhEhqx278fOVwpp0YI+12wGKIyI407zB5VIa+wvPPxS2DpNASvPy4fVIFL+4 a7vatHOt4O8InOHrzzBgFprs8fWJUgzZosV0LvIU/z9Bb2TueUjBba31fML5ODJd Znioq0cRd6BISBU1sGljex1Yht9blw3gzknckFUv5Ya99rEqixteHYIgrsXw8r+N Iv//52z8U3zznkiLr2LtiNRR6FvsLzhH -----END CERTIFICATE-----Generated at Tue Jul 1 21:12:17 2025 by rpki-client