$ rpki-client -vvf rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft File: ips7kjmTluj8a4YwntVzMMlOEX0.mft (raw, json) Hash identifier: +uBA50PqX8bVh+sb3i2mA5orCT7OhMYfauglMr666B0= Subject key identifier: 37:D1:5C:5E:43:B7:FB:35:4E:80:BD:79:F3:59:6F:6B:06:64:DD:B2 Authority key identifier: 8A:9B:3B:92:39:93:96:E8:FC:6B:86:30:9E:D5:73:30:C9:4E:11:7D Certificate issuer: /CN=A919A3CA/serialNumber=8A9B3B92399396E8FC6B86309ED57330C94E117D Certificate serial: 099D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft Manifest number: 0994 Signing time: Wed 02 Jul 2025 20:20:51 +0000 Manifest this update: Wed 02 Jul 2025 20:20:50 +0000 Manifest next update: Wed 09 Jul 2025 20:20:50 +0000 Files and hashes: 1: ips7kjmTluj8a4YwntVzMMlOEX0.crl (hash: uP46ZsDkj5RAtoG5l7VnKIFQttF+ryqkkTXmZNLnF2s=) 2: B972C58C8FA611EAB095C928C4F9AE02.roa (hash: pd0z6Py0ljyQXcBSw2555Qfaeo+rQ0qMyZ2LLvuE2Pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.crl rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:20:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2461 (0x99d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A3CA, serialNumber=8A9B3B92399396E8FC6B86309ED57330C94E117D Validity Not Before: Jul 2 20:20:50 2025 GMT Not After : Jul 9 20:20:50 2025 GMT Subject: CN=686594a2-fa50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b1:81:d0:e1:27:4b:4f:8a:53:a9:a4:d8:7a: 68:86:6f:9a:f4:ab:eb:af:9a:37:50:e8:c1:03:ea: 76:89:1f:c2:b6:a1:1f:d4:2e:7d:1e:c2:72:91:72: 6b:2c:64:85:21:a4:9f:c3:78:d3:45:6f:94:7c:40: 91:77:79:17:c2:f3:a5:d0:9c:5b:1a:20:9f:17:4d: a8:ed:f9:e3:d2:a4:d2:c7:19:66:81:43:cc:02:1f: 6d:da:2e:62:c7:50:52:29:cd:dd:a0:6c:bc:38:c1: fe:d0:8a:64:48:8d:13:89:e2:a2:8b:c4:6a:58:27: 9f:51:16:5a:f7:55:b9:13:c4:d2:81:9b:a3:52:df: 81:77:55:c6:c5:4d:ea:a9:6d:a1:17:2b:6f:df:04: 56:78:8c:ae:a2:e7:b0:8f:cf:63:6f:4c:bc:c3:37: 2f:44:95:71:73:a2:59:69:29:0c:08:3e:93:f3:35: f5:6d:27:4d:19:10:31:a4:09:56:fd:aa:84:d5:1a: 0f:bc:b3:b6:0b:fe:a0:58:12:f7:ee:9a:db:e0:5a: 4f:3e:fe:f0:54:31:92:25:c4:fd:1c:20:05:bf:11: 19:17:2d:6a:64:e1:c3:59:82:a5:2f:f6:e4:47:f7: f7:d2:7f:ef:90:65:4c:88:fc:c7:09:14:b3:e9:91: d6:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:D1:5C:5E:43:B7:FB:35:4E:80:BD:79:F3:59:6F:6B:06:64:DD:B2 X509v3 Authority Key Identifier: keyid:8A:9B:3B:92:39:93:96:E8:FC:6B:86:30:9E:D5:73:30:C9:4E:11:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:6f:8f:be:15:6b:74:d6:3d:e5:f0:6a:ca:6b:dd:58:29:bc: 44:8e:69:15:5f:56:a4:94:86:32:f9:c9:db:76:67:a4:96:4c: 4d:18:7c:a6:63:4e:f1:6b:70:df:83:2f:53:e7:7d:9c:dc:46: 21:bb:87:63:34:d0:9d:79:d7:99:37:83:99:54:2c:d7:76:82: 55:09:44:d9:71:f0:66:56:d9:b6:29:66:cb:e2:5e:b0:2c:06: 62:a6:b9:1e:79:ea:8f:aa:10:f2:6b:67:d5:8e:83:4a:e2:f3: 2e:e2:d3:40:b0:4a:af:45:a5:e7:72:73:24:bb:e9:15:f2:b3: 68:d6:02:34:3f:83:80:56:79:e0:2a:16:ca:e5:d4:fc:66:89: 58:a2:48:b4:41:59:b0:ee:18:b8:60:22:59:ee:fb:5b:2b:d7: cf:09:40:0d:1a:9a:10:ac:a3:93:43:16:19:76:e8:b5:28:f2: 07:cd:12:e1:43:d3:7d:b0:8e:de:87:2d:12:a8:f6:a3:b2:51: c9:8c:78:e4:6d:26:aa:f1:c8:da:d3:75:b3:ff:b9:23:42:45: bf:e1:68:86:b1:6c:a0:91:2e:28:89:ba:db:8f:87:44:89:f9: 96:8f:9f:d1:f9:db:4d:33:3f:ad:86:67:a7:4a:fc:6b:fb:ec: b2:07:e2:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUEzQ0ExMTAvBgNVBAUTKDhBOUIzQjkyMzk5Mzk2RThGQzZCODYzMDlFRDU3MzMw Qzk0RTExN0QwHhcNMjUwNzAyMjAyMDUwWhcNMjUwNzA5MjAyMDUwWjAYMRYwFAYD VQQDEw02ODY1OTRhMi1mYTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArrGB0OEnS0+KU6mk2Hpohm+a9Kvrr5o3UOjBA+p2iR/CtqEf1C59HsJykXJr LGSFIaSfw3jTRW+UfECRd3kXwvOl0JxbGiCfF02o7fnj0qTSxxlmgUPMAh9t2i5i x1BSKc3doGy8OMH+0IpkSI0TieKii8RqWCefURZa91W5E8TSgZujUt+Bd1XGxU3q qW2hFytv3wRWeIyuouewj89jb0y8wzcvRJVxc6JZaSkMCD6T8zX1bSdNGRAxpAlW /aqE1RoPvLO2C/6gWBL37prb4FpPPv7wVDGSJcT9HCAFvxEZFy1qZOHDWYKlL/bk R/f30n/vkGVMiPzHCRSz6ZHWkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDfRXF5D t/s1ToC9efNZb2sGZN2yMB8GA1UdIwQYMBaAFIqbO5I5k5bo/GuGMJ7VczDJThF9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTNDQS81N0QyMzgwMjhG QTIxMUVBOEVDMDZFMUNDNEY5QUUwMi9pcHM3a2ptVGx1ajhhNFl3bnRWek1NbE9F WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lwczdram1UbHVqOGE0WXdudFZ6TU1sT0VYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTNDQS81N0QyMzgwMjhGQTIxMUVBOEVDMDZFMUNDNEY5QUUwMi9pcHM3a2ptVGx1 ajhhNFl3bnRWek1NbE9FWDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvb4++FWt01j3l8GrKa91YKbxEjmkVX1aklIYy+cnbdmeklkxNGHym Y07xa3Dfgy9T532c3EYhu4djNNCdedeZN4OZVCzXdoJVCUTZcfBmVtm2KWbL4l6w LAZiprkeeeqPqhDya2fVjoNK4vMu4tNAsEqvRaXncnMku+kV8rNo1gI0P4OAVnng KhbK5dT8ZolYoki0QVmw7hi4YCJZ7vtbK9fPCUANGpoQrKOTQxYZdui1KPIHzRLh Q9N9sI7ehy0SqPajslHJjHjkbSaq8cja03Wz/7kjQkW/4WiGsWygkS4oibrbj4dE ifmWj5/R+dtNMz+thmenSvxr++yyB+Il -----END CERTIFICATE-----Generated at Thu Jul 3 17:35:50 2025 by rpki-client