$ rpki-client -vvf rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/IIUPxwwl_bFV037LDsOWLGtH_K0.mft File: IIUPxwwl_bFV037LDsOWLGtH_K0.mft (raw, json) Hash identifier: gJHet+3tvAvpMpji05o9UmB+6x3/oUrb1f+kpnGk0qg= Subject key identifier: 24:06:4E:4E:B4:1A:FF:96:0F:B6:4B:1C:B7:44:2D:25:9F:3B:C6:F2 Authority key identifier: 20:85:0F:C7:0C:25:FD:B1:55:D3:7E:CB:0E:C3:96:2C:6B:47:FC:AD Certificate issuer: /CN=A919D545/serialNumber=20850FC70C25FDB155D37ECB0EC3962C6B47FCAD Certificate serial: 0738 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IIUPxwwl_bFV037LDsOWLGtH_K0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/IIUPxwwl_bFV037LDsOWLGtH_K0.mft Manifest number: 0731 Signing time: Fri 16 May 2025 22:02:26 +0000 Manifest this update: Fri 16 May 2025 22:02:26 +0000 Manifest next update: Fri 23 May 2025 22:02:26 +0000 Files and hashes: 1: IIUPxwwl_bFV037LDsOWLGtH_K0.crl (hash: MP7OTqEIVYvUbJEL7h/FoosGtamHhSsJhH7+AJ4iSJM=) 2: 934C22582E1C11EBB3ADE232C4F9AE02.roa (hash: 1Nd3whCoQ3UeAyTbWO/1UHp1zlBom6OZhYQFPq70UDQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/IIUPxwwl_bFV037LDsOWLGtH_K0.crl rsync://rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/IIUPxwwl_bFV037LDsOWLGtH_K0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IIUPxwwl_bFV037LDsOWLGtH_K0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 22:02:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1848 (0x738) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D545, serialNumber=20850FC70C25FDB155D37ECB0EC3962C6B47FCAD Validity Not Before: May 16 22:02:26 2025 GMT Not After : May 23 22:02:26 2025 GMT Subject: CN=6827b5f2-9dc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c7:f9:9e:99:8c:cc:a5:fb:0a:b3:e6:bb:bc: e2:be:f7:8f:a1:ca:92:4b:b6:d2:69:a6:97:86:b1: 5a:b2:5a:e7:5e:47:91:01:12:5b:a6:a4:77:56:c0: 6a:57:16:42:e2:ee:11:46:c8:7a:e8:50:92:17:f0: f7:0f:20:3c:e6:a1:a4:cf:69:8d:f5:ca:01:52:c5: 8d:b2:04:a6:89:59:8c:a5:29:ee:95:b5:c0:39:19: eb:b5:c0:54:89:e0:61:9b:24:40:60:07:fb:75:c2: b7:b4:b0:8e:ef:e7:c0:31:b2:80:c1:ac:b0:8a:4d: 8a:71:f6:8f:49:57:3e:32:c0:78:90:27:ee:20:73: 24:3a:6c:f0:a6:3b:5b:96:4b:b9:ad:2d:ce:ea:62: 1f:b3:6d:60:f5:2f:b2:87:b2:7a:72:40:26:94:64: de:2f:12:f6:4d:b8:51:86:40:48:9c:27:16:1c:94: ef:42:aa:4c:df:a3:d9:53:9d:9e:eb:19:d6:49:eb: 9e:8a:a8:85:d1:1b:bc:cc:0a:5a:20:c7:c8:3c:19: cc:56:6d:2e:08:b4:9f:38:85:8d:25:72:0f:02:a2: 13:f5:fd:f6:d9:7d:ac:8d:73:b7:41:72:d9:f2:79: 00:0d:e6:7c:ed:19:79:a9:f9:db:e4:73:bb:fe:d8: fd:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:06:4E:4E:B4:1A:FF:96:0F:B6:4B:1C:B7:44:2D:25:9F:3B:C6:F2 X509v3 Authority Key Identifier: keyid:20:85:0F:C7:0C:25:FD:B1:55:D3:7E:CB:0E:C3:96:2C:6B:47:FC:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/IIUPxwwl_bFV037LDsOWLGtH_K0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IIUPxwwl_bFV037LDsOWLGtH_K0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/IIUPxwwl_bFV037LDsOWLGtH_K0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:16:dc:8a:da:9b:39:b3:d4:5d:db:7f:23:03:ce:6f:2f:a9: e9:f5:51:db:b8:df:05:a2:a8:29:ec:6d:0a:62:de:3e:c4:7a: 3b:5d:00:aa:65:0c:76:be:ae:00:a5:09:fc:2e:d9:a5:a5:15: fa:f3:78:04:0f:54:67:97:d4:2b:63:cb:22:35:e4:f2:69:ec: 0f:91:f5:b5:38:19:af:dc:fb:88:74:59:f6:f9:b5:2a:db:e1: 7d:8f:7a:a9:73:8d:6f:3f:c8:ec:ff:3c:9f:ce:bb:db:3a:71: 6d:95:d9:ea:64:a8:4a:05:dd:44:40:26:a0:0a:ee:dc:17:80: 76:ee:64:76:38:09:2e:8d:88:41:07:4b:ad:36:6d:72:d0:e0: b0:3c:60:3f:2b:4c:8d:33:04:c8:81:17:15:ff:a1:ea:6f:64: bc:20:07:5e:e7:b8:96:dc:ba:19:0d:94:c1:2b:52:be:4e:a4: 50:aa:be:26:e6:8c:5d:36:43:47:20:f1:f8:b2:dd:ba:47:1b: 67:48:a3:23:d7:34:7b:51:b3:51:a1:5f:3e:6a:49:d6:86:09: ce:a8:35:2e:96:e8:f8:ca:ba:8e:de:d4:ae:ec:e4:29:f4:e6: 43:2d:54:33:89:7e:bb:6b:6b:4e:20:52:f5:84:04:9e:83:89: 4c:a5:5e:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ1NDUxMTAvBgNVBAUTKDIwODUwRkM3MEMyNUZEQjE1NUQzN0VDQjBFQzM5NjJD NkI0N0ZDQUQwHhcNMjUwNTE2MjIwMjI2WhcNMjUwNTIzMjIwMjI2WjAYMRYwFAYD VQQDEw02ODI3YjVmMi05ZGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAusf5npmMzKX7CrPmu7zivvePocqSS7bSaaaXhrFaslrnXkeRARJbpqR3VsBq VxZC4u4RRsh66FCSF/D3DyA85qGkz2mN9coBUsWNsgSmiVmMpSnulbXAORnrtcBU ieBhmyRAYAf7dcK3tLCO7+fAMbKAwaywik2KcfaPSVc+MsB4kCfuIHMkOmzwpjtb lku5rS3O6mIfs21g9S+yh7J6ckAmlGTeLxL2TbhRhkBInCcWHJTvQqpM36PZU52e 6xnWSeueiqiF0Ru8zApaIMfIPBnMVm0uCLSfOIWNJXIPAqIT9f322X2sjXO3QXLZ 8nkADeZ87Rl5qfnb5HO7/tj9zwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCQGTk60 Gv+WD7ZLHLdELSWfO8byMB8GA1UdIwQYMBaAFCCFD8cMJf2xVdN+yw7DlixrR/yt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDU0NS9GM0I5NzYwNjJF MUExMUVCQjIzOURFMzBDNEY5QUUwMi9JSVVQeHd3bF9iRlYwMzdMRHNPV0xHdEhf SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lJVVB4d3dsX2JGVjAzN0xEc09XTEd0SF9LMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDU0NS9GM0I5NzYwNjJFMUExMUVCQjIzOURFMzBDNEY5QUUwMi9JSVVQeHd3bF9i RlYwMzdMRHNPV0xHdEhfSzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApFtyK2ps5s9Rd238jA85vL6np9VHbuN8Foqgp7G0KYt4+xHo7XQCq ZQx2vq4ApQn8LtmlpRX683gED1Rnl9QrY8siNeTyaewPkfW1OBmv3PuIdFn2+bUq 2+F9j3qpc41vP8js/zyfzrvbOnFtldnqZKhKBd1EQCagCu7cF4B27mR2OAkujYhB B0utNm1y0OCwPGA/K0yNMwTIgRcV/6Hqb2S8IAde57iW3LoZDZTBK1K+TqRQqr4m 5oxdNkNHIPH4st26RxtnSKMj1zR7UbNRoV8+aknWhgnOqDUuluj4yrqO3tSu7OQp 9OZDLVQziX67a2tOIFL1hASeg4lMpV6D -----END CERTIFICATE-----Generated at Sat May 17 07:20:20 2025 by rpki-client