$ rpki-client -vvf rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/IIUPxwwl_bFV037LDsOWLGtH_K0.mft File: IIUPxwwl_bFV037LDsOWLGtH_K0.mft (raw, json) Hash identifier: 1+GO3Bh4DCnot/Eh0LHhOyx5/nFtEnq29CTTInvfgDE= Subject key identifier: 41:02:41:E3:7C:2C:1D:9E:2C:C7:4E:95:10:2A:3A:E6:EA:55:13:0E Authority key identifier: 20:85:0F:C7:0C:25:FD:B1:55:D3:7E:CB:0E:C3:96:2C:6B:47:FC:AD Certificate issuer: /CN=A919D545/serialNumber=20850FC70C25FDB155D37ECB0EC3962C6B47FCAD Certificate serial: 074F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IIUPxwwl_bFV037LDsOWLGtH_K0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/IIUPxwwl_bFV037LDsOWLGtH_K0.mft Manifest number: 0748 Signing time: Wed 02 Jul 2025 21:57:41 +0000 Manifest this update: Wed 02 Jul 2025 21:57:40 +0000 Manifest next update: Wed 09 Jul 2025 21:57:40 +0000 Files and hashes: 1: IIUPxwwl_bFV037LDsOWLGtH_K0.crl (hash: Re1e5nUK4pOgJ+52DC0QQ7sW94BkTaYDj5f02p3L9XE=) 2: 934C22582E1C11EBB3ADE232C4F9AE02.roa (hash: 1Nd3whCoQ3UeAyTbWO/1UHp1zlBom6OZhYQFPq70UDQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/IIUPxwwl_bFV037LDsOWLGtH_K0.crl rsync://rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/IIUPxwwl_bFV037LDsOWLGtH_K0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IIUPxwwl_bFV037LDsOWLGtH_K0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:57:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1871 (0x74f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D545, serialNumber=20850FC70C25FDB155D37ECB0EC3962C6B47FCAD Validity Not Before: Jul 2 21:57:40 2025 GMT Not After : Jul 9 21:57:40 2025 GMT Subject: CN=6865ab54-3929 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4a:1b:70:4f:58:ca:bf:66:94:7f:6c:6e:10: 53:9b:22:9f:65:21:24:ab:b2:0f:b0:54:f3:b4:12: b8:ae:cd:25:0f:31:54:d5:9d:da:31:84:60:c4:85: 43:80:a5:7f:15:5d:de:ce:01:51:3e:17:d0:e7:b4: 19:26:d8:86:ef:68:1f:10:47:c0:fb:77:61:f6:31: b1:2d:2e:8a:9a:79:57:7a:b4:53:1c:0f:cd:d1:56: a5:73:9e:18:23:ab:fa:9f:4d:4f:7f:c7:66:be:46: 71:02:d1:ef:69:6f:91:75:0a:ca:aa:83:e3:ea:6e: 55:62:d5:79:b3:12:10:fd:bd:85:cd:4f:a3:29:4b: 9b:4c:7a:84:84:39:06:08:df:d2:96:fb:c3:14:f1: 19:7a:8a:57:0c:ca:cd:41:97:ed:fd:54:ff:89:67: 43:50:13:7a:19:05:b5:bc:6a:87:46:92:49:f6:c5: c9:2d:83:a1:ca:ef:c8:b5:ec:64:cd:2b:64:7f:5c: 20:df:f5:e5:11:f4:c8:fb:a5:96:ef:51:61:9a:13: 1b:04:b8:a4:4c:7b:7b:d3:14:28:57:4c:bf:ba:82: 8a:fd:b9:dc:bb:6f:ea:b7:e4:e1:01:0b:09:9d:5c: 6d:23:99:08:4a:e5:d7:b6:7c:15:7d:7a:f7:87:aa: 7a:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:02:41:E3:7C:2C:1D:9E:2C:C7:4E:95:10:2A:3A:E6:EA:55:13:0E X509v3 Authority Key Identifier: keyid:20:85:0F:C7:0C:25:FD:B1:55:D3:7E:CB:0E:C3:96:2C:6B:47:FC:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/IIUPxwwl_bFV037LDsOWLGtH_K0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IIUPxwwl_bFV037LDsOWLGtH_K0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/IIUPxwwl_bFV037LDsOWLGtH_K0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:c1:00:93:d1:a1:3f:44:6a:ca:33:19:63:1f:81:64:39:c6: 92:82:c7:49:d2:30:f7:b1:57:83:b9:fc:e4:9d:eb:56:72:f0: dd:dd:3b:9c:55:5d:e3:ae:22:06:4d:c9:dc:f8:b8:79:d4:21: b7:cc:e3:5c:11:a1:5e:19:df:c5:4e:e3:bc:8f:ea:bc:b1:9f: a8:22:98:50:5d:b4:ec:04:97:10:6e:e4:ae:d3:5f:13:a8:c9: 00:8b:8d:2f:59:b1:96:77:38:ce:2a:33:f4:94:f0:5c:31:16: 89:2f:2f:eb:3c:04:3a:b3:9d:d4:ca:f5:52:53:11:90:b3:3c: fe:83:a9:73:e2:9a:cb:a0:42:16:1d:81:8b:3b:01:43:c7:a9: 6a:2a:0c:6b:ae:83:04:7b:7d:85:0a:a9:8a:e6:47:2b:41:29: e0:a1:27:8f:59:b1:a0:75:c1:00:ee:84:45:47:ac:a6:23:23: 34:de:0e:f7:a0:b1:c9:ac:52:f2:a4:f4:1a:0d:d3:0e:40:6f: a0:2b:98:6b:cd:4b:ee:84:1d:77:a1:67:fc:35:7f:5b:4d:56: 27:9d:a2:da:e1:00:77:f5:ea:0f:d0:7a:83:20:bd:d8:1c:ff: 04:ab:1d:69:6e:c6:81:3d:7f:f0:83:22:39:10:33:62:95:59: 9f:52:a8:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB08wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ1NDUxMTAvBgNVBAUTKDIwODUwRkM3MEMyNUZEQjE1NUQzN0VDQjBFQzM5NjJD NkI0N0ZDQUQwHhcNMjUwNzAyMjE1NzQwWhcNMjUwNzA5MjE1NzQwWjAYMRYwFAYD VQQDEw02ODY1YWI1NC0zOTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyUobcE9Yyr9mlH9sbhBTmyKfZSEkq7IPsFTztBK4rs0lDzFU1Z3aMYRgxIVD gKV/FV3ezgFRPhfQ57QZJtiG72gfEEfA+3dh9jGxLS6KmnlXerRTHA/N0Valc54Y I6v6n01Pf8dmvkZxAtHvaW+RdQrKqoPj6m5VYtV5sxIQ/b2FzU+jKUubTHqEhDkG CN/SlvvDFPEZeopXDMrNQZft/VT/iWdDUBN6GQW1vGqHRpJJ9sXJLYOhyu/Itexk zStkf1wg3/XlEfTI+6WW71FhmhMbBLikTHt70xQoV0y/uoKK/bncu2/qt+ThAQsJ nVxtI5kISuXXtnwVfXr3h6p6zwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEECQeN8 LB2eLMdOlRAqOubqVRMOMB8GA1UdIwQYMBaAFCCFD8cMJf2xVdN+yw7DlixrR/yt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDU0NS9GM0I5NzYwNjJF MUExMUVCQjIzOURFMzBDNEY5QUUwMi9JSVVQeHd3bF9iRlYwMzdMRHNPV0xHdEhf SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lJVVB4d3dsX2JGVjAzN0xEc09XTEd0SF9LMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDU0NS9GM0I5NzYwNjJFMUExMUVCQjIzOURFMzBDNEY5QUUwMi9JSVVQeHd3bF9i RlYwMzdMRHNPV0xHdEhfSzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfwQCT0aE/RGrKMxljH4FkOcaSgsdJ0jD3sVeDufzknetWcvDd3Tuc VV3jriIGTcnc+Lh51CG3zONcEaFeGd/FTuO8j+q8sZ+oIphQXbTsBJcQbuSu018T qMkAi40vWbGWdzjOKjP0lPBcMRaJLy/rPAQ6s53UyvVSUxGQszz+g6lz4prLoEIW HYGLOwFDx6lqKgxrroMEe32FCqmK5kcrQSngoSePWbGgdcEA7oRFR6ymIyM03g73 oLHJrFLypPQaDdMOQG+gK5hrzUvuhB13oWf8NX9bTVYnnaLa4QB39eoP0HqDIL3Y HP8Eqx1pbsaBPX/wgyI5EDNilVmfUqg8 -----END CERTIFICATE-----Generated at Thu Jul 3 18:35:58 2025 by rpki-client