$ rpki-client -vvf rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/iiZW272QAzaEH_UDU2_5kY_rJcY.mft File: iiZW272QAzaEH_UDU2_5kY_rJcY.mft (raw, json) Hash identifier: n5Et+X2mkf3lBOUpbAjVk6vWPcrO2Nh03BIv7ZeW00c= Subject key identifier: 58:4B:A1:BD:72:28:8C:8D:AF:1E:75:1A:3A:EF:93:4C:32:C0:F2:D2 Authority key identifier: 8A:26:56:DB:BD:90:03:36:84:1F:F5:03:53:6F:F9:91:8F:EB:25:C6 Certificate issuer: /CN=A91A267C/serialNumber=8A2656DBBD900336841FF503536FF9918FEB25C6 Certificate serial: 0A00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iiZW272QAzaEH_UDU2_5kY_rJcY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/iiZW272QAzaEH_UDU2_5kY_rJcY.mft Manifest number: 09F4 Signing time: Fri 04 Jul 2025 20:14:40 +0000 Manifest this update: Fri 04 Jul 2025 20:14:40 +0000 Manifest next update: Fri 11 Jul 2025 20:14:40 +0000 Files and hashes: 1: iiZW272QAzaEH_UDU2_5kY_rJcY.crl (hash: 9HxpgY188tEF+rlfoXTkiwEy8FIZQ7gjKg5+O5+xIZg=) 2: 9244682C7BD711EAA889485EC4F9AE02.roa (hash: ZCM+V6Y56yepaeegUajjp4xOF8Q6SeyZY2EvL4X5a+Y=) 3: 8B802D485F2211EC88AA0F84C4F9AE02.roa (hash: qSGZ+j4RvXroFxByBDcPf9/bS2chAaWe7JM19f3ZPpw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/iiZW272QAzaEH_UDU2_5kY_rJcY.crl rsync://rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/iiZW272QAzaEH_UDU2_5kY_rJcY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iiZW272QAzaEH_UDU2_5kY_rJcY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2560 (0xa00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A267C, serialNumber=8A2656DBBD900336841FF503536FF9918FEB25C6 Validity Not Before: Jul 4 20:14:40 2025 GMT Not After : Jul 11 20:14:40 2025 GMT Subject: CN=68683630-1a7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ae:76:62:bf:2a:61:a5:61:56:36:84:df:b7: 3f:f7:31:a4:82:37:9c:28:56:2b:dd:c8:60:7c:b2: fe:7d:a7:8a:e1:fb:93:a1:01:ed:af:5f:ee:e3:d9: 0e:8a:ab:e8:28:9e:f1:67:35:a3:d1:bc:0d:1e:d6: bc:76:c7:dd:b8:5e:01:8c:72:b9:99:69:9e:48:a0: 3f:d8:70:43:28:f5:bb:ae:c8:73:0f:f7:b7:25:ec: 36:bc:13:ee:ac:41:50:94:3c:58:61:87:da:16:b8: c3:0f:52:47:6a:9e:9d:20:f9:03:0f:ef:8d:e2:44: cb:0d:af:a5:dd:26:f3:7a:7b:61:4e:9f:1a:a5:79: 36:8d:7c:01:ab:49:12:28:ea:a9:b7:48:c8:02:a0: aa:a9:f5:d2:d0:f0:9d:b2:d9:56:42:49:86:15:94: 21:ad:5c:3d:e6:27:53:9f:43:87:96:a4:6b:ec:b9: 83:9b:d1:5d:a3:16:61:cc:e2:b7:65:d2:6d:ed:69: a2:7e:f5:24:4a:6e:2d:fe:80:ae:40:1d:09:e2:cd: 92:35:56:d0:2f:66:4a:91:f6:00:81:6e:02:ef:8a: 44:c6:19:c4:e4:82:63:59:07:c3:90:9b:f1:1e:87: 74:ca:fb:c7:8a:8e:60:a3:19:ee:42:34:88:e5:0e: 55:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:4B:A1:BD:72:28:8C:8D:AF:1E:75:1A:3A:EF:93:4C:32:C0:F2:D2 X509v3 Authority Key Identifier: keyid:8A:26:56:DB:BD:90:03:36:84:1F:F5:03:53:6F:F9:91:8F:EB:25:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/iiZW272QAzaEH_UDU2_5kY_rJcY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iiZW272QAzaEH_UDU2_5kY_rJcY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/iiZW272QAzaEH_UDU2_5kY_rJcY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:e4:d4:fb:3f:56:01:e6:ea:74:18:68:38:a6:53:fa:a8:f7: cd:f2:d3:af:5b:5e:16:4a:b0:35:fc:90:58:0b:21:bc:e8:eb: 14:33:ec:5a:0d:c2:c7:4d:d5:64:4d:c5:4b:47:05:f8:2f:e4: 29:d1:05:81:ad:d4:0e:1c:05:d0:ea:84:1f:75:78:ab:42:e2: 0d:1b:be:7c:70:e3:06:02:c2:44:fc:f0:49:e9:8f:c5:cc:4f: 84:79:a1:aa:92:a3:fa:eb:7d:f6:40:e9:66:c2:ff:13:a1:ba: a9:3a:fc:88:c3:2f:f6:70:41:44:41:23:3c:d1:49:c7:b7:b0: 3b:90:49:65:da:c1:38:44:83:66:dd:53:e1:5b:6c:96:09:76: 30:99:5c:27:a6:ef:b9:af:d6:00:b9:37:6d:76:0f:1e:5e:45: 3f:8e:b6:b2:e1:d2:bb:30:43:2f:38:79:19:d5:39:e8:ce:f7: cc:9f:ee:2d:37:d7:4c:b6:b6:8b:37:60:9f:09:6e:8c:49:46: 66:a0:ac:8b:27:ed:c9:c9:f7:e7:40:ab:54:ed:fa:9c:64:1d: cb:83:b0:8a:7f:a9:cd:94:c6:de:ee:0d:88:45:4e:57:d6:f5: 8f:34:2d:7d:3d:31:a7:67:c2:80:06:b7:3d:07:11:5f:60:65: fe:ee:da:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTI2N0MxMTAvBgNVBAUTKDhBMjY1NkRCQkQ5MDAzMzY4NDFGRjUwMzUzNkZGOTkx OEZFQjI1QzYwHhcNMjUwNzA0MjAxNDQwWhcNMjUwNzExMjAxNDQwWjAYMRYwFAYD VQQDEw02ODY4MzYzMC0xYTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq652Yr8qYaVhVjaE37c/9zGkgjecKFYr3chgfLL+faeK4fuToQHtr1/u49kO iqvoKJ7xZzWj0bwNHta8dsfduF4BjHK5mWmeSKA/2HBDKPW7rshzD/e3Jew2vBPu rEFQlDxYYYfaFrjDD1JHap6dIPkDD++N4kTLDa+l3SbzenthTp8apXk2jXwBq0kS KOqpt0jIAqCqqfXS0PCdstlWQkmGFZQhrVw95idTn0OHlqRr7LmDm9FdoxZhzOK3 ZdJt7WmifvUkSm4t/oCuQB0J4s2SNVbQL2ZKkfYAgW4C74pExhnE5IJjWQfDkJvx Hod0yvvHio5goxnuQjSI5Q5VnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFhLob1y KIyNrx51Gjrvk0wywPLSMB8GA1UdIwQYMBaAFIomVtu9kAM2hB/1A1Nv+ZGP6yXG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjY3Qy81QjUzODk2NjdC RDYxMUVBODAzRjlCNUNDNEY5QUUwMi9paVpXMjcyUUF6YUVIX1VEVTJfNWtZX3JK Y1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lpWlcyNzJRQXphRUhfVURVMl81a1lfckpjWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjY3Qy81QjUzODk2NjdCRDYxMUVBODAzRjlCNUNDNEY5QUUwMi9paVpXMjcyUUF6 YUVIX1VEVTJfNWtZX3JKY1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBh5NT7P1YB5up0GGg4plP6qPfN8tOvW14WSrA1/JBYCyG86OsUM+xa DcLHTdVkTcVLRwX4L+Qp0QWBrdQOHAXQ6oQfdXirQuING758cOMGAsJE/PBJ6Y/F zE+EeaGqkqP66332QOlmwv8TobqpOvyIwy/2cEFEQSM80UnHt7A7kEll2sE4RINm 3VPhW2yWCXYwmVwnpu+5r9YAuTdtdg8eXkU/jray4dK7MEMvOHkZ1TnozvfMn+4t N9dMtraLN2CfCW6MSUZmoKyLJ+3JyffnQKtU7fqcZB3Lg7CKf6nNlMbe7g2IRU5X 1vWPNC19PTGnZ8KABrc9BxFfYGX+7tpS -----END CERTIFICATE-----Generated at Sat Jul 5 22:03:37 2025 by rpki-client