$ rpki-client -vvf rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft File: _IholOLXDjUuTxaAUsUbBasFrMU.mft (raw, json) Hash identifier: 4LtHJ3dQ/vnL6iF+Gm6/DPcbl2BUkWU+xzuYrl7BupY= Subject key identifier: 4D:A7:1C:1B:2D:3A:BE:D4:B5:6F:3A:5B:2B:8F:93:A6:13:C9:C3:56 Authority key identifier: FC:88:68:94:E2:D7:0E:35:2E:4F:16:80:52:C5:1B:05:AB:05:AC:C5 Certificate issuer: /CN=A91CABF0/serialNumber=FC886894E2D70E352E4F168052C51B05AB05ACC5 Certificate serial: 0109 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IholOLXDjUuTxaAUsUbBasFrMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft Manifest number: 0107 Signing time: Sun 29 Jun 2025 04:06:46 +0000 Manifest this update: Sun 29 Jun 2025 04:06:46 +0000 Manifest next update: Sun 06 Jul 2025 04:06:46 +0000 Files and hashes: 1: _IholOLXDjUuTxaAUsUbBasFrMU.crl (hash: TXnBXGrxd+1WhYbVsDp8RUTBLgx84rJGGGSV4qrhzAg=) 2: 740B66A6C09A11EE9839DC42C4F9AE02.roa (hash: NOsPGGlDSlCfn8hbBHu4EWI+usdJzaN80KZom3HQWsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.crl rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IholOLXDjUuTxaAUsUbBasFrMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 04:06:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 265 (0x109) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CABF0, serialNumber=FC886894E2D70E352E4F168052C51B05AB05ACC5 Validity Not Before: Jun 29 04:06:46 2025 GMT Not After : Jul 6 04:06:46 2025 GMT Subject: CN=6860bbd6-427f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:53:13:f4:8f:de:cd:d4:9a:da:ad:c7:eb:a4: 63:8a:ba:f0:4d:02:7b:ff:6e:d0:32:6b:a2:a7:68: 39:11:53:de:dd:0b:52:3b:6d:02:de:8f:45:63:d8: bc:92:55:ca:51:34:9b:a9:9a:1d:f4:42:03:99:96: f0:6a:36:ab:71:77:1e:1a:48:8d:ea:13:bb:a1:85: 21:c9:ba:4a:ca:ca:16:4b:d7:44:29:cc:03:d5:84: cc:89:fb:cf:fa:cc:3e:05:e8:ad:b1:73:3e:c8:05: 94:2d:bb:49:79:c0:0e:eb:1b:d7:b8:2d:4a:61:bb: fa:96:67:33:fb:8a:1d:d9:29:4d:e3:40:4b:1a:2a: b2:e1:ae:bc:b4:97:ec:a7:9a:0b:1c:c7:a1:99:61: b9:95:8d:68:20:8e:87:4c:63:84:70:e9:8a:13:b5: b9:07:6d:d1:d3:bf:9d:06:67:76:42:dc:d7:d4:30: 5f:3e:c9:8f:42:41:e9:bb:bb:75:c0:dd:28:3c:1a: 73:0d:28:21:eb:68:3c:05:40:e2:90:55:85:7c:b9: 5b:31:40:26:53:92:ef:d7:2a:8d:c6:5f:c7:de:94: d1:c9:39:5e:98:c2:57:a2:18:59:e6:74:7d:4a:4f: b1:1d:75:fc:43:1f:48:e0:42:04:e8:a0:b1:f3:74: 33:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:A7:1C:1B:2D:3A:BE:D4:B5:6F:3A:5B:2B:8F:93:A6:13:C9:C3:56 X509v3 Authority Key Identifier: keyid:FC:88:68:94:E2:D7:0E:35:2E:4F:16:80:52:C5:1B:05:AB:05:AC:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IholOLXDjUuTxaAUsUbBasFrMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:d1:62:74:21:0a:00:be:9c:0b:1e:50:12:a8:aa:1e:26:47: ec:7a:23:6d:43:b6:a8:cc:93:0e:9e:4a:28:b1:c5:f3:db:bd: 7d:a8:6c:e1:af:95:8d:d1:b2:fb:3b:69:bc:19:42:d3:ae:27: a8:b9:58:e9:d5:5d:a4:3e:cc:cb:65:da:f8:85:e5:dc:97:65: 82:3f:f8:85:0f:db:f2:3d:6a:64:bc:0a:02:88:64:b0:b7:a9: 93:ff:34:fa:9e:f6:58:c3:e5:fe:eb:23:24:a5:05:0a:1f:0b: 5b:94:82:6c:07:e3:bc:b6:96:c2:05:28:33:e4:61:56:eb:b3: ee:54:46:60:08:d9:66:05:10:2d:cd:82:89:6d:eb:bb:0b:f7: b9:66:c4:1a:c3:3e:12:b5:61:14:ca:6f:52:8b:88:13:85:6d: c3:a0:4a:0c:35:3e:b1:bf:86:16:e7:0e:e3:aa:35:e4:ec:0c: 13:0d:57:8e:89:5a:c9:f1:03:53:b8:d2:2e:ff:72:c3:06:bc: 5a:70:e6:1b:49:8c:47:e6:c0:51:62:1b:bd:43:00:2b:a7:91: 86:25:ce:29:75:7e:eb:aa:53:05:c9:6e:1c:cd:48:b6:e8:94: e2:e2:8d:f2:6f:d9:a2:92:7d:fe:72:05:ca:c0:1f:d6:91:0c: e8:6f:f5:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FCRjAxMTAvBgNVBAUTKEZDODg2ODk0RTJENzBFMzUyRTRGMTY4MDUyQzUxQjA1 QUIwNUFDQzUwHhcNMjUwNjI5MDQwNjQ2WhcNMjUwNzA2MDQwNjQ2WjAYMRYwFAYD VQQDEw02ODYwYmJkNi00MjdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1MT9I/ezdSa2q3H66RjirrwTQJ7/27QMmuip2g5EVPe3QtSO20C3o9FY9i8 klXKUTSbqZod9EIDmZbwajarcXceGkiN6hO7oYUhybpKysoWS9dEKcwD1YTMifvP +sw+BeitsXM+yAWULbtJecAO6xvXuC1KYbv6lmcz+4od2SlN40BLGiqy4a68tJfs p5oLHMehmWG5lY1oII6HTGOEcOmKE7W5B23R07+dBmd2QtzX1DBfPsmPQkHpu7t1 wN0oPBpzDSgh62g8BUDikFWFfLlbMUAmU5Lv1yqNxl/H3pTRyTlemMJXohhZ5nR9 Sk+xHXX8Qx9I4EIE6KCx83QzqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE2nHBst Or7UtW86WyuPk6YTycNWMB8GA1UdIwQYMBaAFPyIaJTi1w41Lk8WgFLFGwWrBazF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUJGMC9EOTZCQTY2MEMw OTkxMUVFQjk1MDVBNDFDNEY5QUUwMi9fSWhvbE9MWERqVXVUeGFBVXNVYkJhc0Zy TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19JaG9sT0xYRGpVdVR4YUFVc1ViQmFzRnJNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUJGMC9EOTZCQTY2MEMwOTkxMUVFQjk1MDVBNDFDNEY5QUUwMi9fSWhvbE9MWERq VXVUeGFBVXNVYkJhc0ZyTVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBI0WJ0IQoAvpwLHlASqKoeJkfseiNtQ7aozJMOnkooscXz2719qGzh r5WN0bL7O2m8GULTrieouVjp1V2kPszLZdr4heXcl2WCP/iFD9vyPWpkvAoCiGSw t6mT/zT6nvZYw+X+6yMkpQUKHwtblIJsB+O8tpbCBSgz5GFW67PuVEZgCNlmBRAt zYKJbeu7C/e5ZsQawz4StWEUym9Si4gThW3DoEoMNT6xv4YW5w7jqjXk7AwTDVeO iVrJ8QNTuNIu/3LDBrxacOYbSYxH5sBRYhu9QwArp5GGJc4pdX7rqlMFyW4czUi2 6JTi4o3yb9mikn3+cgXKwB/WkQzob/X7 -----END CERTIFICATE-----Generated at Sun Jun 29 12:26:26 2025 by rpki-client