$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/Iln4cJbkCts8hBgOKLVsPogi9lE.mft File: Iln4cJbkCts8hBgOKLVsPogi9lE.mft (raw, json) Hash identifier: 8/5rAMbXU09HjQNrBgCMRpwcD+/aYkrUwkNGYx1vjb0= Subject key identifier: 21:C5:82:BA:1C:72:6D:D9:ED:84:0D:45:AB:70:24:82:F3:D3:7D:14 Authority key identifier: 22:59:F8:70:96:E4:0A:DB:3C:84:18:0E:28:B5:6C:3E:88:22:F6:51 Certificate issuer: /CN=A91E9B89/serialNumber=2259F87096E40ADB3C84180E28B56C3E8822F651 Certificate serial: 9E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Iln4cJbkCts8hBgOKLVsPogi9lE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/Iln4cJbkCts8hBgOKLVsPogi9lE.mft Manifest number: 9C Signing time: Thu 03 Jul 2025 06:31:41 +0000 Manifest this update: Thu 03 Jul 2025 06:31:41 +0000 Manifest next update: Thu 10 Jul 2025 06:31:41 +0000 Files and hashes: 1: Iln4cJbkCts8hBgOKLVsPogi9lE.crl (hash: UyAVa9O/IZ56tZgIpgqx2qwAGpkiEY4En/70/K/4Mb0=) 2: CCFF219C6C1811EFA5619D0FC4F9AE02.roa (hash: 3XxXrUl7XjjQy54chnpbCmHALQO6VY0UNh1QIEO4utw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/Iln4cJbkCts8hBgOKLVsPogi9lE.crl rsync://rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/Iln4cJbkCts8hBgOKLVsPogi9lE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Iln4cJbkCts8hBgOKLVsPogi9lE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 158 (0x9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9B89, serialNumber=2259F87096E40ADB3C84180E28B56C3E8822F651 Validity Not Before: Jul 3 06:31:41 2025 GMT Not After : Jul 10 06:31:41 2025 GMT Subject: CN=686623cd-8da5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:87:56:50:1f:1b:e4:5c:4a:20:5e:0e:95:5c: 90:39:57:96:8d:78:cf:7a:c0:bd:ef:3c:46:09:64: 09:02:44:24:c0:f1:e3:20:8a:10:34:40:cd:02:ac: 54:25:9a:a9:2c:c7:bb:16:37:ed:39:36:a8:cb:bc: ed:96:9f:aa:1e:f2:e1:24:e4:d4:28:13:39:37:e2: d4:51:f0:d2:53:d0:fb:e1:39:9a:79:8d:01:8b:a2: 87:ba:ef:b5:ac:39:c4:27:24:e5:d4:56:b7:68:00: 4e:e5:79:b7:30:ee:8b:8f:9d:6e:06:8d:cb:c8:72: 9a:55:fb:e9:cb:d3:2d:0f:a4:70:ee:ec:50:c7:ff: 84:53:8e:30:ac:b9:c9:90:c7:e6:9f:de:30:4e:dc: 5d:04:b5:2e:e2:15:bd:9a:1b:24:73:ec:d0:75:79: 9f:2d:06:bc:2e:7d:ea:95:84:5b:a0:1d:1e:67:ee: 62:08:c4:35:d3:87:2d:7d:b2:d3:cd:e9:5a:ab:0b: ab:3d:09:ae:1b:2d:27:02:4b:24:7e:2a:41:a6:42: 86:be:2a:43:28:6c:1c:5c:57:3e:89:1d:9e:64:8a: 6c:9d:1b:c9:57:1e:6d:0d:c3:ce:b2:3d:64:50:52: e1:35:09:55:0a:9c:e5:89:6c:29:3c:26:43:4d:17: 67:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:C5:82:BA:1C:72:6D:D9:ED:84:0D:45:AB:70:24:82:F3:D3:7D:14 X509v3 Authority Key Identifier: keyid:22:59:F8:70:96:E4:0A:DB:3C:84:18:0E:28:B5:6C:3E:88:22:F6:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/Iln4cJbkCts8hBgOKLVsPogi9lE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Iln4cJbkCts8hBgOKLVsPogi9lE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/Iln4cJbkCts8hBgOKLVsPogi9lE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:b2:da:00:cd:24:93:90:02:25:3d:31:2e:22:9b:3f:20:4f: e8:93:f3:80:3a:d9:98:27:dd:3f:11:4f:f4:6b:c0:b5:f1:e8: e0:31:3d:a6:fd:f6:94:50:9a:c8:5a:38:84:a9:cc:fc:37:86: eb:1b:1b:e0:15:9f:19:be:71:2b:75:ae:25:9c:8c:0f:b1:b2: 2e:0a:ce:ae:6d:de:d6:64:a3:bf:49:5d:8f:2d:0f:9d:db:27: 1e:57:d7:09:71:8f:0f:4d:9e:c5:e2:b5:32:73:dc:60:06:d5: f0:b1:cc:40:4d:68:3a:76:2a:9d:f2:8b:1e:57:87:4f:2f:b9: 3d:25:df:d2:6d:a3:08:07:51:c6:81:9c:c9:ad:9e:72:20:3d: 61:2c:86:79:24:50:be:c2:43:d6:cc:bd:1d:44:a7:d3:8d:d8: 4c:cc:13:62:9d:dc:78:e6:f2:37:c8:d3:33:a4:fb:40:9e:e8: b9:52:47:37:8b:aa:13:08:b6:f7:57:97:ab:c2:e4:95:3b:c6: 63:c6:f8:97:b4:a9:c7:49:00:c5:6d:83:6b:d8:22:38:f3:48: 6a:a6:09:f9:b8:f1:bb:ea:9d:e3:00:b6:05:f9:ce:28:77:d5: 36:ab:b9:06:09:47:92:e4:f5:0b:d5:ca:6c:ec:f6:a8:49:1e: 07:62:d8:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlCODkxMTAvBgNVBAUTKDIyNTlGODcwOTZFNDBBREIzQzg0MTgwRTI4QjU2QzNF ODgyMkY2NTEwHhcNMjUwNzAzMDYzMTQxWhcNMjUwNzEwMDYzMTQxWjAYMRYwFAYD VQQDEw02ODY2MjNjZC04ZGE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy4dWUB8b5FxKIF4OlVyQOVeWjXjPesC97zxGCWQJAkQkwPHjIIoQNEDNAqxU JZqpLMe7FjftOTaoy7ztlp+qHvLhJOTUKBM5N+LUUfDSU9D74TmaeY0Bi6KHuu+1 rDnEJyTl1Fa3aABO5Xm3MO6Lj51uBo3LyHKaVfvpy9MtD6Rw7uxQx/+EU44wrLnJ kMfmn94wTtxdBLUu4hW9mhskc+zQdXmfLQa8Ln3qlYRboB0eZ+5iCMQ104ctfbLT zelaqwurPQmuGy0nAkskfipBpkKGvipDKGwcXFc+iR2eZIpsnRvJVx5tDcPOsj1k UFLhNQlVCpzliWwpPCZDTRdnaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCHFgroc cm3Z7YQNRatwJILz030UMB8GA1UdIwQYMBaAFCJZ+HCW5ArbPIQYDii1bD6IIvZR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUI4OS8zQTlDOEE1NjZD MTgxMUVGQUI2QjY5MENDNEY5QUUwMi9JbG40Y0pia0N0czhoQmdPS0xWc1BvZ2k5 bEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lsbjRjSmJrQ3RzOGhCZ09LTFZzUG9naTlsRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUI4OS8zQTlDOEE1NjZDMTgxMUVGQUI2QjY5MENDNEY5QUUwMi9JbG40Y0pia0N0 czhoQmdPS0xWc1BvZ2k5bEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHstoAzSSTkAIlPTEuIps/IE/ok/OAOtmYJ90/EU/0a8C18ejgMT2m /faUUJrIWjiEqcz8N4brGxvgFZ8ZvnErda4lnIwPsbIuCs6ubd7WZKO/SV2PLQ+d 2yceV9cJcY8PTZ7F4rUyc9xgBtXwscxATWg6diqd8oseV4dPL7k9Jd/SbaMIB1HG gZzJrZ5yID1hLIZ5JFC+wkPWzL0dRKfTjdhMzBNindx45vI3yNMzpPtAnui5Ukc3 i6oTCLb3V5erwuSVO8ZjxviXtKnHSQDFbYNr2CI480hqpgn5uPG76p3jALYF+c4o d9U2q7kGCUeS5PUL1cps7PaoSR4HYthP -----END CERTIFICATE-----Generated at Sat Jul 5 05:33:21 2025 by rpki-client