$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft File: iBzVaxmrfMJiYzdmnqtzClWnLLY.mft (raw, json) Hash identifier: bbtmzoMZyC6/Mlv7dEVtjahoVyfwee/6JBamCsGkAVs= Subject key identifier: A3:DD:43:A8:2B:FC:2A:44:4E:B5:52:BC:6E:BE:1F:79:8C:12:14:50 Authority key identifier: 88:1C:D5:6B:19:AB:7C:C2:62:63:37:66:9E:AB:73:0A:55:A7:2C:B6 Certificate issuer: /CN=A91ED9F9/serialNumber=881CD56B19AB7CC2626337669EAB730A55A72CB6 Certificate serial: 010A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft Manifest number: 0106 Signing time: Tue 01 Jul 2025 05:35:43 +0000 Manifest this update: Tue 01 Jul 2025 05:35:43 +0000 Manifest next update: Tue 08 Jul 2025 05:35:43 +0000 Files and hashes: 1: iBzVaxmrfMJiYzdmnqtzClWnLLY.crl (hash: g98KJHst5HSG18Lk8jJcPbhvzEBVdhBYNqCBtEOMI5g=) 2: D714E00CB26F11EFB2BFFC58C4F9AE02.roa (hash: fbK8JApyPVI7CqfBV4idqbGNutPDQ+/1nnEJoajk5Ao=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.crl rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 05:35:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 266 (0x10a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED9F9, serialNumber=881CD56B19AB7CC2626337669EAB730A55A72CB6 Validity Not Before: Jul 1 05:35:43 2025 GMT Not After : Jul 8 05:35:43 2025 GMT Subject: CN=686373af-01df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a2:51:cf:7e:ec:f1:ad:8f:40:54:17:09:bf: 7e:08:f7:2f:d5:bd:ed:52:6b:9b:ec:4c:bf:8a:8c: bd:eb:37:4a:d6:e7:f0:2a:20:64:d9:e6:72:6d:86: 63:7a:86:0a:0e:0e:70:79:9e:7d:22:d0:96:60:d6: 49:9c:8b:f5:8c:24:f0:61:30:3f:65:ce:81:03:0e: a8:f2:60:a9:ff:cf:7b:8c:ba:aa:87:4e:25:60:dc: d1:32:40:ca:56:f4:c7:b7:75:ea:31:32:a0:d9:75: 3a:ca:da:e9:03:5d:e6:5c:87:17:8b:19:d2:df:98: f9:29:7d:48:49:3e:d8:ca:ec:6c:bc:13:96:8d:55: c5:8a:5a:4b:23:23:25:b5:02:12:19:c5:97:ab:ed: 3e:c5:bf:c6:b3:e2:be:77:88:4f:d9:19:2b:73:ff: 3a:31:cd:27:ad:e1:05:92:08:4f:ec:0e:c8:0c:e5: cf:88:97:2a:75:ca:b3:33:91:d6:22:0c:eb:36:94: 32:48:c2:ca:56:ce:24:fe:43:23:ca:12:8b:6a:81: d4:8c:d9:7f:56:46:fb:1f:e3:f9:7d:73:b7:2f:c4: b9:cc:78:84:e2:2a:68:00:16:b4:b8:46:c2:72:b1: db:50:ef:7b:a2:a3:11:58:46:8d:10:f2:b8:65:c5: 7f:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:DD:43:A8:2B:FC:2A:44:4E:B5:52:BC:6E:BE:1F:79:8C:12:14:50 X509v3 Authority Key Identifier: keyid:88:1C:D5:6B:19:AB:7C:C2:62:63:37:66:9E:AB:73:0A:55:A7:2C:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:d4:6a:38:f8:09:2d:6a:2d:5c:c3:48:4c:ad:1c:0f:a4:55: 68:34:e6:a6:f1:c4:ce:d1:cb:b1:fb:9d:af:de:fc:bc:96:8b: ee:46:42:e3:fb:28:85:e2:63:c5:f1:3d:32:ad:ea:24:3e:e9: 9d:39:95:1d:2a:64:c0:c4:22:bc:ba:d0:e3:ce:fb:26:e7:2e: 71:ef:cf:57:7c:d8:96:40:f2:d7:a9:64:0a:95:43:83:14:ad: e5:fc:ae:9b:fe:4f:17:e6:fc:b0:21:80:1f:67:37:0a:0d:80: f2:18:2a:fb:4e:d4:a2:85:a1:35:88:17:d9:50:6a:27:9d:e8: 41:41:c4:80:9a:b2:eb:dc:22:e1:f1:5b:03:94:32:4b:a8:6e: 32:9c:10:93:ea:e4:25:d9:2d:db:a3:95:76:11:c5:06:82:24: df:30:5e:17:8f:04:5b:77:3a:0f:ca:90:64:a1:57:5c:43:3a: af:f4:8d:6d:3f:82:78:03:12:98:8e:44:cb:8e:bf:d4:25:4d: 82:86:88:6f:73:ce:bf:d7:68:77:17:53:27:83:da:db:b7:ba: f5:c9:e1:d0:b2:4f:e8:87:55:44:6c:1e:48:7c:c9:a9:c6:3c: 57:d7:a7:72:f2:3c:7e:70:22:64:2f:f7:e8:8d:c6:78:75:ff: 3f:4a:3e:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ5RjkxMTAvBgNVBAUTKDg4MUNENTZCMTlBQjdDQzI2MjYzMzc2NjlFQUI3MzBB NTVBNzJDQjYwHhcNMjUwNzAxMDUzNTQzWhcNMjUwNzA4MDUzNTQzWjAYMRYwFAYD VQQDEw02ODYzNzNhZi0wMWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwqJRz37s8a2PQFQXCb9+CPcv1b3tUmub7Ey/ioy96zdK1ufwKiBk2eZybYZj eoYKDg5weZ59ItCWYNZJnIv1jCTwYTA/Zc6BAw6o8mCp/897jLqqh04lYNzRMkDK VvTHt3XqMTKg2XU6ytrpA13mXIcXixnS35j5KX1IST7YyuxsvBOWjVXFilpLIyMl tQISGcWXq+0+xb/Gs+K+d4hP2Rkrc/86Mc0nreEFkghP7A7IDOXPiJcqdcqzM5HW IgzrNpQySMLKVs4k/kMjyhKLaoHUjNl/Vkb7H+P5fXO3L8S5zHiE4ipoABa0uEbC crHbUO97oqMRWEaNEPK4ZcV/7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKPdQ6gr /CpETrVSvG6+H3mMEhRQMB8GA1UdIwQYMBaAFIgc1WsZq3zCYmM3Zp6rcwpVpyy2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDlGOS81RjM3OURCMEM5 NTIxMUVFQjdBRERENEVDNEY5QUUwMi9pQnpWYXhtcmZNSmlZemRtbnF0ekNsV25M TFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lCelZheG1yZk1KaVl6ZG1ucXR6Q2xXbkxMWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDlGOS81RjM3OURCMEM5NTIxMUVFQjdBRERENEVDNEY5QUUwMi9pQnpWYXhtcmZN SmlZemRtbnF0ekNsV25MTFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCi1Go4+Aktai1cw0hMrRwPpFVoNOam8cTO0cux+52v3vy8lovuRkLj +yiF4mPF8T0yreokPumdOZUdKmTAxCK8utDjzvsm5y5x789XfNiWQPLXqWQKlUOD FK3l/K6b/k8X5vywIYAfZzcKDYDyGCr7TtSihaE1iBfZUGonnehBQcSAmrLr3CLh 8VsDlDJLqG4ynBCT6uQl2S3bo5V2EcUGgiTfMF4XjwRbdzoPypBkoVdcQzqv9I1t P4J4AxKYjkTLjr/UJU2Chohvc86/12h3F1Mng9rbt7r1yeHQsk/oh1VEbB5IfMmp xjxX16dy8jx+cCJkL/fojcZ4df8/Sj6t -----END CERTIFICATE-----Generated at Wed Jul 2 15:25:57 2025 by rpki-client