$ rpki-client -vvf rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft File: Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft (raw, json) Hash identifier: BRzRTBpVr+GEQyo4XUBhungEGhhll/9nAcQxXINMmlk= Subject key identifier: 1E:05:9D:19:14:A5:A4:32:DF:2A:E1:07:C9:46:C4:9D:7B:87:46:32 Authority key identifier: 22:4E:66:8F:40:56:01:CA:DC:33:91:38:3F:CA:96:DF:94:68:D9:5A Certificate issuer: /CN=A91F83DC/serialNumber=224E668F405601CADC3391383FCA96DF9468D95A Certificate serial: D2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft Manifest number: CD Signing time: Thu 03 Jul 2025 05:55:53 +0000 Manifest this update: Thu 03 Jul 2025 05:55:53 +0000 Manifest next update: Thu 10 Jul 2025 05:55:53 +0000 Files and hashes: 1: Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.crl (hash: ZbNV1vugdsfFHoz1qLOCWfXSV9A6NbbG+/tHNdjxXIM=) 2: 097951DC271E11EFA1884C2EC4F9AE02.roa (hash: Ha/cGz3EuqzsAq4mNf1LJHzYtP6EU2XABOfv8TEGk30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.crl rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F83DC, serialNumber=224E668F405601CADC3391383FCA96DF9468D95A Validity Not Before: Jul 3 05:55:53 2025 GMT Not After : Jul 10 05:55:53 2025 GMT Subject: CN=68661b69-a31e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:4d:28:30:bc:b9:ef:d7:f5:1f:8d:fb:5b:f3: f3:73:19:0d:14:5f:6b:00:64:c3:74:86:1d:7d:2d: 07:7e:92:7f:c0:64:ba:10:0c:13:fb:40:a7:e5:7e: bc:15:e6:7a:a3:c4:dd:bf:0d:1d:16:00:27:6b:95: 8d:b3:61:37:6f:45:d8:0a:43:9a:ef:12:7a:ab:04: 55:a7:59:af:ee:df:1b:94:3a:1f:62:a6:5b:ac:27: 50:55:ab:dd:9a:84:99:59:ad:60:e7:71:8c:65:7f: 77:ba:6f:23:13:97:be:04:6b:18:36:db:0a:2a:79: 06:89:9f:ae:2c:24:19:23:1b:97:d4:53:30:9d:ac: 01:54:bb:9c:b5:1b:b5:a8:96:9c:0d:35:a3:6b:96: b3:53:77:27:78:68:9a:d6:c1:60:32:7b:e1:09:ed: f9:54:bd:b4:83:82:bf:3a:32:ed:d3:ae:fa:5b:ab: 6f:37:65:06:0c:61:d9:54:e4:fa:dc:8c:46:d6:8e: a3:13:00:bd:ba:f6:3e:c7:4c:ab:93:4c:f8:85:5a: d5:45:de:ef:38:33:06:75:72:19:ce:bf:22:c0:a0: 93:9f:5e:b7:67:6e:01:41:aa:80:fb:4a:35:30:70: a9:fe:f0:af:84:29:12:07:e0:95:08:9d:ec:48:5b: 4a:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:05:9D:19:14:A5:A4:32:DF:2A:E1:07:C9:46:C4:9D:7B:87:46:32 X509v3 Authority Key Identifier: keyid:22:4E:66:8F:40:56:01:CA:DC:33:91:38:3F:CA:96:DF:94:68:D9:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:99:4c:35:2b:32:7a:6c:4f:b8:d4:a3:1c:08:68:ab:45:e8: 8a:13:25:51:6e:50:d1:22:cf:3e:a3:ce:a4:02:3c:55:79:7a: e5:72:da:33:5a:4f:09:6f:60:45:d7:a2:6b:41:28:24:f2:18: 64:ca:2f:7f:e2:40:d9:9f:25:20:29:ef:9e:1e:e5:16:85:39: d0:cc:3e:7f:ba:56:72:fd:08:08:c7:30:f7:3f:60:79:6f:e2: 1c:83:84:d3:be:78:58:4d:85:a1:ff:c8:ce:2b:ae:ec:bc:69: b8:43:8a:e0:83:44:32:cc:2c:42:1a:d8:4d:29:8c:79:dc:f7: a8:08:15:ae:23:2f:44:f0:2d:70:ac:4c:f0:a2:a8:93:17:71: 10:ac:97:ea:80:f5:6f:44:56:76:fe:0a:1c:c6:34:ab:9b:98: 4c:e5:a3:2e:66:5f:4b:0f:71:10:a1:dd:42:4f:58:e2:aa:f7: d7:06:16:72:55:d0:09:ec:5b:09:0f:9d:22:86:11:1a:ea:70: bd:f1:40:bb:b2:47:53:7b:9e:a5:4b:3b:71:03:98:3e:20:0c: 36:e1:6e:b1:6c:91:a0:7a:22:9c:ae:7f:ae:35:2d:47:b0:f7: 1a:59:2c:fb:6f:de:55:35:7c:63:5c:33:53:1e:84:26:dd:b8: d6:ad:ef:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgzREMxMTAvBgNVBAUTKDIyNEU2NjhGNDA1NjAxQ0FEQzMzOTEzODNGQ0E5NkRG OTQ2OEQ5NUEwHhcNMjUwNzAzMDU1NTUzWhcNMjUwNzEwMDU1NTUzWjAYMRYwFAYD VQQDEw02ODY2MWI2OS1hMzFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz00oMLy579f1H437W/PzcxkNFF9rAGTDdIYdfS0HfpJ/wGS6EAwT+0Cn5X68 FeZ6o8Tdvw0dFgAna5WNs2E3b0XYCkOa7xJ6qwRVp1mv7t8blDofYqZbrCdQVavd moSZWa1g53GMZX93um8jE5e+BGsYNtsKKnkGiZ+uLCQZIxuX1FMwnawBVLuctRu1 qJacDTWja5azU3cneGia1sFgMnvhCe35VL20g4K/OjLt0676W6tvN2UGDGHZVOT6 3IxG1o6jEwC9uvY+x0yrk0z4hVrVRd7vODMGdXIZzr8iwKCTn163Z24BQaqA+0o1 MHCp/vCvhCkSB+CVCJ3sSFtKYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB4FnRkU paQy3yrhB8lGxJ17h0YyMB8GA1UdIwQYMBaAFCJOZo9AVgHK3DOROD/Klt+UaNla MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODNEQy85OUM3NDg4ODI2 RUQxMUVGQjRDOUJBMjhDNEY5QUUwMi9JazVtajBCV0FjcmNNNUU0UDhxVzM1Um8y Vm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lrNW1qMEJXQWNyY001RTRQOHFXMzVSbzJWby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODNEQy85OUM3NDg4ODI2RUQxMUVGQjRDOUJBMjhDNEY5QUUwMi9JazVtajBCV0Fj cmNNNUU0UDhxVzM1Um8yVm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNmUw1KzJ6bE+41KMcCGirReiKEyVRblDRIs8+o86kAjxVeXrlctoz Wk8Jb2BF16JrQSgk8hhkyi9/4kDZnyUgKe+eHuUWhTnQzD5/ulZy/QgIxzD3P2B5 b+Icg4TTvnhYTYWh/8jOK67svGm4Q4rgg0QyzCxCGthNKYx53PeoCBWuIy9E8C1w rEzwoqiTF3EQrJfqgPVvRFZ2/gocxjSrm5hM5aMuZl9LD3EQod1CT1jiqvfXBhZy VdAJ7FsJD50ihhEa6nC98UC7skdTe56lSztxA5g+IAw24W6xbJGgeiKcrn+uNS1H sPcaWSz7b95VNXxjXDNTHoQm3bjWre9Y -----END CERTIFICATE-----Generated at Fri Jul 4 21:06:20 2025 by rpki-client