$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft File: IWrR11qT4DeulPbJGJbS1YLY_1Q.mft (raw, json) Hash identifier: 4qhpPt9HDT0jgTUkvJR3/coJckq36k/EqUS075wnVMo= Subject key identifier: 0D:88:F9:58:92:1E:B7:B1:9B:D6:B2:45:02:84:92:46:D9:91:77:54 Authority key identifier: 21:6A:D1:D7:5A:93:E0:37:AE:94:F6:C9:18:96:D2:D5:82:D8:FF:54 Certificate issuer: /CN=A91FDDD1/serialNumber=216AD1D75A93E037AE94F6C91896D2D582D8FF54 Certificate serial: 0175 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft Manifest number: 0167 Signing time: Thu 03 Jul 2025 04:04:32 +0000 Manifest this update: Thu 03 Jul 2025 04:04:32 +0000 Manifest next update: Thu 10 Jul 2025 04:04:32 +0000 Files and hashes: 1: IWrR11qT4DeulPbJGJbS1YLY_1Q.crl (hash: ghsm/bW6JMMUY1XHq51Sz54PnZ/Wo1cMX2nmAvYcLxY=) 2: 838096CA3BD311EE84056461C4F9AE02.roa (hash: MRW+pxq2rIQWqz0eewlHDxgHTLGzIYysThVYJrp2BDc=) 3: 27DB37683BD211EE8094355FC4F9AE02.roa (hash: Fv5yzaRaYXm7EcaxJ9d0RT5up4myTdlO4UPvIXp3L88=) 4: 82C54A1E3BD311EE84056461C4F9AE02.roa (hash: mGJXgF/PKI9FEq/cPxsdqAyVl2gi74HVL2n1gwNWhDo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.crl rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 373 (0x175) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDDD1, serialNumber=216AD1D75A93E037AE94F6C91896D2D582D8FF54 Validity Not Before: Jul 3 04:04:32 2025 GMT Not After : Jul 10 04:04:32 2025 GMT Subject: CN=68660150-66a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:4a:65:60:03:b9:c6:c7:28:e7:63:fa:92:73: 53:1f:9c:70:16:d2:f9:6e:5f:2a:06:11:a9:ab:d0: e7:08:fd:aa:75:2e:82:d6:eb:aa:05:a2:44:cf:55: 90:3f:81:02:e8:cb:e3:24:27:af:c9:24:df:64:b0: 30:05:ef:8f:1e:c2:fc:c4:be:51:47:72:35:aa:eb: 3d:51:90:07:01:66:d6:7a:01:d4:f8:7d:4e:ec:93: 42:0c:92:e7:bc:0d:92:1c:1d:d8:60:b6:c4:48:55: 95:8b:05:25:be:9e:0d:cb:c2:d0:a8:d2:48:6c:f5: 8e:10:1d:f5:19:04:b9:70:8c:86:29:c0:82:26:e8: a3:e9:e6:55:b0:b3:06:df:18:62:a5:2f:5b:de:80: d0:d1:78:5f:5e:95:b6:ef:43:aa:26:15:e6:69:ed: 64:d0:73:13:f0:d1:5d:64:c0:bc:8d:96:a1:2a:a5: 83:12:bc:a9:a1:a0:ee:8e:6b:5f:bb:fc:fa:5a:0f: 03:00:e5:70:3b:b9:e7:2e:84:9b:a6:2d:b0:0a:47: 86:41:7a:79:19:34:e9:f9:c6:78:44:a2:8b:24:50: 43:5e:1a:97:d8:ee:98:85:41:fc:e2:58:47:2d:36: cb:93:61:7d:30:88:ce:65:64:a3:a3:64:75:60:b0: b3:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:88:F9:58:92:1E:B7:B1:9B:D6:B2:45:02:84:92:46:D9:91:77:54 X509v3 Authority Key Identifier: keyid:21:6A:D1:D7:5A:93:E0:37:AE:94:F6:C9:18:96:D2:D5:82:D8:FF:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:dc:8d:f6:6b:12:9c:dd:45:5e:61:39:a2:f0:57:e3:69:ab: a2:a2:0f:05:8f:dd:12:58:00:68:28:7b:69:1c:ae:53:35:2a: 9d:62:f2:1d:8a:75:d5:73:df:7f:2f:2a:0b:92:c0:fa:63:dd: f5:17:ab:3c:c9:2d:f7:2f:27:04:ed:f4:7f:7f:99:8f:3f:25: b8:6d:48:7b:7d:dc:d7:8d:a1:6f:4c:91:bd:8c:dc:c7:ab:a8: 67:eb:1c:f7:03:a1:81:0e:5c:4d:e0:0d:e6:9a:68:a8:ca:75: 91:19:e1:88:83:9e:67:7a:de:87:d6:b6:38:c0:e5:fc:8e:fb: fe:83:52:11:f2:bd:ea:5a:ee:22:28:f6:55:59:0b:3f:63:46: 44:24:0b:31:9e:cd:65:1d:38:53:a8:e7:ea:70:ad:09:ca:66: cd:23:66:3d:80:0e:43:e4:4b:b1:a1:bb:47:e4:0d:12:dc:eb: b0:9c:3d:75:08:f0:02:4e:cf:bb:5b:e5:e4:49:51:3f:53:d9: 62:f7:18:1b:f6:af:d3:fd:5b:af:f8:f8:e5:a3:07:7c:11:4c: 0d:37:79:af:0f:1d:ea:dd:65:ec:ca:24:35:0b:9f:3a:24:b9: c7:86:e8:77:7e:c0:d8:2b:de:a3:9e:42:e9:93:c6:3f:61:10: 5e:bb:25:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRERDExMTAvBgNVBAUTKDIxNkFEMUQ3NUE5M0UwMzdBRTk0RjZDOTE4OTZEMkQ1 ODJEOEZGNTQwHhcNMjUwNzAzMDQwNDMyWhcNMjUwNzEwMDQwNDMyWjAYMRYwFAYD VQQDEw02ODY2MDE1MC02NmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9UplYAO5xsco52P6knNTH5xwFtL5bl8qBhGpq9DnCP2qdS6C1uuqBaJEz1WQ P4EC6MvjJCevySTfZLAwBe+PHsL8xL5RR3I1qus9UZAHAWbWegHU+H1O7JNCDJLn vA2SHB3YYLbESFWViwUlvp4Ny8LQqNJIbPWOEB31GQS5cIyGKcCCJuij6eZVsLMG 3xhipS9b3oDQ0XhfXpW270OqJhXmae1k0HMT8NFdZMC8jZahKqWDErypoaDujmtf u/z6Wg8DAOVwO7nnLoSbpi2wCkeGQXp5GTTp+cZ4RKKLJFBDXhqX2O6YhUH84lhH LTbLk2F9MIjOZWSjo2R1YLCzowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA2I+ViS Hrexm9ayRQKEkkbZkXdUMB8GA1UdIwQYMBaAFCFq0ddak+A3rpT2yRiW0tWC2P9U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREREMS82OEMxRDQ5NjNC RDAxMUVFOEJBQzM1MUFDNEY5QUUwMi9JV3JSMTFxVDREZXVsUGJKR0piUzFZTFlf MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lXclIxMXFUNERldWxQYkpHSmJTMVlMWV8xUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REREMS82OEMxRDQ5NjNCRDAxMUVFOEJBQzM1MUFDNEY5QUUwMi9JV3JSMTFxVDRE ZXVsUGJKR0piUzFZTFlfMVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAE3I32axKc3UVeYTmi8Ffjaauiog8Fj90SWABoKHtpHK5TNSqdYvId inXVc99/LyoLksD6Y931F6s8yS33LycE7fR/f5mPPyW4bUh7fdzXjaFvTJG9jNzH q6hn6xz3A6GBDlxN4A3mmmioynWRGeGIg55net6H1rY4wOX8jvv+g1IR8r3qWu4i KPZVWQs/Y0ZEJAsxns1lHThTqOfqcK0JymbNI2Y9gA5D5EuxobtH5A0S3OuwnD11 CPACTs+7W+XkSVE/U9li9xgb9q/T/Vuv+Pjlowd8EUwNN3mvDx3q3WXsyiQ1C586 JLnHhuh3fsDYK96jnkLpk8Y/YRBeuyVH -----END CERTIFICATE-----Generated at Thu Jul 3 10:41:37 2025 by rpki-client