$ rpki-client -vvf rpki.apnic.net/member_repository/A91106C7/6F03D630320E11EFB6E0DA76C4F9AE02/Ip7mz7eVhLojEKzORSg496SKUB4.mft File: Ip7mz7eVhLojEKzORSg496SKUB4.mft (raw, json) Hash identifier: btxHfFPxWV+kU0d3ouJ40dWXyZjgKGdLH3BSlPZ0jFE= Subject key identifier: 1A:CE:D1:66:61:0F:CD:E0:72:FD:A6:6A:52:62:D2:62:5C:5B:20:BE Authority key identifier: 22:9E:E6:CF:B7:95:84:BA:23:10:AC:CE:45:28:38:F7:A4:8A:50:1E Certificate issuer: /CN=A91106C7/serialNumber=229EE6CFB79584BA2310ACCE452838F7A48A501E Certificate serial: A7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ip7mz7eVhLojEKzORSg496SKUB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91106C7/6F03D630320E11EFB6E0DA76C4F9AE02/Ip7mz7eVhLojEKzORSg496SKUB4.mft Manifest number: A2 Signing time: Fri 25 Apr 2025 05:14:59 +0000 Manifest this update: Fri 25 Apr 2025 05:14:58 +0000 Manifest next update: Fri 02 May 2025 05:14:58 +0000 Files and hashes: 1: Ip7mz7eVhLojEKzORSg496SKUB4.crl (hash: SJdKiiGkdeVEKYZd0KT6VFGCmvlN7Dr4wCTbHioFXHc=) 2: 261B11D8C81611EFB17FCD19C4F9AE02.roa (hash: 9NOvs/XF0IftOxWT5ydMMS4UTlwcr+u3mz+KsLLysWo=) 3: E02064A0C9E911EFABA90568C4F9AE02.roa (hash: Lj7oe1PG2x11wd3w8JgQmVhkgZC0GIoGb3aNynIb3Ac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91106C7/6F03D630320E11EFB6E0DA76C4F9AE02/Ip7mz7eVhLojEKzORSg496SKUB4.crl rsync://rpki.apnic.net/member_repository/A91106C7/6F03D630320E11EFB6E0DA76C4F9AE02/Ip7mz7eVhLojEKzORSg496SKUB4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ip7mz7eVhLojEKzORSg496SKUB4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:14:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 167 (0xa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91106C7, serialNumber=229EE6CFB79584BA2310ACCE452838F7A48A501E Validity Not Before: Apr 25 05:14:58 2025 GMT Not After : May 2 05:14:58 2025 GMT Subject: CN=680b1a52-b07b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:b9:28:de:3b:cb:3c:4f:f4:1e:63:aa:0f:4a: 51:10:07:05:4b:40:91:b8:7d:21:fa:c4:64:21:3e: 2e:5c:31:84:ef:ce:7c:cf:92:ef:21:7b:80:28:ed: e6:00:e9:87:fa:65:ef:40:dc:96:fb:97:83:5b:9c: a8:0c:cf:2d:69:cb:4d:6c:1a:c7:04:9b:9e:59:47: c0:a8:47:b9:cd:2a:de:fe:4a:fc:3a:b1:48:f7:5c: 1a:30:70:56:fb:5c:3d:50:5e:ce:68:04:50:ee:eb: ab:b8:2e:8d:cf:1a:16:77:28:9c:72:05:8c:6e:5c: fb:61:4b:9e:8e:27:08:5d:ec:ad:14:52:01:68:72: 6d:d9:6e:bc:4d:6c:8a:08:6c:7e:3f:be:6b:06:a8: 81:e0:c3:5d:6f:a1:d4:7c:e4:ac:6c:31:de:c3:f5: 80:bc:1f:c4:6f:48:88:36:b5:60:41:31:af:73:ce: e5:1d:a9:27:c3:18:d7:d8:7c:88:40:7c:2c:b6:30: da:1f:ad:92:d0:ff:b7:a3:ff:0f:6d:cf:a5:c0:64: ec:29:fa:7f:e0:29:44:98:ed:ca:ab:9a:85:c6:33: 67:54:55:09:9c:41:7c:f9:54:f6:ba:b9:6b:36:fe: e3:ec:e8:e5:42:0a:70:ca:bb:53:0a:3e:c7:3a:ba: de:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:CE:D1:66:61:0F:CD:E0:72:FD:A6:6A:52:62:D2:62:5C:5B:20:BE X509v3 Authority Key Identifier: keyid:22:9E:E6:CF:B7:95:84:BA:23:10:AC:CE:45:28:38:F7:A4:8A:50:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91106C7/6F03D630320E11EFB6E0DA76C4F9AE02/Ip7mz7eVhLojEKzORSg496SKUB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ip7mz7eVhLojEKzORSg496SKUB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91106C7/6F03D630320E11EFB6E0DA76C4F9AE02/Ip7mz7eVhLojEKzORSg496SKUB4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:3a:bf:29:df:48:a4:2d:96:15:69:37:52:4a:3d:cb:41:d2: ca:d4:ed:c3:bc:ea:70:0a:07:10:1d:25:37:1d:4b:eb:b3:51: e2:49:54:93:4e:ed:2f:15:5d:4e:b6:92:a4:ba:51:e0:32:78: da:32:dd:ab:2a:97:3c:4b:3f:f7:75:13:d4:95:c0:60:7f:d2: cc:14:c5:68:9f:38:a8:3b:77:50:4e:ae:8e:7a:34:cd:b2:5e: 05:99:ce:40:ed:1f:4e:52:12:ba:17:8d:41:8d:44:fa:cd:90: 3a:7c:ca:84:49:96:04:90:d4:83:bd:78:9d:4d:60:1f:2d:a9: 6b:87:41:41:51:fd:51:8f:66:dc:00:14:87:c9:c4:70:5f:76: 8c:08:cf:23:29:15:4e:fd:38:20:6d:50:bd:8d:16:21:c2:1d: b9:62:65:02:bd:b7:fb:22:31:cb:91:fc:b0:62:d5:2a:1f:39: 0d:61:81:11:01:ba:db:9c:89:33:0e:fd:ea:97:71:c3:47:fe: c1:66:d1:22:b7:bc:9d:17:d7:e3:20:96:08:c3:6c:35:c2:ce: c1:03:fe:3f:b7:c3:35:77:68:c4:9b:6c:2e:ac:97:2c:44:64: 1c:07:5f:31:69:fd:d6:e4:a8:aa:ba:bc:42:a9:56:39:7a:5a: 54:15:20:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA2QzcxMTAvBgNVBAUTKDIyOUVFNkNGQjc5NTg0QkEyMzEwQUNDRTQ1MjgzOEY3 QTQ4QTUwMUUwHhcNMjUwNDI1MDUxNDU4WhcNMjUwNTAyMDUxNDU4WjAYMRYwFAYD VQQDEw02ODBiMWE1Mi1iMDdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5bko3jvLPE/0HmOqD0pREAcFS0CRuH0h+sRkIT4uXDGE7858z5LvIXuAKO3m AOmH+mXvQNyW+5eDW5yoDM8tactNbBrHBJueWUfAqEe5zSre/kr8OrFI91waMHBW +1w9UF7OaARQ7uuruC6NzxoWdyiccgWMblz7YUuejicIXeytFFIBaHJt2W68TWyK CGx+P75rBqiB4MNdb6HUfOSsbDHew/WAvB/Eb0iINrVgQTGvc87lHaknwxjX2HyI QHwstjDaH62S0P+3o/8Pbc+lwGTsKfp/4ClEmO3Kq5qFxjNnVFUJnEF8+VT2urlr Nv7j7OjlQgpwyrtTCj7HOrreGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBrO0WZh D83gcv2malJi0mJcWyC+MB8GA1UdIwQYMBaAFCKe5s+3lYS6IxCszkUoOPekilAe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDZDNy82RjAzRDYzMDMy MEUxMUVGQjZFMERBNzZDNEY5QUUwMi9JcDdtejdlVmhMb2pFS3pPUlNnNDk2U0tV QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lwN216N2VWaExvakVLek9SU2c0OTZTS1VCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDZDNy82RjAzRDYzMDMyMEUxMUVGQjZFMERBNzZDNEY5QUUwMi9JcDdtejdlVmhM b2pFS3pPUlNnNDk2U0tVQjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCROr8p30ikLZYVaTdSSj3LQdLK1O3DvOpwCgcQHSU3HUvrs1HiSVST Tu0vFV1OtpKkulHgMnjaMt2rKpc8Sz/3dRPUlcBgf9LMFMVonzioO3dQTq6OejTN sl4Fmc5A7R9OUhK6F41BjUT6zZA6fMqESZYEkNSDvXidTWAfLalrh0FBUf1Rj2bc ABSHycRwX3aMCM8jKRVO/TggbVC9jRYhwh25YmUCvbf7IjHLkfywYtUqHzkNYYER AbrbnIkzDv3ql3HDR/7BZtEit7ydF9fjIJYIw2w1ws7BA/4/t8M1d2jEm2wurJcs RGQcB18xaf3W5KiqurxCqVY5elpUFSBR -----END CERTIFICATE-----Generated at Sat Apr 26 13:08:49 2025 by rpki-client