$ rpki-client -vvf rpki.apnic.net/member_repository/A91159B7/A4EC53F6E2B011E99ABB8151C4F9AE02/IfICJ1WdsfhjhJq2QyM8PpNXdqY.mft File: IfICJ1WdsfhjhJq2QyM8PpNXdqY.mft (raw, json) Hash identifier: /q/8/04IjQVgGzkdncZfACI+B5yvz3V1AL0ZkmOmbp8= Subject key identifier: 67:E5:C3:E1:35:CD:73:E4:B3:CB:0E:60:0F:EE:E7:67:65:FA:7F:36 Authority key identifier: 21:F2:02:27:55:9D:B1:F8:63:84:9A:B6:43:23:3C:3E:93:57:76:A6 Certificate issuer: /CN=A91159B7/serialNumber=21F20227559DB1F863849AB643233C3E935776A6 Certificate serial: 0CF4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IfICJ1WdsfhjhJq2QyM8PpNXdqY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91159B7/A4EC53F6E2B011E99ABB8151C4F9AE02/IfICJ1WdsfhjhJq2QyM8PpNXdqY.mft Manifest number: 0CE8 Signing time: Thu 24 Apr 2025 18:04:53 +0000 Manifest this update: Thu 24 Apr 2025 18:04:52 +0000 Manifest next update: Thu 01 May 2025 18:04:52 +0000 Files and hashes: 1: IfICJ1WdsfhjhJq2QyM8PpNXdqY.crl (hash: LhXrEuwJpiG9bg+fEK1idLosnMfH0Dh7GibL9Z6W/VE=) 2: 7FC0801ED4EF11EC84AABC0CC4F9AE02.roa (hash: JfyJc8hrLZucoRHk+LPv3mbsPGDOx4vwQyrUYoddmy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91159B7/A4EC53F6E2B011E99ABB8151C4F9AE02/IfICJ1WdsfhjhJq2QyM8PpNXdqY.crl rsync://rpki.apnic.net/member_repository/A91159B7/A4EC53F6E2B011E99ABB8151C4F9AE02/IfICJ1WdsfhjhJq2QyM8PpNXdqY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IfICJ1WdsfhjhJq2QyM8PpNXdqY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:04:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3316 (0xcf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91159B7, serialNumber=21F20227559DB1F863849AB643233C3E935776A6 Validity Not Before: Apr 24 18:04:52 2025 GMT Not After : May 1 18:04:52 2025 GMT Subject: CN=680a7d44-9071 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:c4:63:93:32:55:1b:a9:e1:af:ea:3c:51:22: 8a:69:5e:8c:d7:f5:98:6f:c4:c7:c7:b1:e0:e9:70: b5:c4:e8:5a:8c:65:32:dd:d8:fd:0c:49:c2:2a:bc: ae:e5:f7:3c:d2:7d:65:1a:a8:12:17:98:08:6a:85: 03:0f:8c:58:2a:f8:f5:1d:d8:f2:69:32:06:e2:55: 87:b1:28:e2:3c:3a:33:e5:a2:68:f6:f8:0e:81:43: 72:07:fb:0e:10:a9:0e:3b:15:96:16:c4:c8:36:cc: a3:b4:4b:2d:6c:45:45:06:fe:cf:05:14:31:e2:2d: d7:76:ef:fc:47:bf:66:71:90:a4:1b:97:91:af:36: 50:89:80:7b:7e:d6:17:0f:ee:55:31:09:4c:32:c1: af:dd:7a:5d:cc:a5:a7:33:65:e7:7c:24:b1:5e:aa: 0b:62:7e:1d:76:e3:bd:e2:cb:41:26:25:04:a1:ff: 35:be:d7:c2:ff:5c:b8:c7:2a:18:9e:d1:90:f0:eb: f9:72:d0:56:a6:c9:34:79:ca:a5:96:50:b3:be:db: 93:9a:8a:0f:30:61:44:63:f7:c6:8b:56:7d:90:52: 68:f8:4a:d4:59:ef:92:53:d9:2d:12:91:a2:fc:93: dc:c1:30:85:de:70:55:5a:92:c1:4d:7a:6a:ae:eb: b1:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:E5:C3:E1:35:CD:73:E4:B3:CB:0E:60:0F:EE:E7:67:65:FA:7F:36 X509v3 Authority Key Identifier: keyid:21:F2:02:27:55:9D:B1:F8:63:84:9A:B6:43:23:3C:3E:93:57:76:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91159B7/A4EC53F6E2B011E99ABB8151C4F9AE02/IfICJ1WdsfhjhJq2QyM8PpNXdqY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IfICJ1WdsfhjhJq2QyM8PpNXdqY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91159B7/A4EC53F6E2B011E99ABB8151C4F9AE02/IfICJ1WdsfhjhJq2QyM8PpNXdqY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:96:fd:1c:a4:16:72:c0:82:20:6d:f5:7c:8e:63:74:f7:e0: 8f:57:13:95:8c:dd:23:7e:06:dd:5a:c1:4d:bb:05:a5:39:7b: 8b:2c:94:00:92:a6:a7:d6:e0:0a:41:fb:33:e7:3e:ba:4b:00: e7:ba:0d:78:8e:05:08:fb:0b:72:0a:01:bd:14:80:9d:de:93: e8:7a:ec:86:63:6f:89:c1:03:9c:29:3d:dc:1b:de:bd:8c:6f: 15:63:72:a2:c8:06:21:27:a6:5f:18:ff:8e:67:d3:0b:fa:ae: 45:83:d5:36:0b:d9:dd:fb:fe:92:1d:f7:79:12:4b:7e:8a:68: 2c:f2:42:a4:da:79:dc:4d:ef:e4:ee:77:5e:25:e1:33:29:59: a0:a9:e2:bf:c2:dd:cc:42:c2:99:b1:79:35:c5:0b:2f:8a:91: aa:f4:05:1e:4b:b9:72:51:77:3d:9d:9b:1a:d5:66:b3:2c:c0: a0:a2:17:41:ef:a4:30:8e:d5:a7:66:ef:91:ca:67:08:67:57: 10:45:f1:23:44:c5:4a:61:de:34:8a:2d:cf:fc:23:81:f8:89: f4:a2:04:69:10:64:62:d3:86:8d:58:dd:18:d9:0e:e8:b6:93: 14:51:57:35:08:e6:55:5c:bc:3f:5b:d6:a5:de:e9:b7:4b:d2: 36:45:9b:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTU5QjcxMTAvBgNVBAUTKDIxRjIwMjI3NTU5REIxRjg2Mzg0OUFCNjQzMjMzQzNF OTM1Nzc2QTYwHhcNMjUwNDI0MTgwNDUyWhcNMjUwNTAxMTgwNDUyWjAYMRYwFAYD VQQDEw02ODBhN2Q0NC05MDcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk8RjkzJVG6nhr+o8USKKaV6M1/WYb8THx7Hg6XC1xOhajGUy3dj9DEnCKryu 5fc80n1lGqgSF5gIaoUDD4xYKvj1HdjyaTIG4lWHsSjiPDoz5aJo9vgOgUNyB/sO EKkOOxWWFsTINsyjtEstbEVFBv7PBRQx4i3Xdu/8R79mcZCkG5eRrzZQiYB7ftYX D+5VMQlMMsGv3XpdzKWnM2XnfCSxXqoLYn4dduO94stBJiUEof81vtfC/1y4xyoY ntGQ8Ov5ctBWpsk0ecqlllCzvtuTmooPMGFEY/fGi1Z9kFJo+ErUWe+SU9ktEpGi /JPcwTCF3nBVWpLBTXpqruuxHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGflw+E1 zXPks8sOYA/u52dl+n82MB8GA1UdIwQYMBaAFCHyAidVnbH4Y4SatkMjPD6TV3am MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNTlCNy9BNEVDNTNGNkUy QjAxMUU5OUFCQjgxNTFDNEY5QUUwMi9JZklDSjFXZHNmaGpoSnEyUXlNOFBwTlhk cVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lmSUNKMVdkc2ZoamhKcTJReU04UHBOWGRxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NTlCNy9BNEVDNTNGNkUyQjAxMUU5OUFCQjgxNTFDNEY5QUUwMi9JZklDSjFXZHNm aGpoSnEyUXlNOFBwTlhkcVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvlv0cpBZywIIgbfV8jmN09+CPVxOVjN0jfgbdWsFNuwWlOXuLLJQA kqan1uAKQfsz5z66SwDnug14jgUI+wtyCgG9FICd3pPoeuyGY2+JwQOcKT3cG969 jG8VY3KiyAYhJ6ZfGP+OZ9ML+q5Fg9U2C9nd+/6SHfd5Ekt+imgs8kKk2nncTe/k 7ndeJeEzKVmgqeK/wt3MQsKZsXk1xQsvipGq9AUeS7lyUXc9nZsa1WazLMCgohdB 76QwjtWnZu+RymcIZ1cQRfEjRMVKYd40ii3P/COB+In0ogRpEGRi04aNWN0Y2Q7o tpMUUVc1COZVXLw/W9al3um3S9I2RZsL -----END CERTIFICATE-----Generated at Sat Apr 26 04:31:39 2025 by rpki-client