$ rpki-client -vvf rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft File: i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft (raw, json) Hash identifier: gFXX4JpbqK0ahtI+BUDPRNBq+t9DgvE8eusu/RjgWRA= Subject key identifier: 2B:AA:3A:75:0E:30:5E:6B:21:4B:DA:D3:D5:A1:A2:41:73:8B:49:BD Authority key identifier: 8B:A9:4E:24:4C:87:03:E2:E2:12:45:6B:98:71:B3:C8:2D:50:70:9C Certificate issuer: /CN=A9116E68/serialNumber=8BA94E244C8703E2E212456B9871B3C82D50709C Certificate serial: F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6lOJEyHA-LiEkVrmHGzyC1QcJw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft Manifest number: F6 Signing time: Fri 25 Apr 2025 04:17:13 +0000 Manifest this update: Fri 25 Apr 2025 04:17:12 +0000 Manifest next update: Fri 02 May 2025 04:17:12 +0000 Files and hashes: 1: i6lOJEyHA-LiEkVrmHGzyC1QcJw.crl (hash: QXPEjP5kN+Q9bevg70ACJrrckBSKTSjUjIIKyzJG4WE=) 2: 2601A296AE1011EE92B7161BC4F9AE02.roa (hash: ruTuAI8tCOCbFuPP+2u83Ib06u3MS/nsClPmyXw7xNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.crl rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6lOJEyHA-LiEkVrmHGzyC1QcJw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:17:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 249 (0xf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116E68, serialNumber=8BA94E244C8703E2E212456B9871B3C82D50709C Validity Not Before: Apr 25 04:17:12 2025 GMT Not After : May 2 04:17:12 2025 GMT Subject: CN=680b0cc9-fa5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:dd:b0:c0:da:94:99:a3:4d:9d:82:1a:4a:e1: 4b:a5:9d:83:4a:0b:29:01:29:ff:22:e9:69:f8:ca: fe:5d:c2:6f:59:14:88:5b:08:93:ca:ca:55:95:ac: 34:75:e4:ba:b2:00:5c:a5:14:09:7b:b0:7f:da:8f: 05:9d:68:66:cf:00:4f:8d:32:b9:9e:3d:3f:52:51: 32:55:1c:3d:03:08:f8:d5:ac:80:5b:b8:93:4f:89: e2:a6:8d:2a:4c:39:61:aa:4a:c1:0b:78:14:5c:73: 8f:42:d8:24:30:45:99:37:73:60:de:d1:6d:68:5b: c5:a2:2d:8a:81:3f:f8:2e:63:47:1d:99:11:8b:68: d6:a3:1c:56:ad:e3:f3:22:a2:3f:28:42:03:fd:bb: d2:40:32:24:12:5d:7c:25:4d:b3:ec:46:89:2b:3f: 35:be:1c:18:57:c8:c4:a8:e8:39:ec:bc:17:74:61: 75:7f:c0:e5:23:aa:fb:49:40:53:ee:fd:ff:f3:1f: 4b:b8:aa:7c:ed:30:88:02:82:9c:e9:1a:73:2d:3f: 09:3e:7f:dd:ac:67:5e:5b:d1:76:0f:db:6c:f2:64: bf:84:7c:a3:46:ac:d8:ce:16:ca:80:3d:d3:ce:44: 26:06:92:b3:ae:8e:d8:f0:be:02:17:00:55:86:86: fa:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:AA:3A:75:0E:30:5E:6B:21:4B:DA:D3:D5:A1:A2:41:73:8B:49:BD X509v3 Authority Key Identifier: keyid:8B:A9:4E:24:4C:87:03:E2:E2:12:45:6B:98:71:B3:C8:2D:50:70:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6lOJEyHA-LiEkVrmHGzyC1QcJw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:47:f0:4c:89:4e:9c:3d:72:02:da:9a:5a:43:bd:e6:3b:84: 4b:c9:49:9e:b3:b9:82:4e:b9:30:0c:51:19:19:2f:56:f6:2c: 6b:e6:a4:42:42:2b:13:c5:b0:1a:c6:57:98:9c:7b:7b:6d:51: 35:d7:3f:33:39:5f:dd:2f:7f:7d:77:76:a4:5d:9b:67:82:a8: 82:6f:5e:d4:f9:77:3a:9c:46:26:7a:38:87:f1:67:c6:b1:30: 2c:81:76:71:6d:cc:2c:a1:8f:f5:30:01:67:2a:00:58:44:a9: 2c:34:58:0c:06:f2:4e:59:21:95:bc:de:6f:27:08:ff:02:29: 52:23:93:49:3f:6f:10:e4:bf:56:d4:42:38:d6:18:50:f7:ce: fd:ca:40:d3:de:ac:5d:21:13:bf:46:96:17:34:65:93:7a:94: 60:4a:27:11:35:5b:9a:95:a7:a4:37:cc:51:f1:3f:c3:97:98: 00:1e:bb:17:c1:45:bf:a9:4b:46:68:35:96:93:4b:35:b0:8c: c4:56:de:05:38:18:05:42:99:75:fb:d0:12:e5:f9:30:fc:f1: 89:27:b6:15:57:57:36:7e:03:c8:c7:07:42:17:e8:76:df:4a: f2:45:ea:32:ef:b2:5d:15:e7:31:8f:70:19:76:19:9a:31:4d: 5e:f6:5e:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTZFNjgxMTAvBgNVBAUTKDhCQTk0RTI0NEM4NzAzRTJFMjEyNDU2Qjk4NzFCM0M4 MkQ1MDcwOUMwHhcNMjUwNDI1MDQxNzEyWhcNMjUwNTAyMDQxNzEyWjAYMRYwFAYD VQQDEw02ODBiMGNjOS1mYTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApd2wwNqUmaNNnYIaSuFLpZ2DSgspASn/Iulp+Mr+XcJvWRSIWwiTyspVlaw0 deS6sgBcpRQJe7B/2o8FnWhmzwBPjTK5nj0/UlEyVRw9Awj41ayAW7iTT4nipo0q TDlhqkrBC3gUXHOPQtgkMEWZN3Ng3tFtaFvFoi2KgT/4LmNHHZkRi2jWoxxWrePz IqI/KEID/bvSQDIkEl18JU2z7EaJKz81vhwYV8jEqOg57LwXdGF1f8DlI6r7SUBT 7v3/8x9LuKp87TCIAoKc6RpzLT8JPn/drGdeW9F2D9ts8mS/hHyjRqzYzhbKgD3T zkQmBpKzro7Y8L4CFwBVhob61wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCuqOnUO MF5rIUva09WhokFzi0m9MB8GA1UdIwQYMBaAFIupTiRMhwPi4hJFa5hxs8gtUHCc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNkU2OC9EMkJBQUM0QUFF MEYxMUVFQTdBQzk0MUFDNEY5QUUwMi9pNmxPSkV5SEEtTGlFa1ZybUhHenlDMVFj SncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2k2bE9KRXlIQS1MaUVrVnJtSEd6eUMxUWNKdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NkU2OC9EMkJBQUM0QUFFMEYxMUVFQTdBQzk0MUFDNEY5QUUwMi9pNmxPSkV5SEEt TGlFa1ZybUhHenlDMVFjSncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFR/BMiU6cPXIC2ppaQ73mO4RLyUmes7mCTrkwDFEZGS9W9ixr5qRC QisTxbAaxleYnHt7bVE11z8zOV/dL399d3akXZtngqiCb17U+Xc6nEYmejiH8WfG sTAsgXZxbcwsoY/1MAFnKgBYRKksNFgMBvJOWSGVvN5vJwj/AilSI5NJP28Q5L9W 1EI41hhQ9879ykDT3qxdIRO/RpYXNGWTepRgSicRNVualaekN8xR8T/Dl5gAHrsX wUW/qUtGaDWWk0s1sIzEVt4FOBgFQpl1+9AS5fkw/PGJJ7YVV1c2fgPIxwdCF+h2 30ryReoy77JdFecxj3AZdhmaMU1e9l4G -----END CERTIFICATE-----Generated at Sat Apr 26 13:09:43 2025 by rpki-client