$ rpki-client -vvf rpki.apnic.net/member_repository/A91183D4/F6BE869614AC11ED83A76E59C4F9AE02/ijORleLOKXW194maPQLOYu-Rvzk.mft File: ijORleLOKXW194maPQLOYu-Rvzk.mft (raw, json) Hash identifier: vHbtt2VEgdMFgECpKkciXuMrTLkSr6gJfBEly2TxY68= Subject key identifier: 96:95:DB:30:4B:57:0D:42:30:60:3C:2D:B0:F0:6A:02:0F:3D:4A:D8 Authority key identifier: 8A:33:91:95:E2:CE:29:75:B5:F7:89:9A:3D:02:CE:62:EF:91:BF:39 Certificate issuer: /CN=A91183D4/serialNumber=8A339195E2CE2975B5F7899A3D02CE62EF91BF39 Certificate serial: 0258 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ijORleLOKXW194maPQLOYu-Rvzk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91183D4/F6BE869614AC11ED83A76E59C4F9AE02/ijORleLOKXW194maPQLOYu-Rvzk.mft Manifest number: 0254 Signing time: Fri 25 Apr 2025 01:35:41 +0000 Manifest this update: Fri 25 Apr 2025 01:35:40 +0000 Manifest next update: Fri 02 May 2025 01:35:40 +0000 Files and hashes: 1: ijORleLOKXW194maPQLOYu-Rvzk.crl (hash: 9wT7A5C84PywFuFAWDka1kIUe01NF6uF8VfFHDt6n6k=) 2: A1FA613614AF11ED8CE9335EC4F9AE02.roa (hash: FA1bepThm+QVvw1q0u8zzYFpqsnzknERutF0jYbh+Nk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91183D4/F6BE869614AC11ED83A76E59C4F9AE02/ijORleLOKXW194maPQLOYu-Rvzk.crl rsync://rpki.apnic.net/member_repository/A91183D4/F6BE869614AC11ED83A76E59C4F9AE02/ijORleLOKXW194maPQLOYu-Rvzk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ijORleLOKXW194maPQLOYu-Rvzk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:35:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 600 (0x258) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91183D4, serialNumber=8A339195E2CE2975B5F7899A3D02CE62EF91BF39 Validity Not Before: Apr 25 01:35:40 2025 GMT Not After : May 2 01:35:40 2025 GMT Subject: CN=680ae6ec-a6f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:66:33:78:55:7c:5c:82:71:b2:3b:e3:96:42: e6:02:4e:55:f7:5f:8c:07:86:09:71:9e:23:d6:c3: 85:ef:11:da:fe:1c:dd:ec:cf:92:38:a3:44:d5:31: 5b:8c:cb:c4:60:df:97:1a:a0:b2:c5:92:99:f0:6e: bf:40:a3:75:bf:85:46:8b:e6:7a:fe:9a:3b:c6:db: b9:43:73:d6:27:39:77:bf:c5:40:20:fa:e6:87:e5: 38:4c:52:61:fa:6b:ff:d5:53:cf:7a:13:93:c1:2a: cc:0b:62:64:e4:f8:99:93:8c:06:1b:0d:a2:7b:66: 03:27:4b:be:68:28:a1:26:e4:7d:30:66:37:04:db: 11:43:af:bb:a4:d8:23:a5:bd:1e:6b:d9:c2:65:7f: 4f:00:69:ef:63:77:20:2c:31:16:34:f9:dc:0d:4b: 33:4f:a1:d5:25:6f:f9:51:b6:82:cc:1f:4e:ba:aa: 9d:a4:2b:72:f9:18:98:55:58:98:37:d7:b6:d7:5a: f2:eb:1d:e5:7a:ff:4f:37:13:cb:78:f0:47:96:72: f1:dc:96:04:b5:ba:ab:f2:39:d3:e2:66:ce:da:1c: ce:41:94:cb:52:2b:f7:4e:7f:f7:af:38:e7:20:e1: bc:dc:c2:61:07:b9:9f:c6:bf:45:8e:15:e4:58:c5: a4:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:95:DB:30:4B:57:0D:42:30:60:3C:2D:B0:F0:6A:02:0F:3D:4A:D8 X509v3 Authority Key Identifier: keyid:8A:33:91:95:E2:CE:29:75:B5:F7:89:9A:3D:02:CE:62:EF:91:BF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91183D4/F6BE869614AC11ED83A76E59C4F9AE02/ijORleLOKXW194maPQLOYu-Rvzk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ijORleLOKXW194maPQLOYu-Rvzk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91183D4/F6BE869614AC11ED83A76E59C4F9AE02/ijORleLOKXW194maPQLOYu-Rvzk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:36:00:62:05:c3:e1:f2:68:30:16:38:ad:6b:5c:01:e2:df: 9d:54:32:e9:be:56:48:5c:e7:d8:50:4e:1e:ce:cd:13:ce:b1: ec:3e:33:69:d4:a9:82:a3:a8:67:ab:39:43:03:fc:dd:fe:57: 0b:68:f0:32:9d:60:b0:1c:b0:16:c8:71:72:e8:86:4b:5a:12: c9:af:56:92:3e:d0:6f:a9:e1:a4:54:02:55:03:87:e7:d9:dc: bb:41:86:a1:e6:6a:77:d0:94:fb:77:56:af:63:57:87:c2:1c: 04:fb:4e:91:f1:72:63:e9:4f:6b:9c:2b:b6:07:2a:26:13:6e: 4b:d1:5a:dc:c6:1a:30:95:44:19:7f:87:77:8f:68:b0:0a:0b: d7:b5:5f:de:ec:70:e7:d4:d3:82:bb:ff:e2:07:9d:e1:0e:7c: 42:d8:7d:60:d4:c0:59:c8:ed:db:18:31:ab:81:e9:09:30:3f: d0:18:28:7b:16:07:3d:6a:92:60:eb:87:97:b8:4b:22:36:a0: da:c3:98:0b:0b:84:3e:b1:5d:5f:d9:d5:dc:08:11:a2:02:8a: c4:3e:75:f2:6b:c8:07:c8:c8:14:77:b7:c8:16:1e:a3:a1:f9: 8e:7a:b8:7d:b7:76:9e:cb:c4:8c:55:86:75:b9:0f:86:3a:c3: 2e:cc:0f:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgzRDQxMTAvBgNVBAUTKDhBMzM5MTk1RTJDRTI5NzVCNUY3ODk5QTNEMDJDRTYy RUY5MUJGMzkwHhcNMjUwNDI1MDEzNTQwWhcNMjUwNTAyMDEzNTQwWjAYMRYwFAYD VQQDEw02ODBhZTZlYy1hNmY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz2YzeFV8XIJxsjvjlkLmAk5V91+MB4YJcZ4j1sOF7xHa/hzd7M+SOKNE1TFb jMvEYN+XGqCyxZKZ8G6/QKN1v4VGi+Z6/po7xtu5Q3PWJzl3v8VAIPrmh+U4TFJh +mv/1VPPehOTwSrMC2Jk5PiZk4wGGw2ie2YDJ0u+aCihJuR9MGY3BNsRQ6+7pNgj pb0ea9nCZX9PAGnvY3cgLDEWNPncDUszT6HVJW/5UbaCzB9OuqqdpCty+RiYVViY N9e211ry6x3lev9PNxPLePBHlnLx3JYEtbqr8jnT4mbO2hzOQZTLUiv3Tn/3rzjn IOG83MJhB7mfxr9FjhXkWMWkTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJaV2zBL Vw1CMGA8LbDwagIPPUrYMB8GA1UdIwQYMBaAFIozkZXizil1tfeJmj0CzmLvkb85 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODNENC9GNkJFODY5NjE0 QUMxMUVEODNBNzZFNTlDNEY5QUUwMi9pak9SbGVMT0tYVzE5NG1hUFFMT1l1LVJ2 emsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lqT1JsZUxPS1hXMTk0bWFQUUxPWXUtUnZ6ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODNENC9GNkJFODY5NjE0QUMxMUVEODNBNzZFNTlDNEY5QUUwMi9pak9SbGVMT0tY VzE5NG1hUFFMT1l1LVJ2emsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCNgBiBcPh8mgwFjita1wB4t+dVDLpvlZIXOfYUE4ezs0TzrHsPjNp 1KmCo6hnqzlDA/zd/lcLaPAynWCwHLAWyHFy6IZLWhLJr1aSPtBvqeGkVAJVA4fn 2dy7QYah5mp30JT7d1avY1eHwhwE+06R8XJj6U9rnCu2ByomE25L0VrcxhowlUQZ f4d3j2iwCgvXtV/e7HDn1NOCu//iB53hDnxC2H1g1MBZyO3bGDGrgekJMD/QGCh7 Fgc9apJg64eXuEsiNqDaw5gLC4Q+sV1f2dXcCBGiAorEPnXya8gHyMgUd7fIFh6j ofmOerh9t3aey8SMVYZ1uQ+GOsMuzA/+ -----END CERTIFICATE-----Generated at Sat Apr 26 16:50:24 2025 by rpki-client