$ rpki-client -vvf rpki.apnic.net/member_repository/A912905D/34BF9908AC3D11EDBD4D135EC4F9AE02/IEGlSCFv8BSJS3nMn9dzEbx8oxc.mft File: IEGlSCFv8BSJS3nMn9dzEbx8oxc.mft (raw, json) Hash identifier: u82huy4CZcfYwPWi8EmPOVLUeUZMXSdn6SVQ8wt/Vb0= Subject key identifier: 53:8C:E4:1C:B9:C6:10:1B:B0:45:D6:A8:FC:F5:13:2C:59:45:D2:B9 Authority key identifier: 20:41:A5:48:21:6F:F0:14:89:4B:79:CC:9F:D7:73:11:BC:7C:A3:17 Certificate issuer: /CN=A912905D/serialNumber=2041A548216FF014894B79CC9FD77311BC7CA317 Certificate serial: 01AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IEGlSCFv8BSJS3nMn9dzEbx8oxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912905D/34BF9908AC3D11EDBD4D135EC4F9AE02/IEGlSCFv8BSJS3nMn9dzEbx8oxc.mft Manifest number: 01A2 Signing time: Fri 25 Apr 2025 02:31:14 +0000 Manifest this update: Fri 25 Apr 2025 02:31:14 +0000 Manifest next update: Fri 02 May 2025 02:31:14 +0000 Files and hashes: 1: IEGlSCFv8BSJS3nMn9dzEbx8oxc.crl (hash: QYbo8pj7TyYXTx3AGWdApigKFhMDRN84XHwIyRTKjKo=) 2: CE9A4D70D6EA11ED8F0C322EC4F9AE02.roa (hash: 4CwEmTha4EyNRaDNvqVWV7nGS4hmjE7Q73FoaaZV148=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912905D/34BF9908AC3D11EDBD4D135EC4F9AE02/IEGlSCFv8BSJS3nMn9dzEbx8oxc.crl rsync://rpki.apnic.net/member_repository/A912905D/34BF9908AC3D11EDBD4D135EC4F9AE02/IEGlSCFv8BSJS3nMn9dzEbx8oxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IEGlSCFv8BSJS3nMn9dzEbx8oxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:31:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 426 (0x1aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912905D, serialNumber=2041A548216FF014894B79CC9FD77311BC7CA317 Validity Not Before: Apr 25 02:31:14 2025 GMT Not After : May 2 02:31:14 2025 GMT Subject: CN=680af3f2-813a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:6c:6d:1b:30:71:3e:25:d2:fa:57:4f:3e:33: 2c:b9:a4:d1:91:f2:23:ac:64:40:88:4d:5f:27:a7: 19:c7:82:5d:14:96:94:b2:4f:9c:34:92:7f:1e:a8: ac:d6:63:23:f0:0b:c2:17:35:1b:cc:50:ca:2d:f6: e7:82:7b:2f:e7:74:dd:23:e5:94:78:cc:c7:ad:8b: 8a:c2:56:05:4f:00:9c:8f:20:d5:b4:c1:99:4e:62: 61:b8:ae:a4:d5:0d:74:ce:ba:4f:c7:3f:4b:6b:a7: 36:d2:24:b5:e1:e2:24:19:6e:35:93:73:d6:24:03: 70:b2:a0:3b:0f:2d:46:b7:0d:da:97:71:f3:4c:b7: be:b7:9f:86:5e:96:51:61:06:c0:f8:98:69:3e:28: 26:de:bd:70:f3:94:26:89:2d:af:4b:55:66:03:ac: c4:20:3b:ba:26:c6:39:4b:9e:38:c9:f7:23:7a:b6: b0:a4:41:19:3c:79:74:4f:1a:af:66:a5:d3:bb:04: c8:07:76:27:35:d6:69:7c:57:33:5e:a3:d3:df:4f: 6f:18:44:56:57:b1:2e:24:6b:71:1d:d9:4a:ee:a2: 54:2c:db:c5:8b:c5:b4:0e:25:79:45:80:c2:ac:fa: 2b:e3:b9:9f:c1:a1:9f:a7:e3:f9:b8:fa:5e:a9:aa: 71:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:8C:E4:1C:B9:C6:10:1B:B0:45:D6:A8:FC:F5:13:2C:59:45:D2:B9 X509v3 Authority Key Identifier: keyid:20:41:A5:48:21:6F:F0:14:89:4B:79:CC:9F:D7:73:11:BC:7C:A3:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912905D/34BF9908AC3D11EDBD4D135EC4F9AE02/IEGlSCFv8BSJS3nMn9dzEbx8oxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IEGlSCFv8BSJS3nMn9dzEbx8oxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912905D/34BF9908AC3D11EDBD4D135EC4F9AE02/IEGlSCFv8BSJS3nMn9dzEbx8oxc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:c2:31:4f:94:42:6e:6d:c6:6f:bf:98:f8:8a:1a:ae:ed:34: 9f:9c:92:f9:82:28:ef:7b:5e:63:2a:73:d4:e5:ab:8b:08:30: ef:e1:34:ab:d6:f2:84:92:f4:f0:ee:9b:23:c6:d3:b1:12:9a: 3b:fa:82:2b:40:84:0e:71:97:36:2d:42:38:df:ec:19:19:c7: ed:04:a1:22:f1:d7:d9:d5:54:29:25:c5:e2:c2:11:b3:85:de: 91:b1:e2:bc:b5:65:3d:03:f1:10:d3:aa:7e:30:45:88:4f:2f: 23:ea:9d:af:1c:ab:0d:25:e0:ac:92:7d:8e:98:cb:cc:7c:78: 6f:93:09:3f:86:6f:e7:37:fb:04:d8:9a:33:e2:9d:aa:76:70: 93:d2:1f:56:7e:00:d5:b1:8a:bf:c9:b5:cc:26:4a:5f:74:15: 1b:e6:c8:d7:c5:fe:ab:63:af:11:fa:51:40:3c:1a:02:f3:cc: ad:71:af:f0:58:1d:6b:33:8a:27:8c:22:32:45:00:07:b9:43: 71:34:ee:9a:23:e0:c2:b4:2d:2d:e4:0e:ec:6e:8f:d6:3a:46: 18:51:1b:04:c6:9a:6f:75:cd:9c:1c:5a:35:21:95:55:39:16: b3:40:5e:5e:99:94:7f:3a:86:79:ff:12:27:44:9c:46:92:ec: 5b:d6:3e:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjkwNUQxMTAvBgNVBAUTKDIwNDFBNTQ4MjE2RkYwMTQ4OTRCNzlDQzlGRDc3MzEx QkM3Q0EzMTcwHhcNMjUwNDI1MDIzMTE0WhcNMjUwNTAyMDIzMTE0WjAYMRYwFAYD VQQDEw02ODBhZjNmMi04MTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy2xtGzBxPiXS+ldPPjMsuaTRkfIjrGRAiE1fJ6cZx4JdFJaUsk+cNJJ/Hqis 1mMj8AvCFzUbzFDKLfbngnsv53TdI+WUeMzHrYuKwlYFTwCcjyDVtMGZTmJhuK6k 1Q10zrpPxz9La6c20iS14eIkGW41k3PWJANwsqA7Dy1Gtw3al3HzTLe+t5+GXpZR YQbA+JhpPigm3r1w85QmiS2vS1VmA6zEIDu6JsY5S544yfcjerawpEEZPHl0Txqv ZqXTuwTIB3YnNdZpfFczXqPT309vGERWV7EuJGtxHdlK7qJULNvFi8W0DiV5RYDC rPor47mfwaGfp+P5uPpeqapxfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFOM5By5 xhAbsEXWqPz1EyxZRdK5MB8GA1UdIwQYMBaAFCBBpUghb/AUiUt5zJ/XcxG8fKMX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTA1RC8zNEJGOTkwOEFD M0QxMUVEQkQ0RDEzNUVDNEY5QUUwMi9JRUdsU0NGdjhCU0pTM25NbjlkekVieDhv eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lFR2xTQ0Z2OEJTSlMzbk1uOWR6RWJ4OG94Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OTA1RC8zNEJGOTkwOEFDM0QxMUVEQkQ0RDEzNUVDNEY5QUUwMi9JRUdsU0NGdjhC U0pTM25NbjlkekVieDhveGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJwjFPlEJubcZvv5j4ihqu7TSfnJL5gijve15jKnPU5auLCDDv4TSr 1vKEkvTw7psjxtOxEpo7+oIrQIQOcZc2LUI43+wZGcftBKEi8dfZ1VQpJcXiwhGz hd6RseK8tWU9A/EQ06p+MEWITy8j6p2vHKsNJeCskn2OmMvMfHhvkwk/hm/nN/sE 2Joz4p2qdnCT0h9WfgDVsYq/ybXMJkpfdBUb5sjXxf6rY68R+lFAPBoC88ytca/w WB1rM4onjCIyRQAHuUNxNO6aI+DCtC0t5A7sbo/WOkYYURsExppvdc2cHFo1IZVV ORazQF5emZR/OoZ5/xInRJxGkuxb1j4n -----END CERTIFICATE-----Generated at Sat Apr 26 04:21:54 2025 by rpki-client