$ rpki-client -vvf rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft File: 1iOjklgIuuhMJxThaoeEBOBgSNE.mft (raw, json) Hash identifier: osCClQ43/ZOgiUi9eFr11z654CXZkuSYYHp/ty1EbrI= Subject key identifier: 8F:93:F3:4C:7C:7B:4E:BC:6C:4E:B0:4E:FC:54:02:34:9B:EE:D1:88 Authority key identifier: D6:23:A3:92:58:08:BA:E8:4C:27:14:E1:6A:87:84:04:E0:60:48:D1 Certificate issuer: /CN=A912A1E7/serialNumber=D623A3925808BAE84C2714E16A878404E06048D1 Certificate serial: 0518 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft Manifest number: 0511 Signing time: Fri 02 May 2025 23:44:14 +0000 Manifest this update: Fri 02 May 2025 23:44:13 +0000 Manifest next update: Fri 09 May 2025 23:44:13 +0000 Files and hashes: 1: 1iOjklgIuuhMJxThaoeEBOBgSNE.crl (hash: suefqBARGlQUNsnbR19HQz1XIG4m/VkHEClBGLT9pFk=) 2: C3BF0EF80A5F11EC8EDB0221C4F9AE02.roa (hash: lwH3/LI1XgonY5xgqpT7sakTv0eerZuuX+aDEUruDuA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.crl rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 09 May 2025 23:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1304 (0x518) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A1E7, serialNumber=D623A3925808BAE84C2714E16A878404E06048D1 Validity Not Before: May 2 23:44:13 2025 GMT Not After : May 9 23:44:13 2025 GMT Subject: CN=681558ce-8c2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:1a:d8:24:63:5d:43:91:1f:dd:49:b5:da:dd: 4c:1c:eb:38:8a:8b:49:30:9b:c5:a7:64:0d:cd:b3: 1b:ee:3a:ce:ed:9d:e4:d3:ed:09:0b:0f:10:4b:bb: a0:19:46:c7:f7:c3:05:fb:03:80:a3:8a:ab:f5:66: 96:ad:e7:27:9b:86:56:5b:1e:95:3d:a8:1a:14:13: b6:a5:64:ff:4b:c1:a4:45:33:9d:ed:ea:57:34:e0: c6:3d:46:91:29:c4:fe:65:2c:e3:6d:9a:6d:2e:b1: 6a:22:52:a3:ee:df:be:c0:11:ca:2f:5a:49:9a:88: 1f:69:f2:07:73:5e:33:6b:c6:09:09:5e:2d:e8:6f: 5f:7f:32:53:68:6d:de:8a:27:74:a4:ff:3e:e7:87: f4:ce:e1:81:4d:d8:52:4e:64:eb:bd:54:5c:96:dd: 1d:4a:2b:02:cc:44:2f:51:b7:fb:7d:06:65:60:f4: 1d:43:04:5a:ad:d9:15:6d:5a:ff:6c:be:7e:b5:9a: c9:35:24:55:07:22:2e:8f:a2:83:81:49:34:87:ce: 40:49:5e:50:ab:cf:62:48:ee:64:77:fe:fe:2e:ab: 56:42:59:58:9a:c3:99:92:2b:84:21:aa:ee:c6:f2: 9e:59:5b:03:90:28:54:8a:db:83:65:31:cc:30:a3: 78:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:93:F3:4C:7C:7B:4E:BC:6C:4E:B0:4E:FC:54:02:34:9B:EE:D1:88 X509v3 Authority Key Identifier: keyid:D6:23:A3:92:58:08:BA:E8:4C:27:14:E1:6A:87:84:04:E0:60:48:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:1d:81:34:f2:f7:4a:1f:61:2d:e2:e3:15:93:19:2d:69:bf: aa:17:e9:5d:34:b2:e2:c8:48:f7:22:60:40:fb:0c:0c:f0:b2: d5:a9:47:c1:99:e3:e8:47:69:24:d7:c2:1a:53:7c:4d:01:a8: 50:21:27:f7:0f:48:77:7a:b9:3f:9f:67:56:eb:25:48:ff:5f: 01:42:d2:af:f8:a1:1a:9a:1a:ff:f0:ec:cb:0b:9d:73:2d:6e: 4d:28:a6:80:e2:fe:38:69:6b:84:29:bc:b5:56:0a:ac:65:40: d3:01:a3:98:b5:78:6e:88:ba:b2:d9:90:f3:26:23:c6:0b:90: db:d1:dd:65:dc:e7:94:30:9d:81:41:ee:38:9e:2a:03:47:10: 7a:05:ca:74:7c:02:fe:bd:a2:54:8b:89:8e:7d:51:e1:9b:96: cb:0b:ed:a2:e5:75:5b:d8:71:d0:e6:cc:b5:f3:6c:e5:fa:74: 3d:ca:28:97:1f:91:52:9a:1b:60:b6:82:73:eb:40:c4:4f:a5: 43:00:1e:9c:41:a0:82:d0:f4:2e:90:a2:7c:bd:69:84:5b:a1: 17:f6:05:65:81:28:e5:6b:c8:7a:23:61:66:f6:16:a4:23:fe: 45:48:0e:0c:eb:29:a1:b1:2d:c3:67:76:75:c4:36:33:35:a0: 45:66:df:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkExRTcxMTAvBgNVBAUTKEQ2MjNBMzkyNTgwOEJBRTg0QzI3MTRFMTZBODc4NDA0 RTA2MDQ4RDEwHhcNMjUwNTAyMjM0NDEzWhcNMjUwNTA5MjM0NDEzWjAYMRYwFAYD VQQDEw02ODE1NThjZS04YzJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkxrYJGNdQ5Ef3Um12t1MHOs4iotJMJvFp2QNzbMb7jrO7Z3k0+0JCw8QS7ug GUbH98MF+wOAo4qr9WaWrecnm4ZWWx6VPagaFBO2pWT/S8GkRTOd7epXNODGPUaR KcT+ZSzjbZptLrFqIlKj7t++wBHKL1pJmogfafIHc14za8YJCV4t6G9ffzJTaG3e iid0pP8+54f0zuGBTdhSTmTrvVRclt0dSisCzEQvUbf7fQZlYPQdQwRardkVbVr/ bL5+tZrJNSRVByIuj6KDgUk0h85ASV5Qq89iSO5kd/7+LqtWQllYmsOZkiuEIaru xvKeWVsDkChUituDZTHMMKN4bwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI+T80x8 e068bE6wTvxUAjSb7tGIMB8GA1UdIwQYMBaAFNYjo5JYCLroTCcU4WqHhATgYEjR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTFFNy8xMEZBQkVEMjAy NTUxMUVDOEVEMjQwODVDNEY5QUUwMi8xaU9qa2xnSXV1aE1KeFRoYW9lRUJPQmdT TkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFpT2prbGdJdXVoTUp4VGhhb2VFQk9CZ1NORS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTFFNy8xMEZBQkVEMjAyNTUxMUVDOEVEMjQwODVDNEY5QUUwMi8xaU9qa2xnSXV1 aE1KeFRoYW9lRUJPQmdTTkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4HYE08vdKH2Et4uMVkxktab+qF+ldNLLiyEj3ImBA+wwM8LLVqUfB mePoR2kk18IaU3xNAahQISf3D0h3erk/n2dW6yVI/18BQtKv+KEamhr/8OzLC51z LW5NKKaA4v44aWuEKby1VgqsZUDTAaOYtXhuiLqy2ZDzJiPGC5Db0d1l3OeUMJ2B Qe44nioDRxB6Bcp0fAL+vaJUi4mOfVHhm5bLC+2i5XVb2HHQ5sy182zl+nQ9yiiX H5FSmhtgtoJz60DET6VDAB6cQaCC0PQukKJ8vWmEW6EX9gVlgSjla8h6I2Fm9hak I/5FSA4M6ymhsS3DZ3Z1xDYzNaBFZt8P -----END CERTIFICATE-----Generated at Sun May 4 02:42:52 2025 by rpki-client