$ rpki-client -vvf rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.mft File: iUNmPc-DCfonSkZS-oOr0m2EJk8.mft (raw, json) Hash identifier: KELVkiw6/XQLkQKqAarUJ3Wq4oaOtfu/xzhZGSdIiIs= Subject key identifier: 9F:2F:88:6C:5A:80:AB:AB:7D:91:45:82:38:28:36:FC:7E:A8:C3:3B Authority key identifier: 89:43:66:3D:CF:83:09:FA:27:4A:46:52:FA:83:AB:D2:6D:84:26:4F Certificate issuer: /CN=A913097A/serialNumber=8943663DCF8309FA274A4652FA83ABD26D84264F Certificate serial: 0484 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUNmPc-DCfonSkZS-oOr0m2EJk8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.mft Manifest number: 0480 Signing time: Thu 24 Apr 2025 23:50:19 +0000 Manifest this update: Thu 24 Apr 2025 23:50:18 +0000 Manifest next update: Thu 01 May 2025 23:50:18 +0000 Files and hashes: 1: iUNmPc-DCfonSkZS-oOr0m2EJk8.crl (hash: u4rd8SZzJllHTHoNrdEfb4DqiiZCPGJ+QIdf2LdXnW4=) 2: F9343F063B0911EC82AE0828C4F9AE02.roa (hash: pIsS/aAz3NlTfiRznLCHJWwJfZnRVJbtBleuPSnoEO4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.crl rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUNmPc-DCfonSkZS-oOr0m2EJk8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:50:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1156 (0x484) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913097A, serialNumber=8943663DCF8309FA274A4652FA83ABD26D84264F Validity Not Before: Apr 24 23:50:18 2025 GMT Not After : May 1 23:50:18 2025 GMT Subject: CN=680ace3b-946d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:98:18:ff:13:79:ee:06:51:1d:0f:6c:72:98: 92:f4:42:31:5a:aa:e7:4e:4b:36:a9:bd:5f:44:6e: a0:9c:80:59:03:d8:7f:c8:ac:eb:d9:ab:1e:14:45: 3d:ef:93:46:33:80:5c:cd:c0:cf:1a:61:e5:2d:ec: 85:cb:c6:81:3b:9a:40:5f:d2:a1:16:2b:60:b1:f2: 11:f7:17:b2:52:ba:29:04:ad:4c:de:41:4b:ed:d4: b9:ac:d0:a4:3d:ec:32:d1:10:3e:9a:95:ce:e1:97: 99:fe:c4:37:63:cd:ce:63:09:f0:04:f6:b7:5d:e7: 74:cc:76:f6:ad:af:5b:27:08:e4:f4:90:0f:9a:26: e2:01:c7:84:84:94:c5:4d:4c:bd:53:5c:34:0d:3c: 7a:ef:d2:9f:04:b3:56:1e:cf:a4:fe:72:cb:66:72: e6:d3:42:08:03:12:66:bb:a2:b1:8e:24:c6:b0:28: 49:e2:38:e8:79:35:68:d0:73:5a:f7:c8:eb:d3:96: ff:e6:3e:d0:96:95:fb:97:12:f3:10:01:ff:50:fa: 65:a7:7d:b0:0d:40:42:13:10:20:af:9b:e9:0a:8f: 33:cb:d4:5e:09:b1:65:f8:54:f3:c0:c9:22:19:01: 64:20:c1:76:8f:60:f4:fd:7c:15:2e:10:8b:1d:b8: 78:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:2F:88:6C:5A:80:AB:AB:7D:91:45:82:38:28:36:FC:7E:A8:C3:3B X509v3 Authority Key Identifier: keyid:89:43:66:3D:CF:83:09:FA:27:4A:46:52:FA:83:AB:D2:6D:84:26:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUNmPc-DCfonSkZS-oOr0m2EJk8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:13:d2:63:3e:db:9d:a8:f0:d7:b2:39:48:95:0c:a9:bf:b4: 4b:16:1d:0e:46:e5:4d:55:f2:69:12:b9:93:68:83:cd:ad:b1: 1f:37:0b:4e:6e:64:4c:5a:95:4d:23:08:32:ef:13:a3:e4:73: eb:c4:ba:53:52:36:a8:e1:4e:48:e8:91:16:54:99:c1:ad:de: 1f:db:66:db:b7:fa:45:47:b5:80:b9:a4:15:b7:e5:b9:a9:b1: 65:2e:a3:13:f6:66:1a:7f:b0:87:96:d4:da:7b:e6:cd:13:c9: fa:81:c6:c1:10:e5:54:4b:8a:61:b4:c7:0c:d2:28:0c:27:d5: 60:9c:f5:8e:a6:0a:42:78:95:96:05:78:f7:cb:9d:a6:b8:34: 7f:b5:ef:10:9d:c6:be:46:5b:c9:07:85:f5:27:38:b1:93:a7: b2:09:20:51:f8:e4:18:57:37:2b:98:17:fc:b7:d6:b2:b7:d8: db:eb:af:0d:b2:f8:2f:21:90:4a:f0:60:3c:b7:6e:e8:5b:3f: 53:23:78:6b:4d:8d:3c:f1:fc:f3:94:f6:d5:2c:5f:ac:ac:51: 78:8c:71:60:f3:99:b5:9d:8a:f0:9d:ea:4e:98:9b:60:68:c5: cd:dd:d5:10:61:d9:53:1c:07:5e:38:94:b9:0e:fd:46:cb:5e: d6:11:e5:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA5N0ExMTAvBgNVBAUTKDg5NDM2NjNEQ0Y4MzA5RkEyNzRBNDY1MkZBODNBQkQy NkQ4NDI2NEYwHhcNMjUwNDI0MjM1MDE4WhcNMjUwNTAxMjM1MDE4WjAYMRYwFAYD VQQDEw02ODBhY2UzYi05NDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt5gY/xN57gZRHQ9scpiS9EIxWqrnTks2qb1fRG6gnIBZA9h/yKzr2aseFEU9 75NGM4BczcDPGmHlLeyFy8aBO5pAX9KhFitgsfIR9xeyUropBK1M3kFL7dS5rNCk Pewy0RA+mpXO4ZeZ/sQ3Y83OYwnwBPa3Xed0zHb2ra9bJwjk9JAPmibiAceEhJTF TUy9U1w0DTx679KfBLNWHs+k/nLLZnLm00IIAxJmu6KxjiTGsChJ4jjoeTVo0HNa 98jr05b/5j7QlpX7lxLzEAH/UPplp32wDUBCExAgr5vpCo8zy9ReCbFl+FTzwMki GQFkIMF2j2D0/XwVLhCLHbh4YwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ8viGxa gKurfZFFgjgoNvx+qMM7MB8GA1UdIwQYMBaAFIlDZj3Pgwn6J0pGUvqDq9JthCZP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDk3QS82MTY3QTZEMjNC MDgxMUVDOTQ4M0M1MjdDNEY5QUUwMi9pVU5tUGMtRENmb25Ta1pTLW9PcjBtMkVK azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVTm1QYy1EQ2ZvblNrWlMtb09yMG0yRUprOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDk3QS82MTY3QTZEMjNCMDgxMUVDOTQ4M0M1MjdDNEY5QUUwMi9pVU5tUGMtRENm b25Ta1pTLW9PcjBtMkVKazgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFE9JjPtudqPDXsjlIlQypv7RLFh0ORuVNVfJpErmTaIPNrbEfNwtO bmRMWpVNIwgy7xOj5HPrxLpTUjao4U5I6JEWVJnBrd4f22bbt/pFR7WAuaQVt+W5 qbFlLqMT9mYaf7CHltTae+bNE8n6gcbBEOVUS4phtMcM0igMJ9VgnPWOpgpCeJWW BXj3y52muDR/te8Qnca+RlvJB4X1Jzixk6eyCSBR+OQYVzcrmBf8t9ayt9jb668N svgvIZBK8GA8t27oWz9TI3hrTY088fzzlPbVLF+srFF4jHFg85m1nYrwnepOmJtg aMXN3dUQYdlTHAdeOJS5Dv1Gy17WEeUH -----END CERTIFICATE-----Generated at Sat Apr 26 04:28:15 2025 by rpki-client