$ rpki-client -vvf rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft File: iR7Yuqwsc70TrcqhoWqvANIkqHc.mft (raw, json) Hash identifier: jgUaduy8/qEVSFFoGjqDxQAYusZqUtEJKqsfY5CdX7o= Subject key identifier: EB:73:89:F9:00:47:B5:46:E7:99:4A:F8:51:57:5B:60:D7:1C:9A:98 Authority key identifier: 89:1E:D8:BA:AC:2C:73:BD:13:AD:CA:A1:A1:6A:AF:00:D2:24:A8:77 Certificate issuer: /CN=A91394E7/serialNumber=891ED8BAAC2C73BD13ADCAA1A16AAF00D224A877 Certificate serial: 56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft Manifest number: 53 Signing time: Fri 25 Apr 2025 06:17:47 +0000 Manifest this update: Fri 25 Apr 2025 06:17:47 +0000 Manifest next update: Fri 02 May 2025 06:17:47 +0000 Files and hashes: 1: iR7Yuqwsc70TrcqhoWqvANIkqHc.crl (hash: CQY93W/tb8lWSBjX09thGKgP8yYkCKiVSPHCYh5g148=) 2: F7078BC4B73511EF8537DE81C4F9AE02.roa (hash: CcfcyuDgdAXzM0C7pRrcqcGTmtCQX9kXzhcOgKQTSNM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.crl rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 86 (0x56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91394E7, serialNumber=891ED8BAAC2C73BD13ADCAA1A16AAF00D224A877 Validity Not Before: Apr 25 06:17:47 2025 GMT Not After : May 2 06:17:47 2025 GMT Subject: CN=680b290b-fcdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:00:8b:c4:29:f0:6f:9c:d6:78:13:ae:86:7a: af:50:44:99:91:65:6f:4b:51:32:e0:3f:80:10:53: 32:25:6e:02:8b:09:f7:2f:d6:ff:a8:16:4e:53:ea: 6a:e0:8e:9f:d4:9a:dc:7e:ee:08:69:ae:e4:97:0e: 4d:7f:70:3a:b9:23:c8:6c:77:6f:46:c1:4a:28:5f: c0:8a:0a:25:c4:39:88:ec:a3:cf:3b:03:df:b6:b8: dd:8e:c5:45:db:f7:75:c4:cc:7f:14:42:01:b6:11: 7c:dd:e3:eb:3c:90:ed:ab:bf:86:20:a5:84:30:4f: 9d:e9:5e:8f:b5:13:b5:5a:3a:38:cd:f3:24:7e:a2: c5:79:4f:5a:05:45:54:b1:bb:8f:6c:3f:9d:8e:6e: ff:67:5e:b1:e1:ee:2a:47:24:8e:36:e2:8a:7e:4d: a0:14:ab:33:99:9d:62:b6:73:b9:03:22:93:5d:e2: e7:21:f1:87:0c:9e:16:25:4b:43:6f:a3:d5:40:84: 46:60:5b:ee:b5:52:e2:b4:a5:c3:79:2d:91:f9:a2: e2:67:cd:da:0f:00:99:f4:c2:29:9b:a5:ef:f5:e2: 10:53:0a:f5:66:b3:14:c8:c4:fa:85:f4:12:db:9a: 15:5a:4b:4a:5c:93:bc:e7:1f:d9:0a:79:e9:6a:ab: 5b:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:73:89:F9:00:47:B5:46:E7:99:4A:F8:51:57:5B:60:D7:1C:9A:98 X509v3 Authority Key Identifier: keyid:89:1E:D8:BA:AC:2C:73:BD:13:AD:CA:A1:A1:6A:AF:00:D2:24:A8:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e3:60:c7:a2:8c:54:50:d3:a7:8d:e4:bc:91:96:e9:46:43:65: 04:aa:8b:49:80:13:7c:d2:68:38:2b:5c:de:6a:f8:47:f5:3e: 94:8f:b9:ba:78:bd:bc:7b:7d:66:ce:b9:73:29:9f:9b:f1:cc: 58:2b:2d:7b:0b:f5:cb:c8:4f:18:fd:c0:d7:cb:47:9f:5d:84: 85:0b:9b:ba:ba:3c:3f:8f:9a:42:8b:5b:37:9a:aa:dc:b2:4d: 24:54:0c:94:5e:51:b4:b2:b8:75:f7:35:09:9e:b8:8e:05:92: b6:c7:9f:4a:94:48:1e:00:6d:01:ff:79:dc:ff:92:5d:4a:2a: 93:f6:dd:82:75:06:cd:d1:8e:c2:70:04:94:d2:d8:b2:16:e9: e7:de:a8:c2:97:ff:75:eb:1d:75:a1:c9:05:ec:d7:27:7d:2f: a7:40:30:93:60:36:b6:70:d8:ec:ac:44:2d:d3:e9:21:15:c4: 9a:ce:1b:96:d9:d5:9f:aa:d6:6c:66:65:30:02:0c:8b:cf:7f: 67:ff:b5:9b:c2:ee:d0:68:a7:f8:9b:6a:12:46:b2:4f:12:26: 22:ba:99:8f:f7:c8:93:85:52:0e:ef:08:4e:46:21:bf:2f:4f: 42:1d:e3:57:95:bc:9c:e3:bc:af:13:9d:0a:96:ba:ee:bd:2e: a4:70:b8:71 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz OTRFNzExMC8GA1UEBRMoODkxRUQ4QkFBQzJDNzNCRDEzQURDQUExQTE2QUFGMDBE MjI0QTg3NzAeFw0yNTA0MjUwNjE3NDdaFw0yNTA1MDIwNjE3NDdaMBgxFjAUBgNV BAMTDTY4MGIyOTBiLWZjZGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvAIvEKfBvnNZ4E66Geq9QRJmRZW9LUTLgP4AQUzIlbgKLCfcv1v+oFk5T6mrg jp/Umtx+7ghpruSXDk1/cDq5I8hsd29GwUooX8CKCiXEOYjso887A9+2uN2OxUXb 93XEzH8UQgG2EXzd4+s8kO2rv4YgpYQwT53pXo+1E7VaOjjN8yR+osV5T1oFRVSx u49sP52Obv9nXrHh7ipHJI424op+TaAUqzOZnWK2c7kDIpNd4uch8YcMnhYlS0Nv o9VAhEZgW+61UuK0pcN5LZH5ouJnzdoPAJn0wimbpe/14hBTCvVmsxTIxPqF9BLb mhVaS0pck7znH9kKeelqq1sLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU63OJ+QBH tUbnmUr4UVdbYNccmpgwHwYDVR0jBBgwFoAUiR7Yuqwsc70TrcqhoWqvANIkqHcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM5NEU3L0Y0Q0ZEMURBQUM3 MzExRUY4N0ZDNTU0Q0M0RjlBRTAyL2lSN1l1cXdzYzcwVHJjcWhvV3F2QU5Ja3FI Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVI3WXVxd3NjNzBUcmNxaG9XcXZBTklrcUhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM5 NEU3L0Y0Q0ZEMURBQUM3MzExRUY4N0ZDNTU0Q0M0RjlBRTAyL2lSN1l1cXdzYzcw VHJjcWhvV3F2QU5Ja3FIYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAONgx6KMVFDTp43kvJGW6UZDZQSqi0mAE3zSaDgrXN5q+Ef1PpSPubp4 vbx7fWbOuXMpn5vxzFgrLXsL9cvITxj9wNfLR59dhIULm7q6PD+PmkKLWzeaqtyy TSRUDJReUbSyuHX3NQmeuI4FkrbHn0qUSB4AbQH/edz/kl1KKpP23YJ1Bs3RjsJw BJTS2LIW6efeqMKX/3XrHXWhyQXs1yd9L6dAMJNgNrZw2OysRC3T6SEVxJrOG5bZ 1Z+q1mxmZTACDIvPf2f/tZvC7tBop/ibahJGsk8SJiK6mY/3yJOFUg7vCE5GIb8v T0Id41eVvJzjvK8TnQqWuu69LqRwuHE= -----END CERTIFICATE-----Generated at Sat Apr 26 04:22:52 2025 by rpki-client