$ rpki-client -vvf rpki.apnic.net/member_repository/A913E03C/B6E0F4AA1D9A11E28921298808B02CD2/0Iw24m8k-51RTztAqON6mgS1gCU.mft File: 0Iw24m8k-51RTztAqON6mgS1gCU.mft (raw, json) Hash identifier: KrC/DjgP5DxUORjKuCcinsZcc/3NTIvhasPCs4Ay/Ps= Subject key identifier: 48:39:60:A4:C7:7B:1E:11:08:53:17:6A:F4:A7:17:B4:0C:0F:1D:3D Authority key identifier: D0:8C:36:E2:6F:24:FB:9D:51:4F:3B:40:A8:E3:7A:9A:04:B5:80:25 Certificate issuer: /CN=A913E03C/serialNumber=D08C36E26F24FB9D514F3B40A8E37A9A04B58025 Certificate serial: 3472 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Iw24m8k-51RTztAqON6mgS1gCU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E03C/B6E0F4AA1D9A11E28921298808B02CD2/0Iw24m8k-51RTztAqON6mgS1gCU.mft Manifest number: 3471 Signing time: Thu 24 Apr 2025 14:56:16 +0000 Manifest this update: Thu 24 Apr 2025 14:56:15 +0000 Manifest next update: Thu 01 May 2025 14:56:15 +0000 Files and hashes: 1: 0Iw24m8k-51RTztAqON6mgS1gCU.crl (hash: XZVvBmuSp/qPAQwsxB7gBrpUdr0XLJ5UPtOsJwhIHj4=) 2: 1D790596F25D11EF8C5D7036C4F9AE02.roa (hash: 0c5mooek/SI4tHJlanxjMJ+LPip9Hy2VF66plGlTaFA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E03C/B6E0F4AA1D9A11E28921298808B02CD2/0Iw24m8k-51RTztAqON6mgS1gCU.crl rsync://rpki.apnic.net/member_repository/A913E03C/B6E0F4AA1D9A11E28921298808B02CD2/0Iw24m8k-51RTztAqON6mgS1gCU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Iw24m8k-51RTztAqON6mgS1gCU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:56:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13426 (0x3472) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E03C, serialNumber=D08C36E26F24FB9D514F3B40A8E37A9A04B58025 Validity Not Before: Apr 24 14:56:15 2025 GMT Not After : May 1 14:56:15 2025 GMT Subject: CN=680a510f-cf1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:0d:e7:06:11:ba:19:53:b1:79:fd:fd:52:69: e0:4b:e9:e1:0f:ea:52:62:23:05:54:06:3e:8d:d3: 28:8f:e6:2f:01:f8:a2:6e:c0:44:d4:89:bc:8f:3f: b7:66:18:13:4b:e5:ce:5b:cb:2f:99:c6:3a:21:ed: 3c:d8:6a:99:f4:63:e7:5a:9e:6e:ec:ba:99:cd:51: 5e:19:a9:b1:ce:e8:cd:4a:bd:af:62:ff:05:74:b4: 6f:0d:d7:31:b9:67:b0:8f:14:99:9b:57:72:ff:d7: 76:8e:26:61:55:f0:96:0b:20:d8:22:06:ba:4d:0a: 57:a8:c2:43:d5:ef:18:63:6c:35:67:49:6b:b1:06: 51:c9:d0:9f:35:d6:63:e6:12:c7:6e:96:a6:5a:60: da:05:b7:70:7f:0e:1f:d8:87:c5:4e:ac:4d:30:be: 5f:bf:7e:45:ec:b8:41:ee:6c:e4:67:9f:80:d0:34: 65:0b:4a:a7:66:e9:f0:74:e2:6d:ab:71:6f:90:cb: 61:13:9c:3b:85:62:3d:32:76:b6:fb:31:17:71:b1: 5d:52:82:63:a0:16:3d:01:55:fb:d9:4d:03:62:71: 12:0a:6f:2c:16:d6:0b:76:a6:09:bf:91:a3:78:dd: 1a:7b:58:4e:a9:ca:00:93:15:79:b8:ba:e2:57:68: 6e:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:39:60:A4:C7:7B:1E:11:08:53:17:6A:F4:A7:17:B4:0C:0F:1D:3D X509v3 Authority Key Identifier: keyid:D0:8C:36:E2:6F:24:FB:9D:51:4F:3B:40:A8:E3:7A:9A:04:B5:80:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E03C/B6E0F4AA1D9A11E28921298808B02CD2/0Iw24m8k-51RTztAqON6mgS1gCU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Iw24m8k-51RTztAqON6mgS1gCU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E03C/B6E0F4AA1D9A11E28921298808B02CD2/0Iw24m8k-51RTztAqON6mgS1gCU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:29:36:2b:c6:5f:a4:c3:15:fa:d8:db:c7:67:d2:c3:07:fb: d3:f2:92:aa:50:74:68:46:3b:b0:bf:64:34:40:69:e7:d4:56: 59:3a:3a:ee:f1:d6:be:ad:0b:dd:5f:4e:39:d7:ea:6b:32:39: 67:82:4e:9e:f3:9f:27:d0:62:ed:c8:41:e9:6f:17:a6:fa:8d: 40:8c:cc:43:a3:59:80:43:35:d4:f9:8f:29:ea:5a:14:ed:1c: 54:94:cb:13:f2:3a:b0:6d:6c:f1:7d:22:91:e2:17:24:84:bc: e2:f1:4d:61:d8:91:ae:30:27:6e:0a:41:f7:09:66:9c:ac:d8: 60:6b:42:6f:9b:9e:93:41:db:d5:f0:58:55:85:ec:f4:0b:04: 6d:03:db:25:41:7c:e4:bb:ca:df:6f:10:06:c5:27:8b:a5:d7: e6:60:48:22:f6:f4:c4:29:8e:5e:8a:5f:59:5a:22:d2:51:27: c4:59:5c:9b:4a:ce:b4:b7:a9:91:39:c6:f6:77:44:ea:fc:0c: f2:e1:c8:37:45:2a:2d:cb:69:2c:6c:36:5f:30:c6:3a:77:6f: 52:02:57:6a:8e:da:99:d7:f6:bc:27:06:e6:13:c5:07:61:07: 69:29:12:b6:0f:5f:50:1b:cb:69:bf:3c:d1:e7:30:f5:ab:6d: 6e:8a:0e:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UwM0MxMTAvBgNVBAUTKEQwOEMzNkUyNkYyNEZCOUQ1MTRGM0I0MEE4RTM3QTlB MDRCNTgwMjUwHhcNMjUwNDI0MTQ1NjE1WhcNMjUwNTAxMTQ1NjE1WjAYMRYwFAYD VQQDEw02ODBhNTEwZi1jZjFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsw3nBhG6GVOxef39UmngS+nhD+pSYiMFVAY+jdMoj+YvAfiibsBE1Im8jz+3 ZhgTS+XOW8svmcY6Ie082GqZ9GPnWp5u7LqZzVFeGamxzujNSr2vYv8FdLRvDdcx uWewjxSZm1dy/9d2jiZhVfCWCyDYIga6TQpXqMJD1e8YY2w1Z0lrsQZRydCfNdZj 5hLHbpamWmDaBbdwfw4f2IfFTqxNML5fv35F7LhB7mzkZ5+A0DRlC0qnZunwdOJt q3FvkMthE5w7hWI9Mna2+zEXcbFdUoJjoBY9AVX72U0DYnESCm8sFtYLdqYJv5Gj eN0ae1hOqcoAkxV5uLriV2huwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEg5YKTH ex4RCFMXavSnF7QMDx09MB8GA1UdIwQYMBaAFNCMNuJvJPudUU87QKjjepoEtYAl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTAzQy9CNkUwRjRBQTFE OUExMUUyODkyMTI5ODgwOEIwMkNEMi8wSXcyNG04ay01MVJUenRBcU9ONm1nUzFn Q1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBJdzI0bThrLTUxUlR6dEFxT042bWdTMWdDVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTAzQy9CNkUwRjRBQTFEOUExMUUyODkyMTI5ODgwOEIwMkNEMi8wSXcyNG04ay01 MVJUenRBcU9ONm1nUzFnQ1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+KTYrxl+kwxX62NvHZ9LDB/vT8pKqUHRoRjuwv2Q0QGnn1FZZOjru 8da+rQvdX0451+prMjlngk6e858n0GLtyEHpbxem+o1AjMxDo1mAQzXU+Y8p6loU 7RxUlMsT8jqwbWzxfSKR4hckhLzi8U1h2JGuMCduCkH3CWacrNhga0Jvm56TQdvV 8FhVhez0CwRtA9slQXzku8rfbxAGxSeLpdfmYEgi9vTEKY5eil9ZWiLSUSfEWVyb Ss60t6mROcb2d0Tq/Azy4cg3RSoty2ksbDZfMMY6d29SAldqjtqZ1/a8JwbmE8UH YQdpKRK2D19QG8tpvzzR5zD1q21uig70 -----END CERTIFICATE-----Generated at Sat Apr 26 04:36:46 2025 by rpki-client