$ rpki-client -vvf rpki.apnic.net/member_repository/A9143035/18C62912529B11EC9A0B0A7DC4F9AE02/iavBOYslsdbOj_e_sysS6fCWc_k.mft File: iavBOYslsdbOj_e_sysS6fCWc_k.mft (raw, json) Hash identifier: ERhMROg2OX8lHN6Fqz3nwTVwdQczhC8aDVpxf8OpS6k= Subject key identifier: 94:00:12:97:83:2D:8E:11:DE:BE:2B:EF:C2:8E:99:2A:B8:CC:1F:42 Authority key identifier: 89:AB:C1:39:8B:25:B1:D6:CE:8F:F7:BF:B3:2B:12:E9:F0:96:73:F9 Certificate issuer: /CN=A9143035/serialNumber=89ABC1398B25B1D6CE8FF7BFB32B12E9F09673F9 Certificate serial: 044B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iavBOYslsdbOj_e_sysS6fCWc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143035/18C62912529B11EC9A0B0A7DC4F9AE02/iavBOYslsdbOj_e_sysS6fCWc_k.mft Manifest number: 0446 Signing time: Fri 25 Apr 2025 00:01:21 +0000 Manifest this update: Fri 25 Apr 2025 00:01:20 +0000 Manifest next update: Fri 02 May 2025 00:01:20 +0000 Files and hashes: 1: iavBOYslsdbOj_e_sysS6fCWc_k.crl (hash: 6USDVqwNMP3U8AXE0i+w2rz+t5Nys41ef3DFR+kSLjU=) 2: 6B47EC68529E11EC9C7C2081C4F9AE02.roa (hash: RyLNM9Y2xKP2/pPGOLqXFeZG9/xveuZYuPTjdQJUT2M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143035/18C62912529B11EC9A0B0A7DC4F9AE02/iavBOYslsdbOj_e_sysS6fCWc_k.crl rsync://rpki.apnic.net/member_repository/A9143035/18C62912529B11EC9A0B0A7DC4F9AE02/iavBOYslsdbOj_e_sysS6fCWc_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iavBOYslsdbOj_e_sysS6fCWc_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1099 (0x44b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143035, serialNumber=89ABC1398B25B1D6CE8FF7BFB32B12E9F09673F9 Validity Not Before: Apr 25 00:01:20 2025 GMT Not After : May 2 00:01:20 2025 GMT Subject: CN=680ad0d1-a359 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:cc:4c:81:54:4e:8b:e0:12:5f:a0:5b:9d:27: af:18:a7:10:c7:7e:b8:b5:c3:72:af:e2:6b:1a:18: fd:71:76:45:8c:73:67:45:0d:83:9a:99:3b:f1:b3: 72:18:d0:11:83:06:d3:67:62:47:ac:17:ab:59:a1: 58:91:f4:30:a5:83:f6:fd:84:79:cb:08:7b:c2:da: 06:7a:9d:ab:bf:05:f6:68:c1:98:27:d6:8e:4f:4b: 3f:53:d2:98:d8:1d:0a:e5:d4:e2:28:b3:b4:e9:ff: 8d:02:91:42:33:1d:69:f2:97:af:30:f7:83:a4:df: a0:8a:7c:a0:4d:be:11:31:d5:93:29:59:3c:97:a2: a4:f1:fc:34:4f:9c:de:fe:ba:32:29:d6:c6:7e:c0: d4:a6:ce:a9:37:15:ef:71:54:bc:5e:6e:db:64:62: 11:34:72:ca:40:67:b0:c6:f0:11:2f:ba:47:a7:31: c5:45:a6:d2:5e:19:a0:78:86:53:1f:73:95:6d:d4: 92:64:5b:34:3e:2a:be:d8:79:d2:ff:57:02:af:30: f7:d7:1f:30:2d:02:d2:ff:a8:ee:17:d9:2d:27:c7: 45:2a:0b:6d:9d:67:3b:df:46:78:e0:7a:63:b8:8f: 73:e2:a1:89:cb:1e:60:8b:58:79:0a:4f:ff:f1:b2: 90:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:00:12:97:83:2D:8E:11:DE:BE:2B:EF:C2:8E:99:2A:B8:CC:1F:42 X509v3 Authority Key Identifier: keyid:89:AB:C1:39:8B:25:B1:D6:CE:8F:F7:BF:B3:2B:12:E9:F0:96:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143035/18C62912529B11EC9A0B0A7DC4F9AE02/iavBOYslsdbOj_e_sysS6fCWc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iavBOYslsdbOj_e_sysS6fCWc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143035/18C62912529B11EC9A0B0A7DC4F9AE02/iavBOYslsdbOj_e_sysS6fCWc_k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:ee:53:16:c6:cf:25:97:34:a4:47:1a:b8:75:1b:7b:02:88: a7:16:ba:34:ad:44:aa:c9:57:f2:25:14:e4:a1:f3:c1:29:8f: 76:a1:c8:89:03:38:e6:d9:d9:15:84:70:35:c4:b0:ac:1f:6a: db:a5:20:51:41:d4:96:00:6e:2a:53:8c:c0:2f:77:62:dd:2e: 88:66:67:03:d2:48:5e:04:7b:ca:3c:01:4f:ec:3f:85:8d:69: 5e:51:77:d2:b2:34:cb:b2:47:ee:a2:58:1c:40:d1:6b:56:99: 82:00:39:ae:90:d7:89:e3:1b:f6:20:91:ae:e1:d3:79:bb:b5: 5f:15:19:ec:f5:2c:8d:25:ee:d5:31:5c:e8:b2:98:5e:89:2f: ab:ae:d5:81:8a:2e:b3:4a:4a:70:77:25:15:a7:8c:4a:2a:8e: 5f:46:15:5a:9a:3b:26:c2:62:9d:b1:f4:f7:b6:0b:b8:79:f5: db:1a:de:36:85:6e:e0:a0:b0:ef:d2:50:03:8e:38:b1:9b:f1: 3c:df:54:7e:bc:9a:4d:87:33:7f:aa:6e:12:b3:97:6f:fc:95: 53:9b:95:3a:34:5f:f9:59:1f:b7:79:cf:35:6e:d1:54:e0:80: a5:2e:0a:82:59:5c:68:2b:45:cc:9a:35:b8:85:97:1f:d0:bf: 05:4b:20:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDMwMzUxMTAvBgNVBAUTKDg5QUJDMTM5OEIyNUIxRDZDRThGRjdCRkIzMkIxMkU5 RjA5NjczRjkwHhcNMjUwNDI1MDAwMTIwWhcNMjUwNTAyMDAwMTIwWjAYMRYwFAYD VQQDEw02ODBhZDBkMS1hMzU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6cxMgVROi+ASX6BbnSevGKcQx364tcNyr+JrGhj9cXZFjHNnRQ2Dmpk78bNy GNARgwbTZ2JHrBerWaFYkfQwpYP2/YR5ywh7wtoGep2rvwX2aMGYJ9aOT0s/U9KY 2B0K5dTiKLO06f+NApFCMx1p8pevMPeDpN+ginygTb4RMdWTKVk8l6Kk8fw0T5ze /royKdbGfsDUps6pNxXvcVS8Xm7bZGIRNHLKQGewxvARL7pHpzHFRabSXhmgeIZT H3OVbdSSZFs0Piq+2HnS/1cCrzD31x8wLQLS/6juF9ktJ8dFKgttnWc730Z44Hpj uI9z4qGJyx5gi1h5Ck//8bKQGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJQAEpeD LY4R3r4r78KOmSq4zB9CMB8GA1UdIwQYMBaAFImrwTmLJbHWzo/3v7MrEunwlnP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzAzNS8xOEM2MjkxMjUy OUIxMUVDOUEwQjBBN0RDNEY5QUUwMi9pYXZCT1lzbHNkYk9qX2Vfc3lzUzZmQ1dj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lhdkJPWXNsc2RiT2pfZV9zeXNTNmZDV2Nfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MzAzNS8xOEM2MjkxMjUyOUIxMUVDOUEwQjBBN0RDNEY5QUUwMi9pYXZCT1lzbHNk Yk9qX2Vfc3lzUzZmQ1djX2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAx7lMWxs8llzSkRxq4dRt7AoinFro0rUSqyVfyJRTkofPBKY92ociJ Azjm2dkVhHA1xLCsH2rbpSBRQdSWAG4qU4zAL3di3S6IZmcD0kheBHvKPAFP7D+F jWleUXfSsjTLskfuolgcQNFrVpmCADmukNeJ4xv2IJGu4dN5u7VfFRns9SyNJe7V MVzospheiS+rrtWBii6zSkpwdyUVp4xKKo5fRhVamjsmwmKdsfT3tgu4efXbGt42 hW7goLDv0lADjjixm/E831R+vJpNhzN/qm4Ss5dv/JVTm5U6NF/5WR+3ec81btFU 4IClLgqCWVxoK0XMmjW4hZcf0L8FSyAG -----END CERTIFICATE-----Generated at Sat Apr 26 05:07:03 2025 by rpki-client