$ rpki-client -vvf rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft File: IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft (raw, json) Hash identifier: zRsTxweBan5eGC12okv1nA6qLOCMMn0VoAUceRQ4O64= Subject key identifier: 4E:05:2A:9B:CD:07:65:CD:B9:0D:D4:9D:CD:04:F9:03:B3:AB:C7:51 Authority key identifier: 22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 Certificate issuer: /CN=A914C475/serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Certificate serial: 06E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft Manifest number: 0BEC Signing time: Thu 24 Apr 2025 18:37:25 +0000 Manifest this update: Thu 24 Apr 2025 18:37:25 +0000 Manifest next update: Thu 01 May 2025 18:37:25 +0000 Files and hashes: 1: IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl (hash: zeDPBdKkNrSTXbsJ8mIxKSoFGi13mE3PRsaavF25M8g=) 2: 01283BC2532011EBAE6D1F37C4F9AE02.roa (hash: +Gukm6enyIbdbaf1JuwEUsgqXGQfDTqeuMKRTtycATA=) 3: D6F76118231C11EF84144357C4F9AE02.roa (hash: es734osl5liZ5XtweVos6tWec0UeUjh4JQH+2AuNXUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:37:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1766 (0x6e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C475, serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Validity Not Before: Apr 24 18:37:25 2025 GMT Not After : May 1 18:37:25 2025 GMT Subject: CN=680a84e5-7519 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:01:c6:92:c5:58:95:cb:25:9f:30:80:66:52: 35:a9:e9:65:ed:54:0e:95:99:55:dc:6a:b0:f7:be: 84:b9:74:8f:b5:f1:03:a8:eb:bb:e2:37:ae:18:5f: 8d:2c:87:36:9b:8a:cd:28:ed:44:4d:75:63:a6:c7: 8f:44:46:b4:c3:ba:d7:03:de:8c:07:9c:76:2f:8a: 3b:f0:ff:72:50:44:b4:2d:ad:d5:8b:4a:15:a5:cb: 59:96:d8:9e:07:d5:ab:8d:df:79:ec:c3:89:09:58: 49:af:1d:c9:ec:d4:15:a6:6e:89:66:d8:f4:87:35: 88:3f:aa:77:e6:7c:51:d4:4d:86:60:9d:20:cc:f0: 8f:80:80:af:e6:a0:83:6a:bb:dc:b6:d4:b5:4d:11: 63:a3:50:c5:cd:a8:29:ff:34:b1:f6:47:57:cd:fd: 25:5b:e0:9b:45:5b:26:42:a9:bd:37:1f:8c:2c:c1: 2b:c7:a4:4e:04:2d:17:ec:eb:da:9f:ac:fd:db:ba: 61:81:75:00:fb:fa:f7:6e:69:8e:ff:f4:3d:fd:c9: 47:10:b2:74:90:1c:3c:4e:c6:4f:47:59:d3:42:31: 4b:95:e9:7a:2d:02:1d:5f:ff:89:45:bd:5d:10:77: 6a:60:57:69:67:ff:f2:17:08:b3:86:e5:77:ec:5e: 6c:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:05:2A:9B:CD:07:65:CD:B9:0D:D4:9D:CD:04:F9:03:B3:AB:C7:51 X509v3 Authority Key Identifier: keyid:22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:3e:1f:ce:b9:dc:cc:d5:64:7d:47:53:18:17:d5:88:03:38: b9:ef:16:68:c1:b0:5d:4c:1c:12:c0:57:99:0f:bc:33:56:0a: 69:2f:15:d6:a1:80:29:33:26:b0:70:ac:9e:de:5f:4e:57:8c: 6b:5e:35:02:a2:f6:08:a5:7f:c7:14:8a:0b:0c:b2:df:a6:fe: 52:56:b3:24:df:98:ba:74:ad:c8:13:dd:ba:95:c2:76:2f:ff: 79:bc:41:2d:2b:da:ca:70:94:00:f1:23:9f:8c:9d:d5:67:aa: d0:d1:84:8e:45:40:41:f8:0a:66:69:ad:21:ad:35:7b:f2:75: c9:8f:bc:87:c7:be:76:7a:04:7d:d5:11:55:14:ba:86:8b:9a: 29:00:16:29:92:67:b3:18:06:1e:db:98:1e:81:72:00:87:a8: 56:db:ca:d6:dc:a9:28:c8:f6:09:76:63:8c:f9:c4:b0:12:be: 44:21:52:a7:35:b1:4a:b4:a8:be:bc:b4:c9:96:10:9a:e6:38: d4:4a:83:37:fe:7a:49:2e:57:ab:42:2f:04:bf:e4:ab:f5:e5: e5:ec:af:b7:7b:74:38:7b:7e:43:8c:40:72:09:73:25:cb:c7: e5:55:c3:21:c7:66:41:13:49:36:b1:9b:b2:ea:bf:fd:25:74: 56:48:e7:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBuYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0NzUxMTAvBgNVBAUTKDIyODUwN0VGRjgxQUEyOEU0OTFFMzI2RkJEMURDM0Iz QzkwODcyQjgwHhcNMjUwNDI0MTgzNzI1WhcNMjUwNTAxMTgzNzI1WjAYMRYwFAYD VQQDEw02ODBhODRlNS03NTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8wHGksVYlcslnzCAZlI1qell7VQOlZlV3Gqw976EuXSPtfEDqOu74jeuGF+N LIc2m4rNKO1ETXVjpsePREa0w7rXA96MB5x2L4o78P9yUES0La3Vi0oVpctZltie B9Wrjd957MOJCVhJrx3J7NQVpm6JZtj0hzWIP6p35nxR1E2GYJ0gzPCPgICv5qCD arvcttS1TRFjo1DFzagp/zSx9kdXzf0lW+CbRVsmQqm9Nx+MLMErx6ROBC0X7Ova n6z927phgXUA+/r3bmmO//Q9/clHELJ0kBw8TsZPR1nTQjFLlel6LQIdX/+JRb1d EHdqYFdpZ//yFwizhuV37F5sFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE4FKpvN B2XNuQ3Unc0E+QOzq8dRMB8GA1UdIwQYMBaAFCKFB+/4GqKOSR4yb70dw7PJCHK4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzQ3NS9FMDIyQTA1ODBF OTExMUVBQjBFODc0NDFDNEY5QUUwMi9Jb1VIN19nYW9vNUpIakp2dlIzRHM4a0lj cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lvVUg3X2dhb281SkhqSnZ2UjNEczhrSWNyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzQ3NS9FMDIyQTA1ODBFOTExMUVBQjBFODc0NDFDNEY5QUUwMi9Jb1VIN19nYW9v NUpIakp2dlIzRHM4a0ljcmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjPh/OudzM1WR9R1MYF9WIAzi57xZowbBdTBwSwFeZD7wzVgppLxXW oYApMyawcKye3l9OV4xrXjUCovYIpX/HFIoLDLLfpv5SVrMk35i6dK3IE926lcJ2 L/95vEEtK9rKcJQA8SOfjJ3VZ6rQ0YSORUBB+Apmaa0hrTV78nXJj7yHx752egR9 1RFVFLqGi5opABYpkmezGAYe25gegXIAh6hW28rW3KkoyPYJdmOM+cSwEr5EIVKn NbFKtKi+vLTJlhCa5jjUSoM3/npJLlerQi8Ev+Sr9eXl7K+3e3Q4e35DjEByCXMl y8flVcMhx2ZBE0k2sZuy6r/9JXRWSOeE -----END CERTIFICATE-----Generated at Sat Apr 26 05:06:49 2025 by rpki-client