$ rpki-client -vvf rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft File: IpO9TF5PmillNYywGN8-Tu5N8c8.mft (raw, json) Hash identifier: ExjajIEjHQyc/Ka1l4zdNjgPod/NsrgaCbqH9D4sm/U= Subject key identifier: C9:0F:3A:86:F4:24:FF:73:29:DC:21:04:E4:DE:05:32:83:8D:DB:EA Authority key identifier: 22:93:BD:4C:5E:4F:9A:29:65:35:8C:B0:18:DF:3E:4E:EE:4D:F1:CF Certificate issuer: /CN=A915177C/serialNumber=2293BD4C5E4F9A2965358CB018DF3E4EEE4DF1CF Certificate serial: 2FD6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft Manifest number: 2FB2 Signing time: Thu 24 Apr 2025 15:28:53 +0000 Manifest this update: Thu 24 Apr 2025 15:28:53 +0000 Manifest next update: Thu 01 May 2025 15:28:53 +0000 Files and hashes: 1: IpO9TF5PmillNYywGN8-Tu5N8c8.crl (hash: Jz1/exBSU/AdNdxshho/7BTvwkZWoBXF1sma0yqnoKM=) 2: 149AB4BE7CE911EEB9A02D83C4F9AE02.roa (hash: E2NZXpYraOPVv0cpnUWbQpkzMNGT1LYi52LyYrBbmwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.crl rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:28:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12246 (0x2fd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915177C, serialNumber=2293BD4C5E4F9A2965358CB018DF3E4EEE4DF1CF Validity Not Before: Apr 24 15:28:53 2025 GMT Not After : May 1 15:28:53 2025 GMT Subject: CN=680a58b5-0ed6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:23:9d:d5:67:5b:ba:59:8d:7f:0a:15:22:23: 1e:af:79:65:83:c3:83:2a:e2:c3:0d:db:45:ff:3e: c7:72:7b:b5:16:92:84:da:4b:48:8d:ae:b5:9f:74: 68:11:da:19:1f:d5:22:6f:08:b1:25:17:77:2c:3d: b8:1e:4c:3e:23:de:91:69:ba:eb:61:fb:34:9c:c5: 83:3b:f4:26:89:55:10:1d:0a:1c:16:76:40:f6:c0: 6a:48:5b:97:76:a7:1d:e5:03:25:c7:23:3b:df:0f: fc:da:90:f5:3d:3d:f9:97:8c:96:f6:56:41:49:fd: 9e:fe:29:99:ef:4e:04:fb:00:03:6c:ff:7c:1c:29: 9f:7d:c9:22:19:63:a3:57:8e:de:3f:57:9b:0a:08: a6:ba:de:f7:25:c8:2f:63:54:e4:f0:4d:6f:54:5d: a6:4f:9e:f6:47:e1:c3:fd:7f:1b:71:bc:95:bf:f6: d1:99:02:2f:f2:c2:b6:23:52:46:9c:da:f1:46:01: 3b:53:e2:bf:88:5a:44:df:cf:51:c1:93:39:1f:89: 5f:50:eb:af:7d:b6:c7:30:d6:5b:98:37:e6:c4:c7: 76:50:83:e9:33:dd:58:4d:11:1b:a0:bc:d3:44:85: eb:7e:79:49:97:0b:94:cc:39:d2:11:23:37:c9:df: 10:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:0F:3A:86:F4:24:FF:73:29:DC:21:04:E4:DE:05:32:83:8D:DB:EA X509v3 Authority Key Identifier: keyid:22:93:BD:4C:5E:4F:9A:29:65:35:8C:B0:18:DF:3E:4E:EE:4D:F1:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:d2:c3:4f:ba:c2:a6:d6:5a:0c:e3:72:e4:16:c5:a2:bb:4a: f9:4b:26:52:8a:bf:3c:96:86:94:83:2b:65:e5:88:c4:c5:43: 0a:e0:80:5e:18:72:ed:0b:b7:50:d2:39:d5:5b:61:1b:76:50: a8:fc:36:03:83:d4:ca:66:4a:0b:dd:84:09:bc:e0:ce:a0:d0: 10:d4:8c:7d:05:07:bd:2f:46:81:38:ca:ec:a0:eb:a3:e5:c2: 10:80:44:9d:d7:a6:87:55:b8:f8:28:db:24:46:2e:d8:02:46: a1:d2:b0:f0:23:0e:f5:e3:c5:a1:83:bf:d4:49:78:ad:6b:92: c3:14:de:7d:c5:7a:0a:85:d6:31:46:c8:2b:33:5a:83:fb:93: 50:a0:55:23:d0:52:b6:95:d5:07:91:32:6d:27:33:48:5f:4c: 57:e1:55:b8:bf:86:3c:60:2f:92:c6:f4:67:cc:96:13:37:da: 52:01:33:4e:f5:a9:11:22:76:77:f5:4a:17:cd:2c:39:bf:2a: c9:da:18:dd:ec:38:e8:ab:af:7b:23:ab:4d:a8:cc:02:26:a4: 6c:d4:3e:1b:78:a5:ae:bc:81:c5:75:b0:3b:2e:10:ba:a8:e8: 2a:35:d2:cb:18:f7:32:01:d6:4c:7d:66:98:e4:03:96:fc:56: 07:56:ba:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICL9YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE3N0MxMTAvBgNVBAUTKDIyOTNCRDRDNUU0RjlBMjk2NTM1OENCMDE4REYzRTRF RUU0REYxQ0YwHhcNMjUwNDI0MTUyODUzWhcNMjUwNTAxMTUyODUzWjAYMRYwFAYD VQQDEw02ODBhNThiNS0wZWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxiOd1WdbulmNfwoVIiMer3llg8ODKuLDDdtF/z7Hcnu1FpKE2ktIja61n3Ro EdoZH9UibwixJRd3LD24Hkw+I96RabrrYfs0nMWDO/QmiVUQHQocFnZA9sBqSFuX dqcd5QMlxyM73w/82pD1PT35l4yW9lZBSf2e/imZ704E+wADbP98HCmffckiGWOj V47eP1ebCgimut73JcgvY1Tk8E1vVF2mT572R+HD/X8bcbyVv/bRmQIv8sK2I1JG nNrxRgE7U+K/iFpE389RwZM5H4lfUOuvfbbHMNZbmDfmxMd2UIPpM91YTREboLzT RIXrfnlJlwuUzDnSESM3yd8QZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMkPOob0 JP9zKdwhBOTeBTKDjdvqMB8GA1UdIwQYMBaAFCKTvUxeT5opZTWMsBjfPk7uTfHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTc3Qy85MjRDRENDMDE0 MzAxMUUzQTBCMTlGMkE1OTExRUEzMi9JcE85VEY1UG1pbGxOWXl3R044LVR1NU44 YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lwTzlURjVQbWlsbE5ZeXdHTjgtVHU1TjhjOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTc3Qy85MjRDRENDMDE0MzAxMUUzQTBCMTlGMkE1OTExRUEzMi9JcE85VEY1UG1p bGxOWXl3R044LVR1NU44YzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBq0sNPusKm1loM43LkFsWiu0r5SyZSir88loaUgytl5YjExUMK4IBe GHLtC7dQ0jnVW2EbdlCo/DYDg9TKZkoL3YQJvODOoNAQ1Ix9BQe9L0aBOMrsoOuj 5cIQgESd16aHVbj4KNskRi7YAkah0rDwIw7148Whg7/USXita5LDFN59xXoKhdYx RsgrM1qD+5NQoFUj0FK2ldUHkTJtJzNIX0xX4VW4v4Y8YC+SxvRnzJYTN9pSATNO 9akRInZ39UoXzSw5vyrJ2hjd7Djoq697I6tNqMwCJqRs1D4beKWuvIHFdbA7LhC6 qOgqNdLLGPcyAdZMfWaY5AOW/FYHVrpe -----END CERTIFICATE-----Generated at Sat Apr 26 15:06:52 2025 by rpki-client