$ rpki-client -vvf rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft File: IJOpiw2lSMwNHF-8o9clFG9ETXI.mft (raw, json) Hash identifier: edhCy+M0iGW/Jj7gSDXjtLjK/4yRSfG6T+fs4eeCS2Q= Subject key identifier: 71:90:71:C7:93:F0:2C:51:B2:65:F7:B4:1A:05:15:3C:AA:BE:61:26 Authority key identifier: 20:93:A9:8B:0D:A5:48:CC:0D:1C:5F:BC:A3:D7:25:14:6F:44:4D:72 Certificate issuer: /CN=A9154657/serialNumber=2093A98B0DA548CC0D1C5FBCA3D725146F444D72 Certificate serial: 34B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft Manifest number: 348F Signing time: Sat 26 Apr 2025 14:19:40 +0000 Manifest this update: Sat 26 Apr 2025 14:19:40 +0000 Manifest next update: Sat 03 May 2025 14:19:40 +0000 Files and hashes: 1: IJOpiw2lSMwNHF-8o9clFG9ETXI.crl (hash: JhofUe+9xYUc/y1wzcDDWzwCIwp/1+kdxwf1rXM41lk=) 2: EF9395EA6A1511E9808D417CC4F9AE02.roa (hash: T96snG6T3ksqfKF7mowlYs05xmmtsddFbccqyfqSTxQ=) 3: 32509B68EDAE11E595DF6C28C4F9AE02.roa (hash: aiAqLVoZ6cEM6hY/DjBukcfxFi5I+NxU4FFn5k2CPUQ=) 4: E93EEAFCB0F811E595E0F761C4F9AE02.roa (hash: XONO8AScATR8p+dgN33QWapfnhUPZs7VGzeHh0uX4pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.crl rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 14:19:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13497 (0x34b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154657, serialNumber=2093A98B0DA548CC0D1C5FBCA3D725146F444D72 Validity Not Before: Apr 26 14:19:40 2025 GMT Not After : May 3 14:19:40 2025 GMT Subject: CN=680ceb7c-900f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:cc:87:c6:9a:02:a2:6a:eb:11:e2:04:b5:4e: 64:c3:c3:6b:00:17:ae:e6:f3:35:bf:45:72:42:4e: 0c:f9:34:dc:96:e6:a2:12:14:d0:c3:78:2d:f4:72: d4:9f:c3:93:59:09:92:bf:f0:09:c8:a6:b5:95:47: 0c:66:4b:64:87:77:9b:02:df:24:f9:46:11:d1:8c: 21:60:5f:31:a1:e4:3b:63:6b:4d:e4:d1:d7:3b:d1: 10:25:ed:dd:1d:85:cf:6d:df:d1:dd:ee:b9:34:6d: 82:86:ab:58:7b:14:44:a0:5b:d9:3d:5d:9b:f1:0f: ca:d8:47:1f:c3:68:93:e1:9d:d0:d1:b7:a0:dd:8b: 9b:06:76:86:2c:7a:77:4c:69:07:7c:94:e3:cc:82: e7:c4:9d:3e:4c:a4:a5:5f:d7:96:ee:71:ad:1f:9b: 21:ff:69:8b:d9:66:1b:0f:df:54:43:32:89:84:a8: 57:a2:e4:4a:14:42:23:a2:36:66:0a:96:f6:66:39: 6a:ab:24:f0:79:ab:df:a3:e5:a0:bb:97:8e:aa:01: c5:34:9e:95:c1:bc:95:6a:71:b2:02:9b:2a:e1:0d: 99:4d:04:2e:71:5d:1d:18:bf:77:0b:fa:82:0f:9f: 39:de:72:b4:44:a6:02:16:70:33:02:fe:82:b4:df: b2:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:90:71:C7:93:F0:2C:51:B2:65:F7:B4:1A:05:15:3C:AA:BE:61:26 X509v3 Authority Key Identifier: keyid:20:93:A9:8B:0D:A5:48:CC:0D:1C:5F:BC:A3:D7:25:14:6F:44:4D:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:79:20:6d:e4:48:0d:ce:ec:e0:24:de:c2:ec:e3:18:56:7e: 89:fc:67:12:f1:57:ad:8c:50:68:44:eb:eb:62:7c:e4:bf:51: 97:ce:d5:77:08:76:47:c8:5a:64:13:42:e8:bd:8a:9b:66:1e: 80:3d:e0:cc:f3:97:56:fa:d6:9b:32:7e:2a:d4:1f:1a:91:7b: 4c:13:d0:15:c8:dd:ff:a1:ed:a9:fe:f6:41:90:62:b3:99:dd: be:28:f3:0a:08:52:b1:bd:c9:c0:79:fa:b7:b8:d7:fa:01:a2: 96:65:5b:32:9c:1d:88:79:6e:e9:b9:83:71:b5:2e:e7:61:be: 87:85:3b:04:c6:8c:71:ea:f7:1b:be:6c:be:cd:36:f8:41:e7: 41:d0:f8:f7:39:ef:33:90:c2:82:df:80:91:04:46:e5:a9:80: 35:94:b0:47:be:ed:b2:93:fe:b1:30:2b:12:cb:40:46:83:af: 58:67:d5:3e:6b:04:a3:d0:c1:ad:7b:e2:25:eb:20:8a:82:d2: 40:09:c2:47:31:0b:3f:f3:3b:7e:32:5f:e6:77:99:6f:45:df: 4a:55:49:04:ed:3f:89:6f:01:62:16:c2:56:43:bd:9e:7e:7a: 57:e9:06:26:ae:12:e9:c6:d7:07:04:3a:21:28:9c:52:9f:da: c1:8c:68:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ2NTcxMTAvBgNVBAUTKDIwOTNBOThCMERBNTQ4Q0MwRDFDNUZCQ0EzRDcyNTE0 NkY0NDRENzIwHhcNMjUwNDI2MTQxOTQwWhcNMjUwNTAzMTQxOTQwWjAYMRYwFAYD VQQDEw02ODBjZWI3Yy05MDBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAncyHxpoComrrEeIEtU5kw8NrABeu5vM1v0VyQk4M+TTcluaiEhTQw3gt9HLU n8OTWQmSv/AJyKa1lUcMZktkh3ebAt8k+UYR0YwhYF8xoeQ7Y2tN5NHXO9EQJe3d HYXPbd/R3e65NG2ChqtYexREoFvZPV2b8Q/K2Ecfw2iT4Z3Q0beg3YubBnaGLHp3 TGkHfJTjzILnxJ0+TKSlX9eW7nGtH5sh/2mL2WYbD99UQzKJhKhXouRKFEIjojZm Cpb2ZjlqqyTweavfo+Wgu5eOqgHFNJ6VwbyVanGyApsq4Q2ZTQQucV0dGL93C/qC D5853nK0RKYCFnAzAv6CtN+yswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHGQcceT 8CxRsmX3tBoFFTyqvmEmMB8GA1UdIwQYMBaAFCCTqYsNpUjMDRxfvKPXJRRvRE1y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDY1Ny83MTVGMzMzNDFE NzExMUUyQTJEQjQ0QjYwOEIwMkNEMi9JSk9waXcybFNNd05IRi04bzljbEZHOUVU WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lKT3BpdzJsU013TkhGLThvOWNsRkc5RVRYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDY1Ny83MTVGMzMzNDFENzExMUUyQTJEQjQ0QjYwOEIwMkNEMi9JSk9waXcybFNN d05IRi04bzljbEZHOUVUWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMeSBt5EgNzuzgJN7C7OMYVn6J/GcS8VetjFBoROvrYnzkv1GXztV3 CHZHyFpkE0LovYqbZh6APeDM85dW+tabMn4q1B8akXtME9AVyN3/oe2p/vZBkGKz md2+KPMKCFKxvcnAefq3uNf6AaKWZVsynB2IeW7puYNxtS7nYb6HhTsExoxx6vcb vmy+zTb4QedB0Pj3Oe8zkMKC34CRBEblqYA1lLBHvu2yk/6xMCsSy0BGg69YZ9U+ awSj0MGte+Il6yCKgtJACcJHMQs/8zt+Ml/md5lvRd9KVUkE7T+JbwFiFsJWQ72e fnpX6QYmrhLpxtcHBDohKJxSn9rBjGgF -----END CERTIFICATE-----Generated at Sat Apr 26 17:11:54 2025 by rpki-client