$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft File: iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft (raw, json) Hash identifier: Ie5hqolT1CWV4OW/hckOSYspllb3GXkSGOz5Lk24+HQ= Subject key identifier: C9:37:07:50:1B:ED:30:D9:59:46:1C:FC:52:14:91:A7:BB:81:B6:CD Authority key identifier: 88:87:CF:6C:F5:10:2F:0F:B7:13:F4:C4:A1:BD:E3:89:48:1F:1C:44 Certificate issuer: /CN=A9157DA0/serialNumber=8887CF6CF5102F0FB713F4C4A1BDE389481F1C44 Certificate serial: 348F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft Manifest number: 347F Signing time: Thu 24 Apr 2025 14:35:19 +0000 Manifest this update: Thu 24 Apr 2025 14:35:18 +0000 Manifest next update: Thu 01 May 2025 14:35:18 +0000 Files and hashes: 1: iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl (hash: 3/i1IjvPCSWQ22D3c5gAnXXJgwVf1AIqCBZL0kLUMNI=) 2: E5A47506DFCE11EFBC4CD631C4F9AE02.roa (hash: c4SXQlCG+2MPlFiFY6VkhLPxbsV0onAe5fUK8o5OyyY=) 3: E52708AADFCE11EFBC4CD631C4F9AE02.roa (hash: /pC0o36JZbc/+sMAFn6ZasM1rRw+KC7uxqzujpRX3bY=) 4: E4BA3CE8DFCE11EFBC4CD631C4F9AE02.roa (hash: MbcvEjB6bBsz71diYW6luEzJdUqDQqlK0r5oh/a4AKQ=) 5: E7CA9A12F28F11EF94898048C4F9AE02.roa (hash: 81pcSGnQVVs4NUfFkM30moatmNOjQUrd7XABbRORB0M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:35:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13455 (0x348f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DA0, serialNumber=8887CF6CF5102F0FB713F4C4A1BDE389481F1C44 Validity Not Before: Apr 24 14:35:18 2025 GMT Not After : May 1 14:35:18 2025 GMT Subject: CN=680a4c26-bfce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:5f:42:8b:d7:da:52:fa:2d:3a:64:bc:de:af: c6:73:40:8f:1e:99:3c:1d:dc:72:e3:34:8c:1a:97: f1:b4:21:07:d2:50:6a:26:4b:28:b7:6a:d2:d9:60: 6f:33:71:93:26:85:40:50:c8:e8:8e:02:ec:9f:58: 7c:9c:18:8d:91:08:eb:ea:15:9c:34:ee:bb:1d:a9: 7c:68:c8:91:63:bb:84:5c:80:1f:ca:89:d0:47:d9: 56:05:93:7b:aa:1b:d9:5c:b4:b5:e9:8a:9f:ac:96: 17:6f:ac:be:2f:58:9b:8d:f8:24:f0:69:d8:b3:03: 1a:2e:e6:36:ed:6d:e6:a9:ea:5b:2a:1a:9d:55:27: 30:b9:20:d1:64:3e:24:08:4a:b6:7b:ce:3f:01:71: 45:25:57:f8:0d:9b:72:88:46:9c:41:e7:ee:41:16: 1f:12:f6:ae:9e:25:7b:69:0c:8d:9d:2f:00:fc:a2: ac:2f:1e:1b:db:13:f1:44:ce:a6:82:9d:1e:ce:3d: bb:7e:bb:30:10:53:a9:92:7d:e8:94:24:d3:db:07: 72:8c:22:49:63:1d:a9:2a:e8:a3:3e:32:7e:c4:d6: 36:fc:6f:02:90:33:a4:c2:42:60:05:dd:b1:74:99: 7f:ed:1f:cc:e0:bd:96:55:c5:95:55:6f:e5:92:0f: a6:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:37:07:50:1B:ED:30:D9:59:46:1C:FC:52:14:91:A7:BB:81:B6:CD X509v3 Authority Key Identifier: keyid:88:87:CF:6C:F5:10:2F:0F:B7:13:F4:C4:A1:BD:E3:89:48:1F:1C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:69:90:4e:76:06:6e:0e:1d:09:ff:e2:d4:cf:7f:62:93:f1: 0f:c7:4d:74:6e:30:27:64:20:b0:80:f2:ca:5a:64:41:1a:d1: b1:24:71:14:2e:21:83:41:65:ec:b9:45:ca:85:35:d7:a8:f9: 39:5b:67:d8:64:cb:91:7d:75:4e:d4:b6:ae:46:cc:17:29:41: e4:9a:a2:29:c2:35:90:0e:f8:0b:f8:5a:32:b5:06:10:22:56: 34:79:9a:f1:f9:73:91:ca:8b:66:84:13:16:db:db:5a:c9:c1: 3c:8a:af:3b:2c:08:dd:6c:66:0b:57:e6:f0:77:1e:d3:ec:b8: 2a:88:9e:24:2c:83:9d:8c:3a:b3:16:ad:46:41:37:d6:0f:44: 5f:15:c2:63:e7:f0:b7:06:00:94:77:c6:4f:e1:91:2a:85:18: be:a9:f0:9e:f8:ba:c7:d6:db:71:ae:83:12:74:03:29:1c:65: b2:20:65:d2:77:0f:fb:02:db:f2:1b:45:77:10:91:5b:e2:20: c0:b5:bb:ee:80:df:16:f0:1b:ac:1e:fd:65:b0:69:5d:76:70: 30:fa:e1:3a:ce:ac:05:85:f2:36:59:12:16:d0:6e:35:b5:93: 7e:c3:9a:9a:8a:85:4b:18:2f:0f:13:71:6a:f5:76:f2:32:39: f8:b2:f0:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQTAxMTAvBgNVBAUTKDg4ODdDRjZDRjUxMDJGMEZCNzEzRjRDNEExQkRFMzg5 NDgxRjFDNDQwHhcNMjUwNDI0MTQzNTE4WhcNMjUwNTAxMTQzNTE4WjAYMRYwFAYD VQQDEw02ODBhNGMyNi1iZmNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApF9Ci9faUvotOmS83q/Gc0CPHpk8Hdxy4zSMGpfxtCEH0lBqJksot2rS2WBv M3GTJoVAUMjojgLsn1h8nBiNkQjr6hWcNO67Hal8aMiRY7uEXIAfyonQR9lWBZN7 qhvZXLS16YqfrJYXb6y+L1ibjfgk8GnYswMaLuY27W3mqepbKhqdVScwuSDRZD4k CEq2e84/AXFFJVf4DZtyiEacQefuQRYfEvauniV7aQyNnS8A/KKsLx4b2xPxRM6m gp0ezj27frswEFOpkn3olCTT2wdyjCJJYx2pKuijPjJ+xNY2/G8CkDOkwkJgBd2x dJl/7R/M4L2WVcWVVW/lkg+mBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMk3B1Ab 7TDZWUYc/FIUkae7gbbNMB8GA1UdIwQYMBaAFIiHz2z1EC8PtxP0xKG944lIHxxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBMC8zQTBEOTMxMDFE OEMxMUUyOEVGRjU3RTcwOEIwMkNEMi9pSWZQYlBVUUx3LTNFX1RFb2IzamlVZ2ZI RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lJZlBiUFVRTHctM0VfVEVvYjNqaVVnZkhFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBMC8zQTBEOTMxMDFEOEMxMUUyOEVGRjU3RTcwOEIwMkNEMi9pSWZQYlBVUUx3 LTNFX1RFb2IzamlVZ2ZIRVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdaZBOdgZuDh0J/+LUz39ik/EPx010bjAnZCCwgPLKWmRBGtGxJHEU LiGDQWXsuUXKhTXXqPk5W2fYZMuRfXVO1LauRswXKUHkmqIpwjWQDvgL+FoytQYQ IlY0eZrx+XORyotmhBMW29taycE8iq87LAjdbGYLV+bwdx7T7LgqiJ4kLIOdjDqz Fq1GQTfWD0RfFcJj5/C3BgCUd8ZP4ZEqhRi+qfCe+LrH1ttxroMSdAMpHGWyIGXS dw/7AtvyG0V3EJFb4iDAtbvugN8W8BusHv1lsGlddnAw+uE6zqwFhfI2WRIW0G41 tZN+w5qaioVLGC8PE3Fq9XbyMjn4svAe -----END CERTIFICATE-----Generated at Sat Apr 26 12:27:34 2025 by rpki-client