$ rpki-client -vvf rpki.apnic.net/member_repository/A91625DB/11939D10906911EEB23D7425C4F9AE02/e-IwFTz_kAFkLbybJPhdDMKCNk4.mft File: e-IwFTz_kAFkLbybJPhdDMKCNk4.mft (raw, json) Hash identifier: 2kqakF2X5JtRFcGlfJhlQsUdBJlnr+sz3w2BqGtWG+o= Subject key identifier: 1C:F5:05:86:0A:FE:6D:EE:FB:D7:BA:AB:23:65:07:64:08:23:76:DF Authority key identifier: 7B:E2:30:15:3C:FF:90:01:64:2D:BC:9B:24:F8:5D:0C:C2:82:36:4E Certificate issuer: /CN=A91625DB/serialNumber=7BE230153CFF9001642DBC9B24F85D0CC282364E Certificate serial: 0121 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e-IwFTz_kAFkLbybJPhdDMKCNk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91625DB/11939D10906911EEB23D7425C4F9AE02/e-IwFTz_kAFkLbybJPhdDMKCNk4.mft Manifest number: 0113 Signing time: Fri 25 Apr 2025 04:05:33 +0000 Manifest this update: Fri 25 Apr 2025 04:05:33 +0000 Manifest next update: Fri 02 May 2025 04:05:33 +0000 Files and hashes: 1: e-IwFTz_kAFkLbybJPhdDMKCNk4.crl (hash: XAiH/txk03zqVsN0zVexjXpOY4pXRuxlc9WRrRlhmms=) 2: 9D3EBEF4921111EE9AD1150CC4F9AE02.roa (hash: H7JonSUtz6tgIVuXpEGUpFZ7fUQBIkEHbO/Cd9DHtNo=) 3: C00D9A3C71EE11EFA7DD021EC4F9AE02.roa (hash: j/6dClTGKIF6Y0W3OQ8vmv5qC35aQkMZjQK9N8GGPFU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91625DB/11939D10906911EEB23D7425C4F9AE02/e-IwFTz_kAFkLbybJPhdDMKCNk4.crl rsync://rpki.apnic.net/member_repository/A91625DB/11939D10906911EEB23D7425C4F9AE02/e-IwFTz_kAFkLbybJPhdDMKCNk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e-IwFTz_kAFkLbybJPhdDMKCNk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:05:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 289 (0x121) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91625DB, serialNumber=7BE230153CFF9001642DBC9B24F85D0CC282364E Validity Not Before: Apr 25 04:05:33 2025 GMT Not After : May 2 04:05:33 2025 GMT Subject: CN=680b0a0d-df3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f8:5c:36:4c:60:42:47:e9:67:81:fe:32:17: ab:84:54:1d:07:0a:c8:32:bd:6e:83:06:37:34:99: b7:ab:00:e6:52:80:6e:3e:67:2e:dd:03:84:87:6d: 76:0b:7f:0b:32:07:59:b1:36:5c:e8:8a:85:b7:41: 56:29:7a:57:94:51:66:58:ea:09:fa:03:a0:85:39: 38:75:d9:ad:d6:0c:26:de:89:d1:56:4a:75:9b:0d: 26:bf:01:57:8d:27:dd:ef:fc:59:fb:52:87:3e:67: 29:85:b1:69:d8:eb:01:37:69:0d:d5:0a:a2:c7:cf: 61:ff:7e:42:96:b1:63:a0:c2:ed:58:7d:4a:3b:c2: 81:04:85:64:e5:95:6d:fd:1f:9f:44:e3:70:c3:a5: fc:60:2c:8b:34:0e:af:7e:b8:b5:e7:18:48:ed:4a: b1:3b:c9:33:56:f2:6c:d8:c4:b4:b4:70:ec:5d:1b: 20:fe:c0:c7:8b:61:8e:f3:35:a7:de:04:0f:e1:3a: 4e:bb:6e:de:b8:0c:e8:6e:64:13:2f:79:64:1c:d3: 2d:58:42:bb:eb:a7:31:e3:fa:57:c0:64:31:8f:9a: 1d:72:06:85:cc:9d:18:cc:9b:c5:47:91:64:0f:c5: 27:cd:3f:f7:35:16:f5:e2:7b:9a:1d:e7:7e:4c:85: 19:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:F5:05:86:0A:FE:6D:EE:FB:D7:BA:AB:23:65:07:64:08:23:76:DF X509v3 Authority Key Identifier: keyid:7B:E2:30:15:3C:FF:90:01:64:2D:BC:9B:24:F8:5D:0C:C2:82:36:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91625DB/11939D10906911EEB23D7425C4F9AE02/e-IwFTz_kAFkLbybJPhdDMKCNk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e-IwFTz_kAFkLbybJPhdDMKCNk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91625DB/11939D10906911EEB23D7425C4F9AE02/e-IwFTz_kAFkLbybJPhdDMKCNk4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:93:3e:17:11:ba:c0:37:bb:98:f0:89:a8:9c:ca:39:8a:e4: 7c:d5:94:2a:53:5d:3b:f5:57:f5:2c:34:10:b5:c7:66:ab:5f: 14:9d:ca:b5:42:0c:1f:cf:94:6f:7f:62:5c:b2:33:b6:d4:96: 88:e8:6d:6f:c0:f7:1e:92:6c:c8:68:51:47:1e:98:9c:98:15: 30:21:4d:33:2c:19:b8:07:c8:74:5a:11:03:aa:27:bd:53:93: fa:af:69:b8:6e:a9:80:9a:89:be:3b:c1:47:48:67:e5:37:06: 9c:87:b4:65:f1:17:42:87:98:14:3b:89:e0:d4:00:9e:01:83: 95:bb:c7:45:2f:ef:68:70:2b:4e:41:ad:e3:e9:eb:9f:1b:70: c9:e7:cb:29:34:e2:f9:61:4a:e1:65:87:88:79:de:3e:e4:2d: 1d:b0:b8:75:7d:48:47:df:8c:bd:24:24:ba:fc:aa:7a:6a:18: 21:45:d6:f5:8a:6d:48:d6:d4:3a:bf:93:5b:e5:e7:3f:53:d3: 6f:91:43:81:d2:94:52:21:0e:b2:e2:b2:43:2b:1f:0b:ce:87: 0d:ce:59:fe:d0:bb:1f:95:99:61:d8:74:03:31:16:bc:3c:57: d6:d6:bd:17:df:41:e3:ad:39:80:0a:b8:ce:65:f1:c9:c9:f5: 8e:a2:4f:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI1REIxMTAvBgNVBAUTKDdCRTIzMDE1M0NGRjkwMDE2NDJEQkM5QjI0Rjg1RDBD QzI4MjM2NEUwHhcNMjUwNDI1MDQwNTMzWhcNMjUwNTAyMDQwNTMzWjAYMRYwFAYD VQQDEw02ODBiMGEwZC1kZjNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0PhcNkxgQkfpZ4H+MherhFQdBwrIMr1ugwY3NJm3qwDmUoBuPmcu3QOEh212 C38LMgdZsTZc6IqFt0FWKXpXlFFmWOoJ+gOghTk4ddmt1gwm3onRVkp1mw0mvwFX jSfd7/xZ+1KHPmcphbFp2OsBN2kN1Qqix89h/35ClrFjoMLtWH1KO8KBBIVk5ZVt /R+fRONww6X8YCyLNA6vfri15xhI7UqxO8kzVvJs2MS0tHDsXRsg/sDHi2GO8zWn 3gQP4TpOu27euAzobmQTL3lkHNMtWEK766cx4/pXwGQxj5odcgaFzJ0YzJvFR5Fk D8UnzT/3NRb14nuaHed+TIUZ9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBz1BYYK /m3u+9e6qyNlB2QII3bfMB8GA1UdIwQYMBaAFHviMBU8/5ABZC28myT4XQzCgjZO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjVEQi8xMTkzOUQxMDkw NjkxMUVFQjIzRDc0MjVDNEY5QUUwMi9lLUl3RlR6X2tBRmtMYnliSlBoZERNS0NO azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2UtSXdGVHpfa0FGa0xieWJKUGhkRE1LQ05rNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjVEQi8xMTkzOUQxMDkwNjkxMUVFQjIzRDc0MjVDNEY5QUUwMi9lLUl3RlR6X2tB RmtMYnliSlBoZERNS0NOazQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOkz4XEbrAN7uY8ImonMo5iuR81ZQqU1079Vf1LDQQtcdmq18Uncq1 Qgwfz5Rvf2JcsjO21JaI6G1vwPcekmzIaFFHHpicmBUwIU0zLBm4B8h0WhEDqie9 U5P6r2m4bqmAmom+O8FHSGflNwach7Rl8RdCh5gUO4ng1ACeAYOVu8dFL+9ocCtO Qa3j6eufG3DJ58spNOL5YUrhZYeIed4+5C0dsLh1fUhH34y9JCS6/Kp6ahghRdb1 im1I1tQ6v5Nb5ec/U9NvkUOB0pRSIQ6y4rJDKx8LzocNzln+0LsflZlh2HQDMRa8 PFfW1r0X30HjrTmACrjOZfHJyfWOok9s -----END CERTIFICATE-----Generated at Sat Apr 26 13:02:22 2025 by rpki-client