$ rpki-client -vvf rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.mft File: IohtF2pzwL483ViJwqizI-O5QSw.mft (raw, json) Hash identifier: SoO2QbFNO6e+qjaMA0w0K+gj8ftzeBCqlGtnnuXgq8g= Subject key identifier: C7:B4:74:4A:23:BE:69:CC:E3:8A:7A:6F:B9:AC:77:B4:00:40:E0:C6 Authority key identifier: 22:88:6D:17:6A:73:C0:BE:3C:DD:58:89:C2:A8:B3:23:E3:B9:41:2C Certificate issuer: /CN=A91658EF/serialNumber=22886D176A73C0BE3CDD5889C2A8B323E3B9412C Certificate serial: 14F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IohtF2pzwL483ViJwqizI-O5QSw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.mft Manifest number: 2B52 Signing time: Thu 24 Apr 2025 16:50:18 +0000 Manifest this update: Thu 24 Apr 2025 16:50:17 +0000 Manifest next update: Thu 01 May 2025 16:50:17 +0000 Files and hashes: 1: IohtF2pzwL483ViJwqizI-O5QSw.crl (hash: NXbPWvApUyh6F/B3DZU+Fo8bC8xJRJXnSBrlS4yc7sA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.crl rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IohtF2pzwL483ViJwqizI-O5QSw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:50:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5369 (0x14f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91658EF, serialNumber=22886D176A73C0BE3CDD5889C2A8B323E3B9412C Validity Not Before: Apr 24 16:50:17 2025 GMT Not After : May 1 16:50:17 2025 GMT Subject: CN=680a6bca-d496 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:5b:24:23:d6:37:e8:5e:fe:57:46:50:ee:70: 1a:f7:0e:50:9c:21:3e:27:33:f7:d8:d2:1e:55:03: ac:38:be:e9:8d:86:49:2b:fa:a4:69:ad:a6:d7:02: 70:40:ca:46:2c:57:83:38:d7:2f:19:dc:26:5f:2f: 82:ab:a9:9a:ed:bb:02:e0:01:0b:19:f8:bb:d6:41: c1:38:30:b0:5c:2a:63:21:8d:ae:18:5a:86:60:cc: 64:9c:09:33:88:ce:33:05:c0:f2:6f:b9:98:40:40: c8:8d:7d:6b:81:76:d1:86:01:87:e1:d0:c9:58:17: 05:f5:86:3f:b8:9c:d3:8e:b2:d2:d1:63:10:1e:26: 34:24:27:41:dd:f1:6c:bc:6e:fc:3a:a3:6c:76:06: 70:b9:c7:02:95:f4:97:b9:de:5c:66:1d:ba:8b:f2: f7:65:05:57:b3:0c:dd:eb:18:c3:34:d1:9c:29:91: f3:5b:79:02:68:27:dc:14:7c:66:a4:0f:6b:cd:80: 75:16:99:ed:42:0b:7e:55:d7:4c:48:ca:cb:5c:53: 48:6e:74:53:7b:51:8f:27:f9:4b:b1:ed:ba:bb:34: 60:e0:8c:6a:df:04:9c:7f:48:d7:f1:c8:77:10:3b: a3:dd:dc:48:b3:d1:a6:06:7c:06:62:a0:7f:88:ab: 23:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:B4:74:4A:23:BE:69:CC:E3:8A:7A:6F:B9:AC:77:B4:00:40:E0:C6 X509v3 Authority Key Identifier: keyid:22:88:6D:17:6A:73:C0:BE:3C:DD:58:89:C2:A8:B3:23:E3:B9:41:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IohtF2pzwL483ViJwqizI-O5QSw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:b5:13:2a:2e:7e:62:13:b9:86:aa:c1:38:e2:db:96:93:57: e1:19:76:cc:31:c0:63:c7:7f:98:ae:b2:1d:51:16:31:a8:83: ca:98:b0:c2:9d:da:c3:71:c6:27:d8:ae:74:10:81:b9:15:ad: 90:9f:aa:1a:e7:d5:e2:71:96:0e:8e:81:83:77:70:f6:79:f8: c5:7d:49:da:99:b7:57:82:b2:93:28:30:04:ee:3e:55:1e:e9: 81:92:8f:a6:dd:a6:7c:12:b7:29:4b:78:b9:71:0c:8f:89:65: cb:1f:7f:81:88:ef:2f:d4:ea:6a:aa:79:1c:9e:88:28:56:59: 62:e5:bd:2d:19:b7:7c:95:f1:f9:3e:09:49:2b:5e:ec:3c:0f: 4e:09:53:8a:16:b8:60:d7:12:46:3a:8f:90:6f:69:6e:73:0e: 69:f2:db:74:7e:98:f0:29:45:65:99:c3:4c:36:e5:6b:f6:5c: 9d:e0:03:8a:50:5a:63:d1:b4:29:d6:84:c1:21:21:f3:be:cf: b6:ee:3e:ba:45:d0:4d:1f:13:74:f3:a2:2b:83:44:37:c3:8a: e8:f3:87:e5:77:3b:79:93:10:82:e0:7e:ae:22:1a:92:a7:86: a4:30:9e:6e:f9:41:55:aa:c4:82:b4:1d:e4:0b:1c:05:f3:a8: a4:eb:d9:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU4RUYxMTAvBgNVBAUTKDIyODg2RDE3NkE3M0MwQkUzQ0RENTg4OUMyQThCMzIz RTNCOTQxMkMwHhcNMjUwNDI0MTY1MDE3WhcNMjUwNTAxMTY1MDE3WjAYMRYwFAYD VQQDEw02ODBhNmJjYS1kNDk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArlskI9Y36F7+V0ZQ7nAa9w5QnCE+JzP32NIeVQOsOL7pjYZJK/qkaa2m1wJw QMpGLFeDONcvGdwmXy+Cq6ma7bsC4AELGfi71kHBODCwXCpjIY2uGFqGYMxknAkz iM4zBcDyb7mYQEDIjX1rgXbRhgGH4dDJWBcF9YY/uJzTjrLS0WMQHiY0JCdB3fFs vG78OqNsdgZwuccClfSXud5cZh26i/L3ZQVXswzd6xjDNNGcKZHzW3kCaCfcFHxm pA9rzYB1FpntQgt+VddMSMrLXFNIbnRTe1GPJ/lLse26uzRg4Ixq3wScf0jX8ch3 EDuj3dxIs9GmBnwGYqB/iKsjUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMe0dEoj vmnM44p6b7msd7QAQODGMB8GA1UdIwQYMBaAFCKIbRdqc8C+PN1YicKosyPjuUEs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NThFRi9EMjQzMzc5NjRB RUMxMUU4ODQxN0YzNEFDNEY5QUUwMi9Jb2h0RjJwendMNDgzVmlKd3FpekktTzVR U3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lvaHRGMnB6d0w0ODNWaUp3cWl6SS1PNVFTdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NThFRi9EMjQzMzc5NjRBRUMxMUU4ODQxN0YzNEFDNEY5QUUwMi9Jb2h0RjJwendM NDgzVmlKd3FpekktTzVRU3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBatRMqLn5iE7mGqsE44tuWk1fhGXbMMcBjx3+YrrIdURYxqIPKmLDC ndrDccYn2K50EIG5Fa2Qn6oa59XicZYOjoGDd3D2efjFfUnambdXgrKTKDAE7j5V HumBko+m3aZ8ErcpS3i5cQyPiWXLH3+BiO8v1OpqqnkcnogoVlli5b0tGbd8lfH5 PglJK17sPA9OCVOKFrhg1xJGOo+Qb2lucw5p8tt0fpjwKUVlmcNMNuVr9lyd4AOK UFpj0bQp1oTBISHzvs+27j66RdBNHxN086Irg0Q3w4ro84fldzt5kxCC4H6uIhqS p4akMJ5u+UFVqsSCtB3kCxwF86ik69mY -----END CERTIFICATE-----Generated at Sat Apr 26 04:31:40 2025 by rpki-client