$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft File: iuWu7yqR89-GYD7cVP6ExbtXnBU.mft (raw, json) Hash identifier: tohotClOv1bEH3aVFgmxVBaniLbg/RMNtgea8w7XdFE= Subject key identifier: D8:9F:38:C5:B6:A8:9A:8C:6C:12:F2:54:40:91:ED:71:57:5D:23:64 Authority key identifier: 8A:E5:AE:EF:2A:91:F3:DF:86:60:3E:DC:54:FE:84:C5:BB:57:9C:15 Certificate issuer: /CN=A9167CB5/serialNumber=8AE5AEEF2A91F3DF86603EDC54FE84C5BB579C15 Certificate serial: A8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft Manifest number: A7 Signing time: Fri 25 Apr 2025 05:08:48 +0000 Manifest this update: Fri 25 Apr 2025 05:08:48 +0000 Manifest next update: Fri 02 May 2025 05:08:48 +0000 Files and hashes: 1: iuWu7yqR89-GYD7cVP6ExbtXnBU.crl (hash: i4wk718tjioZqFj/msHrh2OMBoXfEvJ789jYT8fnBPE=) 2: D055D382225711EF975F6747C4F9AE02.roa (hash: vSUF8UhOaMH+V+SNryLP4jUhOyX0+t5vpdmlCLCB3Cc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.crl rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:08:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 168 (0xa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CB5, serialNumber=8AE5AEEF2A91F3DF86603EDC54FE84C5BB579C15 Validity Not Before: Apr 25 05:08:48 2025 GMT Not After : May 2 05:08:48 2025 GMT Subject: CN=680b18e0-cbe2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:5f:b6:6f:81:07:6e:9d:6c:67:29:de:f7:38: b6:b0:c2:99:1d:09:48:06:6e:cc:58:2a:f0:b2:c9: 16:1b:fe:71:3f:10:53:f4:46:30:4f:cc:57:b1:28: 07:f8:01:97:80:d2:1f:45:b3:5f:9b:ab:6a:cf:5f: 09:76:d5:c8:d1:a4:2d:65:64:2e:4b:3f:5b:26:61: 9c:54:59:bb:10:11:5d:c3:d9:1e:f7:f1:b7:3c:4b: ca:66:e5:94:08:81:02:74:88:0e:1f:a8:d4:4b:42: 0a:ea:7e:72:b8:0d:d5:4b:c9:17:09:2e:30:3f:c4: ec:9b:33:98:eb:64:ba:ab:d8:1f:ff:06:8c:b2:e8: dc:c7:15:b4:ee:37:5e:cc:37:c9:8f:05:c9:1f:95: 2d:09:88:13:4d:b8:0c:ff:4d:9a:bc:24:2b:f1:cd: 13:38:8e:cb:2d:fa:73:6c:5a:71:e6:2b:cc:ac:8a: 11:8a:6a:de:0e:fb:d6:7d:74:9f:17:cb:43:fb:2f: 80:a4:98:fa:79:92:f1:ba:f3:3f:f7:9f:0e:78:c0: df:1e:3a:65:87:96:86:a4:83:02:67:8e:71:3e:71: 3a:f4:c4:23:f4:1b:12:00:eb:18:b5:97:a7:ca:04: 1c:04:68:7b:8d:c4:1e:69:9c:85:70:df:32:07:91: 7a:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:9F:38:C5:B6:A8:9A:8C:6C:12:F2:54:40:91:ED:71:57:5D:23:64 X509v3 Authority Key Identifier: keyid:8A:E5:AE:EF:2A:91:F3:DF:86:60:3E:DC:54:FE:84:C5:BB:57:9C:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:f7:7a:71:eb:c3:75:ac:da:47:ad:3a:da:27:5b:89:82:dc: 4a:d6:06:36:69:28:54:a5:15:b0:ae:40:67:3a:7a:81:6a:04: 0d:c4:b8:9f:d8:78:99:6e:56:c6:22:54:c0:d6:ab:1d:71:93: 18:9b:80:90:b4:68:32:7e:c0:40:54:df:8b:9d:e9:5c:7c:fa: b7:94:21:68:3b:ed:04:98:56:ec:54:e2:74:b9:46:c8:01:7f: db:e7:7b:b9:31:21:6b:07:51:19:ea:b9:f1:54:86:87:c6:c6: cf:c3:b8:cc:92:51:6d:99:6e:75:73:86:42:ac:49:47:bb:1a: 9f:43:b9:6b:c7:af:81:d5:97:7f:bd:56:3c:86:83:9b:15:d4: 72:e1:db:72:98:5e:1a:30:f1:15:dd:d6:ae:6a:8e:74:e5:8f: 61:7e:22:c9:eb:4f:61:8c:42:21:fc:fc:aa:5b:e5:07:aa:69: 32:d7:38:75:0d:37:01:ea:c7:13:2b:05:04:bf:99:df:9a:da: c9:df:4d:ce:d3:2c:b3:9a:dc:00:95:c4:43:86:89:14:cc:70: 8e:fa:80:f9:5a:01:c9:fe:ef:82:4a:c1:2c:a4:41:98:cd:ba: 94:64:23:ad:71:7f:67:9d:75:2d:cd:16:2a:60:ae:50:b1:19: 5a:97:9a:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQjUxMTAvBgNVBAUTKDhBRTVBRUVGMkE5MUYzREY4NjYwM0VEQzU0RkU4NEM1 QkI1NzlDMTUwHhcNMjUwNDI1MDUwODQ4WhcNMjUwNTAyMDUwODQ4WjAYMRYwFAYD VQQDEw02ODBiMThlMC1jYmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6V+2b4EHbp1sZyne9zi2sMKZHQlIBm7MWCrwsskWG/5xPxBT9EYwT8xXsSgH +AGXgNIfRbNfm6tqz18JdtXI0aQtZWQuSz9bJmGcVFm7EBFdw9ke9/G3PEvKZuWU CIECdIgOH6jUS0IK6n5yuA3VS8kXCS4wP8TsmzOY62S6q9gf/waMsujcxxW07jde zDfJjwXJH5UtCYgTTbgM/02avCQr8c0TOI7LLfpzbFpx5ivMrIoRimreDvvWfXSf F8tD+y+ApJj6eZLxuvM/958OeMDfHjplh5aGpIMCZ45xPnE69MQj9BsSAOsYtZen ygQcBGh7jcQeaZyFcN8yB5F65wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNifOMW2 qJqMbBLyVECR7XFXXSNkMB8GA1UdIwQYMBaAFIrlru8qkfPfhmA+3FT+hMW7V5wV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NCNS9FRkQ0N0Q1NDIy NTYxMUVGQjc1NjFGNDZDNEY5QUUwMi9pdVd1N3lxUjg5LUdZRDdjVlA2RXhidFhu QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2l1V3U3eXFSODktR1lEN2NWUDZFeGJ0WG5CVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NCNS9FRkQ0N0Q1NDIyNTYxMUVGQjc1NjFGNDZDNEY5QUUwMi9pdVd1N3lxUjg5 LUdZRDdjVlA2RXhidFhuQlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBN93px68N1rNpHrTraJ1uJgtxK1gY2aShUpRWwrkBnOnqBagQNxLif 2HiZblbGIlTA1qsdcZMYm4CQtGgyfsBAVN+LnelcfPq3lCFoO+0EmFbsVOJ0uUbI AX/b53u5MSFrB1EZ6rnxVIaHxsbPw7jMklFtmW51c4ZCrElHuxqfQ7lrx6+B1Zd/ vVY8hoObFdRy4dtymF4aMPEV3dauao505Y9hfiLJ609hjEIh/PyqW+UHqmky1zh1 DTcB6scTKwUEv5nfmtrJ303O0yyzmtwAlcRDhokUzHCO+oD5WgHJ/u+CSsEspEGY zbqUZCOtcX9nnXUtzRYqYK5QsRlal5pu -----END CERTIFICATE-----Generated at Sat Apr 26 17:14:00 2025 by rpki-client