$ rpki-client -vvf rpki.apnic.net/member_repository/A916B95A/5A19BDCA37AE11EF8A458E37C4F9AE02/Ixupmdjogk9iIrhWhdB91HpwRts.mft File: Ixupmdjogk9iIrhWhdB91HpwRts.mft (raw, json) Hash identifier: y3YpBSbRI63PjPhlKOra2zhWRlv76dY0+0Cgb8Wptmc= Subject key identifier: D8:98:AF:B5:8B:D0:AA:AE:00:01:01:C4:CE:97:4F:0D:AD:B5:57:49 Authority key identifier: 23:1B:A9:99:D8:E8:82:4F:62:22:B8:56:85:D0:7D:D4:7A:70:46:DB Certificate issuer: /CN=A916B95A/serialNumber=231BA999D8E8824F6222B85685D07DD47A7046DB Certificate serial: 99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ixupmdjogk9iIrhWhdB91HpwRts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B95A/5A19BDCA37AE11EF8A458E37C4F9AE02/Ixupmdjogk9iIrhWhdB91HpwRts.mft Manifest number: 99 Signing time: Fri 25 Apr 2025 05:17:44 +0000 Manifest this update: Fri 25 Apr 2025 05:17:44 +0000 Manifest next update: Fri 02 May 2025 05:17:44 +0000 Files and hashes: 1: Ixupmdjogk9iIrhWhdB91HpwRts.crl (hash: JTIH+9rmEX3CuG9ZI2H34g2fgmfVqkEmbhIzu+2Evxw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B95A/5A19BDCA37AE11EF8A458E37C4F9AE02/Ixupmdjogk9iIrhWhdB91HpwRts.crl rsync://rpki.apnic.net/member_repository/A916B95A/5A19BDCA37AE11EF8A458E37C4F9AE02/Ixupmdjogk9iIrhWhdB91HpwRts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ixupmdjogk9iIrhWhdB91HpwRts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:17:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B95A, serialNumber=231BA999D8E8824F6222B85685D07DD47A7046DB Validity Not Before: Apr 25 05:17:44 2025 GMT Not After : May 2 05:17:44 2025 GMT Subject: CN=680b1af8-a3fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:7e:81:be:87:09:15:54:95:61:2b:6b:cd:2c: f7:dc:25:a3:38:a3:02:63:26:ab:ad:d3:d2:8a:42: 6d:4e:df:35:ad:f0:77:8b:7f:b1:b5:b9:3a:83:d5: 5c:84:12:e0:57:3e:43:ff:ac:1e:3b:ca:46:fd:18: 81:f0:04:b2:50:38:5f:40:c6:1c:68:74:e7:6b:a4: c6:e5:a6:b6:b8:3c:da:7d:0a:75:99:12:39:86:22: c7:19:03:4a:f8:4b:64:c1:f4:88:9c:0c:b5:b5:9d: 9c:d8:9b:0f:a1:58:43:45:39:d6:bf:7d:25:1b:58: df:b1:bc:2d:92:04:e6:46:76:de:35:ab:51:0d:cd: 97:8e:c8:f5:d4:6c:e4:30:b2:23:84:b6:4d:a7:cc: 68:94:e8:33:65:82:79:e4:7e:c5:27:82:99:3e:84: 6e:78:23:9d:46:87:cb:be:fb:91:1e:35:a2:ef:a1: f4:9a:ce:c9:d0:b8:54:c8:69:01:cd:d1:16:32:9b: 15:7c:2a:2d:7e:5f:83:17:d9:10:48:5f:ba:16:92: 7a:49:cb:10:ab:cd:96:aa:02:0e:2d:4b:57:04:73: a8:67:f3:eb:ce:09:ff:75:61:ee:85:e8:bd:50:cd: 04:f6:2c:03:a1:0e:cf:d3:c2:62:9b:bb:48:f9:ea: f5:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:98:AF:B5:8B:D0:AA:AE:00:01:01:C4:CE:97:4F:0D:AD:B5:57:49 X509v3 Authority Key Identifier: keyid:23:1B:A9:99:D8:E8:82:4F:62:22:B8:56:85:D0:7D:D4:7A:70:46:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B95A/5A19BDCA37AE11EF8A458E37C4F9AE02/Ixupmdjogk9iIrhWhdB91HpwRts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ixupmdjogk9iIrhWhdB91HpwRts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B95A/5A19BDCA37AE11EF8A458E37C4F9AE02/Ixupmdjogk9iIrhWhdB91HpwRts.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:89:7c:a2:76:29:9e:d2:68:8c:f5:85:bb:75:96:65:88:4e: 25:c5:39:62:fc:19:2b:70:75:f9:43:0b:ec:f7:9d:63:4e:50: 3f:ca:9b:48:8f:a3:24:48:ad:7c:0d:6b:8b:4c:2d:7b:32:a9: df:a5:d1:7c:af:46:96:e8:75:0a:ff:4a:e3:36:8d:96:f6:43: bf:ab:e1:6e:13:af:e7:86:b8:e8:4f:34:1a:17:9c:8b:f6:a0: 1b:61:de:d4:cb:60:d3:14:c9:fd:36:59:28:ed:d7:4c:04:1b: f7:1f:af:3a:7f:6b:ef:14:1e:54:72:b3:01:c3:ea:3d:67:c1: 72:ed:f3:34:9a:a6:25:5e:cf:87:f9:85:49:16:a2:66:99:77: d6:d4:f9:4b:40:48:70:d5:19:da:86:58:31:59:0e:65:5e:77: c6:69:c7:44:00:b6:0b:91:47:0f:aa:10:0c:0c:78:29:c4:9a: 11:c0:8e:9a:95:0e:1c:ce:b8:24:16:b1:29:96:38:a7:21:4c: bf:d7:23:52:ee:27:cf:c4:b8:82:d1:c6:fa:dd:08:51:f0:73: b9:87:d1:51:db:d0:e2:ed:62:13:5b:d9:94:af:48:57:b2:b9: cd:2b:f4:0a:f4:48:0d:db:37:01:4f:a1:9c:e3:ca:f2:1d:e2: 2d:7b:b9:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI5NUExMTAvBgNVBAUTKDIzMUJBOTk5RDhFODgyNEY2MjIyQjg1Njg1RDA3REQ0 N0E3MDQ2REIwHhcNMjUwNDI1MDUxNzQ0WhcNMjUwNTAyMDUxNzQ0WjAYMRYwFAYD VQQDEw02ODBiMWFmOC1hM2ZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx36BvocJFVSVYStrzSz33CWjOKMCYyarrdPSikJtTt81rfB3i3+xtbk6g9Vc hBLgVz5D/6weO8pG/RiB8ASyUDhfQMYcaHTna6TG5aa2uDzafQp1mRI5hiLHGQNK +EtkwfSInAy1tZ2c2JsPoVhDRTnWv30lG1jfsbwtkgTmRnbeNatRDc2Xjsj11Gzk MLIjhLZNp8xolOgzZYJ55H7FJ4KZPoRueCOdRofLvvuRHjWi76H0ms7J0LhUyGkB zdEWMpsVfCotfl+DF9kQSF+6FpJ6ScsQq82WqgIOLUtXBHOoZ/Przgn/dWHuhei9 UM0E9iwDoQ7P08Jim7tI+er1twIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNiYr7WL 0KquAAEBxM6XTw2ttVdJMB8GA1UdIwQYMBaAFCMbqZnY6IJPYiK4VoXQfdR6cEbb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Qjk1QS81QTE5QkRDQTM3 QUUxMUVGOEE0NThFMzdDNEY5QUUwMi9JeHVwbWRqb2drOWlJcmhXaGRCOTFIcHdS dHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l4dXBtZGpvZ2s5aUlyaFdoZEI5MUhwd1J0cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Qjk1QS81QTE5QkRDQTM3QUUxMUVGOEE0NThFMzdDNEY5QUUwMi9JeHVwbWRqb2dr OWlJcmhXaGRCOTFIcHdSdHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJiXyidime0miM9YW7dZZliE4lxTli/BkrcHX5Qwvs951jTlA/yptI j6MkSK18DWuLTC17MqnfpdF8r0aW6HUK/0rjNo2W9kO/q+FuE6/nhrjoTzQaF5yL 9qAbYd7Uy2DTFMn9Nlko7ddMBBv3H686f2vvFB5UcrMBw+o9Z8Fy7fM0mqYlXs+H +YVJFqJmmXfW1PlLQEhw1RnahlgxWQ5lXnfGacdEALYLkUcPqhAMDHgpxJoRwI6a lQ4czrgkFrEpljinIUy/1yNS7ifPxLiC0cb63QhR8HO5h9FR29Di7WITW9mUr0hX srnNK/QK9EgN2zcBT6Gc48ryHeIte7k5 -----END CERTIFICATE-----Generated at Sat Apr 26 04:34:05 2025 by rpki-client