$ rpki-client -vvf rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft File: IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft (raw, json) Hash identifier: JQuqOfe/bUhDFITwxkq7zK3Ni+U4LMTgLkrPu8E5PIs= Subject key identifier: 29:6C:E5:6F:9C:BF:82:9D:9E:2B:C2:3C:95:CB:83:1F:8D:95:2A:D9 Authority key identifier: 21:0F:F1:66:68:DF:96:3B:E0:FC:A9:06:93:39:17:FF:ED:ED:9F:95 Certificate issuer: /CN=A9170BBF/serialNumber=210FF16668DF963BE0FCA906933917FFEDED9F95 Certificate serial: 04A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft Manifest number: 049B Signing time: Thu 24 Apr 2025 23:45:35 +0000 Manifest this update: Thu 24 Apr 2025 23:45:34 +0000 Manifest next update: Thu 01 May 2025 23:45:34 +0000 Files and hashes: 1: IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl (hash: 98TljRELJiqcNfPxJ+uZQm5PAAy9/tiunQm/6ZAAKzg=) 2: 06CAA9C230C211ECBB5A4116C4F9AE02.roa (hash: CU8ZA4/4TdlPTUdktMFTY7GCuwd/QCyrxC7+CMDATDo=) 3: 0628D74630C211ECBB5A4116C4F9AE02.roa (hash: yUQWHT36J9pLE1kpKGBgRzyjB4VNhd4/HCHR7qeOtAQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:45:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1189 (0x4a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170BBF, serialNumber=210FF16668DF963BE0FCA906933917FFEDED9F95 Validity Not Before: Apr 24 23:45:34 2025 GMT Not After : May 1 23:45:34 2025 GMT Subject: CN=680acd1e-53b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:96:9f:75:59:3f:b4:45:c7:0b:36:8f:f6:07: 77:84:0d:45:1f:51:1a:dc:69:88:56:4f:6d:c4:1e: d2:be:d7:79:fd:fc:c4:51:b6:8f:51:79:3c:6f:1f: 0e:7f:0c:38:a6:46:37:05:b5:10:5d:5f:b1:7e:83: 0b:07:34:d0:00:fa:df:aa:ac:f7:3d:c5:c0:20:6f: d7:0f:8f:a0:b9:c5:af:74:0c:f9:e5:71:ed:0c:c9: 18:4b:fb:e5:e1:03:01:a9:6d:68:6e:ef:45:5a:c1: 45:50:14:52:6c:43:ca:88:37:01:db:48:92:b3:fe: 84:1d:a7:56:32:8b:bc:d7:62:0f:da:d4:7f:a8:d7: 87:f2:7e:7a:4e:1d:6c:e6:3e:79:7a:52:9e:88:4a: 0f:36:cd:42:c1:3a:9d:83:fc:df:cf:d5:38:3e:2d: b1:1a:6f:5a:01:45:e6:5c:99:31:45:a9:f8:3b:de: b6:2b:94:72:fc:a1:18:02:16:7f:c8:0c:9a:09:ec: fc:e5:2e:01:29:02:22:f7:18:51:0b:fe:7d:62:62: ec:b4:09:a1:57:ec:4d:26:2a:38:55:b1:97:7a:e1: 04:40:ea:7e:a4:e0:31:04:19:12:95:09:18:79:0c: 43:44:3c:48:a6:62:2f:6d:98:00:63:c1:03:26:1f: e7:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:6C:E5:6F:9C:BF:82:9D:9E:2B:C2:3C:95:CB:83:1F:8D:95:2A:D9 X509v3 Authority Key Identifier: keyid:21:0F:F1:66:68:DF:96:3B:E0:FC:A9:06:93:39:17:FF:ED:ED:9F:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:c2:b7:35:37:ba:2d:15:56:a0:da:5a:4e:dc:c2:66:29:4a: c5:eb:a4:0c:1c:7c:71:9b:e8:14:b2:0b:88:0e:79:5b:e8:cb: 94:07:79:a5:80:ec:6d:b8:46:3e:28:bd:6f:25:0a:78:c1:48: 28:31:fb:ce:cc:b9:f3:a4:9d:a6:83:fe:e3:3f:44:46:41:7d: af:c3:05:ac:80:45:53:2f:bb:b5:94:fd:e2:f9:fe:cf:df:33: d1:ab:50:3b:fc:c9:ae:42:16:d1:4d:fe:0d:dd:5a:4f:33:3e: 0b:b9:52:06:ed:07:0d:43:02:22:28:dc:93:89:40:22:27:cc: fe:64:20:23:4a:32:2c:f1:4e:ed:db:33:35:e1:b7:4d:a8:85: a9:69:88:bb:cf:f9:48:f8:e9:f8:bf:68:a1:36:83:12:51:a9: 74:0a:28:6e:1b:58:9c:5f:62:15:17:07:19:a5:93:b9:27:b7: 91:5d:ed:87:1a:e2:6b:39:b7:6e:cf:44:a5:ea:4e:8f:c9:5d: 70:d2:f2:06:7f:5a:43:31:ba:1d:80:e7:be:e6:0f:3e:37:54: 24:8d:d4:4b:e5:2a:f0:65:f5:58:4e:56:0e:be:83:70:85:c3: 6b:5c:42:d9:38:9f:64:4f:62:8c:36:df:1e:fe:ea:fb:6f:81: 5e:28:92:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBCQkYxMTAvBgNVBAUTKDIxMEZGMTY2NjhERjk2M0JFMEZDQTkwNjkzMzkxN0ZG RURFRDlGOTUwHhcNMjUwNDI0MjM0NTM0WhcNMjUwNTAxMjM0NTM0WjAYMRYwFAYD VQQDEw02ODBhY2QxZS01M2IyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzpafdVk/tEXHCzaP9gd3hA1FH1Ea3GmIVk9txB7Svtd5/fzEUbaPUXk8bx8O fww4pkY3BbUQXV+xfoMLBzTQAPrfqqz3PcXAIG/XD4+gucWvdAz55XHtDMkYS/vl 4QMBqW1obu9FWsFFUBRSbEPKiDcB20iSs/6EHadWMou812IP2tR/qNeH8n56Th1s 5j55elKeiEoPNs1CwTqdg/zfz9U4Pi2xGm9aAUXmXJkxRan4O962K5Ry/KEYAhZ/ yAyaCez85S4BKQIi9xhRC/59YmLstAmhV+xNJio4VbGXeuEEQOp+pOAxBBkSlQkY eQxDRDxIpmIvbZgAY8EDJh/nvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCls5W+c v4KdnivCPJXLgx+NlSrZMB8GA1UdIwQYMBaAFCEP8WZo35Y74PypBpM5F//t7Z+V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEJCRi9FNDkxMTIzQTMw QkYxMUVDQTg1QzQ0MTRDNEY5QUUwMi9JUV94Wm1qZmxqdmdfS2tHa3prWF8tM3Ru NVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lRX3habWpmbGp2Z19La0dremtYXy0zdG41VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEJCRi9FNDkxMTIzQTMwQkYxMUVDQTg1QzQ0MTRDNEY5QUUwMi9JUV94Wm1qZmxq dmdfS2tHa3prWF8tM3RuNVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0wrc1N7otFVag2lpO3MJmKUrF66QMHHxxm+gUsguIDnlb6MuUB3ml gOxtuEY+KL1vJQp4wUgoMfvOzLnzpJ2mg/7jP0RGQX2vwwWsgEVTL7u1lP3i+f7P 3zPRq1A7/MmuQhbRTf4N3VpPMz4LuVIG7QcNQwIiKNyTiUAiJ8z+ZCAjSjIs8U7t 2zM14bdNqIWpaYi7z/lI+On4v2ihNoMSUal0CihuG1icX2IVFwcZpZO5J7eRXe2H GuJrObduz0Sl6k6PyV1w0vIGf1pDMbodgOe+5g8+N1QkjdRL5SrwZfVYTlYOvoNw hcNrXELZOJ9kT2KMNt8e/ur7b4FeKJJg -----END CERTIFICATE-----Generated at Sat Apr 26 17:13:22 2025 by rpki-client