$ rpki-client -vvf rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.mft File: It8xdbHdMjEX4MGfP21qHncfnB8.mft (raw, json) Hash identifier: b5YJhWhCrvwv7hALP9o/Y5sv1a2PxP+w9hjMWEyM8KM= Subject key identifier: 9B:ED:E3:E8:9C:63:AB:A0:C2:2B:D7:13:C8:D9:C1:AD:C6:20:FF:5A Authority key identifier: 22:DF:31:75:B1:DD:32:31:17:E0:C1:9F:3F:6D:6A:1E:77:1F:9C:1F Certificate issuer: /CN=A917148B/serialNumber=22DF3175B1DD323117E0C19F3F6D6A1E771F9C1F Certificate serial: 0C24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/It8xdbHdMjEX4MGfP21qHncfnB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.mft Manifest number: 0C1C Signing time: Thu 24 Apr 2025 18:30:24 +0000 Manifest this update: Thu 24 Apr 2025 18:30:23 +0000 Manifest next update: Thu 01 May 2025 18:30:23 +0000 Files and hashes: 1: It8xdbHdMjEX4MGfP21qHncfnB8.crl (hash: X1E/3IvtQo3r0QWtkAzMfvj5yNEanzolZFj9KhQj6vk=) 2: D725AC5C091411EABBFC8739C4F9AE02.roa (hash: jTKb6UqoxVKwoNueFvf3BZWhxggm3hq3OfDJsuiV3HM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.crl rsync://rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/It8xdbHdMjEX4MGfP21qHncfnB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:30:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3108 (0xc24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917148B, serialNumber=22DF3175B1DD323117E0C19F3F6D6A1E771F9C1F Validity Not Before: Apr 24 18:30:23 2025 GMT Not After : May 1 18:30:23 2025 GMT Subject: CN=680a8340-ffd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ca:bd:c5:90:75:c3:44:8a:a3:7b:d1:fc:e2: cf:c5:95:03:72:b0:c1:48:fa:b5:35:2e:95:c7:f8: da:90:9a:6d:76:87:46:ae:bd:73:4f:bc:74:5e:e4: 64:da:06:7e:49:2b:12:8e:b3:03:c6:7d:29:f2:0b: 0a:da:ec:2f:b0:4e:52:18:2f:2d:a3:ec:f8:25:b2: a6:87:69:16:09:43:20:9c:d9:0d:c7:97:69:4b:fc: 3b:56:7d:ac:45:57:a2:f9:6c:60:9c:ad:2b:38:00: 02:03:6d:b6:5f:1f:3c:b6:e6:33:72:0e:56:37:ac: 0b:01:b2:e1:24:cb:50:41:17:a8:04:85:24:8c:e1: e3:13:2f:bf:1e:46:7c:66:e9:09:73:f9:fb:bd:94: 1f:3f:e6:15:6a:98:b7:a8:cb:f6:88:33:48:cd:1a: 48:8b:67:0f:e6:f2:4e:81:03:86:5a:2c:8b:2d:64: db:a7:36:3b:d8:8a:43:c7:99:99:31:dc:91:5f:7e: 2d:57:0f:89:79:05:e6:4c:34:90:6b:bf:1e:81:18: 0f:f2:3c:5e:21:2c:e1:34:e3:5c:98:cc:37:5b:2c: 5b:a7:57:ba:2d:88:a4:31:99:46:9b:1c:71:dd:39: 8a:98:62:64:20:df:de:f7:f6:75:24:82:27:80:83: c2:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:ED:E3:E8:9C:63:AB:A0:C2:2B:D7:13:C8:D9:C1:AD:C6:20:FF:5A X509v3 Authority Key Identifier: keyid:22:DF:31:75:B1:DD:32:31:17:E0:C1:9F:3F:6D:6A:1E:77:1F:9C:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/It8xdbHdMjEX4MGfP21qHncfnB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:ea:49:76:47:56:db:e7:45:09:7b:c9:21:d2:38:b9:7f:4d: b1:6f:5c:66:76:a8:ca:5e:36:29:9d:7f:52:1a:1a:c7:15:d0: 71:ea:c1:4f:94:a0:70:aa:45:13:5c:5a:6d:57:14:b6:67:66: 02:42:15:e5:6e:89:c1:d4:2d:8c:eb:2c:34:c4:cf:f3:fc:41: 0a:18:1a:9b:a2:bc:6b:71:84:a6:f0:31:48:cf:ad:c4:f9:dc: fc:5b:02:7e:fa:92:9f:23:e9:2b:0c:ad:63:b4:b6:92:97:b7: 5f:b8:2c:0c:e2:c1:c7:28:43:b2:ba:25:bb:6e:c4:18:0f:e9: c2:ba:d3:97:c6:b1:e5:75:40:71:2d:01:fe:5e:46:78:3b:c3: 33:2b:a7:67:b9:6a:e8:9a:3a:45:4a:5f:17:14:e5:4e:6f:bf: 55:76:09:1a:a0:fb:2e:87:f4:08:63:eb:d7:bc:4a:e1:37:8f: 8d:a6:c7:76:69:02:b1:80:a4:b5:eb:7e:4d:7d:8a:ba:bf:c9: f7:c0:88:55:65:a4:2d:51:af:ab:39:2e:fb:48:95:4b:c8:28: 82:32:65:40:f7:dc:0d:d2:02:0f:cf:f3:e3:de:16:cd:8d:83: 44:da:70:65:eb:53:f0:bd:33:28:c2:f0:2b:26:d2:1e:de:7d: 5c:db:bc:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE0OEIxMTAvBgNVBAUTKDIyREYzMTc1QjFERDMyMzExN0UwQzE5RjNGNkQ2QTFF NzcxRjlDMUYwHhcNMjUwNDI0MTgzMDIzWhcNMjUwNTAxMTgzMDIzWjAYMRYwFAYD VQQDEw02ODBhODM0MC1mZmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtMq9xZB1w0SKo3vR/OLPxZUDcrDBSPq1NS6Vx/jakJptdodGrr1zT7x0XuRk 2gZ+SSsSjrMDxn0p8gsK2uwvsE5SGC8to+z4JbKmh2kWCUMgnNkNx5dpS/w7Vn2s RVei+WxgnK0rOAACA222Xx88tuYzcg5WN6wLAbLhJMtQQReoBIUkjOHjEy+/HkZ8 ZukJc/n7vZQfP+YVapi3qMv2iDNIzRpIi2cP5vJOgQOGWiyLLWTbpzY72IpDx5mZ MdyRX34tVw+JeQXmTDSQa78egRgP8jxeISzhNONcmMw3Wyxbp1e6LYikMZlGmxxx 3TmKmGJkIN/e9/Z1JIIngIPCNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJvt4+ic Y6ugwivXE8jZwa3GIP9aMB8GA1UdIwQYMBaAFCLfMXWx3TIxF+DBnz9tah53H5wf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTQ4Qi8wNDk0MTBBRTA5 MTMxMUVBQkE0MUM3MzVDNEY5QUUwMi9JdDh4ZGJIZE1qRVg0TUdmUDIxcUhuY2Zu QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l0OHhkYkhkTWpFWDRNR2ZQMjFxSG5jZm5COC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTQ4Qi8wNDk0MTBBRTA5MTMxMUVBQkE0MUM3MzVDNEY5QUUwMi9JdDh4ZGJIZE1q RVg0TUdmUDIxcUhuY2ZuQjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCL6kl2R1bb50UJe8kh0ji5f02xb1xmdqjKXjYpnX9SGhrHFdBx6sFP lKBwqkUTXFptVxS2Z2YCQhXlbonB1C2M6yw0xM/z/EEKGBqborxrcYSm8DFIz63E +dz8WwJ++pKfI+krDK1jtLaSl7dfuCwM4sHHKEOyuiW7bsQYD+nCutOXxrHldUBx LQH+XkZ4O8MzK6dnuWromjpFSl8XFOVOb79VdgkaoPsuh/QIY+vXvErhN4+Npsd2 aQKxgKS1635NfYq6v8n3wIhVZaQtUa+rOS77SJVLyCiCMmVA99wN0gIPz/Pj3hbN jYNE2nBl61PwvTMowvArJtIe3n1c27zL -----END CERTIFICATE-----Generated at Sat Apr 26 14:18:29 2025 by rpki-client