$ rpki-client -vvf rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft File: IqYsFNK9MuPlltij5iu8MnRGj5k.mft (raw, json) Hash identifier: K8Vf5BGrPSV7UGX89Ksxjy8zVnaUflvCYKcV/nzswpw= Subject key identifier: BE:91:51:DB:68:66:29:F7:FD:55:C7:27:87:21:F1:F5:BF:E0:F7:57 Authority key identifier: 22:A6:2C:14:D2:BD:32:E3:E5:96:D8:A3:E6:2B:BC:32:74:46:8F:99 Certificate issuer: /CN=A9178EA7/serialNumber=22A62C14D2BD32E3E596D8A3E62BBC3274468F99 Certificate serial: A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IqYsFNK9MuPlltij5iu8MnRGj5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft Manifest number: 9D Signing time: Fri 25 Apr 2025 05:18:03 +0000 Manifest this update: Fri 25 Apr 2025 05:18:02 +0000 Manifest next update: Fri 02 May 2025 05:18:02 +0000 Files and hashes: 1: IqYsFNK9MuPlltij5iu8MnRGj5k.crl (hash: lZs4iqcO7D/Upl2UzWKyN01yhGmTqa5Tn69wwP516GM=) 2: 1DD85DA2386311EFB10A6A1CC4F9AE02.roa (hash: wZz+OlqUMy/mBTlpV+JPL6/+u7+0FBG8gjwEC4u2wAU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.crl rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IqYsFNK9MuPlltij5iu8MnRGj5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:18:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178EA7, serialNumber=22A62C14D2BD32E3E596D8A3E62BBC3274468F99 Validity Not Before: Apr 25 05:18:02 2025 GMT Not After : May 2 05:18:02 2025 GMT Subject: CN=680b1b0b-f043 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:d3:3d:36:62:64:f4:15:0b:2d:68:7f:ee:cd: 6b:a5:82:d9:7a:c4:f2:4c:8b:f6:84:75:12:d3:b9: 95:69:23:78:88:1a:fb:05:4b:8e:bc:f4:85:43:9b: 0b:6d:44:0e:5d:a7:bd:ae:3b:27:0f:20:a8:92:c7: d4:8f:c9:ec:9d:75:cb:c8:9d:9c:3e:99:fd:0c:85: 62:ea:e9:d1:84:a1:91:9d:e1:52:01:13:4e:f4:b2: d5:83:dc:30:0b:86:db:23:2e:30:15:7e:f8:30:99: 20:88:67:75:f4:f4:ea:ab:0b:8b:85:0c:c9:e1:4e: 7b:9e:db:09:6b:89:78:71:b2:0f:61:8f:85:09:10: 76:23:07:36:b2:55:26:7f:a9:de:3f:5e:78:54:bc: 82:05:45:a1:dc:81:c1:7e:2b:bc:75:bc:06:6b:25: 7c:d0:a4:2f:40:78:94:9a:6c:61:12:94:11:3a:d0: af:2f:cc:a3:50:cd:98:ac:10:42:2d:ff:67:9f:05: 25:ad:c3:59:92:fa:5f:d7:5f:2b:ef:13:5b:ce:68: 62:da:39:75:35:8f:84:9d:14:05:52:24:1d:b0:67: 83:2c:53:7a:b4:24:2a:6f:db:2d:dc:77:79:13:90: 21:6f:6f:3a:a1:3c:ac:6a:46:9b:84:39:86:26:f8: 0d:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:91:51:DB:68:66:29:F7:FD:55:C7:27:87:21:F1:F5:BF:E0:F7:57 X509v3 Authority Key Identifier: keyid:22:A6:2C:14:D2:BD:32:E3:E5:96:D8:A3:E6:2B:BC:32:74:46:8F:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IqYsFNK9MuPlltij5iu8MnRGj5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:99:bd:76:c7:ae:eb:b2:bf:44:a5:de:7b:16:0a:b9:48:8e: 4c:aa:90:57:68:f9:83:94:29:6b:68:1c:cf:bb:e1:1b:1e:4d: 80:48:c3:98:32:f6:14:5d:31:1a:48:cf:30:47:44:05:f0:ad: f6:c0:e9:a4:53:6f:e4:78:06:de:05:32:5a:a1:e6:f7:ff:8b: 31:93:68:6a:e2:b0:d1:2d:ca:8e:6a:98:f8:b7:fb:d9:27:66: c7:d3:0e:ff:38:1b:77:8b:9c:bd:2a:67:ac:c6:cf:9b:99:fa: c4:18:bb:73:99:66:18:62:dc:f6:73:69:58:60:d7:4d:28:a0: 27:52:e4:68:75:7b:99:09:17:bc:25:11:83:62:c0:1a:02:dd: 6f:04:63:14:f1:c4:1f:a2:04:d0:20:da:9f:ff:5a:4b:62:70: eb:40:1a:d8:c3:14:d7:b9:c8:1e:cd:29:02:58:88:26:e0:11: b0:66:bc:c8:c4:bd:d1:05:e7:ae:70:9c:92:66:09:b0:f0:8b: bd:2b:28:b1:c0:a4:72:a6:3e:f7:3a:ee:72:cb:12:4a:17:97: 80:e9:72:fe:bf:4e:80:99:17:44:45:c3:87:0b:a6:25:bc:6c: 4d:1b:7f:8f:5b:92:7b:46:33:19:ba:30:0e:63:b4:d6:d5:5c: d1:dd:7c:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhFQTcxMTAvBgNVBAUTKDIyQTYyQzE0RDJCRDMyRTNFNTk2RDhBM0U2MkJCQzMy NzQ0NjhGOTkwHhcNMjUwNDI1MDUxODAyWhcNMjUwNTAyMDUxODAyWjAYMRYwFAYD VQQDEw02ODBiMWIwYi1mMDQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz9M9NmJk9BULLWh/7s1rpYLZesTyTIv2hHUS07mVaSN4iBr7BUuOvPSFQ5sL bUQOXae9rjsnDyCoksfUj8nsnXXLyJ2cPpn9DIVi6unRhKGRneFSARNO9LLVg9ww C4bbIy4wFX74MJkgiGd19PTqqwuLhQzJ4U57ntsJa4l4cbIPYY+FCRB2Iwc2slUm f6neP154VLyCBUWh3IHBfiu8dbwGayV80KQvQHiUmmxhEpQROtCvL8yjUM2YrBBC Lf9nnwUlrcNZkvpf118r7xNbzmhi2jl1NY+EnRQFUiQdsGeDLFN6tCQqb9st3Hd5 E5Ahb286oTysakabhDmGJvgNVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL6RUdto Zin3/VXHJ4ch8fW/4PdXMB8GA1UdIwQYMBaAFCKmLBTSvTLj5ZbYo+YrvDJ0Ro+Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEVBNy9CMUIzRTJENjM4 NjIxMUVGOUUxN0U4NkZDNEY5QUUwMi9JcVlzRk5LOU11UGxsdGlqNWl1OE1uUkdq NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lxWXNGTks5TXVQbGx0aWo1aXU4TW5SR2o1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OEVBNy9CMUIzRTJENjM4NjIxMUVGOUUxN0U4NkZDNEY5QUUwMi9JcVlzRk5LOU11 UGxsdGlqNWl1OE1uUkdqNWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGmb12x67rsr9Epd57Fgq5SI5MqpBXaPmDlClraBzPu+EbHk2ASMOY MvYUXTEaSM8wR0QF8K32wOmkU2/keAbeBTJaoeb3/4sxk2hq4rDRLcqOapj4t/vZ J2bH0w7/OBt3i5y9Kmesxs+bmfrEGLtzmWYYYtz2c2lYYNdNKKAnUuRodXuZCRe8 JRGDYsAaAt1vBGMU8cQfogTQINqf/1pLYnDrQBrYwxTXucgezSkCWIgm4BGwZrzI xL3RBeeucJySZgmw8Iu9KyixwKRypj73Ou5yyxJKF5eA6XL+v06AmRdERcOHC6Yl vGxNG3+PW5J7RjMZujAOY7TW1VzR3Xxc -----END CERTIFICATE-----Generated at Sat Apr 26 15:02:54 2025 by rpki-client