$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft File: IokuPYxEn1qaxkz8tjS1n2xTE2s.mft (raw, json) Hash identifier: piBGCcQeKGcfI7g9XwFxeyYjfhbRrJPq9YAPg8x3GxI= Subject key identifier: 10:11:C7:1F:62:D7:F9:87:55:D7:2A:EB:79:05:79:94:7F:F6:68:15 Authority key identifier: 22:89:2E:3D:8C:44:9F:5A:9A:C6:4C:FC:B6:34:B5:9F:6C:53:13:6B Certificate issuer: /CN=A917BB59/serialNumber=22892E3D8C449F5A9AC64CFCB634B59F6C53136B Certificate serial: 0784 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft Manifest number: 0779 Signing time: Thu 24 Apr 2025 21:15:21 +0000 Manifest this update: Thu 24 Apr 2025 21:15:20 +0000 Manifest next update: Thu 01 May 2025 21:15:20 +0000 Files and hashes: 1: IokuPYxEn1qaxkz8tjS1n2xTE2s.crl (hash: +hS4eLiuycifh4GjqLX4H7SZFWucxO9U+pTKleoMYP0=) 2: 7BF36C680DCB11EBA17D032EC4F9AE02.roa (hash: TZy3mzqffsTM4n4Rbmohmuv3VCPWE9WJRvRzq53CbvQ=) 3: 8FEA9564C2AE11EB94777A0CC4F9AE02.roa (hash: IPmClsdSMbassfXddv44p/mv8kyQ7PdScutwrTiO+q0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.crl rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:15:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1924 (0x784) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB59, serialNumber=22892E3D8C449F5A9AC64CFCB634B59F6C53136B Validity Not Before: Apr 24 21:15:20 2025 GMT Not After : May 1 21:15:20 2025 GMT Subject: CN=680aa9e9-ab8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:1d:c1:bd:46:3d:ba:60:35:eb:94:55:99:a7: 70:3e:e9:d8:9d:67:ca:93:4d:a0:f9:a8:a6:60:18: e4:5e:1e:6d:af:97:e5:63:98:5f:9b:f0:24:51:5f: 12:2d:4c:33:ef:94:24:b5:b9:f5:cc:ce:61:2f:ca: 6a:d9:f7:0f:10:5a:68:5f:78:06:6a:50:8b:55:5b: 2a:c0:44:b1:d8:88:42:c7:56:46:a1:33:ef:6f:d7: b8:d8:67:ca:63:62:73:78:9e:95:33:c8:4c:80:4c: 07:3b:7c:73:5e:18:4e:25:d3:d3:c0:62:07:f4:be: 43:22:5c:1f:a2:bf:bc:fc:9d:33:08:77:ad:d0:65: fd:f3:f1:0f:5f:58:38:e2:75:11:4c:c4:13:38:88: fd:ee:54:ce:5c:98:45:3a:1a:e4:8f:47:a9:cb:30: a8:5a:ea:fa:e7:f6:16:fa:5b:c7:73:0c:00:d9:ce: e9:96:cf:44:fc:90:47:7c:44:5f:1d:35:32:23:84: 55:1c:9f:ac:15:20:a5:76:6a:fe:57:4d:ee:42:5e: 7a:e2:40:63:e3:97:7f:34:15:c2:5e:ea:98:b4:cb: d0:c3:ea:42:f6:0d:93:8a:9c:e7:6c:4b:0b:5d:5d: 4a:1c:b9:79:70:10:a3:27:06:05:c5:fd:13:d0:7c: 9c:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:11:C7:1F:62:D7:F9:87:55:D7:2A:EB:79:05:79:94:7F:F6:68:15 X509v3 Authority Key Identifier: keyid:22:89:2E:3D:8C:44:9F:5A:9A:C6:4C:FC:B6:34:B5:9F:6C:53:13:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:85:7d:22:cf:a2:bb:38:e1:5e:7b:fd:e5:f6:0e:d5:a9:10: a2:89:94:4f:cb:ac:ce:cb:9f:ff:2a:c6:ed:cf:d5:f7:f4:d6: 42:3a:cb:0d:ad:4f:e0:24:fb:47:2a:5b:d6:4a:46:15:8d:14: 7b:16:0a:dd:85:d2:8b:80:f3:bf:09:40:99:34:f8:9d:16:df: de:87:fd:93:27:d4:75:b7:2d:cd:2b:6b:de:14:b5:d7:00:65: a5:21:a9:b6:c0:4d:d5:e1:d7:73:4f:e4:e2:d5:13:7f:5e:55: 9f:b5:84:d5:ad:a7:d8:7b:ea:96:ab:71:fa:19:dd:0b:2a:90: 04:41:0a:f2:0a:ac:f5:dc:ca:1c:d1:9c:52:b4:ea:74:3f:c3: be:2b:09:b1:bc:e5:86:47:a9:e4:a6:c6:fd:b5:aa:f3:d4:32: 44:00:83:77:ac:0f:f7:e8:76:24:e4:6b:61:c3:ae:61:61:58: ba:f9:1f:4f:c9:a9:3d:dc:8d:9a:cd:30:11:7b:d6:7e:91:dd: 9e:90:40:35:24:f4:86:7e:5d:b2:0a:43:8e:78:b0:40:4d:4b: b0:56:2b:8d:a5:71:02:a1:94:c3:06:96:6d:13:7c:2b:83:26: ab:82:55:1d:96:b3:80:f3:01:6f:ed:93:08:a1:75:98:dc:90: c0:6e:d9:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCNTkxMTAvBgNVBAUTKDIyODkyRTNEOEM0NDlGNUE5QUM2NENGQ0I2MzRCNTlG NkM1MzEzNkIwHhcNMjUwNDI0MjExNTIwWhcNMjUwNTAxMjExNTIwWjAYMRYwFAYD VQQDEw02ODBhYTllOS1hYjhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwh3BvUY9umA165RVmadwPunYnWfKk02g+aimYBjkXh5tr5flY5hfm/AkUV8S LUwz75Qktbn1zM5hL8pq2fcPEFpoX3gGalCLVVsqwESx2IhCx1ZGoTPvb9e42GfK Y2JzeJ6VM8hMgEwHO3xzXhhOJdPTwGIH9L5DIlwfor+8/J0zCHet0GX98/EPX1g4 4nURTMQTOIj97lTOXJhFOhrkj0epyzCoWur65/YW+lvHcwwA2c7pls9E/JBHfERf HTUyI4RVHJ+sFSCldmr+V03uQl564kBj45d/NBXCXuqYtMvQw+pC9g2TipznbEsL XV1KHLl5cBCjJwYFxf0T0HycOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBARxx9i 1/mHVdcq63kFeZR/9mgVMB8GA1UdIwQYMBaAFCKJLj2MRJ9amsZM/LY0tZ9sUxNr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkI1OS9CNjhCOTBENjBE Q0ExMUVCQTdDMkUyMkRDNEY5QUUwMi9Jb2t1UFl4RW4xcWF4a3o4dGpTMW4yeFRF MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lva3VQWXhFbjFxYXhrejh0alMxbjJ4VEUycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkI1OS9CNjhCOTBENjBEQ0ExMUVCQTdDMkUyMkRDNEY5QUUwMi9Jb2t1UFl4RW4x cWF4a3o4dGpTMW4yeFRFMnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBghX0iz6K7OOFee/3l9g7VqRCiiZRPy6zOy5//Ksbtz9X39NZCOssN rU/gJPtHKlvWSkYVjRR7FgrdhdKLgPO/CUCZNPidFt/eh/2TJ9R1ty3NK2veFLXX AGWlIam2wE3V4ddzT+Ti1RN/XlWftYTVrafYe+qWq3H6Gd0LKpAEQQryCqz13Moc 0ZxStOp0P8O+KwmxvOWGR6nkpsb9tarz1DJEAIN3rA/36HYk5Gthw65hYVi6+R9P yak93I2azTARe9Z+kd2ekEA1JPSGfl2yCkOOeLBATUuwViuNpXECoZTDBpZtE3wr gyarglUdlrOA8wFv7ZMIoXWY3JDAbtlF -----END CERTIFICATE-----Generated at Sat Apr 26 04:32:21 2025 by rpki-client