$ rpki-client -vvf rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft File: iTEhgF-UFH033MbXS2N4Rvcjl8U.mft (raw, json) Hash identifier: MjUnC9GhGZv0m4RN4cwqbceaeYf1pkidFr87qqzAdj8= Subject key identifier: 6E:E4:C9:07:75:04:17:CD:5E:A3:9B:CD:57:01:7A:CF:DE:51:9D:FE Authority key identifier: 89:31:21:80:5F:94:14:7D:37:DC:C6:D7:4B:63:78:46:F7:23:97:C5 Certificate issuer: /CN=A917E00F/serialNumber=893121805F94147D37DCC6D74B637846F72397C5 Certificate serial: 0542 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iTEhgF-UFH033MbXS2N4Rvcjl8U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft Manifest number: 0630 Signing time: Thu 24 Apr 2025 23:14:21 +0000 Manifest this update: Thu 24 Apr 2025 23:14:20 +0000 Manifest next update: Thu 01 May 2025 23:14:20 +0000 Files and hashes: 1: iTEhgF-UFH033MbXS2N4Rvcjl8U.crl (hash: hvqjzR1K2Hp9erTmHcXEeuzSk8r6BzXMi5wgRmGCfnA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.crl rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iTEhgF-UFH033MbXS2N4Rvcjl8U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:14:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1346 (0x542) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E00F, serialNumber=893121805F94147D37DCC6D74B637846F72397C5 Validity Not Before: Apr 24 23:14:20 2025 GMT Not After : May 1 23:14:20 2025 GMT Subject: CN=680ac5cc-97c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:44:b9:a0:a1:1d:52:71:d2:e5:66:30:12:8d: a1:9f:1f:cf:82:d7:68:fe:01:5f:d9:f6:cd:2f:70: 0c:8b:c9:0c:0d:99:7e:1f:04:49:61:b9:4a:2b:71: 8e:37:c9:5b:5e:66:c1:47:c3:f7:c5:af:ba:13:d0: a7:86:95:5d:b3:12:9e:bc:b4:c8:0c:da:e8:81:1f: 63:59:ad:2a:57:db:9f:fb:01:97:00:ad:55:88:7e: 94:78:42:fe:e2:5d:a1:66:42:47:ad:ae:3a:d9:aa: 9b:ce:62:74:1c:de:ee:64:73:bc:45:4f:4f:6b:ab: 51:19:b3:f7:2e:1f:80:64:2d:b2:85:0f:26:73:9d: 50:4e:01:50:a6:4d:3d:56:b4:9c:fc:77:e6:83:73: 19:61:a0:81:e5:06:a5:0f:51:8a:3c:cf:8f:9b:07: 5a:10:8d:48:10:69:de:d9:21:31:6f:30:b4:a2:c6: 31:af:bc:bf:42:c3:ed:42:44:ea:aa:7a:30:31:e8: 46:b1:a6:92:f9:da:42:30:15:36:84:62:91:c9:8b: 9f:46:61:51:cd:1c:3f:d0:a9:1b:95:61:ee:fa:a7: f8:50:fd:59:a3:1e:d9:fb:0a:f5:4a:af:75:db:28: 07:9d:a8:f6:1e:2a:ce:46:1a:1f:32:b8:7f:db:35: 19:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:E4:C9:07:75:04:17:CD:5E:A3:9B:CD:57:01:7A:CF:DE:51:9D:FE X509v3 Authority Key Identifier: keyid:89:31:21:80:5F:94:14:7D:37:DC:C6:D7:4B:63:78:46:F7:23:97:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iTEhgF-UFH033MbXS2N4Rvcjl8U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:72:ef:9c:88:d7:96:5f:3a:5d:55:a8:2c:ea:97:2c:dc:24: 50:3b:be:53:cf:a1:b0:32:08:73:1e:ad:d1:b4:1f:04:cc:0a: a4:72:c4:32:50:f7:bc:31:2e:e1:a2:13:63:e9:f7:81:87:96: 27:ba:64:d5:ae:57:9e:a4:86:9a:3c:11:3d:d6:d1:80:cd:12: 81:f2:05:03:72:34:f8:63:ff:7c:75:2c:23:0e:3a:70:c8:fa: e7:25:cc:a0:4d:27:a4:48:ad:f5:35:00:05:e0:32:9c:92:b5: 7b:c6:b8:88:83:28:d4:cd:4e:f1:36:3f:cc:17:4d:6e:c5:a1: 8b:cb:22:42:95:b6:a3:8d:70:8c:0f:ec:2f:49:b1:f1:2b:94: 71:8f:5a:09:82:b1:32:31:4f:16:90:4c:d9:40:13:2c:10:7b: 70:73:53:0b:2c:f8:9c:4c:53:b1:f1:9a:d4:ff:9f:0c:c5:06: f1:26:c0:e4:d5:e8:2a:c4:dd:23:d9:0b:f8:9c:23:cf:39:ae: 32:7e:18:25:ea:dd:1b:43:85:9d:bb:22:a5:a5:6f:1e:8a:3a: 5f:ec:9d:71:f1:2e:aa:88:c7:74:32:74:13:34:90:6c:46:d2: 72:97:42:d5:56:8a:16:e0:03:63:c3:a6:e9:62:4c:58:07:3b: c6:5b:b1:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwMEYxMTAvBgNVBAUTKDg5MzEyMTgwNUY5NDE0N0QzN0RDQzZENzRCNjM3ODQ2 RjcyMzk3QzUwHhcNMjUwNDI0MjMxNDIwWhcNMjUwNTAxMjMxNDIwWjAYMRYwFAYD VQQDEw02ODBhYzVjYy05N2M1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvES5oKEdUnHS5WYwEo2hnx/Pgtdo/gFf2fbNL3AMi8kMDZl+HwRJYblKK3GO N8lbXmbBR8P3xa+6E9CnhpVdsxKevLTIDNrogR9jWa0qV9uf+wGXAK1ViH6UeEL+ 4l2hZkJHra462aqbzmJ0HN7uZHO8RU9Pa6tRGbP3Lh+AZC2yhQ8mc51QTgFQpk09 VrSc/Hfmg3MZYaCB5QalD1GKPM+PmwdaEI1IEGne2SExbzC0osYxr7y/QsPtQkTq qnowMehGsaaS+dpCMBU2hGKRyYufRmFRzRw/0KkblWHu+qf4UP1Zox7Z+wr1Sq91 2ygHnaj2HirORhofMrh/2zUZnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG7kyQd1 BBfNXqObzVcBes/eUZ3+MB8GA1UdIwQYMBaAFIkxIYBflBR9N9zG10tjeEb3I5fF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTAwRi9FREU0OEI5Q0VF MjkxMUVCODA4NEI2MzhDNEY5QUUwMi9pVEVoZ0YtVUZIMDMzTWJYUzJONFJ2Y2ps OFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lURWhnRi1VRkgwMzNNYlhTMk40UnZjamw4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTAwRi9FREU0OEI5Q0VFMjkxMUVCODA4NEI2MzhDNEY5QUUwMi9pVEVoZ0YtVUZI MDMzTWJYUzJONFJ2Y2psOFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUcu+ciNeWXzpdVags6pcs3CRQO75Tz6GwMghzHq3RtB8EzAqkcsQy UPe8MS7hohNj6feBh5YnumTVrleepIaaPBE91tGAzRKB8gUDcjT4Y/98dSwjDjpw yPrnJcygTSekSK31NQAF4DKckrV7xriIgyjUzU7xNj/MF01uxaGLyyJClbajjXCM D+wvSbHxK5Rxj1oJgrEyMU8WkEzZQBMsEHtwc1MLLPicTFOx8ZrU/58MxQbxJsDk 1egqxN0j2Qv4nCPPOa4yfhgl6t0bQ4WduyKlpW8eijpf7J1x8S6qiMd0MnQTNJBs RtJyl0LVVooW4ANjw6bpYkxYBzvGW7E6 -----END CERTIFICATE-----Generated at Sat Apr 26 05:01:30 2025 by rpki-client