$ rpki-client -vvf rpki.apnic.net/member_repository/A91829E3/C45F60DA143711EAACF9FA33C4F9AE02/I9INognIlcMA7mtlm2sYKZJfvU8.mft File: I9INognIlcMA7mtlm2sYKZJfvU8.mft (raw, json) Hash identifier: WESQPId1H230OV7DbqBPUKb6yJObSvp4oUXqGTWJfZ8= Subject key identifier: 55:74:3A:1E:98:36:4D:3E:F1:80:85:B8:4B:16:71:BD:7E:78:BC:D9 Authority key identifier: 23:D2:0D:A2:09:C8:95:C3:00:EE:6B:65:9B:6B:18:29:92:5F:BD:4F Certificate issuer: /CN=A91829E3/serialNumber=23D20DA209C895C300EE6B659B6B1829925FBD4F Certificate serial: 0C0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9INognIlcMA7mtlm2sYKZJfvU8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91829E3/C45F60DA143711EAACF9FA33C4F9AE02/I9INognIlcMA7mtlm2sYKZJfvU8.mft Manifest number: 0BF7 Signing time: Thu 24 Apr 2025 18:42:24 +0000 Manifest this update: Thu 24 Apr 2025 18:42:23 +0000 Manifest next update: Thu 01 May 2025 18:42:23 +0000 Files and hashes: 1: I9INognIlcMA7mtlm2sYKZJfvU8.crl (hash: ZN8yOkZ+n6PNwamFwoSMMQmIMQPYoUmEYCLb71lGHEI=) 2: 7B96F1340C6011F088E6FD2FC4F9AE02.roa (hash: FmIgsBhn26Msitd9uYBqz2EKKDjWry4yTM+2My3/Yyg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91829E3/C45F60DA143711EAACF9FA33C4F9AE02/I9INognIlcMA7mtlm2sYKZJfvU8.crl rsync://rpki.apnic.net/member_repository/A91829E3/C45F60DA143711EAACF9FA33C4F9AE02/I9INognIlcMA7mtlm2sYKZJfvU8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9INognIlcMA7mtlm2sYKZJfvU8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:42:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3084 (0xc0c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91829E3, serialNumber=23D20DA209C895C300EE6B659B6B1829925FBD4F Validity Not Before: Apr 24 18:42:23 2025 GMT Not After : May 1 18:42:23 2025 GMT Subject: CN=680a8610-be50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:bf:ca:0b:68:f3:89:64:03:bf:c1:58:9f:6d: 93:27:0d:68:a3:ae:09:08:59:7f:98:45:00:82:24: 50:0d:f2:88:9e:4b:73:1f:48:e7:57:07:55:c3:1e: 40:e5:32:5b:94:77:3d:10:5b:0f:ec:b4:01:e5:2e: 76:b2:e0:14:49:52:b7:49:b8:96:1c:61:32:cd:52: 83:d1:b7:f4:b8:90:c9:54:9c:fb:98:29:97:f6:e8: 04:93:4e:e8:a0:56:47:20:9d:2d:4b:00:37:66:37: 5b:91:62:44:84:51:73:2b:43:a6:df:c8:3e:93:f3: b7:aa:7d:aa:8c:e5:ee:c7:b1:79:e2:c9:80:82:da: 98:ce:dc:52:a3:e1:4a:c4:85:20:1b:23:b5:36:dd: 99:d0:00:29:ec:17:94:04:75:ea:b0:54:92:55:40: a0:47:63:4a:3e:79:f3:32:56:d1:b5:35:dd:71:8c: d2:04:75:24:28:a0:75:05:6d:e2:f5:3f:35:c0:e3: df:2c:8f:27:b5:ed:e0:cb:6d:08:d4:9f:a3:af:a2: 55:4d:51:70:01:02:4a:5c:dc:e1:2c:2e:57:a0:b7: 83:08:c3:50:e5:9b:a8:1e:67:bc:29:a0:be:f8:e2: 36:2b:c8:c5:46:59:0b:8b:d0:c0:c9:e6:a9:a6:82: 29:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:74:3A:1E:98:36:4D:3E:F1:80:85:B8:4B:16:71:BD:7E:78:BC:D9 X509v3 Authority Key Identifier: keyid:23:D2:0D:A2:09:C8:95:C3:00:EE:6B:65:9B:6B:18:29:92:5F:BD:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91829E3/C45F60DA143711EAACF9FA33C4F9AE02/I9INognIlcMA7mtlm2sYKZJfvU8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9INognIlcMA7mtlm2sYKZJfvU8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91829E3/C45F60DA143711EAACF9FA33C4F9AE02/I9INognIlcMA7mtlm2sYKZJfvU8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:e0:5f:f1:0c:7e:22:f3:17:9d:33:72:27:25:29:f1:01:d2: e1:c1:20:50:05:10:95:e8:71:d2:ee:06:3b:8a:6d:10:8c:dd: 1a:9d:05:49:09:bb:bd:7a:2c:70:5c:0b:70:de:32:17:ad:0c: 7f:86:63:a8:35:68:eb:e7:eb:5c:1c:75:c1:a1:d0:88:4a:c9: 49:1d:61:8a:bd:06:49:f3:50:c0:3f:df:9b:83:c5:ce:a8:bb: 0e:f1:fb:5d:bd:7f:05:9f:4d:80:fa:01:8c:fe:7f:d2:e8:86: 75:0d:af:50:7a:a3:0b:c2:8f:ab:0e:00:d5:66:2d:93:70:eb: 0a:ea:b9:49:e3:d1:8e:8a:12:79:f7:cb:3e:ee:aa:49:8f:bd: f9:db:ec:50:40:d2:79:65:61:d5:fd:f4:3f:46:6f:a3:fb:ba: 18:2f:b6:78:ea:62:30:bf:12:71:a2:9c:38:45:f6:2f:a3:c0: 75:be:5f:41:a6:45:d5:eb:e9:25:79:4e:c6:a7:ad:00:8c:0c: ea:0f:a5:b2:43:53:e9:66:0a:68:f6:f9:12:a9:4e:10:c5:d4: ee:6f:46:af:19:ae:d8:4e:a2:8d:76:11:ec:a6:0b:2b:38:eb: f7:b4:d1:8a:b3:86:f3:87:1f:c8:ea:48:e5:4b:10:16:31:f9: 9b:d7:f3:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI5RTMxMTAvBgNVBAUTKDIzRDIwREEyMDlDODk1QzMwMEVFNkI2NTlCNkIxODI5 OTI1RkJENEYwHhcNMjUwNDI0MTg0MjIzWhcNMjUwNTAxMTg0MjIzWjAYMRYwFAYD VQQDEw02ODBhODYxMC1iZTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3L/KC2jziWQDv8FYn22TJw1oo64JCFl/mEUAgiRQDfKInktzH0jnVwdVwx5A 5TJblHc9EFsP7LQB5S52suAUSVK3SbiWHGEyzVKD0bf0uJDJVJz7mCmX9ugEk07o oFZHIJ0tSwA3ZjdbkWJEhFFzK0Om38g+k/O3qn2qjOXux7F54smAgtqYztxSo+FK xIUgGyO1Nt2Z0AAp7BeUBHXqsFSSVUCgR2NKPnnzMlbRtTXdcYzSBHUkKKB1BW3i 9T81wOPfLI8nte3gy20I1J+jr6JVTVFwAQJKXNzhLC5XoLeDCMNQ5ZuoHme8KaC+ +OI2K8jFRlkLi9DAyeappoIpzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFV0Oh6Y Nk0+8YCFuEsWcb1+eLzZMB8GA1UdIwQYMBaAFCPSDaIJyJXDAO5rZZtrGCmSX71P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjlFMy9DNDVGNjBEQTE0 MzcxMUVBQUNGOUZBMzNDNEY5QUUwMi9JOUlOb2duSWxjTUE3bXRsbTJzWUtaSmZ2 VTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0k5SU5vZ25JbGNNQTdtdGxtMnNZS1pKZnZVOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjlFMy9DNDVGNjBEQTE0MzcxMUVBQUNGOUZBMzNDNEY5QUUwMi9JOUlOb2duSWxj TUE3bXRsbTJzWUtaSmZ2VTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCH4F/xDH4i8xedM3InJSnxAdLhwSBQBRCV6HHS7gY7im0QjN0anQVJ Cbu9eixwXAtw3jIXrQx/hmOoNWjr5+tcHHXBodCISslJHWGKvQZJ81DAP9+bg8XO qLsO8ftdvX8Fn02A+gGM/n/S6IZ1Da9QeqMLwo+rDgDVZi2TcOsK6rlJ49GOihJ5 98s+7qpJj7352+xQQNJ5ZWHV/fQ/Rm+j+7oYL7Z46mIwvxJxopw4RfYvo8B1vl9B pkXV6+kleU7Gp60AjAzqD6WyQ1PpZgpo9vkSqU4QxdTub0avGa7YTqKNdhHspgsr OOv3tNGKs4bzhx/I6kjlSxAWMfmb1/OM -----END CERTIFICATE-----Generated at Sat Apr 26 13:36:29 2025 by rpki-client