$ rpki-client -vvf rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft File: iifxtRRZ_TbLLIBghxxVOPnSPX4.mft (raw, json) Hash identifier: K0whfCckfPJhOoz/xAj/8PqjxxNYB5vNxSIprSR9h6w= Subject key identifier: 8B:67:7F:B9:38:C3:0B:31:68:04:81:EC:0E:F2:7C:90:7C:8F:F4:E7 Authority key identifier: 8A:27:F1:B5:14:59:FD:36:CB:2C:80:60:87:1C:55:38:F9:D2:3D:7E Certificate issuer: /CN=A918AACD/serialNumber=8A27F1B51459FD36CB2C8060871C5538F9D23D7E Certificate serial: B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iifxtRRZ_TbLLIBghxxVOPnSPX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft Manifest number: AF Signing time: Fri 25 Apr 2025 05:04:38 +0000 Manifest this update: Fri 25 Apr 2025 05:04:38 +0000 Manifest next update: Fri 02 May 2025 05:04:38 +0000 Files and hashes: 1: iifxtRRZ_TbLLIBghxxVOPnSPX4.crl (hash: 8i8T7rXhCGY+fmZTbY6WGfYAA5AyaecRiepK+QGkHeU=) 2: 7DA22F2C199D11EFB19DA380C4F9AE02.roa (hash: A08tXG6MBFf3Rb9oSP5OxY5ld6uWXfT6PhOoxgfD4Yk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.crl rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iifxtRRZ_TbLLIBghxxVOPnSPX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:04:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 176 (0xb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AACD, serialNumber=8A27F1B51459FD36CB2C8060871C5538F9D23D7E Validity Not Before: Apr 25 05:04:38 2025 GMT Not After : May 2 05:04:38 2025 GMT Subject: CN=680b17e6-4ae7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b3:9c:2b:09:95:d6:ec:97:c3:ee:15:9c:65: 40:4e:25:1a:9c:5a:81:68:6e:55:7a:28:cf:7d:35: c5:4d:6a:0f:10:66:89:e3:e8:5d:48:96:1b:ce:e6: 7b:46:ae:d7:ec:57:e5:49:57:a9:d8:af:1b:e8:ef: 20:d7:ea:bf:e4:04:9b:2c:78:14:4f:27:42:7b:84: a8:ba:b7:14:3f:e8:b9:ee:4f:4f:3a:de:00:9b:e8: 99:de:14:1b:d2:9e:bc:e2:df:b1:65:9f:ce:38:07: 00:e9:b0:14:92:3f:a6:5d:7f:7d:46:b1:6e:3f:c7: 3f:a2:9b:f0:ff:49:a8:2c:75:c5:40:41:e6:a5:eb: 7f:bc:09:79:78:88:44:c3:6e:88:1d:f6:a1:36:d6: a1:e4:f3:f0:ee:64:7e:05:12:a7:3c:23:67:bb:58: 1c:6c:ca:98:94:8d:79:0f:dd:8a:0a:b6:d5:05:a4: d9:36:ba:b4:25:2d:8e:8b:5e:69:e1:48:a9:36:61: 6d:f3:10:29:3c:86:a4:26:21:c7:e4:f2:8d:17:e3: c4:fd:b7:b7:7d:60:44:67:7e:39:c0:de:5d:06:bd: db:6b:5e:99:57:fe:5b:49:6d:ce:b4:a4:1d:52:f1: 89:27:6b:d8:b8:77:fc:a4:b2:46:1c:95:97:f3:7b: f6:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:67:7F:B9:38:C3:0B:31:68:04:81:EC:0E:F2:7C:90:7C:8F:F4:E7 X509v3 Authority Key Identifier: keyid:8A:27:F1:B5:14:59:FD:36:CB:2C:80:60:87:1C:55:38:F9:D2:3D:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iifxtRRZ_TbLLIBghxxVOPnSPX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:43:95:9b:64:f2:5e:e3:ed:55:14:21:e1:12:de:3a:1d:a3: f0:ca:49:f7:81:2f:8b:24:0a:d4:2e:4e:36:a9:93:17:14:cf: 16:46:7c:62:60:02:0a:53:67:f0:8a:e4:c6:fa:cb:1c:73:2f: ab:59:4f:83:1b:d6:cb:2d:df:de:fd:90:e5:f3:14:f7:b5:8d: 58:f6:9c:f3:c1:a8:ec:da:88:ae:8c:fb:06:54:0f:06:54:cb: 60:b9:f1:59:91:51:a3:24:74:d6:1f:99:eb:3d:b6:ab:5e:a5: c6:e3:5d:a1:fe:aa:15:bb:63:6e:80:8f:21:d4:de:74:fd:68: d6:7d:24:f3:23:0d:9b:2d:c2:9d:0b:2e:31:10:90:23:17:0d: d3:ef:06:1b:d4:b3:04:fd:41:03:3f:5c:f2:7d:7e:cd:37:77: 05:08:f2:27:19:06:6a:9d:38:d2:8d:05:b6:ca:80:18:0b:6f: fc:7c:ce:fc:33:94:4b:fc:ef:42:54:6c:6b:f8:ff:b2:25:d8: 26:ee:c1:b0:8b:89:be:e7:3e:9d:8b:2a:f0:a3:33:d5:7a:2d: 49:ce:d7:85:6a:6b:a0:d8:80:28:34:5a:c4:d8:53:a8:86:20: 8a:fa:7c:7d:5c:f7:a8:f0:cc:8c:ee:1a:cf:33:9c:03:68:cc: f2:9e:a5:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFBQ0QxMTAvBgNVBAUTKDhBMjdGMUI1MTQ1OUZEMzZDQjJDODA2MDg3MUM1NTM4 RjlEMjNEN0UwHhcNMjUwNDI1MDUwNDM4WhcNMjUwNTAyMDUwNDM4WjAYMRYwFAYD VQQDEw02ODBiMTdlNi00YWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArbOcKwmV1uyXw+4VnGVATiUanFqBaG5VeijPfTXFTWoPEGaJ4+hdSJYbzuZ7 Rq7X7FflSVep2K8b6O8g1+q/5ASbLHgUTydCe4SourcUP+i57k9POt4Am+iZ3hQb 0p684t+xZZ/OOAcA6bAUkj+mXX99RrFuP8c/opvw/0moLHXFQEHmpet/vAl5eIhE w26IHfahNtah5PPw7mR+BRKnPCNnu1gcbMqYlI15D92KCrbVBaTZNrq0JS2Oi15p 4UipNmFt8xApPIakJiHH5PKNF+PE/be3fWBEZ345wN5dBr3ba16ZV/5bSW3OtKQd UvGJJ2vYuHf8pLJGHJWX83v2/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFItnf7k4 wwsxaASB7A7yfJB8j/TnMB8GA1UdIwQYMBaAFIon8bUUWf02yyyAYIccVTj50j1+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUFDRC84RUExOUFBMjE5 OUMxMUVGOTY5NzM0N0ZDNEY5QUUwMi9paWZ4dFJSWl9UYkxMSUJnaHh4Vk9QblNQ WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lpZnh0UlJaX1RiTExJQmdoeHhWT1BuU1BYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QUFDRC84RUExOUFBMjE5OUMxMUVGOTY5NzM0N0ZDNEY5QUUwMi9paWZ4dFJSWl9U YkxMSUJnaHh4Vk9QblNQWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeQ5WbZPJe4+1VFCHhEt46HaPwykn3gS+LJArULk42qZMXFM8WRnxi YAIKU2fwiuTG+ssccy+rWU+DG9bLLd/e/ZDl8xT3tY1Y9pzzwajs2oiujPsGVA8G VMtgufFZkVGjJHTWH5nrPbarXqXG412h/qoVu2NugI8h1N50/WjWfSTzIw2bLcKd Cy4xEJAjFw3T7wYb1LME/UEDP1zyfX7NN3cFCPInGQZqnTjSjQW2yoAYC2/8fM78 M5RL/O9CVGxr+P+yJdgm7sGwi4m+5z6diyrwozPVei1JzteFamug2IAoNFrE2FOo hiCK+nx9XPeo8MyM7hrPM5wDaMzynqWt -----END CERTIFICATE-----Generated at Sat Apr 26 13:04:31 2025 by rpki-client