$ rpki-client -vvf rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft File: iyhQBa2gBz4MCUttpqOLtR__oaQ.mft (raw, json) Hash identifier: FnssMuEH0hBXeW6cyOhISJE/tnzdqZIzmewwEi1gl+0= Subject key identifier: 71:36:D8:24:E7:FF:E6:5D:C4:84:61:DB:EE:A9:47:F0:A2:9F:7A:33 Authority key identifier: 8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 Certificate issuer: /CN=A918D14B/serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Certificate serial: 03BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft Manifest number: 03AC Signing time: Fri 25 Apr 2025 00:30:26 +0000 Manifest this update: Fri 25 Apr 2025 00:30:25 +0000 Manifest next update: Fri 02 May 2025 00:30:25 +0000 Files and hashes: 1: iyhQBa2gBz4MCUttpqOLtR__oaQ.crl (hash: y0x0GjaHVqbkLkA4r5ywxUQxE6yRK16Cm2hrlrorOYQ=) 2: 58C00854905211EC90E6100FC4F9AE02.roa (hash: 5eLmPskwIg5y4gDpqWBeusWbrOc+t34TIFwmF+boTps=) 3: 989BBF70904F11EC8B118911C4F9AE02.roa (hash: sO6E1E+nR+eYc5iIU6EYUSE2ekfNEYMYq4mKBPQmsro=) 4: 7E8442B68FE511EC94D98C7BC4F9AE02.roa (hash: oJI3ab/8fzhkHDC4Wzdxeh+CGGzoOkYJ9B82+ons7t8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:30:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 959 (0x3bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D14B, serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Validity Not Before: Apr 25 00:30:25 2025 GMT Not After : May 2 00:30:25 2025 GMT Subject: CN=680ad7a1-a790 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:74:60:50:f2:dd:91:2d:8a:da:e0:86:d2:9a: 2b:23:14:6c:12:81:ab:39:39:67:6c:9a:a1:99:36: c4:ff:8a:bb:70:e5:6d:e9:67:27:5f:6f:d2:88:35: fc:de:8d:3a:72:50:57:fa:7b:b2:e6:85:9e:9f:3b: 6b:cc:5e:c8:1e:b6:ef:5f:57:58:65:2c:ed:bb:af: 94:16:4a:16:a1:71:3d:48:44:71:a5:d7:3b:84:96: 0e:5f:f0:41:e6:81:14:d2:ac:72:ca:a8:31:82:33: fe:ad:ec:6e:f1:a9:29:20:79:3a:1f:a8:ca:a7:39: f7:53:4d:21:72:38:c4:64:22:85:b4:6b:b8:a8:2c: 3e:20:e6:2e:33:43:07:6f:fb:03:d8:d8:4f:c0:fb: 61:03:a1:1a:8e:6a:6e:9a:ff:a1:9f:ad:5c:01:8d: 30:f5:75:27:8b:5e:31:c3:f3:fe:7d:8e:55:61:a7: c8:5f:2f:c3:31:ea:40:18:1d:f5:3f:ce:80:22:1c: b8:77:c4:c2:b3:13:77:24:7e:a5:e7:cc:48:90:80: e0:38:75:df:bb:bb:b0:10:9b:18:7c:b2:5d:b7:06: 0c:49:16:12:49:53:0a:e0:45:a8:c0:8c:d4:7c:e8: 24:ba:82:16:3e:33:05:0a:7a:40:28:26:ab:b1:a2: 21:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:36:D8:24:E7:FF:E6:5D:C4:84:61:DB:EE:A9:47:F0:A2:9F:7A:33 X509v3 Authority Key Identifier: keyid:8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:f1:c9:ae:02:d5:4f:5d:67:e0:28:76:f0:ca:ba:2a:bf:cb: ef:f2:8b:f8:5d:c3:23:e1:99:c0:f2:60:7a:14:97:0e:4e:70: 3e:4f:1d:c8:a2:04:75:6a:b8:a0:1c:ab:5f:6a:4a:90:e4:47: c6:f3:29:68:b4:eb:d0:91:67:db:7d:a6:62:59:aa:0e:7b:82: 8f:fa:9c:a4:87:6d:ba:81:ff:d5:11:1e:53:84:46:d8:9b:d1: b4:e8:ad:45:56:aa:28:bf:fe:1c:d4:77:4e:4d:b7:cd:b9:52: 15:4d:fc:94:7e:f5:6a:d4:bf:f8:6b:d5:b4:21:60:a1:aa:05: d4:9b:e5:3f:2a:a3:84:ca:33:8d:05:2b:7c:32:eb:94:d4:00: a4:58:b3:3f:8c:af:fb:f8:67:48:bc:73:19:17:14:01:9b:1b: 82:89:f4:7f:77:f5:8d:38:c8:dc:e4:14:f5:fd:47:a4:82:f9: 01:ea:0d:ba:6c:54:6b:d5:57:cf:18:19:a0:49:bd:9f:39:f2: 56:ce:31:3f:c6:14:e0:b7:a9:7c:13:c4:d5:a2:5e:dc:27:76: a6:ee:18:e4:d6:b6:e3:36:7c:49:a2:9d:8b:c7:5f:cd:97:3e: 10:1f:d8:7e:bb:82:ee:5f:3a:ea:ac:6c:bf:23:9a:4d:8f:67: 78:79:d4:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA78wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQxNEIxMTAvBgNVBAUTKDhCMjg1MDA1QURBMDA3M0UwQzA5NEI2REE2QTM4QkI1 MUZGRkExQTQwHhcNMjUwNDI1MDAzMDI1WhcNMjUwNTAyMDAzMDI1WjAYMRYwFAYD VQQDEw02ODBhZDdhMS1hNzkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0HRgUPLdkS2K2uCG0porIxRsEoGrOTlnbJqhmTbE/4q7cOVt6WcnX2/SiDX8 3o06clBX+nuy5oWenztrzF7IHrbvX1dYZSztu6+UFkoWoXE9SERxpdc7hJYOX/BB 5oEU0qxyyqgxgjP+rexu8akpIHk6H6jKpzn3U00hcjjEZCKFtGu4qCw+IOYuM0MH b/sD2NhPwPthA6Eajmpumv+hn61cAY0w9XUni14xw/P+fY5VYafIXy/DMepAGB31 P86AIhy4d8TCsxN3JH6l58xIkIDgOHXfu7uwEJsYfLJdtwYMSRYSSVMK4EWowIzU fOgkuoIWPjMFCnpAKCarsaIhgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHE22CTn /+ZdxIRh2+6pR/Cin3ozMB8GA1UdIwQYMBaAFIsoUAWtoAc+DAlLbaaji7Uf/6Gk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDE0Qi85NEM4OThDQzhG RTIxMUVDQThBRkVFNzhDNEY5QUUwMi9peWhRQmEyZ0J6NE1DVXR0cHFPTHRSX19v YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2l5aFFCYTJnQno0TUNVdHRwcU9MdFJfX29hUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDE0Qi85NEM4OThDQzhGRTIxMUVDQThBRkVFNzhDNEY5QUUwMi9peWhRQmEyZ0J6 NE1DVXR0cHFPTHRSX19vYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAS8cmuAtVPXWfgKHbwyroqv8vv8ov4XcMj4ZnA8mB6FJcOTnA+Tx3I ogR1arigHKtfakqQ5EfG8ylotOvQkWfbfaZiWaoOe4KP+pykh226gf/VER5ThEbY m9G06K1FVqoov/4c1HdOTbfNuVIVTfyUfvVq1L/4a9W0IWChqgXUm+U/KqOEyjON BSt8MuuU1ACkWLM/jK/7+GdIvHMZFxQBmxuCifR/d/WNOMjc5BT1/UekgvkB6g26 bFRr1VfPGBmgSb2fOfJWzjE/xhTgt6l8E8TVol7cJ3am7hjk1rbjNnxJop2Lx1/N lz4QH9h+u4LuXzrqrGy/I5pNj2d4edRo -----END CERTIFICATE-----Generated at Sat Apr 26 13:03:32 2025 by rpki-client