$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft File: IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft (raw, json) Hash identifier: M9KzJqdsic7lLBkXzrc6JkPAkAtf4H8g3tTaPAHzhvw= Subject key identifier: BB:C9:E7:89:16:8F:A3:50:7E:56:F9:DC:DE:0F:A9:F4:BD:28:3D:9D Authority key identifier: 22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 Certificate issuer: /CN=A9195BA9/serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Certificate serial: 09B4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft Manifest number: 09A8 Signing time: Thu 24 Apr 2025 19:55:19 +0000 Manifest this update: Thu 24 Apr 2025 19:55:18 +0000 Manifest next update: Thu 01 May 2025 19:55:18 +0000 Files and hashes: 1: IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl (hash: MWpKvep//3OlOtohoOZlXswU/6kLcI325jQuZmpz0LI=) 2: 543CDDF0839011EAB5B82263C4F9AE02.roa (hash: PG+DCY3DsnT1DiiJh/CX8LITvJqbEq/+Av+Qqgc42Yc=) 3: 54DD69FA839011EAB5B82263C4F9AE02.roa (hash: YJ7W6HYFgOqdoVWF2hJtmCaUJf59puKnAmoMTngU5VA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:55:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2484 (0x9b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9, serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Validity Not Before: Apr 24 19:55:18 2025 GMT Not After : May 1 19:55:18 2025 GMT Subject: CN=680a9726-3fad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9e:b0:0f:68:31:47:df:ee:da:8b:b9:29:ef: f4:25:86:aa:48:b5:cd:a6:28:05:8e:97:db:8e:db: cd:87:d6:81:01:68:aa:9a:2e:42:96:f5:bb:53:ed: de:58:6e:05:6b:f3:dc:5b:74:d6:52:ed:9b:9e:78: ef:6e:18:76:bd:ea:97:33:98:2c:d6:e8:cd:cc:cc: cd:84:bc:31:7e:f0:06:76:f6:a1:e5:90:a0:22:a2: 32:1c:8b:cb:9e:98:c5:75:10:2a:a0:1b:6c:7f:0c: 0d:80:2a:f0:b7:8c:70:59:94:34:7a:e0:59:09:4d: 7e:48:fd:69:5f:32:0d:a8:0d:99:1e:3c:f3:76:e3: 21:35:7c:d1:57:f7:dd:d0:d6:99:48:91:ae:db:65: e0:c4:b5:b4:cc:ec:93:1f:23:d6:e2:91:75:12:01: 75:01:f6:1c:86:1d:10:31:b6:68:fd:72:15:54:f0: eb:ff:fd:e3:2c:36:39:b9:58:6a:f2:a0:df:a1:70: 10:f3:69:16:50:b3:2f:d0:8d:de:aa:f3:08:0d:00: 9e:58:ad:07:2a:d0:50:70:9a:5f:77:9f:2c:51:35: e9:9d:76:46:e1:01:7a:b3:e0:a6:e8:8d:d5:c8:5e: 5f:b7:85:69:9e:b1:ae:04:06:9e:34:a4:9d:b5:d7: a0:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:C9:E7:89:16:8F:A3:50:7E:56:F9:DC:DE:0F:A9:F4:BD:28:3D:9D X509v3 Authority Key Identifier: keyid:22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:18:63:25:b0:a2:1a:af:d7:24:ce:0e:f0:64:48:b3:47:95: b1:f8:c9:b8:02:bc:df:9e:03:ef:a8:74:66:49:84:8b:1b:d9: 5c:aa:fd:cf:23:0f:7e:97:53:88:f2:7b:9d:2e:73:d5:51:fd: 71:d3:da:84:26:cc:f2:46:be:0a:36:bc:7d:a8:f1:b1:57:d1: ee:6c:42:ad:de:9d:44:4f:f6:cd:90:a9:8a:37:92:ba:f1:b1: e6:5b:49:68:1a:5d:53:2f:fd:12:46:22:68:54:58:9d:55:4c: 71:2f:e4:de:c6:92:95:0c:59:1e:4d:02:ff:72:f4:54:30:71: 8d:20:15:f4:70:37:3e:13:46:9b:1e:7b:09:93:f2:d7:9a:ac: 11:09:c6:e8:d3:d1:ed:88:1b:b8:6b:99:44:6f:ac:83:b3:71: b7:78:95:67:29:9f:6d:d8:9f:39:2a:81:79:99:75:11:75:c2: 70:8f:11:29:44:63:b4:3f:e7:a6:09:fb:4c:5a:0c:2b:f4:6a: 8f:1e:c3:f1:58:97:88:c8:55:e9:e2:7c:af:f9:50:3d:e3:ec: ba:0d:a2:a0:cf:32:96:64:6f:c8:26:6e:07:d7:ab:34:26:49: 86:f6:90:1d:f4:c8:c5:b7:f8:27:2d:7f:84:4b:5c:d7:b0:0e: 27:4a:2d:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKDIyNDVBRDkxNTQzQUREQUQ3ODEyM0RENDE1RDY1OUJC NTJENUZCNjIwHhcNMjUwNDI0MTk1NTE4WhcNMjUwNTAxMTk1NTE4WjAYMRYwFAYD VQQDEw02ODBhOTcyNi0zZmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZ6wD2gxR9/u2ou5Ke/0JYaqSLXNpigFjpfbjtvNh9aBAWiqmi5ClvW7U+3e WG4Fa/PcW3TWUu2bnnjvbhh2veqXM5gs1ujNzMzNhLwxfvAGdvah5ZCgIqIyHIvL npjFdRAqoBtsfwwNgCrwt4xwWZQ0euBZCU1+SP1pXzINqA2ZHjzzduMhNXzRV/fd 0NaZSJGu22XgxLW0zOyTHyPW4pF1EgF1AfYchh0QMbZo/XIVVPDr//3jLDY5uVhq 8qDfoXAQ82kWULMv0I3eqvMIDQCeWK0HKtBQcJpfd58sUTXpnXZG4QF6s+Cm6I3V yF5ft4VpnrGuBAaeNKSdtdegHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLvJ54kW j6NQflb53N4PqfS9KD2dMB8GA1UdIwQYMBaAFCJFrZFUOt2teBI91BXWWbtS1fti MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9EODkxNDc4Qzgz OEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNhMTRFajNVRmRaWnUxTFYt MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lrV3RrVlE2M2ExNEVqM1VGZFpadTFMVi0ySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUJBOS9EODkxNDc4QzgzOEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNh MTRFajNVRmRaWnUxTFYtMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoGGMlsKIar9ckzg7wZEizR5Wx+Mm4ArzfngPvqHRmSYSLG9lcqv3P Iw9+l1OI8nudLnPVUf1x09qEJszyRr4KNrx9qPGxV9HubEKt3p1ET/bNkKmKN5K6 8bHmW0loGl1TL/0SRiJoVFidVUxxL+TexpKVDFkeTQL/cvRUMHGNIBX0cDc+E0ab HnsJk/LXmqwRCcbo09HtiBu4a5lEb6yDs3G3eJVnKZ9t2J85KoF5mXURdcJwjxEp RGO0P+emCftMWgwr9GqPHsPxWJeIyFXp4nyv+VA94+y6DaKgzzKWZG/IJm4H16s0 JkmG9pAd9MjFt/gnLX+ES1zXsA4nSi0M -----END CERTIFICATE-----Generated at Sat Apr 26 17:11:08 2025 by rpki-client