$ rpki-client -vvf rpki.apnic.net/member_repository/A919821D/B2A074EE89B111EE986CA65CC4F9AE02/iMFUTX5nvNkdSN9dEfzRAh-FOZM.mft File: iMFUTX5nvNkdSN9dEfzRAh-FOZM.mft (raw, json) Hash identifier: XsANnRxq4EsKdNZklDr7ICnugDlUceKsTddFVvlCYGo= Subject key identifier: F4:93:AC:75:9F:55:0B:3D:9A:39:BE:01:11:11:D2:59:2E:A1:DF:5C Authority key identifier: 88:C1:54:4D:7E:67:BC:D9:1D:48:DF:5D:11:FC:D1:02:1F:85:39:93 Certificate issuer: /CN=A919821D/serialNumber=88C1544D7E67BCD91D48DF5D11FCD1021F853993 Certificate serial: 010F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iMFUTX5nvNkdSN9dEfzRAh-FOZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919821D/B2A074EE89B111EE986CA65CC4F9AE02/iMFUTX5nvNkdSN9dEfzRAh-FOZM.mft Manifest number: 010C Signing time: Fri 25 Apr 2025 04:02:38 +0000 Manifest this update: Fri 25 Apr 2025 04:02:38 +0000 Manifest next update: Fri 02 May 2025 04:02:38 +0000 Files and hashes: 1: iMFUTX5nvNkdSN9dEfzRAh-FOZM.crl (hash: uVtROlMPy+6Hkpg7OQGuXC/j9pGJd9OxgPs0HLKmcPQ=) 2: 51D4585A89B211EE9ADA615EC4F9AE02.roa (hash: 2pLBfFEzGVtLv2cMeVGOzUnHFe1Jg/DT2E9SEr2vDd0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919821D/B2A074EE89B111EE986CA65CC4F9AE02/iMFUTX5nvNkdSN9dEfzRAh-FOZM.crl rsync://rpki.apnic.net/member_repository/A919821D/B2A074EE89B111EE986CA65CC4F9AE02/iMFUTX5nvNkdSN9dEfzRAh-FOZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iMFUTX5nvNkdSN9dEfzRAh-FOZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:02:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 271 (0x10f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919821D, serialNumber=88C1544D7E67BCD91D48DF5D11FCD1021F853993 Validity Not Before: Apr 25 04:02:38 2025 GMT Not After : May 2 04:02:38 2025 GMT Subject: CN=680b095e-42ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:f2:fa:ed:7c:eb:48:0f:30:b7:fd:d7:d6:9b: 8e:ae:37:93:7b:95:95:cf:21:8e:a7:bb:f9:20:88: 53:d5:be:7f:52:ed:42:b6:93:82:e3:a4:fd:04:6c: 5e:95:5e:a6:db:4d:33:f7:8b:ac:09:fb:da:20:17: e7:8f:46:f1:64:40:b0:a0:e5:1f:75:dc:22:4a:7f: 9a:e8:df:ca:db:a8:9d:9b:2d:31:b5:ca:36:a5:e5: 2f:58:b4:ce:2b:2c:ed:6a:97:6e:b9:bd:9f:ce:38: 8b:58:3e:e0:67:da:c9:a2:73:32:65:67:a1:8b:ed: 3e:11:20:fc:6f:c8:8a:76:c7:c8:25:d8:42:f6:37: e7:4b:57:5e:f9:bc:65:19:6a:06:d1:7c:72:39:84: 9f:c6:9b:90:bb:ad:af:48:4a:88:9f:7b:47:72:73: f1:40:9d:da:55:7b:83:9d:40:bb:fa:41:3e:15:18: b4:e8:1b:e8:bf:c7:16:d1:41:b0:e3:a2:ad:4f:4d: 85:e6:14:5e:54:44:cb:99:6c:ac:6a:21:e1:48:44: 08:99:48:14:67:e1:ad:36:8d:98:bd:b2:f7:5c:34: 08:49:ff:b7:0b:d3:87:e4:52:15:ae:0d:08:55:b4: 03:1e:4f:28:c5:c8:78:82:d0:f9:4c:9e:e5:2e:73: 22:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:93:AC:75:9F:55:0B:3D:9A:39:BE:01:11:11:D2:59:2E:A1:DF:5C X509v3 Authority Key Identifier: keyid:88:C1:54:4D:7E:67:BC:D9:1D:48:DF:5D:11:FC:D1:02:1F:85:39:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919821D/B2A074EE89B111EE986CA65CC4F9AE02/iMFUTX5nvNkdSN9dEfzRAh-FOZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iMFUTX5nvNkdSN9dEfzRAh-FOZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919821D/B2A074EE89B111EE986CA65CC4F9AE02/iMFUTX5nvNkdSN9dEfzRAh-FOZM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:2a:bc:17:98:9d:94:44:b5:90:1c:b6:29:a0:14:a9:4c:d0: 40:61:3b:63:55:57:39:06:6e:c0:9b:ef:21:f6:89:d3:d1:46: 83:47:fe:ea:4d:02:1b:c1:81:26:99:10:33:38:37:b7:84:d2: c8:4e:6c:77:14:65:2f:2b:4d:98:d6:e5:3f:46:0d:b2:28:48: f5:7c:46:8f:bc:4d:f3:31:1f:ff:5d:fe:5f:19:33:b5:86:74: b7:13:cc:06:ae:76:53:a5:8f:42:ae:17:ac:12:7d:f4:84:c3: 50:b8:e4:c7:04:0d:50:1f:06:8b:98:45:62:0d:d7:bc:0d:eb: 20:e3:41:3c:5f:8d:27:40:c5:86:4f:4c:82:b9:96:db:77:b8: bc:f1:dd:d7:20:b0:b7:e2:c0:69:ee:ca:fc:e6:64:a6:68:e1: 62:22:db:70:ac:10:66:50:d2:b1:02:d8:81:62:24:65:00:70: 5e:95:1e:91:e6:9a:80:6a:c1:a0:04:b7:e2:38:cd:43:9b:99: 9c:88:aa:af:4e:74:f7:a0:e6:27:9f:6c:51:b1:76:b8:1c:0d: 33:6c:9c:2b:f3:5d:06:39:3f:56:17:27:b6:34:cc:27:f0:a8: da:68:50:83:44:02:b7:a4:7a:9c:e4:f2:1a:86:c8:ba:76:bd: e0:75:14:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTgyMUQxMTAvBgNVBAUTKDg4QzE1NDREN0U2N0JDRDkxRDQ4REY1RDExRkNEMTAy MUY4NTM5OTMwHhcNMjUwNDI1MDQwMjM4WhcNMjUwNTAyMDQwMjM4WjAYMRYwFAYD VQQDEw02ODBiMDk1ZS00MmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4PL67XzrSA8wt/3X1puOrjeTe5WVzyGOp7v5IIhT1b5/Uu1CtpOC46T9BGxe lV6m200z94usCfvaIBfnj0bxZECwoOUfddwiSn+a6N/K26idmy0xtco2peUvWLTO Kyztapduub2fzjiLWD7gZ9rJonMyZWehi+0+ESD8b8iKdsfIJdhC9jfnS1de+bxl GWoG0XxyOYSfxpuQu62vSEqIn3tHcnPxQJ3aVXuDnUC7+kE+FRi06Bvov8cW0UGw 46KtT02F5hReVETLmWysaiHhSEQImUgUZ+GtNo2YvbL3XDQISf+3C9OH5FIVrg0I VbQDHk8oxch4gtD5TJ7lLnMi6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPSTrHWf VQs9mjm+ARER0lkuod9cMB8GA1UdIwQYMBaAFIjBVE1+Z7zZHUjfXRH80QIfhTmT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODIxRC9CMkEwNzRFRTg5 QjExMUVFOTg2Q0E2NUNDNEY5QUUwMi9pTUZVVFg1bnZOa2RTTjlkRWZ6UkFoLUZP Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lNRlVUWDVudk5rZFNOOWRFZnpSQWgtRk9aTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODIxRC9CMkEwNzRFRTg5QjExMUVFOTg2Q0E2NUNDNEY5QUUwMi9pTUZVVFg1bnZO a2RTTjlkRWZ6UkFoLUZPWk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbKrwXmJ2URLWQHLYpoBSpTNBAYTtjVVc5Bm7Am+8h9onT0UaDR/7q TQIbwYEmmRAzODe3hNLITmx3FGUvK02Y1uU/Rg2yKEj1fEaPvE3zMR//Xf5fGTO1 hnS3E8wGrnZTpY9CrhesEn30hMNQuOTHBA1QHwaLmEViDde8Desg40E8X40nQMWG T0yCuZbbd7i88d3XILC34sBp7sr85mSmaOFiIttwrBBmUNKxAtiBYiRlAHBelR6R 5pqAasGgBLfiOM1Dm5mciKqvTnT3oOYnn2xRsXa4HA0zbJwr810GOT9WFye2NMwn 8KjaaFCDRAK3pHqc5PIahsi6dr3gdRR9 -----END CERTIFICATE-----Generated at Sat Apr 26 16:54:22 2025 by rpki-client