$ rpki-client -vvf rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft File: IW4UMOXDDg0jp10HDbeJi5CEl5k.mft (raw, json) Hash identifier: 2HpyUXS6yjgMjWoBDa47vd0BUaqKM+E8fEhKVj+7LMg= Subject key identifier: 37:1B:73:56:BB:7F:63:8D:6F:FA:F9:F8:31:CC:D9:75:7F:F6:19:A3 Authority key identifier: 21:6E:14:30:E5:C3:0E:0D:23:A7:5D:07:0D:B7:89:8B:90:84:97:99 Certificate issuer: /CN=A919A5B5/serialNumber=216E1430E5C30E0D23A75D070DB7898B90849799 Certificate serial: 079E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft Manifest number: 0797 Signing time: Thu 24 Apr 2025 21:08:08 +0000 Manifest this update: Thu 24 Apr 2025 21:08:08 +0000 Manifest next update: Thu 01 May 2025 21:08:07 +0000 Files and hashes: 1: IW4UMOXDDg0jp10HDbeJi5CEl5k.crl (hash: sDpRetik2QpemFz206Bt/5Yv9hxBoLnokhBkQ0nq1Dw=) 2: ACD444282EC911EB99EC263DC4F9AE02.roa (hash: DLKvz3rwnGGBIag3RK7ssCkmYQ1hx8lImaGotS18Gqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.crl rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:08:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1950 (0x79e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A5B5, serialNumber=216E1430E5C30E0D23A75D070DB7898B90849799 Validity Not Before: Apr 24 21:08:08 2025 GMT Not After : May 1 21:08:07 2025 GMT Subject: CN=680aa838-ea69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:8e:f7:53:50:05:b3:37:88:16:67:00:24:88: 88:4a:1d:3b:b5:89:e9:3c:49:e5:f9:2e:d8:d4:c7: 71:e3:14:89:9d:c3:8b:82:9d:8e:7a:c1:e0:54:12: 3e:74:fe:95:01:90:65:0e:7d:fa:e0:05:46:16:de: 38:10:06:60:4b:44:3a:4c:31:cd:73:5a:a6:c4:33: 18:83:ed:e0:42:56:d7:d0:c5:fb:1d:ac:2b:fa:c8: 0d:cd:07:9b:34:12:72:8b:2d:32:60:73:55:c6:61: 10:12:f8:de:59:c2:3c:79:b8:64:5a:23:7e:4d:ef: 39:47:dc:58:8d:ee:82:20:dd:62:4e:51:98:b6:6f: e8:49:19:dd:d9:c5:ae:d9:e2:63:a7:b2:d8:42:ac: c9:b7:16:f0:54:e1:31:43:54:76:90:9f:ad:ef:ba: 94:24:bf:b4:b4:aa:b6:15:60:24:b2:be:83:01:e4: fc:40:b9:3c:7d:e4:91:f8:e5:23:4a:b8:da:ae:93: ae:1c:97:67:b7:68:f8:6e:b8:87:9f:1b:2a:34:22: 55:dd:62:20:4f:15:ca:f6:9c:17:5f:5e:a1:1b:87: e7:42:a6:2c:42:4b:4d:cf:fa:e0:39:16:a3:f8:5f: fa:09:f9:bf:9a:2d:8a:80:f4:46:b6:0f:bc:2a:f6: 15:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:1B:73:56:BB:7F:63:8D:6F:FA:F9:F8:31:CC:D9:75:7F:F6:19:A3 X509v3 Authority Key Identifier: keyid:21:6E:14:30:E5:C3:0E:0D:23:A7:5D:07:0D:B7:89:8B:90:84:97:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:9a:94:d5:a3:7c:f5:51:de:0c:e4:ca:df:ce:26:b7:91:b2: 4b:c8:d6:06:32:b4:c5:26:4b:c6:77:be:4e:eb:84:2f:6b:80: d2:23:8c:96:81:71:a2:c4:05:78:5a:10:2d:b7:0a:03:db:8b: a2:43:f4:8e:5f:2a:63:62:c1:45:98:f0:cd:08:dc:fb:45:b9: 43:4a:77:07:67:c3:14:e7:08:97:6a:c5:5e:fe:12:70:d4:42: 92:66:4d:b3:47:05:66:11:9b:be:b0:87:53:5d:6f:14:37:54: 73:86:cb:85:5f:72:d5:33:ea:f8:8e:b0:e8:c0:69:24:cc:bd: 6c:6e:96:c4:e9:ab:15:de:eb:65:95:a1:c0:01:9b:8b:2c:98: 0a:bb:d4:ae:f1:57:1a:9c:d6:d4:6c:79:0f:0a:cd:bb:bd:d0: 31:05:81:35:1e:ed:4a:19:f0:72:75:54:cc:29:31:9c:de:ae: 0f:d9:4a:26:05:a5:03:c0:10:ef:49:08:05:ef:22:ff:26:42: 2b:81:55:13:f7:a6:56:c1:59:3a:2e:94:05:f5:5e:1e:1a:cc: 58:7f:22:b1:ce:9f:ed:a8:b7:63:4c:7e:78:e8:f1:62:f2:1f: 71:9c:cc:8c:58:f3:d6:07:a5:e3:5c:3b:e9:b5:d9:cb:16:f8: 7b:8e:90:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB54wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE1QjUxMTAvBgNVBAUTKDIxNkUxNDMwRTVDMzBFMEQyM0E3NUQwNzBEQjc4OThC OTA4NDk3OTkwHhcNMjUwNDI0MjEwODA4WhcNMjUwNTAxMjEwODA3WjAYMRYwFAYD VQQDEw02ODBhYTgzOC1lYTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyY73U1AFszeIFmcAJIiISh07tYnpPEnl+S7Y1Mdx4xSJncOLgp2OesHgVBI+ dP6VAZBlDn364AVGFt44EAZgS0Q6TDHNc1qmxDMYg+3gQlbX0MX7Hawr+sgNzQeb NBJyiy0yYHNVxmEQEvjeWcI8ebhkWiN+Te85R9xYje6CIN1iTlGYtm/oSRnd2cWu 2eJjp7LYQqzJtxbwVOExQ1R2kJ+t77qUJL+0tKq2FWAksr6DAeT8QLk8feSR+OUj SrjarpOuHJdnt2j4briHnxsqNCJV3WIgTxXK9pwXX16hG4fnQqYsQktNz/rgORaj +F/6Cfm/mi2KgPRGtg+8KvYVjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDcbc1a7 f2ONb/r5+DHM2XV/9hmjMB8GA1UdIwQYMBaAFCFuFDDlww4NI6ddBw23iYuQhJeZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTVCNS81ODNDQzRENDAz QkUxMUVCQTY0OTIyMEJDNEY5QUUwMi9JVzRVTU9YRERnMGpwMTBIRGJlSmk1Q0Vs NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lXNFVNT1hERGcwanAxMEhEYmVKaTVDRWw1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTVCNS81ODNDQzRENDAzQkUxMUVCQTY0OTIyMEJDNEY5QUUwMi9JVzRVTU9YRERn MGpwMTBIRGJlSmk1Q0VsNWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1mpTVo3z1Ud4M5Mrfzia3kbJLyNYGMrTFJkvGd75O64Qva4DSI4yW gXGixAV4WhAttwoD24uiQ/SOXypjYsFFmPDNCNz7RblDSncHZ8MU5wiXasVe/hJw 1EKSZk2zRwVmEZu+sIdTXW8UN1RzhsuFX3LVM+r4jrDowGkkzL1sbpbE6asV3utl laHAAZuLLJgKu9Su8VcanNbUbHkPCs27vdAxBYE1Hu1KGfBydVTMKTGc3q4P2Uom BaUDwBDvSQgF7yL/JkIrgVUT96ZWwVk6LpQF9V4eGsxYfyKxzp/tqLdjTH546PFi 8h9xnMyMWPPWB6XjXDvptdnLFvh7jpBq -----END CERTIFICATE-----Generated at Sat Apr 26 04:22:10 2025 by rpki-client