$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8047/344A01A29B1511EF86EB3746C4F9AE02/iEiqzfKVEwPnCY9BnYygBCKJDGk.mft File: iEiqzfKVEwPnCY9BnYygBCKJDGk.mft (raw, json) Hash identifier: zcIl0wJvszDISgAqXJ/otg9rpS7V0TgjqAzA5qiRol8= Subject key identifier: 8D:9E:D0:07:16:9F:60:E6:E9:EB:38:57:B3:AB:A5:73:2C:58:F8:BF Authority key identifier: 88:48:AA:CD:F2:95:13:03:E7:09:8F:41:9D:8C:A0:04:22:89:0C:69 Certificate issuer: /CN=A91A8047/serialNumber=8848AACDF2951303E7098F419D8CA00422890C69 Certificate serial: 6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iEiqzfKVEwPnCY9BnYygBCKJDGk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8047/344A01A29B1511EF86EB3746C4F9AE02/iEiqzfKVEwPnCY9BnYygBCKJDGk.mft Manifest number: 64 Signing time: Fri 25 Apr 2025 06:07:31 +0000 Manifest this update: Fri 25 Apr 2025 06:07:31 +0000 Manifest next update: Fri 02 May 2025 06:07:31 +0000 Files and hashes: 1: iEiqzfKVEwPnCY9BnYygBCKJDGk.crl (hash: 8QzlTsz6M6B/BcDK19+tjyozc7Wa6dRDIi9iynzVp4g=) 2: 029310329B1911EFA0BD6470C4F9AE02.roa (hash: ipUtH6de1n3QDXNmS4idd62IMEQfE9S8Kl6BBzpD9nQ=) 3: 07BAAB7C9B1611EFB5C28465C4F9AE02.roa (hash: ofbztl5uVlglZWvlUxP/w/vzUs13H0jw290VgxrDPX8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8047/344A01A29B1511EF86EB3746C4F9AE02/iEiqzfKVEwPnCY9BnYygBCKJDGk.crl rsync://rpki.apnic.net/member_repository/A91A8047/344A01A29B1511EF86EB3746C4F9AE02/iEiqzfKVEwPnCY9BnYygBCKJDGk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iEiqzfKVEwPnCY9BnYygBCKJDGk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:07:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8047, serialNumber=8848AACDF2951303E7098F419D8CA00422890C69 Validity Not Before: Apr 25 06:07:31 2025 GMT Not After : May 2 06:07:31 2025 GMT Subject: CN=680b26a3-96ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:09:50:9e:e0:34:d5:c4:8e:77:91:73:55:d0: 3e:a4:a3:63:c4:e0:cf:d5:eb:84:ec:a7:bd:15:c8: 9d:4d:cd:da:bc:76:85:60:91:67:df:d7:c3:76:e4: ef:d4:bd:ff:5d:d4:87:4b:bf:b9:ac:8e:c6:26:14: 2f:9c:da:91:0f:3a:b2:b2:00:1f:39:22:4b:9d:c0: cb:4e:63:bb:86:10:e5:14:c0:0c:de:80:3a:67:70: 82:40:e8:eb:40:4a:07:c9:06:a7:9d:a1:df:b3:cf: e8:5d:af:76:90:09:8e:ce:21:dd:51:53:e5:55:73: 1c:26:a1:a0:ba:a9:0b:5c:3b:17:9f:24:bb:dc:60: 96:35:4c:83:0e:be:a8:3a:78:38:32:64:c0:f7:55: d2:07:f7:59:65:e1:b0:ad:0f:0a:2c:a2:60:a4:fe: a4:2c:bd:4d:8b:08:a8:f2:b0:c5:ee:63:c1:22:34: 75:30:60:ba:0d:9e:58:45:cd:05:b1:ad:ed:11:e4: f8:c9:9b:f5:fb:58:1b:00:dc:c2:3f:0a:f3:6f:47: c7:30:6e:0c:2f:53:72:5b:cb:4b:53:6c:46:ea:36: ea:89:70:3f:2c:16:2b:9a:75:9f:74:ea:41:67:86: b7:f6:02:bf:81:96:0c:7a:80:30:80:56:d7:ff:94: f5:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:9E:D0:07:16:9F:60:E6:E9:EB:38:57:B3:AB:A5:73:2C:58:F8:BF X509v3 Authority Key Identifier: keyid:88:48:AA:CD:F2:95:13:03:E7:09:8F:41:9D:8C:A0:04:22:89:0C:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8047/344A01A29B1511EF86EB3746C4F9AE02/iEiqzfKVEwPnCY9BnYygBCKJDGk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iEiqzfKVEwPnCY9BnYygBCKJDGk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8047/344A01A29B1511EF86EB3746C4F9AE02/iEiqzfKVEwPnCY9BnYygBCKJDGk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:d7:89:34:1b:be:2b:f6:bd:e5:94:6b:86:b9:41:5a:b1:14: 92:a1:fc:88:a7:4b:b3:4d:31:06:25:e4:35:91:a0:3b:f3:14: 40:95:74:13:5a:63:49:72:7b:3b:4c:3f:1a:98:4d:30:6e:1f: e4:5e:fc:5b:60:4d:ac:00:e7:2f:28:3d:eb:73:26:c1:ff:cd: 02:71:5b:13:5f:ab:13:9c:35:c7:2f:32:5e:f0:d9:1e:b3:bb: 05:c5:2f:7b:66:8f:50:45:f6:c8:96:87:3e:d1:11:21:a2:e9: 6b:b5:e3:a5:de:ee:47:81:8d:9d:ed:6a:48:d1:58:b9:5a:57: 98:a9:10:c7:8c:83:63:2c:d3:7e:a2:da:5a:75:73:5e:59:42: 9e:bc:fd:01:6d:a5:a4:46:ff:4c:72:dd:24:d9:59:24:79:91: 1e:18:59:39:c7:db:fc:28:7f:9f:7f:87:ec:a4:ae:66:64:63: d4:08:d0:bf:21:7f:d2:b8:39:2a:21:cf:dc:82:73:5b:34:6c: 27:46:5d:42:c5:43:17:81:20:04:b7:49:ec:e6:ab:c3:89:49: 2b:aa:12:d6:f6:d3:fc:3c:67:e9:42:bf:ca:e2:69:d9:96:1f: 42:9c:bc:9a:01:8c:f7:5d:7f:8b:62:0b:e9:98:76:ec:e8:3b: 73:0e:3d:54 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB ODA0NzExMC8GA1UEBRMoODg0OEFBQ0RGMjk1MTMwM0U3MDk4RjQxOUQ4Q0EwMDQy Mjg5MEM2OTAeFw0yNTA0MjUwNjA3MzFaFw0yNTA1MDIwNjA3MzFaMBgxFjAUBgNV BAMTDTY4MGIyNmEzLTk2Y2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDcCVCe4DTVxI53kXNV0D6ko2PE4M/V64Tsp70VyJ1Nzdq8doVgkWff18N25O/U vf9d1IdLv7msjsYmFC+c2pEPOrKyAB85IkudwMtOY7uGEOUUwAzegDpncIJA6OtA SgfJBqedod+zz+hdr3aQCY7OId1RU+VVcxwmoaC6qQtcOxefJLvcYJY1TIMOvqg6 eDgyZMD3VdIH91ll4bCtDwosomCk/qQsvU2LCKjysMXuY8EiNHUwYLoNnlhFzQWx re0R5PjJm/X7WBsA3MI/CvNvR8cwbgwvU3Jby0tTbEbqNuqJcD8sFiuadZ906kFn hrf2Ar+Blgx6gDCAVtf/lPVZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUjZ7QBxaf YObp6zhXs6ulcyxY+L8wHwYDVR0jBBgwFoAUiEiqzfKVEwPnCY9BnYygBCKJDGkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE4MDQ3LzM0NEEwMUEyOUIx NTExRUY4NkVCMzc0NkM0RjlBRTAyL2lFaXF6ZktWRXdQbkNZOUJuWXlnQkNLSkRH ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaUVpcXpmS1ZFd1BuQ1k5Qm5ZeWdCQ0tKREdrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE4 MDQ3LzM0NEEwMUEyOUIxNTExRUY4NkVCMzc0NkM0RjlBRTAyL2lFaXF6ZktWRXdQ bkNZOUJuWXlnQkNLSkRHay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEjXiTQbviv2veWUa4a5QVqxFJKh/IinS7NNMQYl5DWRoDvzFECVdBNa Y0lyeztMPxqYTTBuH+Re/FtgTawA5y8oPetzJsH/zQJxWxNfqxOcNccvMl7w2R6z uwXFL3tmj1BF9siWhz7RESGi6Wu146Xe7keBjZ3takjRWLlaV5ipEMeMg2Ms036i 2lp1c15ZQp68/QFtpaRG/0xy3STZWSR5kR4YWTnH2/wof59/h+ykrmZkY9QI0L8h f9K4OSohz9yCc1s0bCdGXULFQxeBIAS3Sezmq8OJSSuqEtb20/w8Z+lCv8riadmW H0KcvJoBjPddf4tiC+mYduzoO3MOPVQ= -----END CERTIFICATE-----Generated at Sat Apr 26 04:36:50 2025 by rpki-client