$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE984/28745E4C15EE11EAA2D9E06EC4F9AE02/iro-R9UcXSye80Plr0EQHkPFiog.mft File: iro-R9UcXSye80Plr0EQHkPFiog.mft (raw, json) Hash identifier: KzdKEYL2+aw7gK3YFrPFLcVtUJzlkFlbR/wgSq4zuC8= Subject key identifier: 76:39:F5:55:DB:88:1A:70:61:D3:23:77:80:2F:7F:06:ED:E5:FE:2F Authority key identifier: 8A:BA:3E:47:D5:1C:5D:2C:9E:F3:43:E5:AF:41:10:1E:43:C5:8A:88 Certificate issuer: /CN=A91AE984/serialNumber=8ABA3E47D51C5D2C9EF343E5AF41101E43C58A88 Certificate serial: 0BE8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iro-R9UcXSye80Plr0EQHkPFiog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE984/28745E4C15EE11EAA2D9E06EC4F9AE02/iro-R9UcXSye80Plr0EQHkPFiog.mft Manifest number: 0BDD Signing time: Thu 24 Apr 2025 18:43:51 +0000 Manifest this update: Thu 24 Apr 2025 18:43:50 +0000 Manifest next update: Thu 01 May 2025 18:43:50 +0000 Files and hashes: 1: iro-R9UcXSye80Plr0EQHkPFiog.crl (hash: vmhX3fDreahQ/H8FMjhMDP/KWl5Fc2VVMsNI+YLrN5E=) 2: CEC4C3FC903B11ED96D73F40C4F9AE02.roa (hash: ZFOmsL5bJSLH6PZ2YkIqaVTwufEfPYg2DbDADn/8Z+w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE984/28745E4C15EE11EAA2D9E06EC4F9AE02/iro-R9UcXSye80Plr0EQHkPFiog.crl rsync://rpki.apnic.net/member_repository/A91AE984/28745E4C15EE11EAA2D9E06EC4F9AE02/iro-R9UcXSye80Plr0EQHkPFiog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iro-R9UcXSye80Plr0EQHkPFiog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:43:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3048 (0xbe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE984, serialNumber=8ABA3E47D51C5D2C9EF343E5AF41101E43C58A88 Validity Not Before: Apr 24 18:43:50 2025 GMT Not After : May 1 18:43:50 2025 GMT Subject: CN=680a8667-ce7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:58:97:63:97:ab:cf:fe:29:a7:df:27:c5:08: 39:53:c9:80:71:72:88:42:33:fb:1f:28:2e:27:67: 20:d7:05:d9:8c:50:ab:6f:22:a8:a1:ed:8d:67:ae: 09:14:a6:ed:af:28:e8:92:cc:e0:cd:b2:c1:ee:a9: 5c:5d:25:6d:e7:08:1a:9a:64:a7:75:55:fb:b6:20: f9:36:3d:8f:e9:02:4c:7c:94:ee:fd:03:f9:da:69: 93:7a:37:74:54:55:49:1f:91:54:f9:60:3d:81:4c: 19:f3:13:c4:1a:04:81:29:9e:24:c1:ef:39:9f:08: 73:80:49:77:5e:c1:1d:ae:80:6d:f0:c8:d5:61:03: 82:81:30:c9:ed:ae:56:ef:ed:a8:b8:72:ba:1d:c6: 97:fa:21:f5:1b:2e:85:36:b0:bc:ff:35:f1:e8:73: 1b:05:45:af:5e:a6:6b:ef:f8:00:71:24:49:4e:88: a5:a0:3b:cd:d4:aa:1e:ff:a2:d2:f9:a2:a7:79:a4: 70:fd:58:e7:3a:a0:1f:65:78:42:33:29:27:b1:17: f0:2e:92:41:8b:02:3c:4b:80:50:8c:65:78:29:39: 4e:15:c6:cb:1b:1b:ab:e4:7c:49:b3:6c:bb:0a:46: f5:1b:9e:a0:55:81:c3:3a:47:64:3d:73:c3:61:c7: ab:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:39:F5:55:DB:88:1A:70:61:D3:23:77:80:2F:7F:06:ED:E5:FE:2F X509v3 Authority Key Identifier: keyid:8A:BA:3E:47:D5:1C:5D:2C:9E:F3:43:E5:AF:41:10:1E:43:C5:8A:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE984/28745E4C15EE11EAA2D9E06EC4F9AE02/iro-R9UcXSye80Plr0EQHkPFiog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iro-R9UcXSye80Plr0EQHkPFiog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE984/28745E4C15EE11EAA2D9E06EC4F9AE02/iro-R9UcXSye80Plr0EQHkPFiog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:27:3b:a2:64:81:4a:8f:59:37:2b:39:89:e0:48:b2:92:35: 94:1b:f1:53:eb:75:d7:55:d6:75:4e:e2:ef:5b:88:4d:66:6b: a0:24:61:0c:9b:56:e1:70:1b:06:70:c4:9d:3c:5d:9a:8e:43: 49:59:db:a9:db:2b:5a:91:34:b0:1c:f3:53:f3:ad:34:21:99: 16:c6:10:42:2b:95:c3:11:fc:ee:0c:10:bb:61:81:6d:7d:6b: 0c:7b:e4:58:63:67:f5:d6:01:9d:fd:87:08:1f:3f:52:35:6d: 75:f6:e1:47:96:64:b7:0a:17:fd:cf:f3:c1:af:0a:2e:7a:24: 18:c4:53:ce:22:01:87:5e:e7:c9:23:02:8f:3d:74:06:e0:37: 40:54:82:12:31:a4:be:e5:d3:85:da:d2:8a:c0:e1:36:af:e6: 44:f4:3f:c1:11:57:23:40:21:c2:54:77:33:85:e1:a8:f1:11: 76:cd:cc:75:6a:54:68:74:18:64:4a:70:70:80:70:ce:b9:cb: 03:0c:ed:6d:ac:b2:4a:58:82:a3:87:0d:79:8d:95:97:a3:2e: ac:dd:70:7b:e4:d1:a0:f1:d3:95:9f:88:70:4c:2b:9b:ea:6f: 7e:e5:3d:ff:e7:8f:15:31:73:14:85:5d:9d:aa:b7:0a:67:c2: c3:a7:82:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU5ODQxMTAvBgNVBAUTKDhBQkEzRTQ3RDUxQzVEMkM5RUYzNDNFNUFGNDExMDFF NDNDNThBODgwHhcNMjUwNDI0MTg0MzUwWhcNMjUwNTAxMTg0MzUwWjAYMRYwFAYD VQQDEw02ODBhODY2Ny1jZTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2liXY5erz/4pp98nxQg5U8mAcXKIQjP7HyguJ2cg1wXZjFCrbyKooe2NZ64J FKbtryjokszgzbLB7qlcXSVt5wgammSndVX7tiD5Nj2P6QJMfJTu/QP52mmTejd0 VFVJH5FU+WA9gUwZ8xPEGgSBKZ4kwe85nwhzgEl3XsEdroBt8MjVYQOCgTDJ7a5W 7+2ouHK6HcaX+iH1Gy6FNrC8/zXx6HMbBUWvXqZr7/gAcSRJToiloDvN1Koe/6LS +aKneaRw/VjnOqAfZXhCMyknsRfwLpJBiwI8S4BQjGV4KTlOFcbLGxur5HxJs2y7 Ckb1G56gVYHDOkdkPXPDYcerLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHY59VXb iBpwYdMjd4Avfwbt5f4vMB8GA1UdIwQYMBaAFIq6PkfVHF0snvND5a9BEB5DxYqI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTk4NC8yODc0NUU0QzE1 RUUxMUVBQTJEOUUwNkVDNEY5QUUwMi9pcm8tUjlVY1hTeWU4MFBscjBFUUhrUEZp b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lyby1SOVVjWFN5ZTgwUGxyMEVRSGtQRmlvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTk4NC8yODc0NUU0QzE1RUUxMUVBQTJEOUUwNkVDNEY5QUUwMi9pcm8tUjlVY1hT eWU4MFBscjBFUUhrUEZpb2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiJzuiZIFKj1k3KzmJ4EiykjWUG/FT63XXVdZ1TuLvW4hNZmugJGEM m1bhcBsGcMSdPF2ajkNJWdup2ytakTSwHPNT8600IZkWxhBCK5XDEfzuDBC7YYFt fWsMe+RYY2f11gGd/YcIHz9SNW119uFHlmS3Chf9z/PBrwoueiQYxFPOIgGHXufJ IwKPPXQG4DdAVIISMaS+5dOF2tKKwOE2r+ZE9D/BEVcjQCHCVHczheGo8RF2zcx1 alRodBhkSnBwgHDOucsDDO1trLJKWIKjhw15jZWXoy6s3XB75NGg8dOVn4hwTCub 6m9+5T3/548VMXMUhV2dqrcKZ8LDp4Lz -----END CERTIFICATE-----Generated at Sat Apr 26 13:46:50 2025 by rpki-client