$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4460/04986476148711F0A79EAB26C4F9AE02/iJGVOO7eyDINXq9rHzKymCOreBA.mft File: iJGVOO7eyDINXq9rHzKymCOreBA.mft (raw, json) Hash identifier: 0qP8SwvzEjoRhvBT0PtXu4pwgl7d6HAUck7Yhb4L53Q= Subject key identifier: A7:CC:8B:AC:14:B7:99:8B:87:FC:93:34:63:9C:A1:ED:32:4B:0E:AB Authority key identifier: 88:91:95:38:EE:DE:C8:32:0D:5E:AF:6B:1F:32:B2:98:23:AB:78:10 Certificate issuer: /CN=A91B4460/serialNumber=88919538EEDEC8320D5EAF6B1F32B29823AB7810 Certificate serial: 0B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iJGVOO7eyDINXq9rHzKymCOreBA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4460/04986476148711F0A79EAB26C4F9AE02/iJGVOO7eyDINXq9rHzKymCOreBA.mft Manifest number: 0A Signing time: Fri 25 Apr 2025 07:07:37 +0000 Manifest this update: Fri 25 Apr 2025 07:07:37 +0000 Manifest next update: Fri 02 May 2025 07:07:37 +0000 Files and hashes: 1: iJGVOO7eyDINXq9rHzKymCOreBA.crl (hash: WGqS1dg66V9U6+s9pB/sZDNWLx9tpWkAXHmGtzUxO0k=) 2: 7A85F9D2148711F0AF960528C4F9AE02.roa (hash: v93VVwAanSucSOqj9EwS1pD5Lqih1cuGiSwwM282Dpg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4460/04986476148711F0A79EAB26C4F9AE02/iJGVOO7eyDINXq9rHzKymCOreBA.crl rsync://rpki.apnic.net/member_repository/A91B4460/04986476148711F0A79EAB26C4F9AE02/iJGVOO7eyDINXq9rHzKymCOreBA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iJGVOO7eyDINXq9rHzKymCOreBA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:07:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11 (0xb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4460, serialNumber=88919538EEDEC8320D5EAF6B1F32B29823AB7810 Validity Not Before: Apr 25 07:07:37 2025 GMT Not After : May 2 07:07:37 2025 GMT Subject: CN=680b34b9-8c8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:8f:c6:69:55:bb:c9:6e:a7:d3:6a:a7:3e:10: 3b:8a:70:8f:ea:07:b3:61:06:a4:3b:b7:39:f2:0f: 98:ea:ba:f2:c0:6d:f2:7c:c5:38:c0:1d:bd:a8:7a: 87:58:8c:8d:fe:f7:fd:3d:8b:95:64:34:53:9a:4f: c2:38:38:62:3c:96:ed:9e:6a:e3:55:13:bc:37:16: ae:47:b9:87:40:92:97:0d:bf:cf:af:e3:f4:04:34: b7:53:18:af:6b:0c:ee:92:2a:3c:95:bb:0c:3d:d2: 40:59:9c:43:a2:c9:5a:47:8a:f4:fe:38:25:9d:4d: 02:e0:bc:81:e3:5d:ad:68:31:2d:1d:2e:9c:77:da: 8a:1f:e2:9b:10:dd:af:72:8b:79:b1:93:84:5f:36: f0:ba:a2:29:75:96:a4:33:ed:d2:98:90:e4:e0:2b: dd:83:07:6b:7e:23:21:4d:13:d4:56:90:3f:0b:ff: 0c:cf:c9:17:c9:e5:00:a6:ba:94:4f:e0:b0:56:f6: 98:78:f4:23:a3:14:c4:42:fb:45:d1:34:0e:27:6f: 9f:be:0f:9d:d5:92:02:ff:51:70:36:9e:b9:e4:3b: 19:e2:43:88:44:cd:02:d1:f9:7a:c1:99:ca:89:32: a1:9b:9a:05:2f:b9:8f:ee:4d:0d:da:10:ee:c2:0c: 50:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:CC:8B:AC:14:B7:99:8B:87:FC:93:34:63:9C:A1:ED:32:4B:0E:AB X509v3 Authority Key Identifier: keyid:88:91:95:38:EE:DE:C8:32:0D:5E:AF:6B:1F:32:B2:98:23:AB:78:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4460/04986476148711F0A79EAB26C4F9AE02/iJGVOO7eyDINXq9rHzKymCOreBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iJGVOO7eyDINXq9rHzKymCOreBA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4460/04986476148711F0A79EAB26C4F9AE02/iJGVOO7eyDINXq9rHzKymCOreBA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:56:ef:f2:c6:6e:ea:fd:60:01:47:ea:7d:f2:b0:12:87:93: 08:ff:2d:74:bb:01:77:8e:71:09:f8:bf:3b:2e:46:ae:e5:ee: 76:3d:ee:b9:f3:63:6a:08:3d:a3:2d:2c:2a:e2:74:ab:97:66: e2:35:62:94:55:6a:b0:8c:9c:97:b9:5b:7f:fc:42:f8:2d:7d: 48:14:7e:9c:8f:1b:b3:61:e5:5a:d2:eb:53:d5:f3:33:b8:bc: de:64:f2:f5:c0:d4:4e:57:3b:8b:ae:d2:49:12:82:dd:97:ca: 0e:0a:b9:14:2e:99:9a:fe:a8:1a:9f:a6:b5:3e:45:f2:41:33: c0:b0:72:cd:62:d4:90:10:af:1e:d1:1d:37:86:31:68:23:04: 71:ff:15:23:0b:91:cb:84:75:0b:d7:71:ae:5e:36:42:f0:ea: 6d:49:b1:42:f7:62:7c:14:3a:18:10:a2:8b:e8:3d:de:95:68: 92:0c:78:b4:c8:ab:da:8e:57:d6:d6:a7:83:b8:26:f2:64:61: a6:88:c7:a9:69:2b:64:6a:bb:7d:8e:a2:45:5a:89:6b:4d:23: 5f:d9:6a:11:18:f1:34:75:74:eb:ac:b2:d7:ad:2c:b5:2b:1a: f3:47:70:0c:6f:c7:41:91:33:18:7d:c0:b0:fd:da:cc:2e:66: 42:9d:b8:9a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NDQ2MDExMC8GA1UEBRMoODg5MTk1MzhFRURFQzgzMjBENUVBRjZCMUYzMkIyOTgy M0FCNzgxMDAeFw0yNTA0MjUwNzA3MzdaFw0yNTA1MDIwNzA3MzdaMBgxFjAUBgNV BAMTDTY4MGIzNGI5LThjOGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCTj8ZpVbvJbqfTaqc+EDuKcI/qB7NhBqQ7tznyD5jquvLAbfJ8xTjAHb2oeodY jI3+9/09i5VkNFOaT8I4OGI8lu2eauNVE7w3Fq5HuYdAkpcNv8+v4/QENLdTGK9r DO6SKjyVuww90kBZnEOiyVpHivT+OCWdTQLgvIHjXa1oMS0dLpx32oof4psQ3a9y i3mxk4RfNvC6oil1lqQz7dKYkOTgK92DB2t+IyFNE9RWkD8L/wzPyRfJ5QCmupRP 4LBW9ph49COjFMRC+0XRNA4nb5++D53VkgL/UXA2nrnkOxniQ4hEzQLR+XrBmcqJ MqGbmgUvuY/uTQ3aEO7CDFAlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUp8yLrBS3 mYuH/JM0Y5yh7TJLDqswHwYDVR0jBBgwFoAUiJGVOO7eyDINXq9rHzKymCOreBAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0NDYwLzA0OTg2NDc2MTQ4 NzExRjBBNzlFQUIyNkM0RjlBRTAyL2lKR1ZPTzdleURJTlhxOXJIekt5bUNPcmVC QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaUpHVk9PN2V5RElOWHE5ckh6S3ltQ09yZUJBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0 NDYwLzA0OTg2NDc2MTQ4NzExRjBBNzlFQUIyNkM0RjlBRTAyL2lKR1ZPTzdleURJ TlhxOXJIekt5bUNPcmVCQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGxW7/LGbur9YAFH6n3ysBKHkwj/LXS7AXeOcQn4vzsuRq7l7nY97rnz Y2oIPaMtLCridKuXZuI1YpRVarCMnJe5W3/8QvgtfUgUfpyPG7Nh5VrS61PV8zO4 vN5k8vXA1E5XO4uu0kkSgt2Xyg4KuRQumZr+qBqfprU+RfJBM8Cwcs1i1JAQrx7R HTeGMWgjBHH/FSMLkcuEdQvXca5eNkLw6m1JsUL3YnwUOhgQoovoPd6VaJIMeLTI q9qOV9bWp4O4JvJkYaaIx6lpK2Rqu32OokVaiWtNI1/ZahEY8TR1dOusstetLLUr GvNHcAxvx0GRMxh9wLD92swuZkKduJo= -----END CERTIFICATE-----Generated at Sat Apr 26 17:06:06 2025 by rpki-client