$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft File: iUKJrUDufmJvXNgvzsVAbbkeHnE.mft (raw, json) Hash identifier: AC4u7o6K9HP7PpZwuthf10HEMBU32r/DdPaRN2jhaQo= Subject key identifier: FB:B4:84:BD:91:32:41:DC:96:B4:80:C5:61:B8:E3:47:E4:C8:FB:C7 Authority key identifier: 89:42:89:AD:40:EE:7E:62:6F:5C:D8:2F:CE:C5:40:6D:B9:1E:1E:71 Certificate issuer: /CN=A91B9790/serialNumber=894289AD40EE7E626F5CD82FCEC5406DB91E1E71 Certificate serial: 8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft Manifest number: 88 Signing time: Fri 25 Apr 2025 05:33:38 +0000 Manifest this update: Fri 25 Apr 2025 05:33:38 +0000 Manifest next update: Fri 02 May 2025 05:33:38 +0000 Files and hashes: 1: iUKJrUDufmJvXNgvzsVAbbkeHnE.crl (hash: YP/xj9PuDwZ02QPHPvhBLUNxVE7Ok2GrIvF9u/Oh7Mo=) 2: B1CB71925DDF11EF8DBEED1FC4F9AE02.roa (hash: 7PzqCay1JqLU8XnJXQhTQ8qxdPkeE0fg0K7DtdeCRDM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.crl rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:33:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9790, serialNumber=894289AD40EE7E626F5CD82FCEC5406DB91E1E71 Validity Not Before: Apr 25 05:33:38 2025 GMT Not After : May 2 05:33:38 2025 GMT Subject: CN=680b1eb2-99b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:5d:ca:37:87:a8:4c:2f:88:a7:d4:45:df:27: ea:09:1b:b9:29:8b:fa:8c:50:15:e4:3e:3f:fd:5b: 3e:eb:c1:6b:d3:b6:fe:99:6c:a3:e3:6d:bd:cd:a7: 4d:d3:b8:55:29:04:ba:bd:ec:e2:91:8c:54:d9:57: 0f:9a:a3:0b:57:1e:0c:e3:ee:6e:c3:be:5e:6a:1f: 3f:58:f3:3b:15:29:18:2f:28:e0:6e:d9:d8:c3:26: 54:a8:6f:52:97:74:dc:24:c6:c1:18:80:5f:e6:e4: 99:4e:e5:7f:c9:1b:fc:c7:ae:15:e8:e4:90:0c:b3: 48:0a:c5:49:d3:ef:51:2b:65:f2:a7:c2:0c:dc:22: da:44:4d:91:55:52:70:48:fc:3d:d1:45:3e:db:fe: fe:5b:ff:34:65:29:87:62:c2:fd:fb:7f:6e:f1:f4: 1d:3a:79:38:15:1a:59:f3:34:88:4e:8f:a3:14:c6: 1b:dd:ca:05:21:0c:ba:93:3e:55:31:b5:f0:82:54: ac:a3:0e:0d:c5:42:6f:af:26:80:7f:5d:31:ad:d1: b5:20:1c:1c:5c:84:64:31:3c:fb:dc:0b:e8:73:fa: 11:56:c9:47:1a:42:ff:b4:96:81:ad:3c:13:87:c9: a6:f5:ac:e9:cf:c0:22:6d:94:d2:c5:6b:93:cf:6f: ed:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:B4:84:BD:91:32:41:DC:96:B4:80:C5:61:B8:E3:47:E4:C8:FB:C7 X509v3 Authority Key Identifier: keyid:89:42:89:AD:40:EE:7E:62:6F:5C:D8:2F:CE:C5:40:6D:B9:1E:1E:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:61:4d:4d:28:d9:65:46:40:a9:0a:e2:be:7c:40:90:9d:7c: 30:08:d1:e9:3b:85:ad:f2:d6:45:75:9e:e1:4c:38:7f:80:78: 7c:b7:1a:ff:50:d3:5f:37:b5:1c:87:85:e4:a3:e4:30:1f:fa: 51:70:d7:71:bd:ec:2d:bb:c9:63:c4:65:3c:9f:04:29:2d:0b: a5:49:6b:a2:76:64:c9:d6:89:94:69:65:98:f0:4e:67:49:90: 11:06:7a:da:b2:d4:5c:f7:68:61:59:ba:91:a2:d7:27:f7:c4: b0:30:d9:32:54:97:b5:7d:89:58:f1:7b:d3:91:0d:bc:cb:45: cc:e6:f7:2f:82:c2:58:48:57:64:77:16:47:85:8f:ba:8e:8a: 0b:08:cf:bc:9e:d6:91:b1:cf:d1:64:c5:9f:93:3b:b2:41:f3: d3:a5:7d:20:ae:5d:d3:61:3d:50:39:a9:4f:42:56:4c:19:a8: 31:46:4b:58:56:8e:be:69:83:8d:58:7f:3d:3b:8f:cf:73:b7: 56:bc:8b:5f:e3:9d:97:4b:2e:7e:bf:09:6c:fd:f3:b4:e9:dd: e4:67:d6:dd:33:a3:bc:86:ea:c1:6d:76:e5:84:a6:6f:f1:1a: f8:2c:4d:ca:36:80:92:de:0a:22:10:48:c4:67:43:54:dd:ad: 9d:ee:07:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3OTAxMTAvBgNVBAUTKDg5NDI4OUFENDBFRTdFNjI2RjVDRDgyRkNFQzU0MDZE QjkxRTFFNzEwHhcNMjUwNDI1MDUzMzM4WhcNMjUwNTAyMDUzMzM4WjAYMRYwFAYD VQQDEw02ODBiMWViMi05OWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwF3KN4eoTC+Ip9RF3yfqCRu5KYv6jFAV5D4//Vs+68Fr07b+mWyj4229zadN 07hVKQS6vezikYxU2VcPmqMLVx4M4+5uw75eah8/WPM7FSkYLyjgbtnYwyZUqG9S l3TcJMbBGIBf5uSZTuV/yRv8x64V6OSQDLNICsVJ0+9RK2Xyp8IM3CLaRE2RVVJw SPw90UU+2/7+W/80ZSmHYsL9+39u8fQdOnk4FRpZ8zSITo+jFMYb3coFIQy6kz5V MbXwglSsow4NxUJvryaAf10xrdG1IBwcXIRkMTz73Avoc/oRVslHGkL/tJaBrTwT h8mm9azpz8AibZTSxWuTz2/t/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPu0hL2R MkHclrSAxWG440fkyPvHMB8GA1UdIwQYMBaAFIlCia1A7n5ib1zYL87FQG25Hh5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTc5MC83MTgwNUJBQzVB RTIxMUVGQUVCMDMxMkVDNEY5QUUwMi9pVUtKclVEdWZtSnZYTmd2enNWQWJia2VI bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVS0pyVUR1Zm1KdlhOZ3Z6c1ZBYmJrZUhuRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTc5MC83MTgwNUJBQzVBRTIxMUVGQUVCMDMxMkVDNEY5QUUwMi9pVUtKclVEdWZt SnZYTmd2enNWQWJia2VIbkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9YU1NKNllRkCpCuK+fECQnXwwCNHpO4Wt8tZFdZ7hTDh/gHh8txr/ UNNfN7Uch4Xko+QwH/pRcNdxvewtu8ljxGU8nwQpLQulSWuidmTJ1omUaWWY8E5n SZARBnrastRc92hhWbqRotcn98SwMNkyVJe1fYlY8XvTkQ28y0XM5vcvgsJYSFdk dxZHhY+6jooLCM+8ntaRsc/RZMWfkzuyQfPTpX0grl3TYT1QOalPQlZMGagxRktY Vo6+aYONWH89O4/Pc7dWvItf452XSy5+vwls/fO06d3kZ9bdM6O8hurBbXblhKZv 8Rr4LE3KNoCS3goiEEjEZ0NU3a2d7gdm -----END CERTIFICATE-----Generated at Sat Apr 26 05:30:07 2025 by rpki-client