$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft File: IaR__8gaEzNcB7kmBaLd_RgHoUw.mft (raw, json) Hash identifier: sSYBb+Jqn95FQnioMhudYdfZG7l09T29I4DDXqMTfSw= Subject key identifier: 31:CA:00:7A:3D:39:48:C0:0F:22:F1:2E:35:21:2F:3F:92:B5:14:D4 Authority key identifier: 21:A4:7F:FF:C8:1A:13:33:5C:07:B9:26:05:A2:DD:FD:18:07:A1:4C Certificate issuer: /CN=A91BF905/serialNumber=21A47FFFC81A13335C07B92605A2DDFD1807A14C Certificate serial: 0AE9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft Manifest number: 0ADB Signing time: Thu 24 Apr 2025 19:19:54 +0000 Manifest this update: Thu 24 Apr 2025 19:19:53 +0000 Manifest next update: Thu 01 May 2025 19:19:53 +0000 Files and hashes: 1: IaR__8gaEzNcB7kmBaLd_RgHoUw.crl (hash: 7cydUeS0ObMMRaSUf3+dCTIZCGYeViAIZNoUXZjKYUA=) 2: CDEFCF14801F11EF99206C47C4F9AE02.roa (hash: kISEPEmE2ZLNGr7M+gIIuLb+wfjhIl0pN5Ozrn7290M=) 3: A558194E801F11EFB86B2647C4F9AE02.roa (hash: yZl4Rgg31ofEgyuQezY4Q6zD53Q3cflOAAa2hJJAiIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.crl rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:19:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2793 (0xae9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF905, serialNumber=21A47FFFC81A13335C07B92605A2DDFD1807A14C Validity Not Before: Apr 24 19:19:53 2025 GMT Not After : May 1 19:19:53 2025 GMT Subject: CN=680a8eda-8f2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:8c:cc:05:7b:a3:c1:09:54:d5:25:33:fa:64: cb:45:39:fb:e4:65:83:62:a4:8f:6d:dc:60:29:b4: 80:af:e9:cc:ed:5a:ae:83:b1:fd:79:f4:d6:42:2e: 9b:d4:93:96:8c:3e:89:dc:7c:e2:ab:aa:34:e2:bf: 85:5d:a2:e3:d4:8b:55:db:80:06:c8:00:33:a7:09: af:7d:06:cd:6b:33:b0:5d:84:37:16:88:05:7a:dd: 03:d2:a7:7a:b9:67:98:05:0b:99:5a:94:f6:18:c7: 73:f0:33:0c:ca:fe:1f:fc:bd:23:20:b1:c6:ca:fe: 8e:cc:09:f2:ff:e7:57:83:dc:f8:b3:e4:77:52:c0: cb:44:08:81:96:26:d7:b1:2f:12:2c:02:ce:04:0e: 67:0b:22:46:8b:b7:66:cb:22:36:44:87:b8:bb:c1: 9a:02:bd:85:02:91:8a:80:d4:9c:84:fd:2f:87:a0: cc:45:42:f4:b8:6a:2c:67:6d:a8:44:05:16:75:18: e7:18:43:22:4e:81:db:8c:47:06:e1:20:fd:e8:12: ed:60:26:e4:b2:35:16:2d:84:51:3b:7e:d4:84:25: 72:a5:a4:7f:00:c1:5e:37:09:6b:08:05:42:ba:f0: ed:1c:71:4f:24:2d:ac:ad:80:d0:95:07:59:59:7a: ef:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:CA:00:7A:3D:39:48:C0:0F:22:F1:2E:35:21:2F:3F:92:B5:14:D4 X509v3 Authority Key Identifier: keyid:21:A4:7F:FF:C8:1A:13:33:5C:07:B9:26:05:A2:DD:FD:18:07:A1:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:94:b5:e6:01:7e:2d:42:df:84:fa:4a:1e:48:91:c1:81:7c: e3:9f:7e:40:7a:c6:90:ed:f4:92:66:e2:e8:fa:d5:93:6b:ff: 11:92:11:90:74:bf:fc:4d:8f:41:31:87:0f:61:21:9b:3e:6c: 83:5e:5d:4c:0a:0d:30:d9:d5:17:36:ef:8e:cd:3d:34:74:4c: 5f:fe:36:ac:83:d0:2a:b9:6e:ef:a0:b4:f4:b1:b8:4d:9b:72: 69:4c:38:8d:c4:8a:12:66:b3:3b:00:c9:a3:57:07:2b:fb:38: b7:d5:8e:b4:40:17:74:32:c1:20:bc:2b:5a:ae:07:ac:0f:e8: ff:66:41:47:6d:7a:b1:0a:bc:5f:94:cf:3f:56:2c:b4:21:66: bf:c2:36:f6:83:7d:bd:c1:64:da:cc:3c:3c:0a:d1:9b:7e:1f: 63:68:26:22:8e:a7:42:f7:bb:f0:89:8a:5d:ed:68:d4:a2:97: e2:1f:64:9c:a0:d8:20:29:b7:0b:62:14:96:be:f6:0c:b4:4d: c2:56:2e:2e:2c:31:86:71:14:b8:26:24:8e:bf:db:f8:60:ec: 28:42:b0:31:46:ba:6b:52:dc:fd:19:f5:1c:cb:49:fc:2e:05: 40:ee:6d:a2:e9:7c:e6:a9:00:e1:92:3a:e3:05:b8:58:3d:b4: e9:89:40:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCukwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY5MDUxMTAvBgNVBAUTKDIxQTQ3RkZGQzgxQTEzMzM1QzA3QjkyNjA1QTJEREZE MTgwN0ExNEMwHhcNMjUwNDI0MTkxOTUzWhcNMjUwNTAxMTkxOTUzWjAYMRYwFAYD VQQDEw02ODBhOGVkYS04ZjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4YzMBXujwQlU1SUz+mTLRTn75GWDYqSPbdxgKbSAr+nM7Vqug7H9efTWQi6b 1JOWjD6J3Hziq6o04r+FXaLj1ItV24AGyAAzpwmvfQbNazOwXYQ3FogFet0D0qd6 uWeYBQuZWpT2GMdz8DMMyv4f/L0jILHGyv6OzAny/+dXg9z4s+R3UsDLRAiBlibX sS8SLALOBA5nCyJGi7dmyyI2RIe4u8GaAr2FApGKgNSchP0vh6DMRUL0uGosZ22o RAUWdRjnGEMiToHbjEcG4SD96BLtYCbksjUWLYRRO37UhCVypaR/AMFeNwlrCAVC uvDtHHFPJC2srYDQlQdZWXrvjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDHKAHo9 OUjADyLxLjUhLz+StRTUMB8GA1UdIwQYMBaAFCGkf//IGhMzXAe5JgWi3f0YB6FM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjkwNS8xRkE3QzQ2QzQ4 RDMxMUVBOEFBRTQ2NjhDNEY5QUUwMi9JYVJfXzhnYUV6TmNCN2ttQmFMZF9SZ0hv VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lhUl9fOGdhRXpOY0I3a21CYUxkX1JnSG9Vdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjkwNS8xRkE3QzQ2QzQ4RDMxMUVBOEFBRTQ2NjhDNEY5QUUwMi9JYVJfXzhnYUV6 TmNCN2ttQmFMZF9SZ0hvVXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANlLXmAX4tQt+E+koeSJHBgXzjn35AesaQ7fSSZuLo+tWTa/8RkhGQ dL/8TY9BMYcPYSGbPmyDXl1MCg0w2dUXNu+OzT00dExf/jasg9AquW7voLT0sbhN m3JpTDiNxIoSZrM7AMmjVwcr+zi31Y60QBd0MsEgvCtargesD+j/ZkFHbXqxCrxf lM8/Viy0IWa/wjb2g329wWTazDw8CtGbfh9jaCYijqdC97vwiYpd7WjUopfiH2Sc oNggKbcLYhSWvvYMtE3CVi4uLDGGcRS4JiSOv9v4YOwoQrAxRrprUtz9GfUcy0n8 LgVA7m2i6XzmqQDhkjrjBbhYPbTpiUCn -----END CERTIFICATE-----Generated at Sat Apr 26 13:04:34 2025 by rpki-client