$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0EDF/3DE39E82CFAD11EEACFA4268C4F9AE02/i2QZaGkRe5m4ebTcuvBCkLwWgQw.mft File: i2QZaGkRe5m4ebTcuvBCkLwWgQw.mft (raw, json) Hash identifier: nNkAe1eHkVeQoWqUlDFiSfL6zuBvGQN8EhxrtCL+lGs= Subject key identifier: 75:4D:65:D2:13:F7:4E:3F:7D:6C:4E:9D:8F:FD:B1:58:20:87:01:15 Authority key identifier: 8B:64:19:68:69:11:7B:99:B8:79:B4:DC:BA:F0:42:90:BC:16:81:0C Certificate issuer: /CN=A91C0EDF/serialNumber=8B64196869117B99B879B4DCBAF04290BC16810C Certificate serial: E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i2QZaGkRe5m4ebTcuvBCkLwWgQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0EDF/3DE39E82CFAD11EEACFA4268C4F9AE02/i2QZaGkRe5m4ebTcuvBCkLwWgQw.mft Manifest number: DF Signing time: Fri 25 Apr 2025 04:34:39 +0000 Manifest this update: Fri 25 Apr 2025 04:34:38 +0000 Manifest next update: Fri 02 May 2025 04:34:38 +0000 Files and hashes: 1: i2QZaGkRe5m4ebTcuvBCkLwWgQw.crl (hash: k/LAVmE2COKURS66Em78xEzq3Fo/es/j51/yo7a6ztg=) 2: 52333EB4CFAE11EEB928CD25C4F9AE02.roa (hash: Ed+WGj4YoSK8RoZY5/E6txkQiwmhNLhgRfvyu7U8cGA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0EDF/3DE39E82CFAD11EEACFA4268C4F9AE02/i2QZaGkRe5m4ebTcuvBCkLwWgQw.crl rsync://rpki.apnic.net/member_repository/A91C0EDF/3DE39E82CFAD11EEACFA4268C4F9AE02/i2QZaGkRe5m4ebTcuvBCkLwWgQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i2QZaGkRe5m4ebTcuvBCkLwWgQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:34:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 226 (0xe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0EDF, serialNumber=8B64196869117B99B879B4DCBAF04290BC16810C Validity Not Before: Apr 25 04:34:38 2025 GMT Not After : May 2 04:34:38 2025 GMT Subject: CN=680b10de-8b41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:0f:2d:0e:7f:c9:f9:6c:71:05:f5:1a:73:38: 5d:50:58:24:68:2e:a2:49:9b:19:dc:67:e1:48:4f: a5:96:6e:6d:1d:e7:70:38:6d:35:20:1b:b3:6c:7f: ef:59:9e:ca:9f:d3:bd:c7:9c:ec:be:fc:4e:0e:fb: 88:96:2a:ea:14:f4:54:1b:56:67:c1:d3:77:f0:d4: 65:d2:13:27:78:8e:5c:63:cf:c4:f9:3f:d0:d7:04: 2c:df:7a:bb:0d:4b:16:24:c7:b5:32:d2:f3:0c:d3: ac:35:16:3a:67:b5:4c:a4:7d:f1:84:d1:75:cc:bd: 88:18:7d:75:5c:c5:ee:f4:95:55:f3:94:23:d3:e7: b7:2c:cd:07:f3:2b:2c:00:33:a5:0a:ed:46:69:fc: b6:30:b4:d5:38:04:67:f8:5d:e6:99:e0:61:ba:82: e9:a2:3d:03:23:80:44:2a:14:0e:08:18:0f:a8:10: 43:84:f7:aa:d9:e8:ed:41:f0:30:fc:5d:32:73:47: 59:64:c4:c5:5b:75:f7:16:32:6e:13:3b:c0:0e:3c: 91:33:f3:fe:73:9d:5b:5b:f6:c8:d5:b8:f0:2e:20: 17:70:f0:07:55:f0:62:95:8c:a8:54:5d:79:93:2a: b9:c3:e0:b2:58:bb:bd:93:e9:43:c6:d4:77:0d:25: 93:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:4D:65:D2:13:F7:4E:3F:7D:6C:4E:9D:8F:FD:B1:58:20:87:01:15 X509v3 Authority Key Identifier: keyid:8B:64:19:68:69:11:7B:99:B8:79:B4:DC:BA:F0:42:90:BC:16:81:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0EDF/3DE39E82CFAD11EEACFA4268C4F9AE02/i2QZaGkRe5m4ebTcuvBCkLwWgQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i2QZaGkRe5m4ebTcuvBCkLwWgQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0EDF/3DE39E82CFAD11EEACFA4268C4F9AE02/i2QZaGkRe5m4ebTcuvBCkLwWgQw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:c5:e6:dd:84:f3:ab:9b:42:bc:23:af:26:0a:89:96:5a:99: 36:5c:5e:af:76:3e:fe:0b:ac:bd:16:93:26:87:2d:5b:df:c5: 47:2b:9c:fe:10:94:8b:2e:30:69:03:ad:9b:bc:8a:36:dd:35: 80:ba:f1:f6:e1:19:54:c4:87:de:3e:4c:c0:9c:74:22:ad:00: 59:cf:97:d8:2a:6d:0e:f6:da:84:fb:c4:14:1c:c6:f1:06:75: 89:91:ba:80:c6:fe:0d:ab:f0:e2:ca:b3:f3:45:7d:dc:51:1e: c3:18:75:f9:90:af:e2:34:6b:bd:b5:ed:20:4b:15:4a:a2:b6: 2a:4c:eb:cd:70:89:ef:a6:75:ff:cb:71:e6:86:36:6c:fd:06: bb:4b:39:f0:72:0a:06:0e:c0:7a:5f:90:ee:cf:cf:3e:d4:e5: da:e5:f0:2f:8a:41:27:24:25:1d:e9:84:99:6f:7d:e9:30:8b: e8:60:d4:06:31:e1:e3:3c:bd:dd:f6:56:1a:86:90:f4:6a:d4: 9c:8f:52:69:0f:52:76:6f:8f:9b:e5:08:95:e0:6d:84:61:c2: ad:12:32:57:52:df:89:c5:d5:0f:b9:21:99:38:d8:b4:08:fe: fd:40:58:27:e4:89:4d:22:47:f8:79:84:a0:42:bd:41:32:76: 50:d1:3c:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBFREYxMTAvBgNVBAUTKDhCNjQxOTY4NjkxMTdCOTlCODc5QjREQ0JBRjA0Mjkw QkMxNjgxMEMwHhcNMjUwNDI1MDQzNDM4WhcNMjUwNTAyMDQzNDM4WjAYMRYwFAYD VQQDEw02ODBiMTBkZS04YjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmw8tDn/J+WxxBfUaczhdUFgkaC6iSZsZ3GfhSE+llm5tHedwOG01IBuzbH/v WZ7Kn9O9x5zsvvxODvuIlirqFPRUG1ZnwdN38NRl0hMneI5cY8/E+T/Q1wQs33q7 DUsWJMe1MtLzDNOsNRY6Z7VMpH3xhNF1zL2IGH11XMXu9JVV85Qj0+e3LM0H8yss ADOlCu1Gafy2MLTVOARn+F3mmeBhuoLpoj0DI4BEKhQOCBgPqBBDhPeq2ejtQfAw /F0yc0dZZMTFW3X3FjJuEzvADjyRM/P+c51bW/bI1bjwLiAXcPAHVfBilYyoVF15 kyq5w+CyWLu9k+lDxtR3DSWTPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHVNZdIT 904/fWxOnY/9sVgghwEVMB8GA1UdIwQYMBaAFItkGWhpEXuZuHm03LrwQpC8FoEM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEVERi8zREUzOUU4MkNG QUQxMUVFQUNGQTQyNjhDNEY5QUUwMi9pMlFaYUdrUmU1bTRlYlRjdXZCQ2tMd1dn UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2kyUVphR2tSZTVtNGViVGN1dkJDa0x3V2dRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEVERi8zREUzOUU4MkNGQUQxMUVFQUNGQTQyNjhDNEY5QUUwMi9pMlFaYUdrUmU1 bTRlYlRjdXZCQ2tMd1dnUXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUxebdhPOrm0K8I68mComWWpk2XF6vdj7+C6y9FpMmhy1b38VHK5z+ EJSLLjBpA62bvIo23TWAuvH24RlUxIfePkzAnHQirQBZz5fYKm0O9tqE+8QUHMbx BnWJkbqAxv4Nq/DiyrPzRX3cUR7DGHX5kK/iNGu9te0gSxVKorYqTOvNcInvpnX/ y3HmhjZs/Qa7SznwcgoGDsB6X5Duz88+1OXa5fAvikEnJCUd6YSZb33pMIvoYNQG MeHjPL3d9lYahpD0atScj1JpD1J2b4+b5QiV4G2EYcKtEjJXUt+JxdUPuSGZONi0 CP79QFgn5IlNIkf4eYSgQr1BMnZQ0Twj -----END CERTIFICATE-----Generated at Sat Apr 26 04:19:54 2025 by rpki-client