$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft File: iV-zzi-cLke5FLsqa2bHfVOXpAo.mft (raw, json) Hash identifier: rsu+kMsxdIcSx4ggRUibiHYGHBYMhsNZWNqqRA77Jbc= Subject key identifier: AB:A8:08:89:18:EC:2C:5B:60:7D:FB:7E:73:6D:EE:ED:8D:F5:4F:47 Authority key identifier: 89:5F:B3:CE:2F:9C:2E:47:B9:14:BB:2A:6B:66:C7:7D:53:97:A4:0A Certificate issuer: /CN=A91E6419/serialNumber=895FB3CE2F9C2E47B914BB2A6B66C77D5397A40A Certificate serial: 01DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV-zzi-cLke5FLsqa2bHfVOXpAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft Manifest number: 01DA Signing time: Sun 27 Apr 2025 01:48:09 +0000 Manifest this update: Sun 27 Apr 2025 01:48:08 +0000 Manifest next update: Sun 04 May 2025 01:48:08 +0000 Files and hashes: 1: iV-zzi-cLke5FLsqa2bHfVOXpAo.crl (hash: wfOcBDJkAydyx+Epfr9iyK04DCYzZWmdbZKNTqqntyU=) 2: 38DEC3C04ED611ED84336740C4F9AE02.roa (hash: GwA8WNqmVW1s9tawzkiqtYC7xFjjdtlbsl+Ur+WNSNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.crl rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV-zzi-cLke5FLsqa2bHfVOXpAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 01:48:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 479 (0x1df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6419, serialNumber=895FB3CE2F9C2E47B914BB2A6B66C77D5397A40A Validity Not Before: Apr 27 01:48:08 2025 GMT Not After : May 4 01:48:08 2025 GMT Subject: CN=680d8cd9-5bf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:2b:d9:b0:f8:ae:f6:57:bc:8b:8e:ec:99:00: 79:7e:4f:ec:c5:ee:ff:80:e5:fa:c0:ce:99:1d:09: 15:2f:09:d5:89:24:64:3e:b2:32:61:7c:44:e5:b0: 2b:f3:8e:24:71:b7:40:90:b0:37:2a:5b:92:cf:68: 4f:11:cb:3a:a1:19:59:4f:75:19:1f:85:ea:7e:c4: 79:2f:06:9c:ed:d5:40:8d:c4:0e:70:c7:49:43:94: e8:34:9e:0e:9e:0d:71:4d:1f:27:d7:9e:2c:31:60: 85:3d:3a:8a:a1:ef:7c:3a:03:e1:80:9c:40:69:ae: b0:5b:0b:f2:b7:2d:d1:4c:c9:9d:fe:c2:d8:db:e9: 50:71:80:30:fd:7e:c8:bf:1f:00:88:81:23:ca:23: 70:d0:77:44:bf:73:fc:4e:25:19:11:c7:7a:39:8f: bd:97:3e:1d:66:a7:cb:eb:45:dd:1a:72:90:d4:13: 67:92:fb:2a:46:74:2b:1d:e5:d4:3e:01:d7:fe:7b: d7:8e:d0:4d:9a:f5:c5:8f:e2:2c:c5:0f:f5:13:f2: 87:ce:df:fd:76:a9:70:19:27:03:5e:9a:d4:de:39: 88:6f:a5:bc:75:3a:fd:a4:aa:6b:5c:b2:a3:fa:d0: 33:dd:01:40:e8:c8:04:43:2f:83:05:33:68:d5:de: f8:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:A8:08:89:18:EC:2C:5B:60:7D:FB:7E:73:6D:EE:ED:8D:F5:4F:47 X509v3 Authority Key Identifier: keyid:89:5F:B3:CE:2F:9C:2E:47:B9:14:BB:2A:6B:66:C7:7D:53:97:A4:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV-zzi-cLke5FLsqa2bHfVOXpAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:92:51:42:0c:22:a7:70:64:51:6a:ad:94:f2:67:56:9b:94: 3b:f6:42:09:cb:0d:aa:41:af:69:ec:81:2f:dc:af:24:c0:5e: a6:23:62:9c:03:e5:c8:7c:ff:60:15:cf:71:ee:47:e9:19:1f: 53:eb:1b:36:e3:b2:c7:56:b5:07:c5:aa:6a:7b:52:36:85:43: 9a:4b:ed:5d:c2:b7:3a:e5:89:5e:38:02:f6:0d:94:66:0e:40: 54:ea:b2:42:25:f9:cf:6b:59:5b:dd:66:c0:a5:57:75:15:fd: 64:9e:51:26:4d:49:c8:38:dd:2c:43:51:d8:01:0f:a6:1b:13: 6a:2c:f3:e6:71:ea:8a:03:10:23:e8:71:16:85:62:b5:a1:79: fd:52:cb:34:a3:cb:6d:3a:4d:05:b3:1c:9a:42:76:5a:40:80: d1:35:e4:55:d2:2c:4c:27:80:8d:27:77:4d:fe:75:d5:a5:18: 43:08:7f:cd:b0:5e:9f:f8:28:af:41:f6:15:bd:22:3b:57:a8: 41:36:70:f6:43:20:23:86:04:8d:7d:87:0f:61:2a:72:ec:c4: 57:47:8b:e4:dd:2e:5a:a0:a1:65:38:56:f3:af:d0:9c:c3:b1: fb:2f:f4:4b:94:8a:03:6a:ed:b6:51:92:1b:f7:c6:13:78:cc: c8:f0:53:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY0MTkxMTAvBgNVBAUTKDg5NUZCM0NFMkY5QzJFNDdCOTE0QkIyQTZCNjZDNzdE NTM5N0E0MEEwHhcNMjUwNDI3MDE0ODA4WhcNMjUwNTA0MDE0ODA4WjAYMRYwFAYD VQQDEw02ODBkOGNkOS01YmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxyvZsPiu9le8i47smQB5fk/sxe7/gOX6wM6ZHQkVLwnViSRkPrIyYXxE5bAr 844kcbdAkLA3KluSz2hPEcs6oRlZT3UZH4XqfsR5Lwac7dVAjcQOcMdJQ5ToNJ4O ng1xTR8n154sMWCFPTqKoe98OgPhgJxAaa6wWwvyty3RTMmd/sLY2+lQcYAw/X7I vx8AiIEjyiNw0HdEv3P8TiUZEcd6OY+9lz4dZqfL60XdGnKQ1BNnkvsqRnQrHeXU PgHX/nvXjtBNmvXFj+IsxQ/1E/KHzt/9dqlwGScDXprU3jmIb6W8dTr9pKprXLKj +tAz3QFA6MgEQy+DBTNo1d74oQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKuoCIkY 7CxbYH37fnNt7u2N9U9HMB8GA1UdIwQYMBaAFIlfs84vnC5HuRS7Kmtmx31Tl6QK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjQxOS9GQTZFMzZDQzRF RDMxMUVEQTVFNTMwNDBDNEY5QUUwMi9pVi16emktY0xrZTVGTHNxYTJiSGZWT1hw QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lWLXp6aS1jTGtlNUZMc3FhMmJIZlZPWHBBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjQxOS9GQTZFMzZDQzRFRDMxMUVEQTVFNTMwNDBDNEY5QUUwMi9pVi16emktY0xr ZTVGTHNxYTJiSGZWT1hwQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8klFCDCKncGRRaq2U8mdWm5Q79kIJyw2qQa9p7IEv3K8kwF6mI2Kc A+XIfP9gFc9x7kfpGR9T6xs247LHVrUHxapqe1I2hUOaS+1dwrc65YleOAL2DZRm DkBU6rJCJfnPa1lb3WbApVd1Ff1knlEmTUnION0sQ1HYAQ+mGxNqLPPmceqKAxAj 6HEWhWK1oXn9Uss0o8ttOk0FsxyaQnZaQIDRNeRV0ixMJ4CNJ3dN/nXVpRhDCH/N sF6f+CivQfYVvSI7V6hBNnD2QyAjhgSNfYcPYSpy7MRXR4vk3S5aoKFlOFbzr9Cc w7H7L/RLlIoDau22UZIb98YTeMzI8FO9 -----END CERTIFICATE-----Generated at Tue Apr 29 00:34:39 2025 by rpki-client