$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft File: IO0KqyB1C4snqG35iadUv1cm3X4.mft (raw, json) Hash identifier: dGiphxrEsn3+K3CMhg3eOYJh87+vMdURdI6HWlJkeZo= Subject key identifier: 20:3E:1A:3F:8D:83:FB:78:FB:A3:DA:AC:D7:2C:8D:77:DF:C2:CC:71 Authority key identifier: 20:ED:0A:AB:20:75:0B:8B:27:A8:6D:F9:89:A7:54:BF:57:26:DD:7E Certificate issuer: /CN=A91EAB64/serialNumber=20ED0AAB20750B8B27A86DF989A754BF5726DD7E Certificate serial: 018F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft Manifest number: 0526 Signing time: Fri 25 Apr 2025 00:29:41 +0000 Manifest this update: Fri 25 Apr 2025 00:29:40 +0000 Manifest next update: Fri 02 May 2025 00:29:40 +0000 Files and hashes: 1: IO0KqyB1C4snqG35iadUv1cm3X4.crl (hash: IFocxOBkQnd4ZoXJ8GAAVlYyR2AWuHbzOHFCz0EAyFU=) 2: 13C17EAE203211F09B9D141CC4F9AE02.roa (hash: HS1vi6nnSZ7fbVowIGS+cC1MW1aBR9pLwV7kayJA9l4=) 3: 0064309A203211F091C0061CC4F9AE02.roa (hash: CxjM8nT+6zqXXcEsv5r6YYN/NOjb/oMb5HsHrJLUpqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.crl rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:29:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 399 (0x18f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAB64, serialNumber=20ED0AAB20750B8B27A86DF989A754BF5726DD7E Validity Not Before: Apr 25 00:29:40 2025 GMT Not After : May 2 00:29:40 2025 GMT Subject: CN=680ad775-7470 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:01:a3:00:c4:18:38:e1:3e:42:ae:0a:22:fb: 84:a2:23:a1:f5:fe:83:9a:02:8d:dc:96:ce:b3:50: 31:fa:42:cc:1c:20:34:e7:4a:b1:5d:05:ea:d3:4d: e5:6a:db:a3:b6:fc:93:ac:f8:b6:18:d9:0f:81:a2: ed:b2:7c:f8:d1:97:bb:65:ff:bc:e8:4e:5a:03:bf: d1:59:51:0f:de:76:71:94:21:5f:18:47:40:65:9b: df:ad:88:1b:80:6e:4e:2c:fe:fd:f1:27:2d:a0:12: c1:3b:8f:02:89:d6:fd:7c:de:a2:41:d6:09:59:87: 9f:d7:7d:c1:f7:c4:31:25:09:71:ac:07:da:2a:cf: 8c:00:57:37:19:e3:5f:5c:85:38:1d:c1:3d:db:66: ff:60:32:7c:97:31:4d:4f:a9:b0:bf:e6:d5:c1:32: 5b:68:52:f8:6a:20:4e:94:37:dc:9c:b8:a0:5b:74: 1b:71:de:f8:1c:7f:d2:ef:b2:45:6f:f8:2b:7d:41: c8:79:93:14:31:ab:0e:a2:4f:9f:38:42:61:58:1b: 24:7a:3c:9e:53:90:99:39:31:b3:85:5c:62:aa:a2: 11:b0:83:f4:4e:d2:41:b6:96:4c:c7:cd:d3:38:f3: ab:b1:8a:35:93:e3:3e:b4:87:24:c1:7f:8a:3f:70: fe:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:3E:1A:3F:8D:83:FB:78:FB:A3:DA:AC:D7:2C:8D:77:DF:C2:CC:71 X509v3 Authority Key Identifier: keyid:20:ED:0A:AB:20:75:0B:8B:27:A8:6D:F9:89:A7:54:BF:57:26:DD:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:7b:93:ea:9f:ca:c4:c4:6a:ea:56:fa:39:9a:0f:3d:b7:69: 1f:51:7b:95:1f:94:7f:f4:7a:2b:73:9a:22:f7:c0:0c:dd:20: 69:bf:a1:af:64:b3:35:85:25:e2:6c:e9:a5:77:d1:ea:20:6c: ee:0d:81:84:2e:eb:10:9f:f4:4c:03:a2:e8:59:24:74:c1:5a: a8:e5:07:13:c0:49:f3:5c:a0:32:cf:44:45:13:86:9d:6e:9b: 8c:a8:89:af:48:de:57:a2:43:0c:82:c5:37:f4:92:3c:1c:56: 6a:c9:ca:c6:32:1f:ba:b5:46:03:0e:84:95:1f:93:27:bd:0b: 58:74:26:63:6f:56:6e:96:fb:a1:04:32:52:a0:a8:90:b5:1f: 0d:54:f3:57:c4:78:1d:e6:41:43:40:8c:f3:11:f7:3d:87:d4: 49:f3:65:5a:bf:d2:a9:e0:fd:73:62:7e:17:4c:1f:58:ce:44: d7:59:67:97:38:e8:08:da:18:e9:36:d7:b6:90:96:de:88:fd: ab:a5:24:c7:d9:23:b8:8c:5f:ba:6f:49:6f:85:5a:c4:c7:43: a9:d4:d0:c3:f3:ae:a1:bf:9d:a2:dd:e9:19:77:87:db:bd:49: e1:cf:dc:87:fa:29:cd:54:1d:e0:97:ad:d1:5c:2b:29:9f:f8: 2c:61:98:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFCNjQxMTAvBgNVBAUTKDIwRUQwQUFCMjA3NTBCOEIyN0E4NkRGOTg5QTc1NEJG NTcyNkREN0UwHhcNMjUwNDI1MDAyOTQwWhcNMjUwNTAyMDAyOTQwWjAYMRYwFAYD VQQDEw02ODBhZDc3NS03NDcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAswGjAMQYOOE+Qq4KIvuEoiOh9f6DmgKN3JbOs1Ax+kLMHCA050qxXQXq003l atujtvyTrPi2GNkPgaLtsnz40Ze7Zf+86E5aA7/RWVEP3nZxlCFfGEdAZZvfrYgb gG5OLP798SctoBLBO48Cidb9fN6iQdYJWYef133B98QxJQlxrAfaKs+MAFc3GeNf XIU4HcE922b/YDJ8lzFNT6mwv+bVwTJbaFL4aiBOlDfcnLigW3Qbcd74HH/S77JF b/grfUHIeZMUMasOok+fOEJhWBskejyeU5CZOTGzhVxiqqIRsIP0TtJBtpZMx83T OPOrsYo1k+M+tIckwX+KP3D+zQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCA+Gj+N g/t4+6ParNcsjXffwsxxMB8GA1UdIwQYMBaAFCDtCqsgdQuLJ6ht+YmnVL9XJt1+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUI2NC85QjQ0RUI3NDhG MjkxMUVDQjZBNjk5NkNDNEY5QUUwMi9JTzBLcXlCMUM0c25xRzM1aWFkVXYxY20z WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lPMEtxeUIxQzRzbnFHMzVpYWRVdjFjbTNYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUI2NC85QjQ0RUI3NDhGMjkxMUVDQjZBNjk5NkNDNEY5QUUwMi9JTzBLcXlCMUM0 c25xRzM1aWFkVXYxY20zWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPe5Pqn8rExGrqVvo5mg89t2kfUXuVH5R/9Horc5oi98AM3SBpv6Gv ZLM1hSXibOmld9HqIGzuDYGELusQn/RMA6LoWSR0wVqo5QcTwEnzXKAyz0RFE4ad bpuMqImvSN5XokMMgsU39JI8HFZqycrGMh+6tUYDDoSVH5MnvQtYdCZjb1Zulvuh BDJSoKiQtR8NVPNXxHgd5kFDQIzzEfc9h9RJ82Vav9Kp4P1zYn4XTB9YzkTXWWeX OOgI2hjpNte2kJbeiP2rpSTH2SO4jF+6b0lvhVrEx0Op1NDD866hv52i3ekZd4fb vUnhz9yH+inNVB3gl63RXCspn/gsYZhZ -----END CERTIFICATE-----Generated at Sat Apr 26 04:34:11 2025 by rpki-client