$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/IQlGzanedd75YJiV-_Ie2Exy9Oc.mft File: IQlGzanedd75YJiV-_Ie2Exy9Oc.mft (raw, json) Hash identifier: 1sZdQkBDpGwCuDrQ4KJsnOS6+8nNSvjfgJLVQzV/zmU= Subject key identifier: B4:92:EC:7A:19:E4:57:63:F5:74:8D:8D:35:F2:3D:6B:FD:A9:94:8A Authority key identifier: 21:09:46:CD:A9:DE:75:DE:F9:60:98:95:FB:F2:1E:D8:4C:72:F4:E7 Certificate issuer: /CN=A91F7537/serialNumber=210946CDA9DE75DEF9609895FBF21ED84C72F4E7 Certificate serial: 56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQlGzanedd75YJiV-_Ie2Exy9Oc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/IQlGzanedd75YJiV-_Ie2Exy9Oc.mft Manifest number: 55 Signing time: Fri 25 Apr 2025 06:12:42 +0000 Manifest this update: Fri 25 Apr 2025 06:12:41 +0000 Manifest next update: Fri 02 May 2025 06:12:41 +0000 Files and hashes: 1: IQlGzanedd75YJiV-_Ie2Exy9Oc.crl (hash: RFZx6Y7OXAYXxILdFulhN359yTLa+FtmfDbZw7QbH18=) 2: 6156C7F6A27311EFBF7D5E22C4F9AE02.roa (hash: S974N0P9f8Bg6Jc7BIscRXeUqpVDlIBE/NP1Bo0j0PA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/IQlGzanedd75YJiV-_Ie2Exy9Oc.crl rsync://rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/IQlGzanedd75YJiV-_Ie2Exy9Oc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQlGzanedd75YJiV-_Ie2Exy9Oc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:12:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 86 (0x56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7537, serialNumber=210946CDA9DE75DEF9609895FBF21ED84C72F4E7 Validity Not Before: Apr 25 06:12:41 2025 GMT Not After : May 2 06:12:41 2025 GMT Subject: CN=680b27d9-a8e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:c8:9d:b3:91:69:45:46:c3:97:5d:b5:f1:f5: c9:34:00:a6:c1:80:13:bd:2d:bf:01:b2:01:57:d2: aa:60:2f:f2:80:50:7b:8f:a3:aa:ea:e1:60:4b:61: 94:da:fb:67:db:3f:ee:ba:cf:e7:60:16:18:f9:f8: af:a0:56:f7:6c:b7:f5:41:86:44:45:f3:02:99:8b: 55:68:cd:9d:09:10:c7:e2:f6:3b:5e:a9:d2:20:f4: 71:fd:04:16:04:f6:34:11:64:7a:6c:02:c5:d3:85: 2d:bc:63:ac:5a:d2:4c:a1:9f:cb:c8:37:bc:08:1b: 23:e7:17:d9:db:4e:0e:ec:87:58:47:a6:af:eb:21: e0:78:0e:0c:57:29:aa:b2:c2:d2:ca:3b:8b:e3:e6: 61:4a:a3:35:66:e1:a5:d3:57:10:d4:f8:1d:d5:69: c4:f6:ed:a0:3c:66:6e:2e:a5:30:e7:57:e7:43:61: 2f:05:6a:2f:88:52:0e:96:f3:d1:89:9e:4b:4d:7a: 1a:77:77:66:61:a7:3e:0c:e6:7f:9a:b2:dc:e6:3e: 85:4d:38:b9:c1:88:f4:26:93:b9:dc:cc:cb:09:00: 59:26:e0:73:4a:84:e0:00:19:ad:cb:49:76:e6:92: 62:c2:fb:ab:97:73:f7:d6:53:59:65:5d:7f:e5:b2: bc:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:92:EC:7A:19:E4:57:63:F5:74:8D:8D:35:F2:3D:6B:FD:A9:94:8A X509v3 Authority Key Identifier: keyid:21:09:46:CD:A9:DE:75:DE:F9:60:98:95:FB:F2:1E:D8:4C:72:F4:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/IQlGzanedd75YJiV-_Ie2Exy9Oc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQlGzanedd75YJiV-_Ie2Exy9Oc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/IQlGzanedd75YJiV-_Ie2Exy9Oc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:4f:b0:40:0e:ef:23:aa:14:0f:46:3f:cf:91:54:b3:dc:b9: 1b:7f:fd:04:69:0e:80:07:2b:0a:c1:08:9d:07:7a:10:db:de: 6d:32:ab:0c:47:73:1e:8d:09:c0:9d:86:c6:68:70:86:8e:81: fa:66:42:55:07:c5:30:9d:49:af:56:56:ee:33:aa:25:c9:98: 61:41:f1:58:b3:2c:d2:69:c9:33:2a:dc:75:e7:b5:fc:a4:f6: 90:4f:df:c4:5d:56:03:6b:e5:cf:a1:42:3b:3c:bd:f3:f0:dc: 03:3a:3b:97:14:8c:5b:13:9f:61:db:cf:de:b6:51:d4:76:dd: 67:d0:1b:f6:d2:8d:ee:cf:3d:16:96:e0:03:65:f6:a7:c4:17: a7:07:16:ba:63:66:e0:65:ad:91:6d:48:63:01:76:f7:04:02: e6:b2:42:33:01:fb:ab:a4:5b:22:2d:47:c5:1a:41:13:d5:ce: 04:55:24:de:d7:5c:bf:f1:8a:17:9f:5e:42:2a:6c:26:12:15: 5d:56:b0:b6:0b:a2:1d:63:f0:05:a7:fa:a1:88:d4:2e:b8:52: c1:2c:3a:85:79:46:5b:6c:a9:54:2c:11:2a:59:51:4d:c1:9d: 7c:f5:ed:96:fe:da:ef:a2:b6:17:ec:2b:85:6b:36:77:25:35: fd:9f:f4:b5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NzUzNzExMC8GA1UEBRMoMjEwOTQ2Q0RBOURFNzVERUY5NjA5ODk1RkJGMjFFRDg0 QzcyRjRFNzAeFw0yNTA0MjUwNjEyNDFaFw0yNTA1MDIwNjEyNDFaMBgxFjAUBgNV BAMTDTY4MGIyN2Q5LWE4ZTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDwyJ2zkWlFRsOXXbXx9ck0AKbBgBO9Lb8BsgFX0qpgL/KAUHuPo6rq4WBLYZTa +2fbP+66z+dgFhj5+K+gVvdst/VBhkRF8wKZi1VozZ0JEMfi9jteqdIg9HH9BBYE 9jQRZHpsAsXThS28Y6xa0kyhn8vIN7wIGyPnF9nbTg7sh1hHpq/rIeB4DgxXKaqy wtLKO4vj5mFKozVm4aXTVxDU+B3VacT27aA8Zm4upTDnV+dDYS8Fai+IUg6W89GJ nktNehp3d2Zhpz4M5n+astzmPoVNOLnBiPQmk7nczMsJAFkm4HNKhOAAGa3LSXbm kmLC+6uXc/fWU1llXX/lsrwZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUtJLsehnk V2P1dI2NNfI9a/2plIowHwYDVR0jBBgwFoAUIQlGzanedd75YJiV+/Ie2Exy9Ocw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY3NTM3Lzg3REQ1NDhDQTI3 MTExRUZBMzkyRjA3OUM0RjlBRTAyL0lRbEd6YW5lZGQ3NVlKaVYtX0llMkV4eTlP Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSVFsR3phbmVkZDc1WUppVi1fSWUyRXh5OU9jLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY3 NTM3Lzg3REQ1NDhDQTI3MTExRUZBMzkyRjA3OUM0RjlBRTAyL0lRbEd6YW5lZGQ3 NVlKaVYtX0llMkV4eTlPYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFBPsEAO7yOqFA9GP8+RVLPcuRt//QRpDoAHKwrBCJ0HehDb3m0yqwxH cx6NCcCdhsZocIaOgfpmQlUHxTCdSa9WVu4zqiXJmGFB8VizLNJpyTMq3HXntfyk 9pBP38RdVgNr5c+hQjs8vfPw3AM6O5cUjFsTn2Hbz962UdR23WfQG/bSje7PPRaW 4ANl9qfEF6cHFrpjZuBlrZFtSGMBdvcEAuayQjMB+6ukWyItR8UaQRPVzgRVJN7X XL/xihefXkIqbCYSFV1WsLYLoh1j8AWn+qGI1C64UsEsOoV5RltsqVQsESpZUU3B nXz17Zb+2u+ithfsK4VrNnclNf2f9LU= -----END CERTIFICATE-----Generated at Sat Apr 26 05:05:09 2025 by rpki-client