$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft File: IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft (raw, json) Hash identifier: JPItQbSt1GLhcq2lOdJn2D6zWfNHe0y2U2VZXap6rI4= Subject key identifier: 2F:1E:1A:FD:68:4D:01:C3:DF:DC:A3:01:8C:65:1A:93:DD:6C:2A:53 Authority key identifier: 23:3C:0D:3B:2A:75:C4:1A:B8:2E:5B:EB:70:DB:E2:E7:34:2D:66:1F Certificate issuer: /CN=A91FE26E/serialNumber=233C0D3B2A75C41AB82E5BEB70DBE2E7342D661F Certificate serial: 1CC7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft Manifest number: 1CB4 Signing time: Thu 24 Apr 2025 16:11:18 +0000 Manifest this update: Thu 24 Apr 2025 16:11:17 +0000 Manifest next update: Thu 01 May 2025 16:11:17 +0000 Files and hashes: 1: IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl (hash: mlZmcnTU3p8uDB8P92rV2TanKMnJusY2EAYPL3/HyF0=) 2: EB7012446FDE11E9AF945067C4F9AE02.roa (hash: 7u9f+gWjW4ewcVZaqyMD9ZqpjL5Hz8NvrMbvw9f5dXY=) 3: E8FF9A526FDE11E9AF945067C4F9AE02.roa (hash: RrfRQiaJQ/K/F0pEWCxhmnA6Eh04yX02RfUKJUyZudE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:11:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7367 (0x1cc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE26E, serialNumber=233C0D3B2A75C41AB82E5BEB70DBE2E7342D661F Validity Not Before: Apr 24 16:11:17 2025 GMT Not After : May 1 16:11:17 2025 GMT Subject: CN=680a62a5-eb70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:4b:3c:8d:a5:58:bb:d2:ed:7b:07:32:90:eb: d3:e0:a1:4d:6f:15:76:a8:84:ab:e3:5f:b8:75:06: af:db:39:a1:a2:9f:bf:96:de:50:69:87:6f:5e:a9: c9:bd:e1:c7:cc:c9:9f:8e:8d:35:9d:15:59:e6:37: 91:e7:be:30:b1:b0:98:e0:f7:c7:aa:03:ac:d5:8c: 5e:9e:bc:28:49:bd:e7:77:93:a1:73:06:a0:4b:e8: f8:e1:2f:e3:11:ef:31:5c:62:3d:d6:90:79:33:b5: 3b:7e:5d:a0:51:76:53:33:f0:65:66:0b:5d:03:2d: 3f:2b:08:b1:ab:2a:d2:c7:b2:4f:1f:55:ca:b9:3e: ef:2b:35:15:9c:fa:4e:d7:ee:59:e2:5b:7f:d0:cd: fe:83:af:cd:28:19:a3:63:ed:9a:1d:5a:a3:ac:66: 68:3f:40:1a:b6:eb:45:78:b6:3f:82:85:0f:2f:48: f5:9a:49:b3:2f:d0:57:65:1c:48:c1:c7:55:95:5a: 17:51:b3:80:c6:59:3c:a9:a3:57:de:af:7f:bd:4b: 42:db:ae:15:cf:72:d4:23:ef:91:29:2a:33:c6:92: db:53:ff:f1:43:12:3c:97:30:ef:85:08:ed:1d:ad: 10:42:4a:90:eb:83:48:91:32:1c:fb:34:09:dc:3e: 82:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:1E:1A:FD:68:4D:01:C3:DF:DC:A3:01:8C:65:1A:93:DD:6C:2A:53 X509v3 Authority Key Identifier: keyid:23:3C:0D:3B:2A:75:C4:1A:B8:2E:5B:EB:70:DB:E2:E7:34:2D:66:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:84:84:a1:19:cc:fb:ec:fc:1c:ad:33:9a:97:94:89:e0:60: bb:7d:46:f0:32:26:24:b1:69:b7:63:78:4e:61:c3:be:18:8a: a5:0e:39:08:f6:60:e9:75:96:a4:f8:c7:19:4f:4c:54:51:2d: 53:9f:0f:24:b9:99:3e:44:3e:fa:6b:3e:4f:9d:bf:5a:7b:4a: f8:39:3f:dc:b0:4a:56:c1:14:a3:0b:ee:25:86:6b:90:41:ef: 9a:c7:b5:f9:ae:c2:72:51:73:81:cc:77:d1:7f:5e:80:69:03: 3d:30:78:4e:67:2a:f1:54:42:8a:48:66:4f:bd:6d:12:35:a0: 38:9c:ea:89:28:53:56:87:f9:b4:1e:e1:c1:fd:bc:0f:e0:1d: 7f:51:57:b4:ce:8f:a8:55:b7:91:91:f8:b5:d4:1d:44:52:e9: 6a:ef:8c:63:4c:c6:9d:71:d5:49:d1:fb:de:6f:df:a8:20:2a: 8e:23:50:0f:c1:d6:ed:19:5f:ab:76:02:85:85:d3:64:a4:05: c6:82:95:ee:93:e1:d2:a0:ac:e6:20:ad:5a:1d:b5:58:e4:49: 7a:4c:c0:d0:b2:d4:43:00:88:c0:2e:54:47:36:ac:1c:67:fd: 01:a3:44:27:95:c9:a2:b5:34:83:9c:3f:ae:9e:94:be:80:32: 5a:ec:e5:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkUyNkUxMTAvBgNVBAUTKDIzM0MwRDNCMkE3NUM0MUFCODJFNUJFQjcwREJFMkU3 MzQyRDY2MUYwHhcNMjUwNDI0MTYxMTE3WhcNMjUwNTAxMTYxMTE3WjAYMRYwFAYD VQQDEw02ODBhNjJhNS1lYjcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Us8jaVYu9LtewcykOvT4KFNbxV2qISr41+4dQav2zmhop+/lt5QaYdvXqnJ veHHzMmfjo01nRVZ5jeR574wsbCY4PfHqgOs1YxenrwoSb3nd5OhcwagS+j44S/j Ee8xXGI91pB5M7U7fl2gUXZTM/BlZgtdAy0/KwixqyrSx7JPH1XKuT7vKzUVnPpO 1+5Z4lt/0M3+g6/NKBmjY+2aHVqjrGZoP0AatutFeLY/goUPL0j1mkmzL9BXZRxI wcdVlVoXUbOAxlk8qaNX3q9/vUtC264Vz3LUI++RKSozxpLbU//xQxI8lzDvhQjt Ha0QQkqQ64NIkTIc+zQJ3D6CLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC8eGv1o TQHD39yjAYxlGpPdbCpTMB8GA1UdIwQYMBaAFCM8DTsqdcQauC5b63Db4uc0LWYf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTI2RS84N0I1Q0Q1MEM4 NUQxMUU2ODcwNTY5MjdDNEY5QUUwMi9JendOT3lwMXhCcTRMbHZyY052aTV6UXRa aDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l6d05PeXAxeEJxNExsdnJjTnZpNXpRdFpoOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTI2RS84N0I1Q0Q1MEM4NUQxMUU2ODcwNTY5MjdDNEY5QUUwMi9JendOT3lwMXhC cTRMbHZyY052aTV6UXRaaDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBshIShGcz77PwcrTOal5SJ4GC7fUbwMiYksWm3Y3hOYcO+GIqlDjkI 9mDpdZak+McZT0xUUS1Tnw8kuZk+RD76az5Pnb9ae0r4OT/csEpWwRSjC+4lhmuQ Qe+ax7X5rsJyUXOBzHfRf16AaQM9MHhOZyrxVEKKSGZPvW0SNaA4nOqJKFNWh/m0 HuHB/bwP4B1/UVe0zo+oVbeRkfi11B1EUulq74xjTMadcdVJ0fveb9+oICqOI1AP wdbtGV+rdgKFhdNkpAXGgpXuk+HSoKzmIK1aHbVY5El6TMDQstRDAIjALlRHNqwc Z/0Bo0QnlcmitTSDnD+unpS+gDJa7OXV -----END CERTIFICATE-----Generated at Sat Apr 26 04:30:28 2025 by rpki-client