$ rpki-client -vvf rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft File: IcuqoETeGlZkRp9Bi80Id7ITlzo.mft (raw, json) Hash identifier: r40D4q3Ed0KyQDGavmiRc3dluW/TwjOiiu4Ikh5LQXU= Subject key identifier: 2B:9E:8F:78:36:45:6C:37:34:C1:37:C6:92:9F:62:50:22:C4:89:CA Authority key identifier: 21:CB:AA:A0:44:DE:1A:56:64:46:9F:41:8B:CD:08:77:B2:13:97:3A Certificate issuer: /CN=A911393B/serialNumber=21CBAAA044DE1A5664469F418BCD0877B213973A Certificate serial: 011B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft Manifest number: 0118 Signing time: Sat 29 Mar 2025 04:14:36 +0000 Manifest this update: Sat 29 Mar 2025 04:14:36 +0000 Manifest next update: Sat 05 Apr 2025 04:14:36 +0000 Files and hashes: 1: IcuqoETeGlZkRp9Bi80Id7ITlzo.crl (hash: KC+dx/FlV0IZGqvOdrm06q28aykQ0ibYKuXrZrhsWmA=) 2: 6538D178628E11EEBF375134C4F9AE02.roa (hash: a5Qs3LUcbSVUj/0GZbXTErNFIjAHGfhVv7lawUtiA/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.crl rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 04:14:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 283 (0x11b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911393B Validity Not Before: Mar 29 04:14:36 2025 GMT Not After : Apr 5 04:14:36 2025 GMT Subject: CN=67e773ac-7f56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:50:6e:f4:d6:ea:71:5f:7f:7b:db:84:69:f6: 3f:b0:b9:e9:82:a5:b8:6a:e9:92:00:8a:68:ea:9e: ce:d7:60:ae:89:77:f8:b4:2e:5d:61:95:b1:d7:83: 25:53:cb:8a:36:b4:13:25:73:a5:c4:65:bb:a9:b9: 23:f2:75:ae:b1:38:a5:85:37:1a:93:dc:55:0e:0f: fe:bc:52:14:b4:05:0b:ca:87:26:1a:b1:eb:26:d5: cd:2b:9c:be:62:3c:6e:69:f1:4e:12:9c:b7:42:1e: 51:d6:da:61:26:63:5c:60:87:60:eb:99:4a:46:6e: dc:ec:86:35:12:01:d5:38:6d:7f:28:80:9e:be:f7: b9:ed:12:9c:e6:0d:02:1b:9a:49:8a:c4:37:42:8b: 2b:9e:a3:31:05:ff:3c:40:18:d3:64:c4:51:ef:be: 4e:6e:b9:8c:d4:35:9f:80:02:f4:c7:dc:b9:70:6a: 88:1f:82:fe:c3:91:22:7c:8b:d0:77:2c:00:02:43: 72:88:c4:09:d9:53:d8:cf:c6:8c:d4:69:e0:db:5e: 0b:4d:19:ee:1a:de:fd:75:5f:9a:ba:38:3c:79:3d: c6:c1:3c:24:10:da:e8:6f:85:d2:d8:b2:eb:79:da: 14:c7:18:5a:7d:8b:47:c5:7e:4c:e6:d5:1b:cd:6c: d9:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:9E:8F:78:36:45:6C:37:34:C1:37:C6:92:9F:62:50:22:C4:89:CA X509v3 Authority Key Identifier: keyid:21:CB:AA:A0:44:DE:1A:56:64:46:9F:41:8B:CD:08:77:B2:13:97:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:59:ba:5a:5a:1c:bd:d1:3b:f4:8b:4e:f3:38:0a:ee:ac:39: 3f:ea:48:74:f5:75:5d:69:71:0d:9d:8e:0f:6e:84:d7:75:f5: d1:5f:7a:0f:65:e2:d5:50:a3:48:9a:f3:64:e3:0e:23:ac:7d: d6:f9:88:84:cd:e3:a0:3a:ea:c2:4a:7d:7e:7f:16:f7:dc:17: 09:91:be:c1:27:7c:ae:79:0f:57:4b:2f:d1:3f:07:fe:7b:5f: 75:7a:69:7c:2f:4f:63:d6:e7:8d:e3:25:fd:19:02:8e:93:79: 8f:1c:4a:aa:65:be:37:04:fc:31:85:9a:34:f2:f9:1f:28:72: 94:bc:35:36:24:79:3a:91:e5:ea:6f:eb:87:51:24:dc:bf:0a: f3:e6:0f:cb:6e:8c:5c:3c:f8:b8:c5:b9:a5:11:07:e9:ca:3e: 49:d2:3d:ef:97:de:59:18:bf:ac:5f:03:18:b0:01:16:f0:ff: 88:00:6a:89:4d:46:84:9d:3c:6b:e2:1b:ba:74:32:39:7e:0e: 9c:d3:9f:bc:5a:0d:ce:22:29:db:8f:05:d9:cc:5f:70:2a:5b: 91:c9:fc:3d:4b:85:29:67:bd:24:11:7f:9e:c6:8c:d0:6e:0d: 42:13:23:a4:03:02:51:8f:e5:51:7b:d9:2e:4e:6b:c3:f4:6a: f2:86:91:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTM5M0IxMTAvBgNVBAUTKDIxQ0JBQUEwNDRERTFBNTY2NDQ2OUY0MThCQ0QwODc3 QjIxMzk3M0EwHhcNMjUwMzI5MDQxNDM2WhcNMjUwNDA1MDQxNDM2WjAYMRYwFAYD VQQDEw02N2U3NzNhYy03ZjU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApFBu9NbqcV9/e9uEafY/sLnpgqW4aumSAIpo6p7O12CuiXf4tC5dYZWx14Ml U8uKNrQTJXOlxGW7qbkj8nWusTilhTcak9xVDg/+vFIUtAULyocmGrHrJtXNK5y+ YjxuafFOEpy3Qh5R1tphJmNcYIdg65lKRm7c7IY1EgHVOG1/KICevve57RKc5g0C G5pJisQ3QosrnqMxBf88QBjTZMRR775ObrmM1DWfgAL0x9y5cGqIH4L+w5EifIvQ dywAAkNyiMQJ2VPYz8aM1Gng214LTRnuGt79dV+aujg8eT3GwTwkENrob4XS2LLr edoUxxhafYtHxX5M5tUbzWzZMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCuej3g2 RWw3NME3xpKfYlAixInKMB8GA1UdIwQYMBaAFCHLqqBE3hpWZEafQYvNCHeyE5c6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzkzQi82N0QwOEJBODYy OEMxMUVFOTU2NUI1NjlDNEY5QUUwMi9JY3Vxb0VUZUdsWmtScDlCaTgwSWQ3SVRs em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljdXFvRVRlR2xaa1JwOUJpODBJZDdJVGx6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MzkzQi82N0QwOEJBODYyOEMxMUVFOTU2NUI1NjlDNEY5QUUwMi9JY3Vxb0VUZUds WmtScDlCaTgwSWQ3SVRsem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDDWbpaWhy90Tv0i07zOArurDk/6kh09XVdaXENnY4PboTXdfXRX3oP ZeLVUKNImvNk4w4jrH3W+YiEzeOgOurCSn1+fxb33BcJkb7BJ3yueQ9XSy/RPwf+ e191eml8L09j1ueN4yX9GQKOk3mPHEqqZb43BPwxhZo08vkfKHKUvDU2JHk6keXq b+uHUSTcvwrz5g/LboxcPPi4xbmlEQfpyj5J0j3vl95ZGL+sXwMYsAEW8P+IAGqJ TUaEnTxr4hu6dDI5fg6c05+8Wg3OIinbjwXZzF9wKluRyfw9S4UpZ70kEX+exozQ bg1CEyOkAwJRj+VRe9kuTmvD9GryhpGN -----END CERTIFICATE-----Generated at Fri Apr 4 22:09:20 2025 by rpki-client