$ rpki-client -vvf rpki.apnic.net/member_repository/A911A702/939CAE2C8DD911EB8EFB4158C4F9AE02/iNHJlOgQj8ClM99LuOLOjRxLnxc.mft File: iNHJlOgQj8ClM99LuOLOjRxLnxc.mft (raw, json) Hash identifier: ijfZXeHXmRY06SRkNhtrGlIMxr+PbaeJAVa0nwcAdlU= Subject key identifier: E7:D0:CA:71:19:13:F6:8C:67:AB:C5:51:C0:E7:5B:13:16:9C:B7:6C Authority key identifier: 88:D1:C9:94:E8:10:8F:C0:A5:33:DF:4B:B8:E2:CE:8D:1C:4B:9F:17 Certificate issuer: /CN=A911A702/serialNumber=88D1C994E8108FC0A533DF4BB8E2CE8D1C4B9F17 Certificate serial: 0638 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iNHJlOgQj8ClM99LuOLOjRxLnxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A702/939CAE2C8DD911EB8EFB4158C4F9AE02/iNHJlOgQj8ClM99LuOLOjRxLnxc.mft Manifest number: 062F Signing time: Wed 02 Apr 2025 22:41:42 +0000 Manifest this update: Wed 02 Apr 2025 22:41:41 +0000 Manifest next update: Wed 09 Apr 2025 22:41:41 +0000 Files and hashes: 1: iNHJlOgQj8ClM99LuOLOjRxLnxc.crl (hash: /higOADaUbI+UcJz38oGZcFMQzu0EdU8vQqmPwDfEIM=) 2: 6339493A516311ED90F04711C4F9AE02.roa (hash: UZVHz0fvOssKPNLwiZ35IeL2xHQA6a7FTosxanmpoZw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A702/939CAE2C8DD911EB8EFB4158C4F9AE02/iNHJlOgQj8ClM99LuOLOjRxLnxc.crl rsync://rpki.apnic.net/member_repository/A911A702/939CAE2C8DD911EB8EFB4158C4F9AE02/iNHJlOgQj8ClM99LuOLOjRxLnxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iNHJlOgQj8ClM99LuOLOjRxLnxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 22:41:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1592 (0x638) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A702 Validity Not Before: Apr 2 22:41:41 2025 GMT Not After : Apr 9 22:41:41 2025 GMT Subject: CN=67edbd25-a9a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:6c:a3:eb:4f:72:45:00:f2:d4:e3:93:ec:eb: 03:75:ee:9e:a2:6c:76:ae:ba:e5:bb:93:fd:37:f3: d9:2f:05:bd:44:ac:27:3f:97:b2:30:75:d8:0a:ae: b8:f8:53:42:39:77:38:00:49:50:69:12:68:fe:a1: e8:27:58:c0:28:9f:01:83:bb:3d:96:c3:84:29:ba: 96:f5:13:d4:59:72:20:7e:20:57:83:4b:43:f6:f0: 0c:14:bd:b6:52:d6:60:2c:4d:a9:7b:bd:bf:cd:b3: 76:8c:04:74:54:0b:6a:9b:1c:a5:a3:95:93:3f:9c: b4:b5:a4:80:b8:01:a2:b2:cb:3d:59:3f:34:6e:65: 14:97:31:b7:14:75:b3:49:e6:50:ea:b9:d2:82:51: 42:78:dc:74:5c:9b:a0:55:11:93:03:cf:82:9d:0f: d0:60:c8:a2:63:4b:71:ce:2f:24:d8:e9:cd:e5:09: 16:8f:b0:84:9f:72:8d:27:74:3f:9e:b6:9a:f4:ed: ad:90:eb:cb:36:62:2f:d8:30:30:32:99:e2:be:c0: f8:4c:6c:16:93:5f:25:a9:6e:63:bb:23:d3:17:63: 45:45:ce:88:bc:54:0d:fb:0a:89:60:c0:8c:a7:bd: 60:5a:99:93:2a:04:6d:6e:b1:94:e0:af:87:a1:fe: 94:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:D0:CA:71:19:13:F6:8C:67:AB:C5:51:C0:E7:5B:13:16:9C:B7:6C X509v3 Authority Key Identifier: keyid:88:D1:C9:94:E8:10:8F:C0:A5:33:DF:4B:B8:E2:CE:8D:1C:4B:9F:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A702/939CAE2C8DD911EB8EFB4158C4F9AE02/iNHJlOgQj8ClM99LuOLOjRxLnxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iNHJlOgQj8ClM99LuOLOjRxLnxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A702/939CAE2C8DD911EB8EFB4158C4F9AE02/iNHJlOgQj8ClM99LuOLOjRxLnxc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:2a:f3:b0:4a:50:72:fe:0d:e9:91:4d:50:7b:d8:81:8e:96: 1d:ba:ad:9a:79:66:c4:d4:a2:fe:0f:87:cf:a0:08:93:b5:0c: 9e:fa:b1:24:cd:5f:3d:fc:92:99:81:cf:8f:3e:ec:71:ab:66: eb:4b:41:eb:45:45:e9:f9:13:15:4f:42:69:73:1c:45:9a:cf: 95:62:aa:57:9c:40:81:2e:48:d5:28:41:8b:12:1f:17:2f:17: ea:7f:a1:bd:aa:38:d2:f7:a8:66:25:01:5a:e6:e3:76:15:59: 4e:3a:53:f2:34:54:8c:2b:fc:25:51:d8:af:41:73:05:89:56: 72:dd:d0:f5:e5:a1:04:d3:59:be:7f:54:8f:16:b4:d8:cd:72: fb:39:17:6f:75:19:e4:1f:39:4c:b1:45:71:02:02:0c:00:93: 37:0f:19:28:59:37:b6:20:89:3f:a4:da:c1:7d:63:e1:5c:87: a1:a0:0a:01:62:d1:d0:d6:78:43:11:94:1c:c0:f9:9d:83:a4: 4a:6a:55:dc:1b:85:69:c2:62:7d:f6:74:a1:81:a9:15:a6:8f: ea:17:03:79:8a:01:9e:fe:b1:e9:f8:07:43:fd:08:da:3c:c6: 60:71:ba:88:d4:b7:50:b3:40:7a:5a:70:d3:46:2e:10:ae:1a: cc:75:bd:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUE3MDIxMTAvBgNVBAUTKDg4RDFDOTk0RTgxMDhGQzBBNTMzREY0QkI4RTJDRThE MUM0QjlGMTcwHhcNMjUwNDAyMjI0MTQxWhcNMjUwNDA5MjI0MTQxWjAYMRYwFAYD VQQDEw02N2VkYmQyNS1hOWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWyj609yRQDy1OOT7OsDde6eomx2rrrlu5P9N/PZLwW9RKwnP5eyMHXYCq64 +FNCOXc4AElQaRJo/qHoJ1jAKJ8Bg7s9lsOEKbqW9RPUWXIgfiBXg0tD9vAMFL22 UtZgLE2pe72/zbN2jAR0VAtqmxylo5WTP5y0taSAuAGisss9WT80bmUUlzG3FHWz SeZQ6rnSglFCeNx0XJugVRGTA8+CnQ/QYMiiY0txzi8k2OnN5QkWj7CEn3KNJ3Q/ nraa9O2tkOvLNmIv2DAwMpnivsD4TGwWk18lqW5juyPTF2NFRc6IvFQN+wqJYMCM p71gWpmTKgRtbrGU4K+Hof6U3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOfQynEZ E/aMZ6vFUcDnWxMWnLdsMB8GA1UdIwQYMBaAFIjRyZToEI/ApTPfS7jizo0cS58X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTcwMi85MzlDQUUyQzhE RDkxMUVCOEVGQjQxNThDNEY5QUUwMi9pTkhKbE9nUWo4Q2xNOTlMdU9MT2pSeExu eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lOSEpsT2dRajhDbE05OUx1T0xPalJ4TG54Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTcwMi85MzlDQUUyQzhERDkxMUVCOEVGQjQxNThDNEY5QUUwMi9pTkhKbE9nUWo4 Q2xNOTlMdU9MT2pSeExueGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaKvOwSlBy/g3pkU1Qe9iBjpYduq2aeWbE1KL+D4fPoAiTtQye+rEk zV89/JKZgc+PPuxxq2brS0HrRUXp+RMVT0JpcxxFms+VYqpXnECBLkjVKEGLEh8X Lxfqf6G9qjjS96hmJQFa5uN2FVlOOlPyNFSMK/wlUdivQXMFiVZy3dD15aEE01m+ f1SPFrTYzXL7ORdvdRnkHzlMsUVxAgIMAJM3DxkoWTe2IIk/pNrBfWPhXIehoAoB YtHQ1nhDEZQcwPmdg6RKalXcG4VpwmJ99nShgakVpo/qFwN5igGe/rHp+AdD/Qja PMZgcbqI1LdQs0B6WnDTRi4QrhrMdb1N -----END CERTIFICATE-----Generated at Fri Apr 4 22:19:47 2025 by rpki-client