$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft File: I9szI90s15w3OFgdQvSrD0mINMI.mft (raw, json) Hash identifier: ZrolOlzdKY+Gm+Md0WfC9H123a44SJjp6ZEc+pr3JGQ= Subject key identifier: 1D:1B:46:C8:FC:CD:07:6C:35:59:6B:E6:F2:EF:91:4A:45:D1:66:54 Authority key identifier: 23:DB:33:23:DD:2C:D7:9C:37:38:58:1D:42:F4:AB:0F:49:88:34:C2 Certificate issuer: /CN=A911C28A/serialNumber=23DB3323DD2CD79C3738581D42F4AB0F498834C2 Certificate serial: 05AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9szI90s15w3OFgdQvSrD0mINMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft Manifest number: 05A6 Signing time: Fri 04 Apr 2025 23:17:35 +0000 Manifest this update: Fri 04 Apr 2025 23:17:34 +0000 Manifest next update: Fri 11 Apr 2025 23:17:34 +0000 Files and hashes: 1: I9szI90s15w3OFgdQvSrD0mINMI.crl (hash: 8p9eu/wswI6+kJFIr6pYJDvkY4FMou+dzNv5xhwLd/U=) 2: 2D5E84AAC2A911EBB2025B36C4F9AE02.roa (hash: YXlqwalf4S9fVaZEQbU9JBdRoJrEUsovu3sf9Uc2gyc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.crl rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9szI90s15w3OFgdQvSrD0mINMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 23:17:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1451 (0x5ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28A Validity Not Before: Apr 4 23:17:34 2025 GMT Not After : Apr 11 23:17:34 2025 GMT Subject: CN=67f0688e-3f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:6c:ed:8b:52:3e:76:92:3c:4e:bf:17:9b:5a: 88:0a:27:10:5d:e1:c5:af:ed:36:05:1e:d5:9c:06: 04:9f:53:60:31:ba:f5:2f:4f:b6:5b:4f:f2:9d:ad: 52:47:47:c2:c8:fe:50:05:ec:7d:b6:f9:9b:47:94: 45:6c:ca:1b:84:2e:71:21:aa:b4:e5:28:06:6d:7d: 67:b6:f4:12:52:9b:91:68:c2:d8:5e:3d:a1:70:11: 9a:9c:90:8f:c0:a9:5a:ac:0a:21:55:fe:6e:d1:9f: 25:9f:24:e0:3b:d6:a1:51:b3:84:e0:dc:b5:52:e7: cd:22:66:97:ab:bc:05:1b:d0:05:71:b0:0e:c2:40: c2:5e:18:39:e3:21:2b:bc:52:f6:73:b0:cd:fb:b8: c9:0a:09:33:0c:ba:9f:87:33:b3:2e:3b:71:eb:36: 8d:7c:51:9f:64:aa:c4:6d:d4:0f:b2:5a:3e:43:35: a4:6b:7d:5a:1b:e9:ad:b6:01:07:d0:4c:4a:65:93: dc:2b:64:35:42:e9:78:a0:94:2e:5b:eb:62:0a:81: fa:85:18:39:16:9b:70:a4:e6:0b:ca:e5:22:0c:1d: 66:54:03:ce:47:4d:e3:ca:13:af:f6:c2:e8:f6:31: fb:fc:8f:1f:44:18:10:7d:38:10:cc:d5:ce:1c:dd: 00:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:1B:46:C8:FC:CD:07:6C:35:59:6B:E6:F2:EF:91:4A:45:D1:66:54 X509v3 Authority Key Identifier: keyid:23:DB:33:23:DD:2C:D7:9C:37:38:58:1D:42:F4:AB:0F:49:88:34:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9szI90s15w3OFgdQvSrD0mINMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:28:ed:61:4e:cd:2a:43:e6:41:d9:55:4a:c2:6f:02:ed:f4: 0f:cb:bb:a4:ba:60:7a:c8:7e:22:91:7a:73:03:e1:c6:4b:7f: f6:16:7e:f7:2d:38:69:c3:89:6b:c2:ce:54:28:30:ce:8b:1a: c9:1e:7b:fc:fe:1b:1a:fb:f4:35:ad:0f:9d:f6:26:02:db:db: 8a:29:4b:3d:6c:1f:81:ad:d5:37:b2:70:6f:25:8b:c6:d8:b7: b9:76:50:b2:a1:72:c2:70:29:e2:c6:cc:50:ed:40:26:a7:8c: 68:9e:42:e5:7a:63:08:76:c5:6f:cd:5f:34:c5:22:19:41:ae: 5e:8f:c8:25:13:b5:2b:9f:37:44:79:0e:6a:3c:02:86:2a:27: 72:f6:49:23:0c:6a:cf:cc:58:a3:48:a4:0f:c6:ca:71:f6:5a: 96:c3:2a:0d:8a:a9:40:94:f8:02:e1:f4:82:b6:fa:82:4c:8f: 02:d3:86:cf:1e:85:90:e8:b6:0e:3b:5a:1e:34:75:a1:6d:d1: ea:16:ff:60:5a:5c:bd:05:34:ec:8d:96:53:09:26:e7:6f:13: af:6f:d8:8a:41:b2:8b:bb:9f:4c:8c:96:9f:67:ea:22:92:6f: b2:0b:61:62:c2:40:8b:d4:fa:b0:6f:73:9d:2f:20:62:af:85: 1c:60:ba:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEExMTAvBgNVBAUTKDIzREIzMzIzREQyQ0Q3OUMzNzM4NTgxRDQyRjRBQjBG NDk4ODM0QzIwHhcNMjUwNDA0MjMxNzM0WhcNMjUwNDExMjMxNzM0WjAYMRYwFAYD VQQDEw02N2YwNjg4ZS0zZjVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuGzti1I+dpI8Tr8Xm1qICicQXeHFr+02BR7VnAYEn1NgMbr1L0+2W0/yna1S R0fCyP5QBex9tvmbR5RFbMobhC5xIaq05SgGbX1ntvQSUpuRaMLYXj2hcBGanJCP wKlarAohVf5u0Z8lnyTgO9ahUbOE4Ny1UufNImaXq7wFG9AFcbAOwkDCXhg54yEr vFL2c7DN+7jJCgkzDLqfhzOzLjtx6zaNfFGfZKrEbdQPslo+QzWka31aG+mttgEH 0ExKZZPcK2Q1Qul4oJQuW+tiCoH6hRg5FptwpOYLyuUiDB1mVAPOR03jyhOv9sLo 9jH7/I8fRBgQfTgQzNXOHN0A5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB0bRsj8 zQdsNVlr5vLvkUpF0WZUMB8GA1UdIwQYMBaAFCPbMyPdLNecNzhYHUL0qw9JiDTC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4QS8yQTM1NjZBOEMy QTUxMUVCQjREMzRFMzVDNEY5QUUwMi9JOXN6STkwczE1dzNPRmdkUXZTckQwbUlO TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0k5c3pJOTBzMTV3M09GZ2RRdlNyRDBtSU5NSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzI4QS8yQTM1NjZBOEMyQTUxMUVCQjREMzRFMzVDNEY5QUUwMi9JOXN6STkwczE1 dzNPRmdkUXZTckQwbUlOTUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFKO1hTs0qQ+ZB2VVKwm8C7fQPy7ukumB6yH4ikXpzA+HGS3/2Fn73 LThpw4lrws5UKDDOixrJHnv8/hsa+/Q1rQ+d9iYC29uKKUs9bB+BrdU3snBvJYvG 2Le5dlCyoXLCcCnixsxQ7UAmp4xonkLlemMIdsVvzV80xSIZQa5ej8glE7UrnzdE eQ5qPAKGKidy9kkjDGrPzFijSKQPxspx9lqWwyoNiqlAlPgC4fSCtvqCTI8C04bP HoWQ6LYOO1oeNHWhbdHqFv9gWly9BTTsjZZTCSbnbxOvb9iKQbKLu59MjJafZ+oi km+yC2FiwkCL1Pqwb3OdLyBir4UcYLpI -----END CERTIFICATE-----Generated at Sat Apr 5 05:17:24 2025 by rpki-client