$ rpki-client -vvf rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft File: IhKO6LQdoZG8pEiIxhUzENZmp78.mft (raw, json) Hash identifier: WrVsZNZcsqWiEr5z4e2kH+LYjOeswh/xgCeoIMglhKs= Subject key identifier: AF:1C:3E:E7:93:22:3D:54:64:B7:DB:2C:36:57:D4:DE:23:3B:D8:B9 Authority key identifier: 22:12:8E:E8:B4:1D:A1:91:BC:A4:48:88:C6:15:33:10:D6:66:A7:BF Certificate issuer: /CN=A9135F03/serialNumber=22128EE8B41DA191BCA44888C6153310D666A7BF Certificate serial: 06ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft Manifest number: 06ED Signing time: Sat 12 Apr 2025 21:39:08 +0000 Manifest this update: Sat 12 Apr 2025 21:39:08 +0000 Manifest next update: Sat 19 Apr 2025 21:39:08 +0000 Files and hashes: 1: IhKO6LQdoZG8pEiIxhUzENZmp78.crl (hash: 6q+LxGF42YAfIplbUOy2+M8T0Tp3MyiN3/HYBYm3hcg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.crl rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 21:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1773 (0x6ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135F03, serialNumber=22128EE8B41DA191BCA44888C6153310D666A7BF Validity Not Before: Apr 12 21:39:08 2025 GMT Not After : Apr 19 21:39:08 2025 GMT Subject: CN=67fadd7c-7ee3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:c7:da:2e:a3:15:bb:05:5b:41:b3:c8:bc:54: 97:39:1b:29:8c:d2:a7:e4:a8:19:15:0c:1a:13:6d: db:08:c3:e0:7a:cf:48:95:31:cf:7d:1a:5f:e4:de: 43:14:c6:08:a0:d1:e3:30:b0:cb:12:29:e4:54:98: 70:01:0f:6c:64:3d:f2:55:89:ce:46:6f:61:ac:a3: 02:a5:b5:bd:bd:56:e2:88:bf:54:c8:ac:45:d0:7e: 65:b8:d2:ad:95:fe:7d:f9:a2:86:de:8f:b2:5e:34: cf:50:f6:50:8b:b7:29:b9:09:b2:bf:34:c1:22:67: 58:d7:e5:2a:d0:6f:07:db:7b:9d:54:bf:40:df:6e: f3:62:ab:c8:bc:7d:7f:d7:7f:0d:0c:6c:21:cf:8a: 4a:50:aa:ee:07:4f:df:b5:7f:6a:66:14:9f:a5:62: bd:48:d9:a0:a3:9f:93:0f:6d:09:b2:ba:e4:d4:4b: 1c:95:81:ca:db:e7:db:80:ff:8e:90:b9:49:3c:fe: 8e:2f:2e:62:b7:ee:99:82:23:fc:03:94:f2:e3:2e: 1a:7e:4f:73:ad:bd:95:c4:44:62:6a:fe:de:7d:7f: fc:4f:63:29:2c:b2:88:d0:ba:ba:e3:0e:d4:e3:26: 04:4e:57:1a:58:01:8f:8f:34:5c:26:16:b0:83:40: 38:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:1C:3E:E7:93:22:3D:54:64:B7:DB:2C:36:57:D4:DE:23:3B:D8:B9 X509v3 Authority Key Identifier: keyid:22:12:8E:E8:B4:1D:A1:91:BC:A4:48:88:C6:15:33:10:D6:66:A7:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:78:5d:08:93:5c:d2:73:94:bd:06:b1:98:1d:a3:0c:58:dc: 1e:3b:a0:b6:5a:f5:a1:fb:48:8a:0c:f3:24:8f:1f:cf:56:28: e0:f4:7d:10:55:e2:ec:a4:18:26:84:70:26:0d:5e:e0:5b:97: f9:d1:d3:e8:8c:5a:46:57:2e:58:58:57:3b:a0:cd:96:02:2e: f4:15:8f:a5:19:90:82:fa:06:37:fd:ee:ef:e7:88:ad:c4:73: 87:3b:f2:28:8d:1a:88:f5:42:e5:bc:23:12:ce:57:6e:83:b3: b1:74:bd:30:bc:d3:ff:80:8f:9e:f6:0a:6c:01:b8:2e:9c:17: 42:78:47:cc:63:e5:ce:5d:d7:95:5d:7c:77:9a:6c:88:c1:7d: ec:75:27:86:9f:7c:af:a5:b6:9c:7d:a8:47:ba:cb:fd:ac:7d: ec:05:4d:a9:0c:db:6d:e6:df:bb:46:7f:fc:f0:db:d5:86:14: f3:12:b0:7e:a7:a3:2e:dd:cb:2c:d9:d8:e4:83:c7:03:b2:97: cf:3e:70:42:79:78:5b:0b:fe:89:c9:f1:87:83:7b:e4:8f:d8: f4:6e:38:63:a3:7c:fc:26:6b:f7:60:b1:b1:19:b7:ca:c7:41: 24:92:84:6d:a3:3b:21:70:ef:31:5f:7f:cc:fb:ac:56:d9:d1: 52:31:86:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBu0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzVGMDMxMTAvBgNVBAUTKDIyMTI4RUU4QjQxREExOTFCQ0E0NDg4OEM2MTUzMzEw RDY2NkE3QkYwHhcNMjUwNDEyMjEzOTA4WhcNMjUwNDE5MjEzOTA4WjAYMRYwFAYD VQQDEw02N2ZhZGQ3Yy03ZWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA18faLqMVuwVbQbPIvFSXORspjNKn5KgZFQwaE23bCMPges9IlTHPfRpf5N5D FMYIoNHjMLDLEinkVJhwAQ9sZD3yVYnORm9hrKMCpbW9vVbiiL9UyKxF0H5luNKt lf59+aKG3o+yXjTPUPZQi7cpuQmyvzTBImdY1+Uq0G8H23udVL9A327zYqvIvH1/ 138NDGwhz4pKUKruB0/ftX9qZhSfpWK9SNmgo5+TD20Jsrrk1EsclYHK2+fbgP+O kLlJPP6OLy5it+6ZgiP8A5Ty4y4afk9zrb2VxERiav7efX/8T2MpLLKI0Lq64w7U 4yYETlcaWAGPjzRcJhawg0A4HQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK8cPueT Ij1UZLfbLDZX1N4jO9i5MB8GA1UdIwQYMBaAFCISjui0HaGRvKRIiMYVMxDWZqe/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNUYwMy8xQkZDMDBFRTNG RTAxMUVCODc0MzE4MERDNEY5QUUwMi9JaEtPNkxRZG9aRzhwRWlJeGhVekVOWm1w NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0loS082TFFkb1pHOHBFaUl4aFV6RU5abXA3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NUYwMy8xQkZDMDBFRTNGRTAxMUVCODc0MzE4MERDNEY5QUUwMi9JaEtPNkxRZG9a RzhwRWlJeGhVekVOWm1wNzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxeF0Ik1zSc5S9BrGYHaMMWNweO6C2WvWh+0iKDPMkjx/PVijg9H0Q VeLspBgmhHAmDV7gW5f50dPojFpGVy5YWFc7oM2WAi70FY+lGZCC+gY3/e7v54it xHOHO/IojRqI9ULlvCMSzldug7OxdL0wvNP/gI+e9gpsAbgunBdCeEfMY+XOXdeV XXx3mmyIwX3sdSeGn3yvpbacfahHusv9rH3sBU2pDNtt5t+7Rn/88NvVhhTzErB+ p6Mu3css2djkg8cDspfPPnBCeXhbC/6JyfGHg3vkj9j0bjhjo3z8Jmv3YLGxGbfK x0EkkoRtozshcO8xX3/M+6xW2dFSMYaf -----END CERTIFICATE-----Generated at Sun Apr 13 04:50:42 2025 by rpki-client