$ rpki-client -vvf rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft File: iR7Yuqwsc70TrcqhoWqvANIkqHc.mft (raw, json) Hash identifier: w6vXSjqQlcUmIyJ1ylGELEzwupd+DuslBLNZxRb5c3M= Subject key identifier: 17:04:05:D0:3F:0F:7E:A8:88:C2:76:23:B9:3B:62:18:AD:59:B0:42 Authority key identifier: 89:1E:D8:BA:AC:2C:73:BD:13:AD:CA:A1:A1:6A:AF:00:D2:24:A8:77 Certificate issuer: /CN=A91394E7/serialNumber=891ED8BAAC2C73BD13ADCAA1A16AAF00D224A877 Certificate serial: 49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft Manifest number: 47 Signing time: Sat 05 Apr 2025 06:42:08 +0000 Manifest this update: Sat 05 Apr 2025 06:42:07 +0000 Manifest next update: Sat 12 Apr 2025 06:42:07 +0000 Files and hashes: 1: iR7Yuqwsc70TrcqhoWqvANIkqHc.crl (hash: iTbP6YgY7NHh8XP2fmEoJtkAbo2GdiR19i3w+ppferA=) 2: F7078BC4B73511EF8537DE81C4F9AE02.roa (hash: e90+mjyZj2zuwbEyBzLynR/xbGV19fXGWIy1lxomBoA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.crl rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 06:42:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91394E7 Validity Not Before: Apr 5 06:42:07 2025 GMT Not After : Apr 12 06:42:07 2025 GMT Subject: CN=67f0d0bf-df5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c7:4b:28:57:42:71:c2:b1:94:2f:dc:89:11: 5d:12:4a:64:39:bb:b1:b4:43:18:a5:85:14:ed:e6: 8a:5f:81:3b:bd:97:7b:74:b8:60:00:f6:91:04:53: 99:19:fa:15:49:77:fd:ff:1f:09:9d:f7:32:f0:60: 30:79:d6:9a:41:e6:ae:2b:f6:65:2b:a4:06:e7:cd: 38:52:f4:80:63:64:91:fd:52:c8:8e:b6:8a:0a:2c: bb:f7:f9:3d:6e:a0:7f:54:11:4d:72:5f:c2:a9:62: eb:dc:c8:e6:19:23:9f:f7:59:93:92:4b:19:66:33: 41:51:3c:b0:9a:c2:37:d0:49:5b:35:86:fd:a2:80: 2e:8c:e2:67:27:4d:23:a4:4c:b6:c9:bd:3e:34:e8: 1d:20:15:db:7d:90:cb:39:09:8b:51:60:4f:f8:46: a9:b7:ce:d5:86:18:c7:89:23:f0:68:b7:46:d1:d9: 09:56:d7:dc:79:34:f7:90:0b:83:82:3e:c3:49:3a: ac:51:2e:b2:28:4a:17:3e:98:0b:8d:4b:e9:02:b9: f4:2c:a7:51:bc:35:c2:1e:6e:ee:76:f7:8c:4c:4b: 5c:73:0b:2a:bd:aa:04:f2:91:f4:22:5b:09:68:73: a4:99:77:e3:b7:8d:87:5e:3d:6c:cd:e9:3a:18:a2: 1a:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:04:05:D0:3F:0F:7E:A8:88:C2:76:23:B9:3B:62:18:AD:59:B0:42 X509v3 Authority Key Identifier: keyid:89:1E:D8:BA:AC:2C:73:BD:13:AD:CA:A1:A1:6A:AF:00:D2:24:A8:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:7f:d1:e5:9f:db:f5:a4:0f:88:d9:02:81:0f:17:06:4d:e0: 98:06:10:c2:ee:eb:a7:79:9c:2e:d8:0a:be:73:1c:be:c7:1f: 95:63:0d:44:79:e8:67:aa:ba:c8:b7:bd:e2:fd:4d:9c:7e:a1: d4:a4:2f:76:cc:21:7b:9d:36:cc:bf:60:9f:1b:69:b2:21:db: 3d:55:d3:3f:9e:ea:38:7c:49:d2:35:ca:d7:85:11:46:a2:03: 6b:44:ed:39:8c:58:3a:a8:ef:ca:76:33:c8:08:3d:76:aa:7b: 3c:67:a2:db:c3:d7:35:91:d9:18:b0:b3:19:b8:0d:82:a4:42: 13:21:f7:9f:e2:ce:3c:37:26:8d:64:b3:7c:f8:88:d4:88:33: 96:20:06:83:77:72:ca:90:0d:bc:1e:d2:79:e8:aa:4f:76:9a: 98:2f:cf:e2:6f:59:7d:1d:e5:ea:d0:54:42:af:c5:8d:05:15: a2:0a:df:98:4c:55:c5:02:d7:96:b5:52:78:c3:12:63:7f:82: 5f:03:f1:bb:91:38:31:5b:b8:b6:5f:00:b7:a4:70:db:a5:22: 16:78:46:46:0c:f2:1a:d0:88:ff:70:33:b3:78:6e:9c:cd:5d: d1:17:4f:74:0b:5c:ec:c8:2b:4e:8f:cb:7a:32:3c:18:96:31: d9:3f:77:b0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz OTRFNzExMC8GA1UEBRMoODkxRUQ4QkFBQzJDNzNCRDEzQURDQUExQTE2QUFGMDBE MjI0QTg3NzAeFw0yNTA0MDUwNjQyMDdaFw0yNTA0MTIwNjQyMDdaMBgxFjAUBgNV BAMTDTY3ZjBkMGJmLWRmNWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzx0soV0JxwrGUL9yJEV0SSmQ5u7G0QxilhRTt5opfgTu9l3t0uGAA9pEEU5kZ +hVJd/3/Hwmd9zLwYDB51ppB5q4r9mUrpAbnzThS9IBjZJH9UsiOtooKLLv3+T1u oH9UEU1yX8KpYuvcyOYZI5/3WZOSSxlmM0FRPLCawjfQSVs1hv2igC6M4mcnTSOk TLbJvT406B0gFdt9kMs5CYtRYE/4Rqm3ztWGGMeJI/Bot0bR2QlW19x5NPeQC4OC PsNJOqxRLrIoShc+mAuNS+kCufQsp1G8NcIebu5294xMS1xzCyq9qgTykfQiWwlo c6SZd+O3jYdePWzN6ToYohrpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUFwQF0D8P fqiIwnYjuTtiGK1ZsEIwHwYDVR0jBBgwFoAUiR7Yuqwsc70TrcqhoWqvANIkqHcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM5NEU3L0Y0Q0ZEMURBQUM3 MzExRUY4N0ZDNTU0Q0M0RjlBRTAyL2lSN1l1cXdzYzcwVHJjcWhvV3F2QU5Ja3FI Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVI3WXVxd3NjNzBUcmNxaG9XcXZBTklrcUhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM5 NEU3L0Y0Q0ZEMURBQUM3MzExRUY4N0ZDNTU0Q0M0RjlBRTAyL2lSN1l1cXdzYzcw VHJjcWhvV3F2QU5Ja3FIYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALF/0eWf2/WkD4jZAoEPFwZN4JgGEMLu66d5nC7YCr5zHL7HH5VjDUR5 6Gequsi3veL9TZx+odSkL3bMIXudNsy/YJ8babIh2z1V0z+e6jh8SdI1yteFEUai A2tE7TmMWDqo78p2M8gIPXaqezxnotvD1zWR2Riwsxm4DYKkQhMh95/izjw3Jo1k s3z4iNSIM5YgBoN3csqQDbwe0nnoqk92mpgvz+JvWX0d5erQVEKvxY0FFaIK35hM VcUC15a1UnjDEmN/gl8D8buRODFbuLZfALekcNulIhZ4RkYM8hrQiP9wM7N4bpzN XdEXT3QLXOzIK06Py3oyPBiWMdk/d7A= -----END CERTIFICATE-----Generated at Sun Apr 6 18:25:20 2025 by rpki-client