$ rpki-client -vvf rpki.apnic.net/member_repository/A913AD90/0300C5140F0A11EF90C8A132C4F9AE02/iAkYqHVvBJMaMvTOo0HE8j-tUO8.mft File: iAkYqHVvBJMaMvTOo0HE8j-tUO8.mft (raw, json) Hash identifier: Yudh6OL+dS2BtQyEaN4mpS4iPRl6malq6AdJHSu2R5w= Subject key identifier: 51:C1:87:E7:1C:24:D0:E9:A5:37:16:04:24:8A:3F:B8:B0:15:BE:CC Authority key identifier: 88:09:18:A8:75:6F:04:93:1A:32:F4:CE:A3:41:C4:F2:3F:AD:50:EF Certificate issuer: /CN=A913AD90/serialNumber=880918A8756F04931A32F4CEA341C4F23FAD50EF Certificate serial: BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iAkYqHVvBJMaMvTOo0HE8j-tUO8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AD90/0300C5140F0A11EF90C8A132C4F9AE02/iAkYqHVvBJMaMvTOo0HE8j-tUO8.mft Manifest number: BA Signing time: Mon 21 Apr 2025 04:51:46 +0000 Manifest this update: Mon 21 Apr 2025 04:51:46 +0000 Manifest next update: Mon 28 Apr 2025 04:51:46 +0000 Files and hashes: 1: iAkYqHVvBJMaMvTOo0HE8j-tUO8.crl (hash: QKBWGY6SiIOPCj8sCN9Jytj/rqBZiF7sPezr3TuorE8=) 2: 5DB3B5AA145C11EFAE012A55C4F9AE02.roa (hash: XVpTX+9SjXHhDtMpPyvxEeJ7NxK4ba3tAPiaJxOtkLM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AD90/0300C5140F0A11EF90C8A132C4F9AE02/iAkYqHVvBJMaMvTOo0HE8j-tUO8.crl rsync://rpki.apnic.net/member_repository/A913AD90/0300C5140F0A11EF90C8A132C4F9AE02/iAkYqHVvBJMaMvTOo0HE8j-tUO8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iAkYqHVvBJMaMvTOo0HE8j-tUO8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 04:51:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 191 (0xbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AD90, serialNumber=880918A8756F04931A32F4CEA341C4F23FAD50EF Validity Not Before: Apr 21 04:51:46 2025 GMT Not After : Apr 28 04:51:46 2025 GMT Subject: CN=6805cee2-cf74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:0b:0f:0a:6f:81:6f:5c:ac:86:5b:b9:58:db: f3:42:6d:57:fc:4a:fb:b6:61:4c:92:7b:46:f2:4e: 24:02:46:99:f2:1e:34:4e:8e:67:b9:21:c4:6f:37: f1:2c:6f:45:b6:8f:3e:fc:c4:25:d6:73:c2:68:af: ef:e1:0f:46:70:4c:d4:43:c1:32:b9:54:70:63:84: 1d:a3:d3:db:fb:3e:03:2f:b7:1f:48:a9:f8:ab:ad: cf:b7:c1:f9:28:96:41:43:a7:53:39:ca:01:c2:a2: f2:ef:2b:ce:95:1d:ae:03:50:4f:11:20:19:55:e1: 85:a2:10:63:73:4a:db:c9:57:f0:0c:e4:2b:2b:60: 3b:bd:36:99:ce:14:19:6c:30:58:54:e0:ea:ec:3d: 9c:6f:ed:78:f5:1f:cd:82:1b:34:8f:0a:f1:76:a0: 60:ab:87:bf:37:a1:b0:3a:75:11:81:4b:f9:3b:fd: 36:58:33:23:f1:12:9c:d6:67:8e:90:f6:69:9b:5d: ab:60:aa:69:6b:ce:89:15:0d:e5:e2:58:6c:d3:39: c7:cb:91:47:7e:27:1f:4d:33:7b:0a:ea:29:99:ec: e9:02:df:c0:c6:eb:bb:33:e6:0d:85:18:bb:18:a8: 6b:53:7b:a2:96:59:e6:d7:3c:4b:9d:04:dc:bc:d6: fc:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:C1:87:E7:1C:24:D0:E9:A5:37:16:04:24:8A:3F:B8:B0:15:BE:CC X509v3 Authority Key Identifier: keyid:88:09:18:A8:75:6F:04:93:1A:32:F4:CE:A3:41:C4:F2:3F:AD:50:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AD90/0300C5140F0A11EF90C8A132C4F9AE02/iAkYqHVvBJMaMvTOo0HE8j-tUO8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iAkYqHVvBJMaMvTOo0HE8j-tUO8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AD90/0300C5140F0A11EF90C8A132C4F9AE02/iAkYqHVvBJMaMvTOo0HE8j-tUO8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d1:00:5b:de:c7:da:3d:14:8b:49:c7:d2:c7:0e:ab:d1:58:1d: 95:0a:d6:65:49:20:b2:ed:aa:f9:b4:77:42:d7:34:78:29:f0: 55:9c:56:8a:d2:73:30:7e:fb:0e:c0:01:a2:08:02:ca:bf:eb: c2:60:ac:d1:05:ee:f9:6b:90:ab:38:65:a6:cd:ab:3c:af:fe: 6d:64:a8:7a:8d:23:85:75:39:f2:9e:09:dd:c9:ce:b6:27:2a: 3e:b5:6b:d4:3d:bb:42:9c:7b:77:16:aa:6f:16:21:93:ac:ec: 0d:cf:3c:b0:e5:5c:63:df:d8:34:67:95:5a:2c:a1:ce:44:40: a3:94:09:58:21:c5:a7:82:fa:f6:dc:f7:96:9c:8d:fe:29:9a: 15:04:45:ed:c1:c5:04:70:64:83:86:99:5b:76:36:c1:7a:61: 83:31:78:8b:21:4b:b7:ef:e2:64:68:14:67:f5:b9:e1:aa:02: 65:3d:a6:81:41:cf:d3:b7:7c:b1:18:9e:db:48:42:3b:9c:78: 96:8f:4c:2e:b7:b9:cb:c0:58:04:cc:f7:95:e6:ac:2f:3d:39: 1b:5a:9a:9f:52:d2:0d:20:61:4f:c3:22:02:80:ab:d3:04:a0: 55:88:6d:00:0f:b7:4a:a7:2c:94:c9:81:80:e0:c5:cf:6b:51: 79:c3:79:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FEOTAxMTAvBgNVBAUTKDg4MDkxOEE4NzU2RjA0OTMxQTMyRjRDRUEzNDFDNEYy M0ZBRDUwRUYwHhcNMjUwNDIxMDQ1MTQ2WhcNMjUwNDI4MDQ1MTQ2WjAYMRYwFAYD VQQDEw02ODA1Y2VlMi1jZjc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5gsPCm+Bb1yshlu5WNvzQm1X/Er7tmFMkntG8k4kAkaZ8h40To5nuSHEbzfx LG9Fto8+/MQl1nPCaK/v4Q9GcEzUQ8EyuVRwY4Qdo9Pb+z4DL7cfSKn4q63Pt8H5 KJZBQ6dTOcoBwqLy7yvOlR2uA1BPESAZVeGFohBjc0rbyVfwDOQrK2A7vTaZzhQZ bDBYVODq7D2cb+149R/Nghs0jwrxdqBgq4e/N6GwOnURgUv5O/02WDMj8RKc1meO kPZpm12rYKppa86JFQ3l4lhs0znHy5FHficfTTN7CuopmezpAt/Axuu7M+YNhRi7 GKhrU3uillnm1zxLnQTcvNb8lQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFHBh+cc JNDppTcWBCSKP7iwFb7MMB8GA1UdIwQYMBaAFIgJGKh1bwSTGjL0zqNBxPI/rVDv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUQ5MC8wMzAwQzUxNDBG MEExMUVGOTBDOEExMzJDNEY5QUUwMi9pQWtZcUhWdkJKTWFNdlRPbzBIRThqLXRV TzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lBa1lxSFZ2QkpNYU12VE9vMEhFOGotdFVPOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUQ5MC8wMzAwQzUxNDBGMEExMUVGOTBDOEExMzJDNEY5QUUwMi9pQWtZcUhWdkJK TWFNdlRPbzBIRThqLXRVTzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDRAFvex9o9FItJx9LHDqvRWB2VCtZlSSCy7ar5tHdC1zR4KfBVnFaK 0nMwfvsOwAGiCALKv+vCYKzRBe75a5CrOGWmzas8r/5tZKh6jSOFdTnyngndyc62 Jyo+tWvUPbtCnHt3FqpvFiGTrOwNzzyw5Vxj39g0Z5VaLKHORECjlAlYIcWngvr2 3PeWnI3+KZoVBEXtwcUEcGSDhplbdjbBemGDMXiLIUu37+JkaBRn9bnhqgJlPaaB Qc/Tt3yxGJ7bSEI7nHiWj0wut7nLwFgEzPeV5qwvPTkbWpqfUtINIGFPwyICgKvT BKBViG0AD7dKpyyUyYGA4MXPa1F5w3km -----END CERTIFICATE-----Generated at Tue Apr 22 03:29:04 2025 by rpki-client