$ rpki-client -vvf rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.mft File: IiyUNfXVTN9jafhecaodhG7MXz4.mft (raw, json) Hash identifier: g46WPZnuywN+v9JR/11a860dEGo2Ccv5Ynwnx9vHezo= Subject key identifier: 1E:6C:40:6A:70:6D:D1:C2:28:18:B9:8C:9E:54:99:4F:22:6E:AF:29 Authority key identifier: 22:2C:94:35:F5:D5:4C:DF:63:69:F8:5E:71:AA:1D:84:6E:CC:5F:3E Certificate issuer: /CN=A9142E4E/serialNumber=222C9435F5D54CDF6369F85E71AA1D846ECC5F3E Certificate serial: 0C2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiyUNfXVTN9jafhecaodhG7MXz4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.mft Manifest number: 0C23 Signing time: Fri 04 Apr 2025 18:38:25 +0000 Manifest this update: Fri 04 Apr 2025 18:38:24 +0000 Manifest next update: Fri 11 Apr 2025 18:38:24 +0000 Files and hashes: 1: IiyUNfXVTN9jafhecaodhG7MXz4.crl (hash: 4Wpw1Yp/aWPtsg4HCmQx+fyo/fOP6+ReivNMlCBS8Gc=) 2: 778B8788063711EA981E916CC4F9AE02.roa (hash: ZF76+TdQMAvJkkO6rvtsiHzBwUDEVkLOtw/tW67c6tM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.crl rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiyUNfXVTN9jafhecaodhG7MXz4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:38:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3116 (0xc2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142E4E Validity Not Before: Apr 4 18:38:24 2025 GMT Not After : Apr 11 18:38:24 2025 GMT Subject: CN=67f02721-5f16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:10:d9:27:1a:4b:ed:a5:53:0f:a6:52:e0:18: 5f:66:d6:ef:c1:41:ba:e4:55:02:b9:bd:61:fd:70: 81:68:70:15:fb:da:96:f2:a5:2a:47:98:8d:d5:1d: 68:06:1f:5c:ca:d4:22:3b:b5:e3:27:16:5e:9c:81: 3b:33:be:24:58:72:1f:f0:6e:ee:0d:e6:2a:a0:d0: 38:88:7a:95:14:0f:72:c7:86:bd:63:8c:09:43:3e: d3:25:fa:80:68:71:d6:75:d4:86:01:93:24:89:c2: 57:d1:41:f0:c5:5a:9f:f7:43:3a:64:b2:7e:1a:af: 30:11:cb:9a:59:0c:e9:a9:4c:3d:6b:ca:12:c9:70: 52:bb:49:77:fc:0b:75:21:27:d4:56:3f:63:fb:81: d6:b8:ac:18:9b:55:a4:34:7a:69:1e:ce:f0:76:b8: 1f:30:8b:ef:28:a4:53:a7:b6:ac:96:19:0e:f4:a5: cb:77:68:e3:cb:93:29:59:ac:02:f6:6f:c9:be:27: 58:1d:86:c3:73:ea:d7:64:5c:f1:54:6a:02:be:18: 10:c6:bb:34:14:64:b4:5d:0e:7e:4c:3d:6d:bd:1c: cf:86:ed:54:73:74:a5:e8:de:e3:4d:69:fd:6f:96: f5:bc:65:46:9d:da:e4:d7:7a:3c:d6:f5:a9:c3:8e: a5:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:6C:40:6A:70:6D:D1:C2:28:18:B9:8C:9E:54:99:4F:22:6E:AF:29 X509v3 Authority Key Identifier: keyid:22:2C:94:35:F5:D5:4C:DF:63:69:F8:5E:71:AA:1D:84:6E:CC:5F:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiyUNfXVTN9jafhecaodhG7MXz4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:b8:dc:5b:72:3b:cc:43:f2:d8:d4:c9:9f:fb:a0:40:fd:c0: 49:72:91:a6:b2:8c:a7:12:ee:0a:08:17:7d:12:23:98:0b:03: de:d4:eb:06:9b:33:33:8d:d3:1e:6b:ee:57:3e:c4:90:29:9f: b0:60:5c:9f:8b:bb:4c:35:57:64:a8:bf:f2:53:c3:9f:6b:c3: f3:2c:99:82:2e:e7:97:9a:9c:35:e9:86:b2:1e:62:7d:38:6d: 13:e9:a5:b1:0e:5a:a5:c6:49:67:87:da:d4:bf:db:70:51:6c: 98:b1:dd:9b:c5:c3:2d:7f:5b:21:3e:a2:18:79:6f:a5:f9:b2: 8a:ac:58:60:20:e8:db:47:fb:2d:98:0a:01:e4:3d:0b:7a:b5: 24:77:f0:28:b4:2d:22:31:f3:5f:b3:a0:93:f5:bd:03:52:f6: 2f:0e:4b:f5:ce:dc:80:a6:2f:16:fb:a3:ab:39:03:ec:3c:e0: 24:36:b1:2a:2d:29:66:1c:e3:70:79:96:b0:e1:5a:d1:40:c7: 65:83:a5:9b:41:d3:3f:c5:0d:9a:54:9b:c8:9a:61:4a:14:fe: 8a:43:08:9c:c6:e6:c1:89:90:52:37:03:0f:4a:3f:40:57:f3: 6b:99:66:69:25:2b:3b:71:74:0f:1c:8c:93:35:d2:7e:57:b2: 88:1e:03:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJFNEUxMTAvBgNVBAUTKDIyMkM5NDM1RjVENTRDREY2MzY5Rjg1RTcxQUExRDg0 NkVDQzVGM0UwHhcNMjUwNDA0MTgzODI0WhcNMjUwNDExMTgzODI0WjAYMRYwFAYD VQQDEw02N2YwMjcyMS01ZjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxRDZJxpL7aVTD6ZS4BhfZtbvwUG65FUCub1h/XCBaHAV+9qW8qUqR5iN1R1o Bh9cytQiO7XjJxZenIE7M74kWHIf8G7uDeYqoNA4iHqVFA9yx4a9Y4wJQz7TJfqA aHHWddSGAZMkicJX0UHwxVqf90M6ZLJ+Gq8wEcuaWQzpqUw9a8oSyXBSu0l3/At1 ISfUVj9j+4HWuKwYm1WkNHppHs7wdrgfMIvvKKRTp7aslhkO9KXLd2jjy5MpWawC 9m/JvidYHYbDc+rXZFzxVGoCvhgQxrs0FGS0XQ5+TD1tvRzPhu1Uc3Sl6N7jTWn9 b5b1vGVGndrk13o81vWpw46lRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB5sQGpw bdHCKBi5jJ5UmU8ibq8pMB8GA1UdIwQYMBaAFCIslDX11UzfY2n4XnGqHYRuzF8+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkU0RS9DMTczQ0RFODA2 MzYxMUVBQjI0OUI5NkJDNEY5QUUwMi9JaXlVTmZYVlROOWphZmhlY2FvZGhHN01Y ejQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lpeVVOZlhWVE45amFmaGVjYW9kaEc3TVh6NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkU0RS9DMTczQ0RFODA2MzYxMUVBQjI0OUI5NkJDNEY5QUUwMi9JaXlVTmZYVlRO OWphZmhlY2FvZGhHN01YejQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXuNxbcjvMQ/LY1Mmf+6BA/cBJcpGmsoynEu4KCBd9EiOYCwPe1OsG mzMzjdMea+5XPsSQKZ+wYFyfi7tMNVdkqL/yU8Ofa8PzLJmCLueXmpw16YayHmJ9 OG0T6aWxDlqlxklnh9rUv9twUWyYsd2bxcMtf1shPqIYeW+l+bKKrFhgIOjbR/st mAoB5D0LerUkd/AotC0iMfNfs6CT9b0DUvYvDkv1ztyApi8W+6OrOQPsPOAkNrEq LSlmHONweZaw4VrRQMdlg6WbQdM/xQ2aVJvImmFKFP6KQwicxubBiZBSNwMPSj9A V/NrmWZpJSs7cXQPHIyTNdJ+V7KIHgMl -----END CERTIFICATE-----Generated at Sat Apr 5 07:10:04 2025 by rpki-client