$ rpki-client -vvf rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft File: Ad9hVyR3ojDnn48oz91tKDd_Iis.mft (raw, json) Hash identifier: yKJfI3QH4ajsRTpV+h/QQ364JsHCK+xjDJK1V2T1qM4= Subject key identifier: D7:28:CC:ED:52:B8:AE:CD:F1:5E:C5:B1:A6:36:AF:12:1F:4B:D8:BA Authority key identifier: 01:DF:61:57:24:77:A2:30:E7:9F:8F:28:CF:DD:6D:28:37:7F:22:2B Certificate issuer: /CN=A914E5AE/serialNumber=01DF61572477A230E79F8F28CFDD6D28377F222B Certificate serial: 04FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ad9hVyR3ojDnn48oz91tKDd_Iis.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft Manifest number: 04F6 Signing time: Sun 06 Apr 2025 23:20:01 +0000 Manifest this update: Sun 06 Apr 2025 23:20:00 +0000 Manifest next update: Sun 13 Apr 2025 23:20:00 +0000 Files and hashes: 1: Ad9hVyR3ojDnn48oz91tKDd_Iis.crl (hash: vDl2M6jmGvOPU2mCQ5tFAzXIpWXpO2ofd+9p/48LmDk=) 2: C847114C07D411ECBF875117C4F9AE02.roa (hash: 8jiWS5tF75Q6xeG+tS7HXmjjPoQpozn1Cf2cagIPojY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.crl rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ad9hVyR3ojDnn48oz91tKDd_Iis.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 23:19:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1276 (0x4fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E5AE Validity Not Before: Apr 6 23:20:00 2025 GMT Not After : Apr 13 23:20:00 2025 GMT Subject: CN=67f30c20-c2ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:8a:28:4a:f9:5b:d1:90:5a:23:24:be:10:4d: 80:a0:3d:e6:b4:2b:4e:fc:4d:76:a4:35:4f:e8:f2: 3d:28:3f:f5:8d:59:ec:42:73:c3:f1:25:84:e6:2c: 32:b6:dc:ea:16:52:ca:1a:f7:d4:34:74:f6:4f:bd: 25:6a:ab:26:c7:67:d0:4d:c4:be:1d:bb:bf:db:fa: 44:6b:1e:86:be:8f:b3:3b:dd:3b:cf:42:33:bd:b8: 85:d2:45:94:f5:e0:c1:45:4a:b7:d4:69:99:c8:16: 59:13:97:f2:5c:e4:91:56:1e:0b:9f:8b:2a:9d:32: b6:5e:13:ca:24:b2:cf:56:cd:31:49:01:2c:00:c7: 02:1c:b1:f0:55:73:17:bb:9c:7a:a8:64:23:83:b8: 2a:79:06:16:7e:2a:a5:e6:c2:a4:bd:81:54:29:28: 4a:11:5a:91:b1:79:b9:87:d4:98:96:3a:a3:ea:dd: 6f:c9:af:30:ce:64:c3:e7:68:2a:95:7e:00:c8:1a: 78:33:bd:a9:fc:03:89:6a:0a:08:1a:28:af:ef:a8: 87:87:e2:d8:58:bb:39:59:51:03:22:ba:00:61:b9: ce:72:12:da:43:4d:9d:d4:5a:92:6b:87:97:e2:34: 14:ab:2b:de:1e:5b:d8:f8:8d:73:2c:6d:14:db:41: 66:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:28:CC:ED:52:B8:AE:CD:F1:5E:C5:B1:A6:36:AF:12:1F:4B:D8:BA X509v3 Authority Key Identifier: keyid:01:DF:61:57:24:77:A2:30:E7:9F:8F:28:CF:DD:6D:28:37:7F:22:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ad9hVyR3ojDnn48oz91tKDd_Iis.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:ca:e8:7e:f5:8c:14:6c:0b:e2:47:e1:31:fc:04:9b:7d:d3: 03:09:68:a1:78:a4:a8:8e:44:8f:25:2e:2f:55:8f:c0:fb:d4: 81:86:dc:9e:7a:4c:09:0f:1b:bd:74:d4:14:28:19:0a:14:5d: 5a:a9:ec:74:fc:c0:38:57:2c:49:99:b0:04:16:00:3c:53:b9: c1:4b:ed:1f:d9:4d:c1:0b:26:61:ab:67:ef:32:09:da:2a:75: 13:81:2c:66:96:f8:e0:ae:56:17:24:cf:f8:b4:7e:3b:6f:d4: fd:9e:c4:07:7e:5e:82:20:26:6a:39:3c:b3:f9:b4:09:ec:8d: 66:86:71:60:fe:dd:90:19:73:b0:02:c9:db:23:08:a9:52:10: 71:44:81:34:d4:83:e0:5d:26:96:c5:04:da:ad:c1:15:d2:43: 5c:ad:59:d9:d7:90:62:7a:a0:6b:52:d4:ac:bb:b1:b8:b2:f0: 95:07:55:c4:0d:03:0f:ce:df:87:dc:72:7f:94:c3:e8:ed:8e: fa:dc:36:cb:62:e4:f8:1f:7c:53:c6:5d:73:2f:0c:e6:c1:32: 94:9f:e0:b5:4d:89:6a:e1:e9:70:ee:39:26:c5:a6:c2:6e:b5: e5:2a:75:97:dd:48:e5:d8:55:09:d6:3e:e3:0d:55:d9:f9:d9: ba:8b:50:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU1QUUxMTAvBgNVBAUTKDAxREY2MTU3MjQ3N0EyMzBFNzlGOEYyOENGREQ2RDI4 Mzc3RjIyMkIwHhcNMjUwNDA2MjMyMDAwWhcNMjUwNDEzMjMyMDAwWjAYMRYwFAYD VQQDEw02N2YzMGMyMC1jMmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1YooSvlb0ZBaIyS+EE2AoD3mtCtO/E12pDVP6PI9KD/1jVnsQnPD8SWE5iwy ttzqFlLKGvfUNHT2T70laqsmx2fQTcS+Hbu/2/pEax6Gvo+zO907z0IzvbiF0kWU 9eDBRUq31GmZyBZZE5fyXOSRVh4Ln4sqnTK2XhPKJLLPVs0xSQEsAMcCHLHwVXMX u5x6qGQjg7gqeQYWfiql5sKkvYFUKShKEVqRsXm5h9SYljqj6t1vya8wzmTD52gq lX4AyBp4M72p/AOJagoIGiiv76iHh+LYWLs5WVEDIroAYbnOchLaQ02d1FqSa4eX 4jQUqyveHlvY+I1zLG0U20Fm4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNcozO1S uK7N8V7FsaY2rxIfS9i6MB8GA1UdIwQYMBaAFAHfYVckd6Iw55+PKM/dbSg3fyIr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTVBRS80NkQ0MjJGMDA3 RDIxMUVDQUE4MkI2MTFDNEY5QUUwMi9BZDloVnlSM29qRG5uNDhvejkxdEtEZF9J aXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FkOWhWeVIzb2pEbm40OG96OTF0S0RkX0lpcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTVBRS80NkQ0MjJGMDA3RDIxMUVDQUE4MkI2MTFDNEY5QUUwMi9BZDloVnlSM29q RG5uNDhvejkxdEtEZF9JaXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCryuh+9YwUbAviR+Ex/ASbfdMDCWiheKSojkSPJS4vVY/A+9SBhtye ekwJDxu9dNQUKBkKFF1aqex0/MA4VyxJmbAEFgA8U7nBS+0f2U3BCyZhq2fvMgna KnUTgSxmlvjgrlYXJM/4tH47b9T9nsQHfl6CICZqOTyz+bQJ7I1mhnFg/t2QGXOw AsnbIwipUhBxRIE01IPgXSaWxQTarcEV0kNcrVnZ15BieqBrUtSsu7G4svCVB1XE DQMPzt+H3HJ/lMPo7Y763DbLYuT4H3xTxl1zLwzmwTKUn+C1TYlq4elw7jkmxabC brXlKnWX3Ujl2FUJ1j7jDVXZ+dm6i1CC -----END CERTIFICATE-----Generated at Mon Apr 7 04:49:53 2025 by rpki-client