$ rpki-client -vvf rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft File: IqYsFNK9MuPlltij5iu8MnRGj5k.mft (raw, json) Hash identifier: K10QAFCk3CUPw5U7naueDo0LM4XxjugyESOCH65bsBg= Subject key identifier: EF:BB:5C:E6:EB:97:27:2A:3F:46:17:D4:99:38:1D:C5:10:84:DD:5B Authority key identifier: 22:A6:2C:14:D2:BD:32:E3:E5:96:D8:A3:E6:2B:BC:32:74:46:8F:99 Certificate issuer: /CN=A9178EA7/serialNumber=22A62C14D2BD32E3E596D8A3E62BBC3274468F99 Certificate serial: 97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IqYsFNK9MuPlltij5iu8MnRGj5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft Manifest number: 94 Signing time: Mon 07 Apr 2025 05:16:30 +0000 Manifest this update: Mon 07 Apr 2025 05:16:30 +0000 Manifest next update: Mon 14 Apr 2025 05:16:30 +0000 Files and hashes: 1: IqYsFNK9MuPlltij5iu8MnRGj5k.crl (hash: LJLW8O2gH9ssZoiXulWN1iHekgQoW+hvsSeHV7KLuOA=) 2: 1DD85DA2386311EFB10A6A1CC4F9AE02.roa (hash: wZz+OlqUMy/mBTlpV+JPL6/+u7+0FBG8gjwEC4u2wAU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.crl rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IqYsFNK9MuPlltij5iu8MnRGj5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 05:16:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 151 (0x97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178EA7 Validity Not Before: Apr 7 05:16:30 2025 GMT Not After : Apr 14 05:16:30 2025 GMT Subject: CN=67f35fae-cda1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:63:b5:b6:a5:09:b4:24:e4:6c:e9:08:f3:f9: a3:c0:a1:3e:26:71:56:a1:fe:a4:93:8c:37:04:18: 81:90:91:fe:d8:e1:c6:c6:df:9d:c5:58:b0:0c:28: dd:3c:66:d6:d1:f1:dc:68:72:52:46:5d:33:d3:40: 8f:44:d9:63:c1:c3:24:d7:16:b2:83:bd:36:31:20: e5:54:1d:1e:ca:93:bc:bb:7e:6f:66:70:43:fd:90: 93:cb:94:7c:0f:69:52:b0:64:d4:98:1a:ae:e1:bc: d2:95:58:6c:bf:73:5e:50:14:c7:2d:b7:90:01:7c: 5c:5e:eb:af:15:b7:6e:fd:1a:79:18:6b:84:2c:d8: 3f:69:93:b6:02:90:2f:f1:6a:15:f3:96:4b:f8:83: dc:b6:71:10:34:3d:c5:00:92:ca:50:e9:33:3d:74: 60:cd:d1:c3:fa:2d:b0:55:f8:15:69:fb:95:2a:45: 95:3a:93:a5:59:78:e0:84:fa:17:46:b2:bb:7a:e3: de:e8:6a:98:c5:58:9b:4b:81:70:b1:a0:a2:30:b8: c0:b8:d9:24:0c:cd:42:2a:cd:0a:33:cc:73:a3:10: 4e:ec:a8:4b:b6:a7:57:db:53:da:a2:30:05:24:09: 08:6e:a0:1c:92:70:ac:88:97:4b:a7:bf:60:c8:56: 7a:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:BB:5C:E6:EB:97:27:2A:3F:46:17:D4:99:38:1D:C5:10:84:DD:5B X509v3 Authority Key Identifier: keyid:22:A6:2C:14:D2:BD:32:E3:E5:96:D8:A3:E6:2B:BC:32:74:46:8F:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IqYsFNK9MuPlltij5iu8MnRGj5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:42:87:56:f7:95:79:10:8a:05:4f:a0:1d:f5:ae:48:d8:1a: 3a:82:69:e1:3e:c4:5a:8d:35:9d:1a:c0:cd:88:77:1b:d9:ce: 96:1a:9a:73:6a:b0:82:d4:e5:ce:64:dc:20:98:af:d6:a8:a4: 86:7a:d4:63:1e:bf:1d:38:61:ac:97:ec:83:15:72:5e:50:be: f3:80:cb:cb:6f:3b:96:de:72:2f:34:4a:45:b6:ff:2e:c6:a8: 48:c1:cd:1d:2a:c2:b7:92:4b:43:87:56:ed:4d:7d:fc:16:31: cf:af:67:12:7f:bd:43:d3:b3:7c:2f:fe:7e:2a:03:b5:d4:a7: 14:3e:54:8c:d4:40:93:9b:51:39:50:17:91:7f:f2:d2:2f:60: 41:56:dd:60:0d:fd:76:fd:ed:de:2c:e6:81:57:8b:18:47:c0: 35:56:c8:a5:95:8c:ad:4b:2f:09:46:00:2a:b2:c3:cf:58:48: 00:4b:35:da:6f:a2:e3:ef:c1:a1:7f:fe:70:13:d5:80:63:d1: aa:e5:cd:37:b0:c3:a9:68:83:83:31:59:d2:b1:f5:3c:d7:a7: 9a:a7:dd:b4:6d:27:f4:8e:db:e1:ee:dd:a5:a3:d4:11:fe:b6: 6a:e9:ac:f0:57:87:4c:74:13:ed:ab:12:dc:0c:61:72:fa:98: 20:c5:0d:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhFQTcxMTAvBgNVBAUTKDIyQTYyQzE0RDJCRDMyRTNFNTk2RDhBM0U2MkJCQzMy NzQ0NjhGOTkwHhcNMjUwNDA3MDUxNjMwWhcNMjUwNDE0MDUxNjMwWjAYMRYwFAYD VQQDEw02N2YzNWZhZS1jZGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWO1tqUJtCTkbOkI8/mjwKE+JnFWof6kk4w3BBiBkJH+2OHGxt+dxViwDCjd PGbW0fHcaHJSRl0z00CPRNljwcMk1xayg702MSDlVB0eypO8u35vZnBD/ZCTy5R8 D2lSsGTUmBqu4bzSlVhsv3NeUBTHLbeQAXxcXuuvFbdu/Rp5GGuELNg/aZO2ApAv 8WoV85ZL+IPctnEQND3FAJLKUOkzPXRgzdHD+i2wVfgVafuVKkWVOpOlWXjghPoX RrK7euPe6GqYxVibS4FwsaCiMLjAuNkkDM1CKs0KM8xzoxBO7KhLtqdX21PaojAF JAkIbqAcknCsiJdLp79gyFZ64QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO+7XObr lycqP0YX1Jk4HcUQhN1bMB8GA1UdIwQYMBaAFCKmLBTSvTLj5ZbYo+YrvDJ0Ro+Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEVBNy9CMUIzRTJENjM4 NjIxMUVGOUUxN0U4NkZDNEY5QUUwMi9JcVlzRk5LOU11UGxsdGlqNWl1OE1uUkdq NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lxWXNGTks5TXVQbGx0aWo1aXU4TW5SR2o1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OEVBNy9CMUIzRTJENjM4NjIxMUVGOUUxN0U4NkZDNEY5QUUwMi9JcVlzRk5LOU11 UGxsdGlqNWl1OE1uUkdqNWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMQodW95V5EIoFT6Ad9a5I2Bo6gmnhPsRajTWdGsDNiHcb2c6WGppz arCC1OXOZNwgmK/WqKSGetRjHr8dOGGsl+yDFXJeUL7zgMvLbzuW3nIvNEpFtv8u xqhIwc0dKsK3kktDh1btTX38FjHPr2cSf71D07N8L/5+KgO11KcUPlSM1ECTm1E5 UBeRf/LSL2BBVt1gDf12/e3eLOaBV4sYR8A1VsillYytSy8JRgAqssPPWEgASzXa b6Lj78Ghf/5wE9WAY9Gq5c03sMOpaIODMVnSsfU816eap920bSf0jtvh7t2lo9QR /rZq6azwV4dMdBPtqxLcDGFy+pggxQ0V -----END CERTIFICATE-----Generated at Mon Apr 7 08:42:37 2025 by rpki-client