$ rpki-client -vvf rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft File: iTEhgF-UFH033MbXS2N4Rvcjl8U.mft (raw, json) Hash identifier: Qsu0fOqMSaTZV5GjDS8Lrv32Xl64/mHN8MGu0ZOf99I= Subject key identifier: 5B:77:E9:00:36:17:75:30:F4:D9:AD:C9:D6:A2:62:54:CD:73:EE:A9 Authority key identifier: 89:31:21:80:5F:94:14:7D:37:DC:C6:D7:4B:63:78:46:F7:23:97:C5 Certificate issuer: /CN=A917E00F/serialNumber=893121805F94147D37DCC6D74B637846F72397C5 Certificate serial: 053D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iTEhgF-UFH033MbXS2N4Rvcjl8U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft Manifest number: 0626 Signing time: Mon 14 Apr 2025 23:11:19 +0000 Manifest this update: Mon 14 Apr 2025 23:11:18 +0000 Manifest next update: Mon 21 Apr 2025 23:11:18 +0000 Files and hashes: 1: iTEhgF-UFH033MbXS2N4Rvcjl8U.crl (hash: O0+wvDZBObbDH4Han2Ls+VazCnqouVAWKzTCdHeOfeg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.crl rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iTEhgF-UFH033MbXS2N4Rvcjl8U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Apr 2025 23:11:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1341 (0x53d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E00F, serialNumber=893121805F94147D37DCC6D74B637846F72397C5 Validity Not Before: Apr 14 23:11:18 2025 GMT Not After : Apr 21 23:11:18 2025 GMT Subject: CN=67fd9616-3e76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:12:20:20:6b:ee:a9:24:d2:13:91:33:9f:ff: 88:5a:65:1f:a1:44:52:5f:8e:bc:22:bc:00:5d:09: 0c:1a:5d:19:2f:51:76:18:6e:6c:80:a9:8e:34:e6: a8:db:81:01:3f:03:e7:8f:d5:16:ee:47:51:df:c9: 1c:39:39:94:bb:a8:27:fc:bc:b6:0f:63:38:68:62: f2:51:af:1c:e9:ad:69:af:88:fa:4d:a6:8e:bd:44: 8d:ad:63:14:08:a3:4b:d9:58:73:e5:c3:30:e9:b1: d8:98:88:75:db:9a:17:87:e9:5d:9b:5c:a6:69:41: 3c:b9:c1:0f:aa:ff:fb:0a:d5:f4:91:51:ce:d7:25: fd:7a:e8:4d:30:c6:61:35:f7:3a:7e:52:af:ee:6b: db:c5:5e:14:9d:25:36:e8:6a:b7:fb:9a:19:e5:32: dc:b9:4f:1f:3b:d7:ba:8c:5a:32:a7:3a:24:49:68: 21:6e:12:ce:d5:b4:72:ed:d6:c1:b9:41:ae:eb:d7: 8f:80:01:11:de:91:83:c1:eb:0c:a7:e2:6b:29:bf: 53:4f:6b:59:6a:d3:c1:3c:83:08:bb:a2:67:ed:0a: 2b:12:3b:33:20:7a:8b:8b:47:4c:8e:4c:54:23:bd: c5:3d:71:97:b6:26:78:f3:fb:ee:b1:3c:e0:d0:7a: 87:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:77:E9:00:36:17:75:30:F4:D9:AD:C9:D6:A2:62:54:CD:73:EE:A9 X509v3 Authority Key Identifier: keyid:89:31:21:80:5F:94:14:7D:37:DC:C6:D7:4B:63:78:46:F7:23:97:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iTEhgF-UFH033MbXS2N4Rvcjl8U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:94:ec:df:42:25:82:42:da:da:96:1c:33:d8:6b:11:fc:33: a8:5b:85:56:49:a6:d6:19:9e:5e:d9:5c:01:d5:db:fd:ee:24: 1f:60:3a:c0:64:96:68:d7:ed:9d:ef:07:58:3f:d6:5d:d5:6c: aa:1b:0c:7c:60:21:a1:b6:93:68:6d:be:f3:4a:d6:29:f0:bd: 94:a5:75:c1:b5:39:11:1c:e1:f1:66:3b:8d:4b:c7:b7:ea:d8: 6e:2c:80:ea:66:2c:7e:fd:0a:ab:82:e4:8d:08:b3:f7:6f:da: 00:89:a2:0f:30:60:9c:68:0d:13:ac:51:a2:a5:ce:aa:40:60: 2d:94:08:37:4c:5f:7e:65:eb:b3:fc:1d:26:38:ef:3d:38:4b: 97:ad:80:33:03:4e:64:d1:69:9f:d5:dd:64:1b:19:be:83:b9: 71:20:06:24:43:77:4c:1a:c9:fc:fa:a2:24:f5:02:b8:e0:be: d7:df:69:e1:4c:2d:48:0d:10:2e:dd:71:51:3b:e5:36:23:fc: e7:7a:63:a3:17:c7:3f:5e:07:43:a9:f9:0c:56:fb:45:bf:5f: eb:80:90:73:c5:99:59:bc:1c:f9:d1:61:b2:5d:78:ac:97:83: b3:88:97:c9:d5:06:93:b4:9f:df:08:37:65:45:c3:db:aa:ac: b5:cc:ad:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwMEYxMTAvBgNVBAUTKDg5MzEyMTgwNUY5NDE0N0QzN0RDQzZENzRCNjM3ODQ2 RjcyMzk3QzUwHhcNMjUwNDE0MjMxMTE4WhcNMjUwNDIxMjMxMTE4WjAYMRYwFAYD VQQDEw02N2ZkOTYxNi0zZTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtxIgIGvuqSTSE5Ezn/+IWmUfoURSX468IrwAXQkMGl0ZL1F2GG5sgKmONOao 24EBPwPnj9UW7kdR38kcOTmUu6gn/Ly2D2M4aGLyUa8c6a1pr4j6TaaOvUSNrWMU CKNL2Vhz5cMw6bHYmIh125oXh+ldm1ymaUE8ucEPqv/7CtX0kVHO1yX9euhNMMZh Nfc6flKv7mvbxV4UnSU26Gq3+5oZ5TLcuU8fO9e6jFoypzokSWghbhLO1bRy7dbB uUGu69ePgAER3pGDwesMp+JrKb9TT2tZatPBPIMIu6Jn7QorEjszIHqLi0dMjkxU I73FPXGXtiZ48/vusTzg0HqHqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFt36QA2 F3Uw9NmtydaiYlTNc+6pMB8GA1UdIwQYMBaAFIkxIYBflBR9N9zG10tjeEb3I5fF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTAwRi9FREU0OEI5Q0VF MjkxMUVCODA4NEI2MzhDNEY5QUUwMi9pVEVoZ0YtVUZIMDMzTWJYUzJONFJ2Y2ps OFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lURWhnRi1VRkgwMzNNYlhTMk40UnZjamw4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTAwRi9FREU0OEI5Q0VFMjkxMUVCODA4NEI2MzhDNEY5QUUwMi9pVEVoZ0YtVUZI MDMzTWJYUzJONFJ2Y2psOFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAalOzfQiWCQtralhwz2GsR/DOoW4VWSabWGZ5e2VwB1dv97iQfYDrA ZJZo1+2d7wdYP9Zd1WyqGwx8YCGhtpNobb7zStYp8L2UpXXBtTkRHOHxZjuNS8e3 6thuLIDqZix+/QqrguSNCLP3b9oAiaIPMGCcaA0TrFGipc6qQGAtlAg3TF9+Zeuz /B0mOO89OEuXrYAzA05k0Wmf1d1kGxm+g7lxIAYkQ3dMGsn8+qIk9QK44L7X32nh TC1IDRAu3XFRO+U2I/znemOjF8c/XgdDqfkMVvtFv1/rgJBzxZlZvBz50WGyXXis l4OziJfJ1QaTtJ/fCDdlRcPbqqy1zK0M -----END CERTIFICATE-----Generated at Wed Apr 16 17:11:30 2025 by rpki-client