$ rpki-client -vvf rpki.apnic.net/member_repository/A918C661/04AAB29E836D11EAB4A2D76DC4F9AE02/i_fikwz8buuRbnOQ-JPgEAupOzI.mft File: i_fikwz8buuRbnOQ-JPgEAupOzI.mft (raw, json) Hash identifier: 4+bSqOvCk/09kCLI9khQAAoo88Jg1Gnf8qPn9NkHxB0= Subject key identifier: 6D:33:06:E0:80:7F:C0:74:C3:A9:51:78:34:06:34:49:D6:91:7B:42 Authority key identifier: 8B:F7:E2:93:0C:FC:6E:EB:91:6E:73:90:F8:93:E0:10:0B:A9:3B:32 Certificate issuer: /CN=A918C661/serialNumber=8BF7E2930CFC6EEB916E7390F893E0100BA93B32 Certificate serial: 09E8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i_fikwz8buuRbnOQ-JPgEAupOzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C661/04AAB29E836D11EAB4A2D76DC4F9AE02/i_fikwz8buuRbnOQ-JPgEAupOzI.mft Manifest number: 09C2 Signing time: Fri 04 Apr 2025 20:12:40 +0000 Manifest this update: Fri 04 Apr 2025 20:12:40 +0000 Manifest next update: Fri 11 Apr 2025 20:12:40 +0000 Files and hashes: 1: i_fikwz8buuRbnOQ-JPgEAupOzI.crl (hash: Ky37LcbITmNidQnx9M/MtwWpVynozEJQ8twF2EC2rds=) 2: 4A68B404EF5A11EEB09CEA53C4F9AE02.roa (hash: oIJ5W3QVIa4YGr8FBNUGRHva+x5HF8Vbb7EeJPMTI4k=) 3: 44CA8E9C7A2811EFA43D2558C4F9AE02.roa (hash: 8Cc+PLs+/tx+lp1/rLLPaUvNT8vXFRU1NrLduLeiq2w=) 4: C654C6869F1C11EEB377E239C4F9AE02.roa (hash: 5GewRvUgDB6rcXNpXbxI+RsMmEZ6AmWtSegm+so4e0M=) 5: 3130A9B4681011EEB552C65BC4F9AE02.roa (hash: dXngOtAcFhvArc3Tgv9HMRYfy3lpLyOKuQ2Q99Bv4cI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C661/04AAB29E836D11EAB4A2D76DC4F9AE02/i_fikwz8buuRbnOQ-JPgEAupOzI.crl rsync://rpki.apnic.net/member_repository/A918C661/04AAB29E836D11EAB4A2D76DC4F9AE02/i_fikwz8buuRbnOQ-JPgEAupOzI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i_fikwz8buuRbnOQ-JPgEAupOzI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 20:12:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2536 (0x9e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C661 Validity Not Before: Apr 4 20:12:40 2025 GMT Not After : Apr 11 20:12:40 2025 GMT Subject: CN=67f03d38-a440 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:40:a3:7b:e2:2d:62:01:2a:23:6e:0d:b5:60: 94:b3:d2:4a:52:08:74:95:50:a0:d6:e8:6a:1f:e8: bc:3a:31:98:27:c8:74:0e:5f:04:ef:ff:fb:81:67: 75:2c:3f:37:f8:8a:a0:5b:a5:ed:a3:7e:eb:aa:b6: d1:e0:5d:18:3c:7c:56:01:94:41:fe:40:e9:8e:cc: a3:44:62:52:b2:cb:b6:a6:c3:be:87:0b:b1:32:77: 76:a2:65:8a:c3:e8:31:17:0c:4e:8b:45:4a:44:1f: fc:65:17:e1:bb:b5:75:3c:fe:f8:0b:81:0e:bd:ed: c2:19:36:70:ed:2b:dd:c9:a4:fc:b2:77:82:d6:ff: bb:84:18:4a:4d:d5:c3:19:68:2e:67:a9:3e:21:44: 43:1a:9b:5b:9b:cb:29:2a:d2:a1:7a:cb:5f:07:d2: 18:38:29:12:29:d9:05:ca:13:a3:9c:11:4b:9e:8e: 2a:14:51:9d:cc:f7:c5:b5:22:a4:ce:15:8d:29:18: 01:21:91:78:34:25:e7:b2:58:75:e0:32:20:b9:e0: 4d:09:54:04:c1:bc:cd:0f:0e:dc:1f:60:64:b7:ac: 48:ee:82:00:f8:fa:79:47:fa:05:eb:52:6d:a6:a6: 8f:a1:4a:80:1f:27:ad:62:44:8c:13:d8:8d:e5:48: 19:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:33:06:E0:80:7F:C0:74:C3:A9:51:78:34:06:34:49:D6:91:7B:42 X509v3 Authority Key Identifier: keyid:8B:F7:E2:93:0C:FC:6E:EB:91:6E:73:90:F8:93:E0:10:0B:A9:3B:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C661/04AAB29E836D11EAB4A2D76DC4F9AE02/i_fikwz8buuRbnOQ-JPgEAupOzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i_fikwz8buuRbnOQ-JPgEAupOzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C661/04AAB29E836D11EAB4A2D76DC4F9AE02/i_fikwz8buuRbnOQ-JPgEAupOzI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:d4:fb:7d:c9:03:d9:09:62:f5:af:8e:da:03:e6:71:00:e3: 43:f3:b7:32:5c:b9:4a:88:1c:8a:8d:24:55:a7:5e:61:f9:f9: 2b:c7:cd:85:8a:b7:bd:8d:38:3d:75:3f:74:0f:0d:09:a2:be: 52:ab:b7:29:60:37:1f:a0:7b:ea:aa:3d:5f:c4:4f:47:a9:eb: 74:68:ff:1e:ff:1a:98:ac:e8:fd:36:89:7d:fb:a2:63:06:85: 4c:2b:fe:7f:70:eb:b1:a4:b8:59:56:37:ef:15:bf:a7:ef:e7: 3f:ba:d9:ac:05:ab:12:a2:d4:47:ed:de:d9:d4:16:d5:98:13: 55:56:09:1f:49:55:48:31:c0:6b:94:c9:3b:d4:3c:69:6d:60: 9a:f5:a8:18:81:4a:b3:e1:13:f6:04:af:9d:cd:d3:2c:94:2f: 77:10:ee:4b:eb:90:a0:52:7c:85:b6:93:09:a2:d7:61:d5:8d: 70:81:80:e9:27:0d:e5:50:5c:26:43:52:74:63:8e:77:42:c6: 2c:9b:af:c1:d0:5a:77:44:39:5f:80:2c:dd:f8:86:1e:21:ed: 41:7f:c6:2a:f6:c6:d4:80:92:a6:16:d8:44:05:35:93:cc:74: e0:99:f2:ca:4d:ad:7b:65:82:9d:13:50:76:dd:e2:17:db:fc: 74:32:68:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEM2NjExMTAvBgNVBAUTKDhCRjdFMjkzMENGQzZFRUI5MTZFNzM5MEY4OTNFMDEw MEJBOTNCMzIwHhcNMjUwNDA0MjAxMjQwWhcNMjUwNDExMjAxMjQwWjAYMRYwFAYD VQQDEw02N2YwM2QzOC1hNDQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9kCje+ItYgEqI24NtWCUs9JKUgh0lVCg1uhqH+i8OjGYJ8h0Dl8E7//7gWd1 LD83+IqgW6Xto37rqrbR4F0YPHxWAZRB/kDpjsyjRGJSssu2psO+hwuxMnd2omWK w+gxFwxOi0VKRB/8ZRfhu7V1PP74C4EOve3CGTZw7SvdyaT8sneC1v+7hBhKTdXD GWguZ6k+IURDGptbm8spKtKhestfB9IYOCkSKdkFyhOjnBFLno4qFFGdzPfFtSKk zhWNKRgBIZF4NCXnslh14DIgueBNCVQEwbzNDw7cH2Bkt6xI7oIA+Pp5R/oF61Jt pqaPoUqAHyetYkSME9iN5UgZDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG0zBuCA f8B0w6lReDQGNEnWkXtCMB8GA1UdIwQYMBaAFIv34pMM/G7rkW5zkPiT4BALqTsy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzY2MS8wNEFBQjI5RTgz NkQxMUVBQjRBMkQ3NkRDNEY5QUUwMi9pX2Zpa3d6OGJ1dVJibk9RLUpQZ0VBdXBP ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lfZmlrd3o4YnV1UmJuT1EtSlBnRUF1cE96SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzY2MS8wNEFBQjI5RTgzNkQxMUVBQjRBMkQ3NkRDNEY5QUUwMi9pX2Zpa3d6OGJ1 dVJibk9RLUpQZ0VBdXBPekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBU1Pt9yQPZCWL1r47aA+ZxAOND87cyXLlKiByKjSRVp15h+fkrx82F ire9jTg9dT90Dw0Jor5Sq7cpYDcfoHvqqj1fxE9Hqet0aP8e/xqYrOj9Nol9+6Jj BoVMK/5/cOuxpLhZVjfvFb+n7+c/utmsBasSotRH7d7Z1BbVmBNVVgkfSVVIMcBr lMk71DxpbWCa9agYgUqz4RP2BK+dzdMslC93EO5L65CgUnyFtpMJotdh1Y1wgYDp Jw3lUFwmQ1J0Y453QsYsm6/B0Fp3RDlfgCzd+IYeIe1Bf8Yq9sbUgJKmFthEBTWT zHTgmfLKTa17ZYKdE1B23eIX2/x0MmgE -----END CERTIFICATE-----Generated at Sun Apr 6 18:28:59 2025 by rpki-client