$ rpki-client -vvf rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft File: iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft (raw, json) Hash identifier: xdM8Ak8HgAZiqLCLYK/dbwTT0DH+dbgKa7AGl8Th/wQ= Subject key identifier: F4:16:E8:CF:80:14:80:CF:8B:53:60:11:28:54:8A:76:BB:B8:93:06 Authority key identifier: 89:0B:1D:EF:E8:8D:59:19:6B:CC:7B:65:26:8C:62:E8:6E:54:D4:6D Certificate issuer: /CN=A9195F7B/serialNumber=890B1DEFE88D59196BCC7B65268C62E86E54D46D Certificate serial: FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft Manifest number: EF Signing time: Thu 03 Apr 2025 04:42:30 +0000 Manifest this update: Thu 03 Apr 2025 04:42:30 +0000 Manifest next update: Thu 10 Apr 2025 04:42:29 +0000 Files and hashes: 1: iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl (hash: WWJuzq3rD/zJzUPHeuDV2ildUeDKns85Q3dKe5x6QJI=) 2: 87662556555511EF88D9F680C4F9AE02.roa (hash: k8ciaOJiovKzhjLhsMW8Olbo59H12ftecdkV4UavoKg=) 3: F406C3F26AE311EF82D7860FC4F9AE02.roa (hash: BGxl2SOPQW6C/i2r2VN80go3aEYSETpmK67AkebR/E4=) 4: D7FEF354562111EFA7B3F00AC4F9AE02.roa (hash: Z74c44o/GimXrdeWvw94wRAl3MPTrcV7W0A3AuI0ILk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 04:42:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 254 (0xfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195F7B Validity Not Before: Apr 3 04:42:30 2025 GMT Not After : Apr 10 04:42:29 2025 GMT Subject: CN=67ee11b6-a3a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:90:41:bf:ea:4a:b2:3e:44:46:cb:a2:e5:75: 79:9d:ce:11:44:14:f1:63:e8:00:f7:d0:02:e0:00: 37:f2:6d:36:c1:5d:05:9e:dc:93:70:f4:61:da:57: 9c:e4:0f:47:88:7e:b7:52:57:00:93:89:60:f5:7c: e0:a7:1f:2b:dd:e6:08:2d:4a:e7:67:f3:36:0b:53: 34:07:18:62:41:cd:69:71:5e:7f:d8:16:af:c4:7f: 42:07:68:2b:88:3c:54:8b:d3:5d:61:4a:02:33:f9: 5a:b3:99:7e:73:0b:3f:fa:5f:82:63:00:fc:78:02: 58:90:a8:16:04:f5:5c:44:26:19:82:45:4d:39:4e: ec:7d:c7:5d:38:72:ed:b2:2a:b6:1b:ef:20:b8:8b: 67:e4:92:95:3c:3f:60:14:38:68:fc:bf:ce:c0:e7: 34:7b:6e:3d:bd:32:b5:d1:4b:fd:25:db:23:01:a5: 0f:69:53:65:26:17:c8:08:b0:1d:f6:fc:76:8a:d1: 83:09:57:15:86:55:75:9d:ce:55:20:5c:b2:64:b4: 69:25:04:9c:d0:2b:ae:ad:47:01:d9:36:05:40:e9: 7e:51:6b:db:74:71:9c:22:3a:1a:07:8c:05:99:d1: 4e:df:e2:94:d3:e0:da:71:c5:83:44:d1:6f:d6:7a: 81:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:16:E8:CF:80:14:80:CF:8B:53:60:11:28:54:8A:76:BB:B8:93:06 X509v3 Authority Key Identifier: keyid:89:0B:1D:EF:E8:8D:59:19:6B:CC:7B:65:26:8C:62:E8:6E:54:D4:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:89:62:93:ee:b3:cc:9a:ce:6b:f4:01:5b:91:33:bf:80:12: fc:b3:5c:ea:7f:b2:05:d8:f8:9d:a0:94:4f:97:3e:06:92:00: 3d:eb:dd:a9:9f:05:4e:0e:e5:5a:6b:42:8e:45:1a:12:de:cb: 3b:88:52:fc:0b:13:e2:b5:52:43:d2:dd:df:93:32:d7:0a:af: e9:99:b2:ee:ab:99:3a:44:16:63:d7:e6:12:f6:30:af:28:8b: c9:85:a1:e7:ea:fb:96:0e:8d:a1:3d:a6:f9:40:98:49:04:7e: 8b:d9:31:76:7a:23:18:af:e6:21:7a:1c:30:de:fe:84:31:28: 87:f0:b7:ce:a7:dd:0e:ef:cb:ce:63:ad:3c:a2:7d:56:0c:6e: 99:d8:dd:db:8e:dd:2f:f6:f3:32:8a:04:3f:5d:21:aa:5c:3c: 7b:27:de:6d:20:95:2e:56:d0:e3:6b:7b:57:82:fc:9d:50:c7: 88:0e:7d:8c:c4:7e:74:02:38:f5:c9:d3:82:a5:45:cb:0c:12: 74:97:fc:d5:9e:09:db:5a:79:40:6a:9e:99:40:0a:e4:a7:13: 7d:ce:94:ae:4c:42:84:e8:c6:75:da:57:64:d7:3a:91:98:35: 2a:04:f1:65:c8:02:21:f4:8b:07:2e:7b:3b:9e:89:f8:41:68: 38:46:08:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVGN0IxMTAvBgNVBAUTKDg5MEIxREVGRTg4RDU5MTk2QkNDN0I2NTI2OEM2MkU4 NkU1NEQ0NkQwHhcNMjUwNDAzMDQ0MjMwWhcNMjUwNDEwMDQ0MjI5WjAYMRYwFAYD VQQDEw02N2VlMTFiNi1hM2EwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA05BBv+pKsj5ERsui5XV5nc4RRBTxY+gA99AC4AA38m02wV0FntyTcPRh2lec 5A9HiH63UlcAk4lg9Xzgpx8r3eYILUrnZ/M2C1M0BxhiQc1pcV5/2BavxH9CB2gr iDxUi9NdYUoCM/las5l+cws/+l+CYwD8eAJYkKgWBPVcRCYZgkVNOU7sfcddOHLt siq2G+8guItn5JKVPD9gFDho/L/OwOc0e249vTK10Uv9JdsjAaUPaVNlJhfICLAd 9vx2itGDCVcVhlV1nc5VIFyyZLRpJQSc0CuurUcB2TYFQOl+UWvbdHGcIjoaB4wF mdFO3+KU0+DaccWDRNFv1nqB4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPQW6M+A FIDPi1NgEShUina7uJMGMB8GA1UdIwQYMBaAFIkLHe/ojVkZa8x7ZSaMYuhuVNRt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUY3Qi9BMTMxQjM5NEJC MzkxMUVFQTY1NTQxN0VDNEY5QUUwMi9pUXNkNy1pTldSbHJ6SHRsSm94aTZHNVUx RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lRc2Q3LWlOV1JscnpIdGxKb3hpNkc1VTFHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUY3Qi9BMTMxQjM5NEJCMzkxMUVFQTY1NTQxN0VDNEY5QUUwMi9pUXNkNy1pTldS bHJ6SHRsSm94aTZHNVUxRzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+iWKT7rPMms5r9AFbkTO/gBL8s1zqf7IF2PidoJRPlz4GkgA9692p nwVODuVaa0KORRoS3ss7iFL8CxPitVJD0t3fkzLXCq/pmbLuq5k6RBZj1+YS9jCv KIvJhaHn6vuWDo2hPab5QJhJBH6L2TF2eiMYr+Yhehww3v6EMSiH8LfOp90O78vO Y608on1WDG6Z2N3bjt0v9vMyigQ/XSGqXDx7J95tIJUuVtDja3tXgvydUMeIDn2M xH50Ajj1ydOCpUXLDBJ0l/zVngnbWnlAap6ZQArkpxN9zpSuTEKE6MZ12ldk1zqR mDUqBPFlyAIh9IsHLns7non4QWg4RggC -----END CERTIFICATE-----Generated at Fri Apr 4 22:13:45 2025 by rpki-client