$ rpki-client -vvf rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft File: iWZCPuKkFWMfevMU5NiEAHqEaLY.mft (raw, json) Hash identifier: UGcuyiZf40EMcIwPHmnUN/Wq+NJBwXNcCl9j8N9jBiE= Subject key identifier: F4:00:C6:9A:19:E1:B9:C0:60:92:F1:54:D0:1A:2B:C0:C4:D5:5B:25 Authority key identifier: 89:66:42:3E:E2:A4:15:63:1F:7A:F3:14:E4:D8:84:00:7A:84:68:B6 Certificate issuer: /CN=A91A91CB/serialNumber=8966423EE2A415631F7AF314E4D884007A8468B6 Certificate serial: 1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft Manifest number: 1E Signing time: Wed 09 Apr 2025 06:41:58 +0000 Manifest this update: Wed 09 Apr 2025 06:41:57 +0000 Manifest next update: Wed 16 Apr 2025 06:41:57 +0000 Files and hashes: 1: iWZCPuKkFWMfevMU5NiEAHqEaLY.crl (hash: 7ilo7FWFbtTURbspk2sAL/csaY8MkgTP/L8oLaONQ/I=) 2: 0EB302DCEA5B11EFABB07C6DC4F9AE02.roa (hash: gvmSDCYZSC63LrY5JrPQoisd5tgDkXkEX0SCy3pFzuY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.crl rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 06:41:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A91CB Validity Not Before: Apr 9 06:41:57 2025 GMT Not After : Apr 16 06:41:57 2025 GMT Subject: CN=67f616b6-95f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:97:4c:9f:ba:8c:d0:41:b3:3d:43:82:af:99: 71:d4:3c:b1:90:d1:32:e8:11:c8:24:cf:e2:4a:9f: 88:a4:e1:e4:7f:02:fa:06:cd:f0:f1:53:6f:54:89: 43:83:75:2e:82:08:0b:b6:d8:55:b7:ae:89:b5:8e: 62:d2:97:ff:19:7b:ef:66:48:72:2b:87:fa:33:07: d4:53:a6:5b:ac:44:59:95:b2:e9:b3:76:74:05:17: 62:7f:c2:66:9f:c6:cd:17:93:1c:8c:65:10:86:37: 60:8b:f9:dc:51:b3:f8:a2:80:3d:0d:40:82:3e:1b: dc:17:d8:93:1a:3e:dc:9e:01:f5:d3:29:f7:c9:8e: bf:af:1b:2d:ee:04:da:c9:23:b3:4f:a3:b3:88:bc: 10:b3:c9:57:55:d4:a5:99:a4:e9:ad:fb:63:f5:64: 58:da:9f:cc:a1:be:7b:c3:9b:bc:1d:3d:ba:55:23: b3:28:c3:1c:85:39:45:9d:aa:20:f3:ed:3d:da:42: db:6f:e2:d9:c5:1a:21:ce:6f:25:f2:8c:4d:ce:3c: 2e:04:af:6b:f9:e3:cf:ee:a2:19:c2:d2:42:ec:4e: b4:82:62:26:34:20:f3:ac:2e:3f:cd:f3:b7:ef:35: de:a7:bb:50:83:86:2c:53:b8:47:6e:8a:6b:a9:02: 30:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:00:C6:9A:19:E1:B9:C0:60:92:F1:54:D0:1A:2B:C0:C4:D5:5B:25 X509v3 Authority Key Identifier: keyid:89:66:42:3E:E2:A4:15:63:1F:7A:F3:14:E4:D8:84:00:7A:84:68:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:e7:9d:69:b4:08:a9:8e:30:8e:12:1b:1c:b4:e4:60:1c:cd: 81:02:63:96:a3:45:99:6c:37:f0:61:e2:71:a9:ad:ff:45:c5: d8:d4:77:b5:34:8a:77:c5:7a:b0:6d:2c:5b:b1:49:8e:7c:ad: c9:c8:89:93:0b:49:eb:10:7a:6f:b4:6e:0c:67:42:0a:30:5b: c1:0e:c9:a5:42:f1:db:6c:71:2f:81:59:9b:6b:62:3e:5a:7a: f3:fe:90:a3:60:63:dd:0f:51:4c:ac:d6:7a:91:91:88:4f:d8: 26:03:05:7c:28:b4:94:e2:f8:b5:ec:cb:3b:72:9f:4f:5a:53: f9:bb:17:95:91:29:2a:1f:3d:4c:09:9f:a2:aa:32:6e:7a:a0: 86:34:ce:0a:b2:d4:d9:12:0e:ff:ef:52:84:e5:19:61:24:d1: 6c:ad:74:68:8f:8d:7a:cc:33:ed:d5:85:d5:f8:b0:c3:ad:f7: 00:af:dc:2b:b5:e3:10:08:ba:60:a3:99:d9:40:4b:64:21:38: c9:44:4d:a8:ee:60:8a:ee:5a:28:b5:74:db:2f:d5:a9:db:0f: eb:94:b2:67:28:fa:d4:af:34:c7:e1:42:2d:fc:4e:db:2b:90: 1c:db:31:e1:c8:69:cb:40:6a:43:cf:23:74:53:eb:bc:cf:fb: 17:23:d8:5d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTFDQjExMC8GA1UEBRMoODk2NjQyM0VFMkE0MTU2MzFGN0FGMzE0RTREODg0MDA3 QTg0NjhCNjAeFw0yNTA0MDkwNjQxNTdaFw0yNTA0MTYwNjQxNTdaMBgxFjAUBgNV BAMTDTY3ZjYxNmI2LTk1ZjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCql0yfuozQQbM9Q4KvmXHUPLGQ0TLoEcgkz+JKn4ik4eR/AvoGzfDxU29UiUOD dS6CCAu22FW3rom1jmLSl/8Ze+9mSHIrh/ozB9RTplusRFmVsumzdnQFF2J/wmaf xs0XkxyMZRCGN2CL+dxRs/iigD0NQII+G9wX2JMaPtyeAfXTKffJjr+vGy3uBNrJ I7NPo7OIvBCzyVdV1KWZpOmt+2P1ZFjan8yhvnvDm7wdPbpVI7MowxyFOUWdqiDz 7T3aQttv4tnFGiHObyXyjE3OPC4Er2v548/uohnC0kLsTrSCYiY0IPOsLj/N87fv Nd6nu1CDhixTuEduimupAjDXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9ADGmhnh ucBgkvFU0BorwMTVWyUwHwYDVR0jBBgwFoAUiWZCPuKkFWMfevMU5NiEAHqEaLYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5MUNCLzY1MEU2MDBBRUE1 QTExRUZCODRBRTQ2OEM0RjlBRTAyL2lXWkNQdUtrRldNZmV2TVU1TmlFQUhxRWFM WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVdaQ1B1S2tGV01mZXZNVTVOaUVBSHFFYUxZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5 MUNCLzY1MEU2MDBBRUE1QTExRUZCODRBRTQ2OEM0RjlBRTAyL2lXWkNQdUtrRldN ZmV2TVU1TmlFQUhxRWFMWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJnnnWm0CKmOMI4SGxy05GAczYECY5ajRZlsN/Bh4nGprf9FxdjUd7U0 infFerBtLFuxSY58rcnIiZMLSesQem+0bgxnQgowW8EOyaVC8dtscS+BWZtrYj5a evP+kKNgY90PUUys1nqRkYhP2CYDBXwotJTi+LXsyztyn09aU/m7F5WRKSofPUwJ n6KqMm56oIY0zgqy1NkSDv/vUoTlGWEk0WytdGiPjXrMM+3VhdX4sMOt9wCv3Cu1 4xAIumCjmdlAS2QhOMlETajuYIruWii1dNsv1anbD+uUsmco+tSvNMfhQi38Ttsr kBzbMeHIactAakPPI3RT67zP+xcj2F0= -----END CERTIFICATE-----Generated at Thu Apr 10 19:02:13 2025 by rpki-client