$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft File: iOe1QfQimNbptRZdllJGzBzB9aI.mft (raw, json) Hash identifier: qqvqTyl/xD1HXehINrAm/pE3sumUvM70KmHSmflr81I= Subject key identifier: D8:8E:BD:AB:3F:A4:9B:B0:67:A7:C5:32:B6:DE:AF:AA:38:79:70:E2 Authority key identifier: 88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2 Certificate issuer: /CN=A91A9D0F/serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2 Certificate serial: 0F4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft Manifest number: 0F10 Signing time: Mon 14 Apr 2025 17:38:06 +0000 Manifest this update: Mon 14 Apr 2025 17:38:06 +0000 Manifest next update: Mon 21 Apr 2025 17:38:06 +0000 Files and hashes: 1: iOe1QfQimNbptRZdllJGzBzB9aI.crl (hash: W0nA7a3T9v+R7gm8JPZrKkZK0ldV0aIhyvbs1+Li+YU=) 2: 13C1EDA8767911EE9A957930C4F9AE02.roa (hash: rMgdKojSnMQn5zP9ArOeE344pCaixcohoQsewhOoy54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Apr 2025 17:38:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3915 (0xf4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9D0F, serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2 Validity Not Before: Apr 14 17:38:06 2025 GMT Not After : Apr 21 17:38:06 2025 GMT Subject: CN=67fd47fe-6198 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:5f:56:98:86:91:6e:72:88:ca:af:56:e4:51: 61:b4:da:72:bd:df:76:ab:29:35:4f:45:01:dd:c7: 4d:20:90:e3:f5:07:0a:3c:b6:72:0b:7a:ff:8a:ad: 2c:fc:2b:ee:09:fe:bf:9f:2f:89:34:db:05:bb:3e: 39:1c:79:b0:ca:e2:0c:52:5f:a5:14:54:cc:bc:ec: 8b:4f:f5:ce:6e:6c:d5:08:f3:7c:4e:de:39:b3:b1: dc:70:ea:80:9b:c0:e3:08:e5:13:e7:06:de:6f:7d: 48:f3:9e:a2:0c:88:ba:fd:02:63:d8:f9:12:ca:f1: 9d:70:df:77:9c:e4:88:37:71:c2:58:8c:5e:2c:e4: 2d:0b:88:71:e0:52:20:b4:4c:77:a8:13:f8:88:de: 9c:a3:d1:80:5a:84:01:01:6b:ec:e7:38:92:82:53: 7d:ce:55:a0:a9:6a:b6:fe:fd:99:98:bd:3c:26:95: 24:30:dc:f3:f0:d3:b7:19:96:d7:d6:03:18:e9:b8: 32:f8:53:28:82:5e:ef:2a:14:6c:e2:60:fa:5c:d6: 1d:b2:23:bf:0d:0f:ae:92:f8:13:34:fb:80:b0:5d: 50:84:ef:e1:3b:25:ca:6c:45:2b:5f:dc:a7:1e:40: ff:34:38:b4:e6:7f:32:e0:86:c4:ad:4a:67:ac:b8: cf:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:8E:BD:AB:3F:A4:9B:B0:67:A7:C5:32:B6:DE:AF:AA:38:79:70:E2 X509v3 Authority Key Identifier: keyid:88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:ac:c6:bc:54:33:28:73:16:1b:50:94:72:39:d5:8d:72:c3: d4:3f:08:ca:e7:2b:fa:67:41:03:f6:0f:01:37:fb:83:e6:93: 61:93:90:67:0b:2c:d6:5b:bb:bd:6e:16:87:02:99:28:07:63: 17:e8:93:74:93:3a:89:0e:a9:59:2b:4d:28:d3:07:6f:2b:05: b5:6a:7d:d1:29:22:a7:4c:7b:f3:87:a3:03:23:0d:6b:2e:86: e0:59:54:f5:a8:1d:b6:e6:52:73:d7:86:e5:93:f2:79:11:83: 4f:05:13:9b:9f:83:b7:a0:24:03:a7:98:3f:07:f5:80:29:dd: 5f:32:02:95:cf:8f:36:5c:8f:7a:7a:c2:30:0c:c1:ae:3f:a0: 69:3c:46:98:a7:48:c7:1e:37:1b:71:4b:e9:f4:78:76:fc:a8: a0:e4:8a:e3:5a:15:79:63:54:80:ad:e2:af:45:be:bb:4f:5a: 82:4f:93:94:d6:13:0e:73:e3:c7:54:ed:3c:31:d0:08:cd:8d: de:12:66:b2:91:b5:a1:87:db:1c:3d:14:21:80:6a:3d:3b:49: 1b:6b:b6:ff:f6:88:0a:d8:30:70:bc:82:9a:2b:f8:17:bf:0f: 04:c1:7d:5a:4d:35:7d:ef:d2:7e:ac:a8:d6:fc:ce:cf:7a:f2: 92:24:83:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD0swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlEMEYxMTAvBgNVBAUTKDg4RTdCNTQxRjQyMjk4RDZFOUI1MTY1RDk2NTI0NkND MUNDMUY1QTIwHhcNMjUwNDE0MTczODA2WhcNMjUwNDIxMTczODA2WjAYMRYwFAYD VQQDEw02N2ZkNDdmZS02MTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvV9WmIaRbnKIyq9W5FFhtNpyvd92qyk1T0UB3cdNIJDj9QcKPLZyC3r/iq0s /CvuCf6/ny+JNNsFuz45HHmwyuIMUl+lFFTMvOyLT/XObmzVCPN8Tt45s7HccOqA m8DjCOUT5wbeb31I856iDIi6/QJj2PkSyvGdcN93nOSIN3HCWIxeLOQtC4hx4FIg tEx3qBP4iN6co9GAWoQBAWvs5ziSglN9zlWgqWq2/v2ZmL08JpUkMNzz8NO3GZbX 1gMY6bgy+FMogl7vKhRs4mD6XNYdsiO/DQ+ukvgTNPuAsF1QhO/hOyXKbEUrX9yn HkD/NDi05n8y4IbErUpnrLjPgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNiOvas/ pJuwZ6fFMrber6o4eXDiMB8GA1UdIwQYMBaAFIjntUH0IpjW6bUWXZZSRswcwfWi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUQwRi83NEJFMzhENjgw Q0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1OYnB0UlpkbGxKR3pCekI5 YUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lPZTFRZlFpbU5icHRSWmRsbEpHekJ6QjlhSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUQwRi83NEJFMzhENjgwQ0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1O YnB0UlpkbGxKR3pCekI5YUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZrMa8VDMocxYbUJRyOdWNcsPUPwjK5yv6Z0ED9g8BN/uD5pNhk5Bn CyzWW7u9bhaHApkoB2MX6JN0kzqJDqlZK00o0wdvKwW1an3RKSKnTHvzh6MDIw1r LobgWVT1qB225lJz14blk/J5EYNPBRObn4O3oCQDp5g/B/WAKd1fMgKVz482XI96 esIwDMGuP6BpPEaYp0jHHjcbcUvp9Hh2/Kig5IrjWhV5Y1SAreKvRb67T1qCT5OU 1hMOc+PHVO08MdAIzY3eEmaykbWhh9scPRQhgGo9O0kba7b/9ogK2DBwvIKaK/gX vw8EwX1aTTV979J+rKjW/M7PevKSJIOI -----END CERTIFICATE-----Generated at Wed Apr 16 17:18:04 2025 by rpki-client