$ rpki-client -vvf rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft File: iV5rynpcNtnzBEctDScTpILJ2yU.mft (raw, json) Hash identifier: W0dozPgUuxUR8r8JVDWhwJPhm3+8KJPmOh8/kXeieyQ= Subject key identifier: 2F:50:B4:B1:93:A1:14:04:43:9B:52:2C:DC:43:ED:D3:EE:A2:D4:03 Authority key identifier: 89:5E:6B:CA:7A:5C:36:D9:F3:04:47:2D:0D:27:13:A4:82:C9:DB:25 Certificate issuer: /CN=A91B829A/serialNumber=895E6BCA7A5C36D9F304472D0D2713A482C9DB25 Certificate serial: 0C2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft Manifest number: 0C26 Signing time: Fri 04 Apr 2025 18:36:57 +0000 Manifest this update: Fri 04 Apr 2025 18:36:56 +0000 Manifest next update: Fri 11 Apr 2025 18:36:56 +0000 Files and hashes: 1: iV5rynpcNtnzBEctDScTpILJ2yU.crl (hash: UIcdob9BIdEksgbpJi1kpB51YlK1K1N2iAsvwETqC2g=) 2: 37759456617811ECBB095A62C4F9AE02.roa (hash: 6MjYNuehYHSmyo52GdaYKFT6NgoN+zvp+XeYBlIJd3E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.crl rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:36:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3119 (0xc2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B829A Validity Not Before: Apr 4 18:36:56 2025 GMT Not After : Apr 11 18:36:56 2025 GMT Subject: CN=67f026c8-adf4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a6:29:e6:0c:5f:83:f1:bf:52:d6:98:54:8c: e3:96:fb:20:63:91:5b:f1:ec:32:56:ac:1f:48:cb: 2a:f8:a7:f4:bf:63:b6:1a:b3:25:6a:5a:72:9d:9c: 0b:d9:60:f6:b1:d3:a6:c7:e0:ce:11:6e:86:cb:92: 42:8f:5c:31:e9:af:cb:cc:25:a7:db:99:fb:65:ee: c6:b4:62:a6:bf:8f:dd:df:2d:7a:13:09:47:d1:85: ce:3e:c9:c5:1d:64:d4:cd:d8:1f:af:fb:ca:9c:33: 68:e9:20:3d:0d:5f:99:40:cd:79:04:5c:e4:d3:41: fc:ee:11:17:7a:31:38:7b:e9:6a:8d:a2:82:d1:45: df:a5:79:df:03:6e:2a:98:c6:95:fd:15:a1:08:86: b0:61:76:8c:6b:05:a3:3b:17:7a:78:d4:af:eb:6a: 7a:a9:b3:6e:bc:4d:bf:97:a0:aa:00:8c:e0:da:bf: db:cc:7f:e6:a8:4f:77:96:62:0a:e1:86:e3:e3:44: f8:10:f4:27:e6:a3:11:29:7b:52:0d:3c:03:35:14: 25:13:bd:52:bd:c5:b1:f9:a0:2b:3e:e1:45:b4:d2: ce:96:a2:cb:62:68:cd:a5:eb:66:27:e5:a1:c8:12: 2b:ab:5b:74:a6:c9:75:74:09:a3:92:6b:65:05:d8: a9:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:50:B4:B1:93:A1:14:04:43:9B:52:2C:DC:43:ED:D3:EE:A2:D4:03 X509v3 Authority Key Identifier: keyid:89:5E:6B:CA:7A:5C:36:D9:F3:04:47:2D:0D:27:13:A4:82:C9:DB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:f6:bc:bd:22:a8:9c:96:f3:af:32:8f:45:a2:2f:77:b6:da: 43:71:59:01:62:83:75:59:30:b8:59:f1:49:57:8d:7e:44:d8: 4a:08:36:79:43:bb:e5:bd:a8:93:4f:a9:22:1c:88:b6:6e:05: 2f:be:be:1f:74:1b:c1:75:9e:da:71:2c:e2:0d:eb:10:31:29: 2e:60:5b:f0:53:2e:89:6e:0c:21:2d:58:86:03:2d:c8:90:40: 27:e4:97:da:e5:8e:d7:42:1f:41:33:ba:07:af:51:2a:7c:4a: ea:03:de:8f:45:29:d8:de:10:56:82:00:5a:74:6d:52:5c:28: 5e:29:3f:c8:aa:bf:a7:0b:49:e1:a4:ae:f6:5a:25:0b:54:00: 5b:df:54:b4:8d:16:dd:8f:6c:20:d8:9c:c3:83:ee:5d:c0:a7: 4e:7f:70:4e:5f:af:58:15:98:dd:59:26:7c:28:fe:c0:8d:b2: 65:ae:dd:1a:00:a9:e5:14:36:89:38:14:15:d8:e5:0e:aa:38: 58:42:1e:ca:d1:41:90:9c:f6:15:42:de:45:90:25:07:51:2b: b2:06:fa:e2:00:69:08:cd:a2:c8:4d:6b:da:7a:2b:97:b2:18: dd:30:7b:5e:e9:e8:6c:a3:fc:67:5c:c8:19:48:1f:da:25:7a: 2e:26:cf:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDC8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgyOUExMTAvBgNVBAUTKDg5NUU2QkNBN0E1QzM2RDlGMzA0NDcyRDBEMjcxM0E0 ODJDOURCMjUwHhcNMjUwNDA0MTgzNjU2WhcNMjUwNDExMTgzNjU2WjAYMRYwFAYD VQQDEw02N2YwMjZjOC1hZGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo6Yp5gxfg/G/UtaYVIzjlvsgY5Fb8ewyVqwfSMsq+Kf0v2O2GrMlalpynZwL 2WD2sdOmx+DOEW6Gy5JCj1wx6a/LzCWn25n7Ze7GtGKmv4/d3y16EwlH0YXOPsnF HWTUzdgfr/vKnDNo6SA9DV+ZQM15BFzk00H87hEXejE4e+lqjaKC0UXfpXnfA24q mMaV/RWhCIawYXaMawWjOxd6eNSv62p6qbNuvE2/l6CqAIzg2r/bzH/mqE93lmIK 4Ybj40T4EPQn5qMRKXtSDTwDNRQlE71SvcWx+aArPuFFtNLOlqLLYmjNpetmJ+Wh yBIrq1t0psl1dAmjkmtlBdipEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC9QtLGT oRQEQ5tSLNxD7dPuotQDMB8GA1UdIwQYMBaAFIlea8p6XDbZ8wRHLQ0nE6SCydsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODI5QS8xRjIzRTA1ODA1 N0YxMUVBQTU1MTZCM0ZDNEY5QUUwMi9pVjVyeW5wY050bnpCRWN0RFNjVHBJTEoy eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lWNXJ5bnBjTnRuekJFY3REU2NUcElMSjJ5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODI5QS8xRjIzRTA1ODA1N0YxMUVBQTU1MTZCM0ZDNEY5QUUwMi9pVjVyeW5wY050 bnpCRWN0RFNjVHBJTEoyeVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/9ry9IqiclvOvMo9Foi93ttpDcVkBYoN1WTC4WfFJV41+RNhKCDZ5 Q7vlvaiTT6kiHIi2bgUvvr4fdBvBdZ7acSziDesQMSkuYFvwUy6JbgwhLViGAy3I kEAn5Jfa5Y7XQh9BM7oHr1EqfErqA96PRSnY3hBWggBadG1SXCheKT/Iqr+nC0nh pK72WiULVABb31S0jRbdj2wg2JzDg+5dwKdOf3BOX69YFZjdWSZ8KP7AjbJlrt0a AKnlFDaJOBQV2OUOqjhYQh7K0UGQnPYVQt5FkCUHUSuyBvriAGkIzaLITWvaeiuX shjdMHte6ehso/xnXMgZSB/aJXouJs/s -----END CERTIFICATE-----Generated at Fri Apr 4 22:10:47 2025 by rpki-client