$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9D33/C2E1CADC53C311EB8A188431C4F9AE02/IipN0tbRTG-_SJJOZqD4y98SVRg.mft File: IipN0tbRTG-_SJJOZqD4y98SVRg.mft (raw, json) Hash identifier: SPcOr2U2oOs3Nn6v03A5Ox+4I8Wzoq8//FIwuQHN9TY= Subject key identifier: 67:16:39:7E:08:6E:6B:F7:78:A4:DE:90:B3:2A:21:D3:21:45:3A:A8 Authority key identifier: 22:2A:4D:D2:D6:D1:4C:6F:BF:48:92:4E:66:A0:F8:CB:DF:12:55:18 Certificate issuer: /CN=A91B9D33/serialNumber=222A4DD2D6D14C6FBF48924E66A0F8CBDF125518 Certificate serial: 06D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IipN0tbRTG-_SJJOZqD4y98SVRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9D33/C2E1CADC53C311EB8A188431C4F9AE02/IipN0tbRTG-_SJJOZqD4y98SVRg.mft Manifest number: 06C7 Signing time: Fri 04 Apr 2025 22:13:42 +0000 Manifest this update: Fri 04 Apr 2025 22:13:42 +0000 Manifest next update: Fri 11 Apr 2025 22:13:42 +0000 Files and hashes: 1: IipN0tbRTG-_SJJOZqD4y98SVRg.crl (hash: rOIX6QaB0CwTlyNvXf/gaxOtmohkBvOUiiOu7QIxNug=) 2: 1B047818141E11EFB957692CC4F9AE02.roa (hash: ZE0tBApDZzaQ+O4EZGcawrB6RxmvKTQ6iYLr+X4ZOpI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9D33/C2E1CADC53C311EB8A188431C4F9AE02/IipN0tbRTG-_SJJOZqD4y98SVRg.crl rsync://rpki.apnic.net/member_repository/A91B9D33/C2E1CADC53C311EB8A188431C4F9AE02/IipN0tbRTG-_SJJOZqD4y98SVRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IipN0tbRTG-_SJJOZqD4y98SVRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 22:13:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1746 (0x6d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9D33 Validity Not Before: Apr 4 22:13:42 2025 GMT Not After : Apr 11 22:13:42 2025 GMT Subject: CN=67f05996-515e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:8b:ad:8f:0f:92:12:5a:d6:62:b0:36:70:0d: a5:3a:6e:1c:ed:e7:35:1c:e2:39:32:16:21:eb:eb: c8:f5:65:1b:7a:90:ef:db:9c:c3:91:00:a9:cb:45: e2:b5:15:f7:ce:b4:40:ba:a8:61:05:2a:22:c4:56: 8e:81:71:6b:58:8c:18:1d:74:b6:71:ad:ef:2a:4f: c3:70:d0:72:c2:84:43:a7:c4:95:b6:61:2c:f7:59: a8:f4:80:1f:10:da:49:ac:f2:8c:98:37:50:31:a4: 81:99:54:d0:c5:9b:3e:41:fa:c0:c8:71:15:4f:11: f8:22:af:83:ec:f4:7e:f7:80:bf:9d:b2:7b:10:d8: f9:03:3d:fa:78:70:7f:85:53:9a:19:d0:5b:1a:ae: 83:81:ec:69:70:cc:62:85:af:b8:5b:2d:49:25:5f: a7:71:11:39:1d:fe:a1:10:b4:40:b0:ef:a3:9a:83: d1:de:32:f0:36:9e:23:06:fc:f5:eb:d2:6c:59:20: e8:67:9d:9f:a0:14:71:7b:53:56:0a:79:6e:a9:d4: 4b:f4:c7:4b:b5:39:99:af:0d:ae:65:b6:d3:77:2d: 30:f0:9a:11:9f:b5:9f:ec:fa:95:25:79:da:96:0e: 9d:14:55:3b:e3:45:7d:91:4b:dc:2f:7e:df:71:8b: b0:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:16:39:7E:08:6E:6B:F7:78:A4:DE:90:B3:2A:21:D3:21:45:3A:A8 X509v3 Authority Key Identifier: keyid:22:2A:4D:D2:D6:D1:4C:6F:BF:48:92:4E:66:A0:F8:CB:DF:12:55:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9D33/C2E1CADC53C311EB8A188431C4F9AE02/IipN0tbRTG-_SJJOZqD4y98SVRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IipN0tbRTG-_SJJOZqD4y98SVRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9D33/C2E1CADC53C311EB8A188431C4F9AE02/IipN0tbRTG-_SJJOZqD4y98SVRg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:51:b3:58:56:48:fe:79:e7:a3:de:32:64:fc:df:9d:ba:f3: 59:7c:d2:cf:c9:80:49:25:29:90:0e:fc:20:8f:9c:24:c8:dd: 96:35:fb:e3:54:12:5b:bd:b9:94:fb:7f:fa:67:fb:7b:7a:45: eb:94:2b:9e:f9:f5:97:4f:99:23:fe:67:a7:17:6c:81:ba:8d: dc:0f:36:f2:69:6d:04:a7:40:7b:a9:23:4f:b5:a4:c2:8a:c5: 0a:a3:81:1d:43:ed:ba:0f:c9:cb:a3:21:e9:7c:72:17:47:d4: db:8d:fe:30:db:b9:a9:a6:ab:fe:e0:21:79:4b:7e:cc:29:67: 39:b6:bd:44:4d:fc:db:a2:26:17:19:89:1a:9c:4d:2d:ad:53: 34:f8:8f:57:23:ef:91:3e:4b:b1:e7:db:c1:28:35:58:26:29: 71:0c:c7:16:f8:07:d7:12:4b:e1:5f:8d:f8:8f:a9:30:9a:66: af:5c:d9:75:5d:dd:d4:9a:f7:f8:e3:f7:ef:35:7f:44:45:58: dc:05:2b:09:0f:8c:48:00:6d:36:91:0d:72:85:70:2a:00:85: ad:c4:11:e5:8e:b6:6a:e4:91:0a:74:03:39:a1:db:07:88:bb: 4d:e2:ee:12:8c:a3:28:50:f2:ae:a6:3a:3f:c0:96:26:7c:59: fc:96:c9:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlEMzMxMTAvBgNVBAUTKDIyMkE0REQyRDZEMTRDNkZCRjQ4OTI0RTY2QTBGOENC REYxMjU1MTgwHhcNMjUwNDA0MjIxMzQyWhcNMjUwNDExMjIxMzQyWjAYMRYwFAYD VQQDEw02N2YwNTk5Ni01MTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Iutjw+SElrWYrA2cA2lOm4c7ec1HOI5MhYh6+vI9WUbepDv25zDkQCpy0Xi tRX3zrRAuqhhBSoixFaOgXFrWIwYHXS2ca3vKk/DcNBywoRDp8SVtmEs91mo9IAf ENpJrPKMmDdQMaSBmVTQxZs+QfrAyHEVTxH4Iq+D7PR+94C/nbJ7ENj5Az36eHB/ hVOaGdBbGq6DgexpcMxiha+4Wy1JJV+ncRE5Hf6hELRAsO+jmoPR3jLwNp4jBvz1 69JsWSDoZ52foBRxe1NWCnluqdRL9MdLtTmZrw2uZbbTdy0w8JoRn7Wf7PqVJXna lg6dFFU740V9kUvcL37fcYuweQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGcWOX4I bmv3eKTekLMqIdMhRTqoMB8GA1UdIwQYMBaAFCIqTdLW0Uxvv0iSTmag+MvfElUY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUQzMy9DMkUxQ0FEQzUz QzMxMUVCOEExODg0MzFDNEY5QUUwMi9JaXBOMHRiUlRHLV9TSkpPWnFENHk5OFNW UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lpcE4wdGJSVEctX1NKSk9acUQ0eTk4U1ZSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUQzMy9DMkUxQ0FEQzUzQzMxMUVCOEExODg0MzFDNEY5QUUwMi9JaXBOMHRiUlRH LV9TSkpPWnFENHk5OFNWUmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtUbNYVkj+eeej3jJk/N+duvNZfNLPyYBJJSmQDvwgj5wkyN2WNfvj VBJbvbmU+3/6Z/t7ekXrlCue+fWXT5kj/menF2yBuo3cDzbyaW0Ep0B7qSNPtaTC isUKo4EdQ+26D8nLoyHpfHIXR9Tbjf4w27mppqv+4CF5S37MKWc5tr1ETfzboiYX GYkanE0trVM0+I9XI++RPkux59vBKDVYJilxDMcW+AfXEkvhX434j6kwmmavXNl1 Xd3Umvf44/fvNX9ERVjcBSsJD4xIAG02kQ1yhXAqAIWtxBHljrZq5JEKdAM5odsH iLtN4u4SjKMoUPKupjo/wJYmfFn8lsnf -----END CERTIFICATE-----Generated at Sun Apr 6 02:45:17 2025 by rpki-client