$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.mft File: I1WemnFX565_YExCiDcpLeAzCaA.mft (raw, json) Hash identifier: 78fj48UeGwoWzwq9VoIq1tNAFGAqgQkQ5tn5mIYzaSQ= Subject key identifier: BA:4F:E2:CE:D3:D6:7F:A3:4C:32:E1:24:CD:35:90:DD:24:9D:A4:94 Authority key identifier: 23:55:9E:9A:71:57:E7:AE:7F:60:4C:42:88:37:29:2D:E0:33:09:A0 Certificate issuer: /CN=A91BEA2A/serialNumber=23559E9A7157E7AE7F604C428837292DE03309A0 Certificate serial: 0280 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I1WemnFX565_YExCiDcpLeAzCaA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.mft Manifest number: 027B Signing time: Sat 05 Apr 2025 01:47:07 +0000 Manifest this update: Sat 05 Apr 2025 01:47:07 +0000 Manifest next update: Sat 12 Apr 2025 01:47:07 +0000 Files and hashes: 1: I1WemnFX565_YExCiDcpLeAzCaA.crl (hash: aZKYReGY2xDxPEWJ+TMxHaW55/+iLn2vQmaAB3XkCQc=) 2: CFF0FDEC025911EDA0A85765C4F9AE02.roa (hash: fWJ7cRsTCAW0U+0r1+X1xY7gsboVcmoNdt+pkuhh4IE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.crl rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I1WemnFX565_YExCiDcpLeAzCaA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:47:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 640 (0x280) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEA2A Validity Not Before: Apr 5 01:47:07 2025 GMT Not After : Apr 12 01:47:07 2025 GMT Subject: CN=67f08b9b-ed27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:fc:c7:7c:29:5f:c3:3d:d6:4b:c4:fc:e4:2b: fb:56:7e:c6:8d:39:35:4c:dd:44:92:91:7e:23:d9: 47:4e:ef:61:ef:1e:6f:a7:24:c5:26:25:81:44:3b: 2c:a5:59:83:73:45:81:77:7e:09:17:32:ac:68:18: 1d:3a:fe:8e:bc:fa:29:c9:57:93:5e:ab:2e:4c:1e: c0:be:39:0f:2e:24:02:91:97:17:b2:36:e7:34:ca: 17:68:f7:38:a1:55:7f:01:4a:5e:18:0b:56:81:9d: 9f:8f:99:8c:51:40:df:27:2c:a7:56:9b:5c:77:94: ba:e2:a5:26:9b:d9:0d:a2:c5:4d:14:b5:6c:66:4e: 15:b5:c0:8b:32:a4:ba:3a:8e:1e:fd:73:a2:c2:1d: 08:63:3d:1e:dd:9a:c8:23:af:fb:12:ce:32:a5:c3: 0e:8e:dc:5c:56:22:90:e0:1b:ae:07:19:71:2e:2c: 40:e9:ea:98:32:05:99:eb:58:9f:e9:e7:1f:46:4e: 34:33:1f:0f:db:9f:16:e0:bd:5a:88:d7:8e:3d:3c: 25:7b:bb:33:85:9a:5c:26:5b:9e:c5:0f:bc:91:02: 5a:76:69:e7:fd:ca:19:01:99:79:74:24:2b:b6:60: a7:f6:5f:9b:da:1d:41:be:17:5a:9f:49:b1:92:aa: 38:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:4F:E2:CE:D3:D6:7F:A3:4C:32:E1:24:CD:35:90:DD:24:9D:A4:94 X509v3 Authority Key Identifier: keyid:23:55:9E:9A:71:57:E7:AE:7F:60:4C:42:88:37:29:2D:E0:33:09:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I1WemnFX565_YExCiDcpLeAzCaA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:95:c2:2c:f6:b1:c9:05:c0:51:ad:f3:56:9e:b1:a3:c2:2c: 11:aa:59:cd:7f:ae:4d:7e:38:d3:41:7e:4b:f4:fe:39:d7:bf: c3:56:d9:69:ef:ca:7f:4c:39:11:ae:d3:97:0f:67:98:45:35: 7c:08:9b:07:5b:8a:44:a9:12:3c:c8:e4:76:a1:48:cf:18:3f: e2:56:d3:de:e2:4f:7b:9c:b0:79:2e:37:8c:b1:99:03:8f:89: fe:a6:a6:d9:f0:90:0c:fc:54:34:60:e5:a9:4d:ea:40:a4:38: e3:14:2c:9b:8b:59:cd:82:e9:85:30:50:35:71:47:e5:8e:14: 32:03:81:79:94:86:3b:49:aa:b7:1b:b5:76:a3:18:4d:19:33: 70:5d:c3:4e:45:50:fd:8e:46:b1:cd:83:86:d1:e6:9e:65:69: 52:23:49:bc:ea:72:c9:3d:1c:aa:bb:c2:08:76:c1:ab:30:cd: 0f:e8:e0:71:ce:70:43:4c:37:0b:6d:c1:d9:68:ab:93:d8:fe: 7e:34:21:38:c0:51:61:b0:da:e4:18:ab:f0:8a:f9:6b:a5:9b: 18:53:93:d8:6c:f7:9e:c4:f7:16:66:7e:73:34:f7:82:37:9a: e7:03:32:c3:3f:a8:c4:06:2e:7f:18:66:b8:64:e5:28:1e:13: 4e:fa:6e:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVBMkExMTAvBgNVBAUTKDIzNTU5RTlBNzE1N0U3QUU3RjYwNEM0Mjg4MzcyOTJE RTAzMzA5QTAwHhcNMjUwNDA1MDE0NzA3WhcNMjUwNDEyMDE0NzA3WjAYMRYwFAYD VQQDEw02N2YwOGI5Yi1lZDI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqvzHfClfwz3WS8T85Cv7Vn7GjTk1TN1EkpF+I9lHTu9h7x5vpyTFJiWBRDss pVmDc0WBd34JFzKsaBgdOv6OvPopyVeTXqsuTB7AvjkPLiQCkZcXsjbnNMoXaPc4 oVV/AUpeGAtWgZ2fj5mMUUDfJyynVptcd5S64qUmm9kNosVNFLVsZk4VtcCLMqS6 Oo4e/XOiwh0IYz0e3ZrII6/7Es4ypcMOjtxcViKQ4BuuBxlxLixA6eqYMgWZ61if 6ecfRk40Mx8P258W4L1aiNeOPTwle7szhZpcJluexQ+8kQJadmnn/coZAZl5dCQr tmCn9l+b2h1Bvhdan0mxkqo4BQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLpP4s7T 1n+jTDLhJM01kN0knaSUMB8GA1UdIwQYMBaAFCNVnppxV+euf2BMQog3KS3gMwmg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUEyQS8zRDM1MEZEMjAy NTYxMUVEQTEzMjJENURDNEY5QUUwMi9JMVdlbW5GWDU2NV9ZRXhDaURjcExlQXpD YUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0kxV2VtbkZYNTY1X1lFeENpRGNwTGVBekNhQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RUEyQS8zRDM1MEZEMjAyNTYxMUVEQTEzMjJENURDNEY5QUUwMi9JMVdlbW5GWDU2 NV9ZRXhDaURjcExlQXpDYUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUlcIs9rHJBcBRrfNWnrGjwiwRqlnNf65NfjjTQX5L9P4517/DVtlp 78p/TDkRrtOXD2eYRTV8CJsHW4pEqRI8yOR2oUjPGD/iVtPe4k97nLB5LjeMsZkD j4n+pqbZ8JAM/FQ0YOWpTepApDjjFCybi1nNgumFMFA1cUfljhQyA4F5lIY7Saq3 G7V2oxhNGTNwXcNORVD9jkaxzYOG0eaeZWlSI0m86nLJPRyqu8IIdsGrMM0P6OBx znBDTDcLbcHZaKuT2P5+NCE4wFFhsNrkGKvwivlrpZsYU5PYbPeexPcWZn5zNPeC N5rnAzLDP6jEBi5/GGa4ZOUoHhNO+m6I -----END CERTIFICATE-----Generated at Sat Apr 5 21:20:58 2025 by rpki-client