$ rpki-client -vvf rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft File: IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft (raw, json) Hash identifier: Dti2A/8JhMcVPGCkRUTWzHG3PohgKQ9iMH46cffEnt0= Subject key identifier: 3C:9C:CF:87:1F:AD:21:92:46:F2:C0:80:C6:A8:F2:B4:6D:62:35:41 Authority key identifier: 21:93:41:98:E8:33:10:61:D2:75:B8:CF:C7:94:58:D3:2F:AB:D6:C9 Certificate issuer: /CN=A91C53FD/serialNumber=21934198E8331061D275B8CFC79458D32FABD6C9 Certificate serial: B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZNBmOgzEGHSdbjPx5RY0y-r1sk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft Manifest number: B0 Signing time: Sat 29 Mar 2025 05:24:55 +0000 Manifest this update: Sat 29 Mar 2025 05:24:54 +0000 Manifest next update: Sat 05 Apr 2025 05:24:54 +0000 Files and hashes: 1: IZNBmOgzEGHSdbjPx5RY0y-r1sk.crl (hash: vHw1h+d7cUKXwJAmliO8+4zTFyfaTBvIokkr8vogp6Y=) 2: B15E8BECFF3211EEA8607454C4F9AE02.roa (hash: M9Q8RXEiuL/wyMNZhN9zbPG+N0QQluDkDpfmSIoYCRg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.crl rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZNBmOgzEGHSdbjPx5RY0y-r1sk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C53FD Validity Not Before: Mar 29 05:24:54 2025 GMT Not After : Apr 5 05:24:54 2025 GMT Subject: CN=67e78426-06fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:b1:aa:73:3c:84:36:ff:50:97:e7:f0:0a:84: 8b:f5:f5:38:f5:f5:d9:0f:12:91:43:fe:0d:89:d4: 4b:a5:df:38:27:95:2c:22:43:b1:91:3a:e6:86:15: 1d:6b:7b:df:e5:b3:40:a0:0c:e7:e3:05:39:34:82: 5f:ec:37:dd:43:cf:bd:e2:0d:e9:58:b1:b1:9d:62: 68:7f:88:30:a9:59:50:2c:b2:f6:8f:95:d0:dc:1e: 02:ac:18:88:29:89:45:27:49:cf:ad:5d:3a:da:5f: 0f:98:b7:fc:b3:2e:fb:02:86:4c:c5:d8:5d:b4:53: 43:4a:37:48:c2:20:7b:62:20:c3:d4:e6:45:17:c5: be:b2:0f:cf:74:03:41:d8:05:d7:02:d5:a1:b7:9b: ee:33:9f:fd:3c:a0:0b:56:28:cb:e8:72:c0:2a:20: fe:57:3f:e6:f0:5a:ef:3d:2b:55:e1:eb:c9:35:08: 7e:36:0d:1c:43:7f:28:ab:5e:c0:10:b0:20:ff:83: 92:e2:45:65:05:e0:12:31:bb:bf:5b:7f:85:bb:57: 24:f9:10:fe:51:bf:44:28:ef:04:53:da:50:89:54: 94:2b:ba:84:da:bf:1a:5a:60:c4:80:61:84:d5:13: 96:18:11:ee:a4:92:66:34:14:5c:e0:c3:5f:e4:42: eb:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:9C:CF:87:1F:AD:21:92:46:F2:C0:80:C6:A8:F2:B4:6D:62:35:41 X509v3 Authority Key Identifier: keyid:21:93:41:98:E8:33:10:61:D2:75:B8:CF:C7:94:58:D3:2F:AB:D6:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZNBmOgzEGHSdbjPx5RY0y-r1sk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:45:e7:cf:72:d6:b1:d7:54:8d:5b:2f:f3:a2:54:16:f5:b2: d2:1b:73:da:79:1e:cb:ca:cc:e9:6d:a0:b5:06:a2:08:71:90: 9b:da:53:0f:aa:60:49:ac:08:52:d9:57:22:89:ca:52:dd:97: 85:8f:62:6b:ee:b1:6d:a8:21:34:2d:5b:e6:25:ed:9e:35:3d: 4a:81:7d:f2:23:b1:4a:0c:86:f4:ff:1e:9c:61:44:55:8b:35: b2:3d:f0:47:53:95:b3:e4:cd:21:cb:14:a7:32:9b:82:9b:23: 90:7e:35:2b:b8:6a:f0:62:cb:26:94:d8:47:96:30:d0:2a:80: 7f:2a:8c:6d:78:94:72:5e:ef:be:4e:7b:bf:1d:7b:79:a6:ed: f1:a6:cb:b7:5c:69:97:4d:c4:d4:af:d8:ef:e1:6f:27:07:7f: d2:07:96:1f:e4:f6:4c:d2:88:f9:b4:42:bc:08:62:c8:60:dc: f5:0a:3c:e9:e2:2a:3d:06:f0:f5:19:f4:c8:b5:a3:c0:e7:a9: 18:c4:29:d5:35:fe:84:69:ea:64:3d:47:d0:fc:41:af:34:65: 56:3d:e2:4d:1b:0f:c7:64:6c:72:95:30:86:61:23:34:e2:c8: 60:97:07:6c:80:ac:e0:fe:12:13:b7:26:d7:2c:68:c2:cc:82: 19:0a:0e:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUzRkQxMTAvBgNVBAUTKDIxOTM0MTk4RTgzMzEwNjFEMjc1QjhDRkM3OTQ1OEQz MkZBQkQ2QzkwHhcNMjUwMzI5MDUyNDU0WhcNMjUwNDA1MDUyNDU0WjAYMRYwFAYD VQQDEw02N2U3ODQyNi0wNmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1rGqczyENv9Ql+fwCoSL9fU49fXZDxKRQ/4NidRLpd84J5UsIkOxkTrmhhUd a3vf5bNAoAzn4wU5NIJf7DfdQ8+94g3pWLGxnWJof4gwqVlQLLL2j5XQ3B4CrBiI KYlFJ0nPrV062l8PmLf8sy77AoZMxdhdtFNDSjdIwiB7YiDD1OZFF8W+sg/PdANB 2AXXAtWht5vuM5/9PKALVijL6HLAKiD+Vz/m8FrvPStV4evJNQh+Ng0cQ38oq17A ELAg/4OS4kVlBeASMbu/W3+Fu1ck+RD+Ub9EKO8EU9pQiVSUK7qE2r8aWmDEgGGE 1ROWGBHupJJmNBRc4MNf5ELrYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDycz4cf rSGSRvLAgMao8rRtYjVBMB8GA1UdIwQYMBaAFCGTQZjoMxBh0nW4z8eUWNMvq9bJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTNGRC82ODhFNTdFRUZG MzIxMUVFQTU1RDhFNTNDNEY5QUUwMi9JWk5CbU9nekVHSFNkYmpQeDVSWTB5LXIx c2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0laTkJtT2d6RUdIU2RialB4NVJZMHktcjFzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTNGRC82ODhFNTdFRUZGMzIxMUVFQTU1RDhFNTNDNEY5QUUwMi9JWk5CbU9nekVH SFNkYmpQeDVSWTB5LXIxc2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwRefPctax11SNWy/zolQW9bLSG3PaeR7LyszpbaC1BqIIcZCb2lMP qmBJrAhS2VciicpS3ZeFj2Jr7rFtqCE0LVvmJe2eNT1KgX3yI7FKDIb0/x6cYURV izWyPfBHU5Wz5M0hyxSnMpuCmyOQfjUruGrwYssmlNhHljDQKoB/KoxteJRyXu++ Tnu/HXt5pu3xpsu3XGmXTcTUr9jv4W8nB3/SB5Yf5PZM0oj5tEK8CGLIYNz1Cjzp 4io9BvD1GfTItaPA56kYxCnVNf6EaepkPUfQ/EGvNGVWPeJNGw/HZGxylTCGYSM0 4shglwdsgKzg/hITtybXLGjCzIIZCg5v -----END CERTIFICATE-----Generated at Fri Apr 4 18:30:26 2025 by rpki-client