$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft File: IO0KqyB1C4snqG35iadUv1cm3X4.mft (raw, json) Hash identifier: mNBvLpbLcJwR90Ld+86kT6crH7Eco4OcyeKKA8JOtLo= Subject key identifier: 94:E5:3A:B8:F5:EB:C7:80:A3:01:BB:CF:67:58:70:17:9F:C5:3A:07 Authority key identifier: 20:ED:0A:AB:20:75:0B:8B:27:A8:6D:F9:89:A7:54:BF:57:26:DD:7E Certificate issuer: /CN=A91EAB64/serialNumber=20ED0AAB20750B8B27A86DF989A754BF5726DD7E Certificate serial: 0180 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft Manifest number: 050E Signing time: Thu 03 Apr 2025 00:46:22 +0000 Manifest this update: Thu 03 Apr 2025 00:46:21 +0000 Manifest next update: Thu 10 Apr 2025 00:46:21 +0000 Files and hashes: 1: IO0KqyB1C4snqG35iadUv1cm3X4.crl (hash: 1l4BiDga/HCBDyXHj1CLJTej4OWU1m4TqLrqFZd8Uug=) 2: B773B044024111F0AD12DC60C4F9AE02.roa (hash: UdAIxtkEnbhqu2wqcTGeizqdyNBa4iZwF5UMO1foMZE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.crl rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 00:46:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 384 (0x180) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAB64 Validity Not Before: Apr 3 00:46:21 2025 GMT Not After : Apr 10 00:46:21 2025 GMT Subject: CN=67edda5e-e0f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c3:c0:ad:0e:5b:6f:c5:19:5c:f1:5c:6a:4a: cb:bc:58:d1:3a:2a:24:db:be:c7:15:d7:e5:13:5a: d5:99:3e:80:e8:76:2e:be:0e:4b:33:00:35:12:75: 11:d8:58:45:b4:59:5c:ea:7d:20:f6:20:41:4a:51: 95:40:17:f6:31:e4:fd:d0:8d:d0:45:e9:d7:91:ce: 8b:60:c3:fd:6d:ff:ef:62:b4:d9:27:d1:5e:f6:bd: 32:7e:38:24:a3:fc:6c:4b:24:b6:d8:1c:10:68:32: 29:b6:14:75:5a:43:d3:c5:dc:b7:91:98:1d:8a:92: a9:69:f4:3b:44:cc:20:5a:42:ec:4c:5e:18:22:ea: 33:8a:0c:07:71:54:e4:64:1d:ba:97:85:34:93:17: ef:d7:21:61:26:17:d5:7b:ea:98:8f:b1:08:46:dd: ac:a7:04:69:87:e9:be:db:a2:98:14:f5:5d:d8:09: 85:c3:b9:4c:e6:e1:2e:ec:88:e3:0d:23:d7:1a:78: db:dc:26:a1:c6:90:b8:5c:11:b0:fa:aa:cd:b3:2e: 46:47:9e:ac:ef:84:f9:4a:a4:14:ba:37:ee:cd:0a: 05:a1:df:96:7c:e6:96:a7:99:70:1a:b2:84:86:ae: 30:c3:3a:7f:88:ce:d6:fa:94:8f:76:c9:5b:06:ce: 8a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:E5:3A:B8:F5:EB:C7:80:A3:01:BB:CF:67:58:70:17:9F:C5:3A:07 X509v3 Authority Key Identifier: keyid:20:ED:0A:AB:20:75:0B:8B:27:A8:6D:F9:89:A7:54:BF:57:26:DD:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:00:1d:b3:57:af:0d:c7:bf:d3:f7:52:fd:ae:b4:3d:7c:67: cb:ca:ca:41:12:0f:00:0d:ab:46:1d:ca:3c:6f:51:4e:bd:35: d9:f9:1e:2a:1f:62:6e:24:6e:c4:ea:58:04:51:99:11:2b:85: 7b:ac:93:cb:74:ef:c2:53:81:bd:4b:1b:d7:bf:48:7a:f9:b0: dd:b6:d8:2c:98:df:b4:85:03:d4:ba:f4:64:99:37:fd:64:01: d3:fe:b7:3e:66:0d:bc:67:dc:11:b3:2d:fa:cc:bb:d3:83:a0: 7c:b3:9f:e8:84:60:aa:c3:b7:c9:eb:ff:a6:40:33:72:35:6f: bd:4c:9a:27:43:c0:8d:d2:91:79:ae:3a:9a:52:df:78:d2:dc: 5c:99:fa:1d:86:d7:f0:44:e4:33:72:60:10:62:d2:ae:6e:84: 8d:9b:c9:ea:7b:0f:d8:c3:d5:a5:20:7e:cb:15:b2:8a:5c:f2: bb:24:df:e6:e1:c7:7a:c5:f0:43:fa:54:20:9a:e7:94:84:c0: b5:b4:a8:f7:a9:65:3a:a1:40:d2:4a:d9:2b:8d:09:cf:80:66: a7:06:46:02:2d:25:9b:45:47:ad:26:f9:00:43:0c:a2:42:3e: 60:64:24:c5:b0:c6:4c:e9:20:db:79:12:83:19:d0:c2:d0:80: 7e:22:f1:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFCNjQxMTAvBgNVBAUTKDIwRUQwQUFCMjA3NTBCOEIyN0E4NkRGOTg5QTc1NEJG NTcyNkREN0UwHhcNMjUwNDAzMDA0NjIxWhcNMjUwNDEwMDA0NjIxWjAYMRYwFAYD VQQDEw02N2VkZGE1ZS1lMGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtcPArQ5bb8UZXPFcakrLvFjROiok277HFdflE1rVmT6A6HYuvg5LMwA1EnUR 2FhFtFlc6n0g9iBBSlGVQBf2MeT90I3QRenXkc6LYMP9bf/vYrTZJ9Fe9r0yfjgk o/xsSyS22BwQaDIpthR1WkPTxdy3kZgdipKpafQ7RMwgWkLsTF4YIuozigwHcVTk ZB26l4U0kxfv1yFhJhfVe+qYj7EIRt2spwRph+m+26KYFPVd2AmFw7lM5uEu7Ijj DSPXGnjb3CahxpC4XBGw+qrNsy5GR56s74T5SqQUujfuzQoFod+WfOaWp5lwGrKE hq4wwzp/iM7W+pSPdslbBs6KkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJTlOrj1 68eAowG7z2dYcBefxToHMB8GA1UdIwQYMBaAFCDtCqsgdQuLJ6ht+YmnVL9XJt1+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUI2NC85QjQ0RUI3NDhG MjkxMUVDQjZBNjk5NkNDNEY5QUUwMi9JTzBLcXlCMUM0c25xRzM1aWFkVXYxY20z WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lPMEtxeUIxQzRzbnFHMzVpYWRVdjFjbTNYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUI2NC85QjQ0RUI3NDhGMjkxMUVDQjZBNjk5NkNDNEY5QUUwMi9JTzBLcXlCMUM0 c25xRzM1aWFkVXYxY20zWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfAB2zV68Nx7/T91L9rrQ9fGfLyspBEg8ADatGHco8b1FOvTXZ+R4q H2JuJG7E6lgEUZkRK4V7rJPLdO/CU4G9SxvXv0h6+bDdttgsmN+0hQPUuvRkmTf9 ZAHT/rc+Zg28Z9wRsy36zLvTg6B8s5/ohGCqw7fJ6/+mQDNyNW+9TJonQ8CN0pF5 rjqaUt940txcmfodhtfwROQzcmAQYtKuboSNm8nqew/Yw9WlIH7LFbKKXPK7JN/m 4cd6xfBD+lQgmueUhMC1tKj3qWU6oUDSStkrjQnPgGanBkYCLSWbRUetJvkAQwyi Qj5gZCTFsMZM6SDbeRKDGdDC0IB+IvGZ -----END CERTIFICATE-----Generated at Fri Apr 4 22:22:16 2025 by rpki-client