$ rpki-client -vvf rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft File: IcuqoETeGlZkRp9Bi80Id7ITlzo.mft (raw, json) Hash identifier: cvM6xRt6oItKdkMz4EuUEF6rJ6IU4tIKpBk2eJQfbSc= Subject key identifier: FD:94:CE:5F:29:92:44:90:F7:45:1C:8C:06:70:60:B8:13:70:0F:61 Authority key identifier: 21:CB:AA:A0:44:DE:1A:56:64:46:9F:41:8B:CD:08:77:B2:13:97:3A Certificate issuer: /CN=A911393B/serialNumber=21CBAAA044DE1A5664469F418BCD0877B213973A Certificate serial: 013A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft Manifest number: 0137 Signing time: Sat 31 May 2025 04:06:54 +0000 Manifest this update: Sat 31 May 2025 04:06:54 +0000 Manifest next update: Sat 07 Jun 2025 04:06:54 +0000 Files and hashes: 1: IcuqoETeGlZkRp9Bi80Id7ITlzo.crl (hash: 8Aq4nFjxFn6wSG5jshVK8aoUU7KZOGtoCevE6incV1k=) 2: 6538D178628E11EEBF375134C4F9AE02.roa (hash: a5Qs3LUcbSVUj/0GZbXTErNFIjAHGfhVv7lawUtiA/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.crl rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:06:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 314 (0x13a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911393B, serialNumber=21CBAAA044DE1A5664469F418BCD0877B213973A Validity Not Before: May 31 04:06:54 2025 GMT Not After : Jun 7 04:06:54 2025 GMT Subject: CN=683a805e-c02f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:0f:f2:7b:09:1b:80:bd:db:69:c9:55:f6:83: ee:37:59:b1:e0:06:11:1c:e8:f5:f9:07:9c:de:45: 69:d5:ee:ab:b9:fa:ed:6e:aa:57:a2:55:3c:05:3b: e9:0c:b7:18:5a:ff:1b:17:58:8f:d3:16:89:95:0c: 57:ed:6e:34:5a:22:46:57:41:77:3d:18:04:d2:32: 45:67:d8:e1:61:b0:47:f4:9b:10:ec:45:66:fc:a7: ad:17:62:22:14:1c:b8:29:da:09:2d:30:d0:46:9f: 18:ac:aa:93:51:46:62:51:ff:18:2d:d4:21:60:22: 2d:f2:67:1c:51:13:6b:f4:5f:00:6e:7c:72:bc:05: e1:09:e9:55:07:2b:30:c0:ca:ff:4e:de:6f:d5:bf: d1:3a:2f:fd:71:6c:66:81:5a:a2:36:43:fb:96:6e: 62:d2:06:2d:6d:93:4c:00:4d:c5:f3:9a:c7:65:05: db:2a:46:3b:e0:ce:ef:e3:c3:f4:66:1e:50:f4:6e: 9e:2c:06:a8:30:48:30:ac:74:73:7e:b5:02:23:26: 10:37:12:5e:fd:6b:42:0b:58:b3:80:fe:9b:8f:90: e7:ee:c8:f2:10:9d:6b:36:b8:35:33:f5:a0:ad:e6: 02:c1:9f:85:7a:f1:79:aa:28:a9:cc:30:d3:68:4a: 37:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:94:CE:5F:29:92:44:90:F7:45:1C:8C:06:70:60:B8:13:70:0F:61 X509v3 Authority Key Identifier: keyid:21:CB:AA:A0:44:DE:1A:56:64:46:9F:41:8B:CD:08:77:B2:13:97:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:d0:d0:65:b5:ca:3a:dc:76:df:f0:85:b9:9f:4e:8e:0b:b7: b7:0d:c0:e4:49:9c:32:5e:04:33:f4:e7:9a:53:1b:c9:5f:5f: 89:95:b9:05:71:2a:a8:d3:de:a7:37:70:1d:46:32:e7:87:0b: 58:84:5b:a8:be:e4:31:81:ba:18:34:98:c3:15:3f:84:1b:0f: df:e8:39:f0:af:1b:c0:4e:d5:50:95:26:dd:1d:1e:95:ba:b8: ed:34:43:e4:c6:3d:9d:12:1e:98:33:f4:1e:de:a5:15:70:d3: f5:f7:c9:b5:c7:e0:cf:fc:28:e8:bf:42:1a:6f:0c:f3:e7:0a: 1b:0f:c8:3d:72:24:c2:15:d6:d2:2e:b8:f0:d8:52:14:04:93: 42:d8:87:f1:e6:e3:f2:f4:4d:f2:c0:c0:d2:0a:2a:74:25:63: 06:09:a3:df:81:3d:61:b1:9c:15:d1:24:ca:1f:f5:32:53:4b: 46:22:9e:42:a4:29:15:14:48:55:82:9f:96:22:c7:6a:3c:98: 1b:9a:98:28:e7:eb:86:a4:20:e1:e8:d9:97:3d:d2:1b:24:3e: 55:45:2b:c6:89:3e:a7:c3:c7:d6:d6:2f:f1:87:6a:de:50:aa: 86:72:2c:6a:68:bd:80:3b:dd:95:1f:0e:ff:44:69:aa:c5:35: fd:27:9c:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTM5M0IxMTAvBgNVBAUTKDIxQ0JBQUEwNDRERTFBNTY2NDQ2OUY0MThCQ0QwODc3 QjIxMzk3M0EwHhcNMjUwNTMxMDQwNjU0WhcNMjUwNjA3MDQwNjU0WjAYMRYwFAYD VQQDEw02ODNhODA1ZS1jMDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4A/yewkbgL3baclV9oPuN1mx4AYRHOj1+Qec3kVp1e6rufrtbqpXolU8BTvp DLcYWv8bF1iP0xaJlQxX7W40WiJGV0F3PRgE0jJFZ9jhYbBH9JsQ7EVm/KetF2Ii FBy4KdoJLTDQRp8YrKqTUUZiUf8YLdQhYCIt8mccURNr9F8AbnxyvAXhCelVBysw wMr/Tt5v1b/ROi/9cWxmgVqiNkP7lm5i0gYtbZNMAE3F85rHZQXbKkY74M7v48P0 Zh5Q9G6eLAaoMEgwrHRzfrUCIyYQNxJe/WtCC1izgP6bj5Dn7sjyEJ1rNrg1M/Wg reYCwZ+FevF5qiipzDDTaEo3+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP2Uzl8p kkSQ90UcjAZwYLgTcA9hMB8GA1UdIwQYMBaAFCHLqqBE3hpWZEafQYvNCHeyE5c6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzkzQi82N0QwOEJBODYy OEMxMUVFOTU2NUI1NjlDNEY5QUUwMi9JY3Vxb0VUZUdsWmtScDlCaTgwSWQ3SVRs em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljdXFvRVRlR2xaa1JwOUJpODBJZDdJVGx6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MzkzQi82N0QwOEJBODYyOEMxMUVFOTU2NUI1NjlDNEY5QUUwMi9JY3Vxb0VUZUds WmtScDlCaTgwSWQ3SVRsem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAU0NBltco63Hbf8IW5n06OC7e3DcDkSZwyXgQz9OeaUxvJX1+JlbkF cSqo096nN3AdRjLnhwtYhFuovuQxgboYNJjDFT+EGw/f6DnwrxvATtVQlSbdHR6V urjtNEPkxj2dEh6YM/Qe3qUVcNP198m1x+DP/Cjov0Iabwzz5wobD8g9ciTCFdbS Lrjw2FIUBJNC2Ifx5uPy9E3ywMDSCip0JWMGCaPfgT1hsZwV0STKH/UyU0tGIp5C pCkVFEhVgp+WIsdqPJgbmpgo5+uGpCDh6NmXPdIbJD5VRSvGiT6nw8fW1i/xh2re UKqGcixqaL2AO92VHw7/RGmqxTX9J5xI -----END CERTIFICATE-----Generated at Sat May 31 17:13:00 2025 by rpki-client