$ rpki-client -vvf rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft File: iyhQBa2gBz4MCUttpqOLtR__oaQ.mft (raw, json) Hash identifier: WcFmde/owrMRPxxGksEuLtmJGrMPXtFN5jPcWIhuSmI= Subject key identifier: E3:D2:AF:80:83:8B:C0:66:ED:CD:F7:3F:92:23:DE:85:83:68:E1:95 Authority key identifier: 8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 Certificate issuer: /CN=A918D14B/serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Certificate serial: 03D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft Manifest number: 03BD Signing time: Sat 31 May 2025 00:53:00 +0000 Manifest this update: Sat 31 May 2025 00:53:00 +0000 Manifest next update: Sat 07 Jun 2025 00:53:00 +0000 Files and hashes: 1: iyhQBa2gBz4MCUttpqOLtR__oaQ.crl (hash: lJG4Mk7UBiElLsEovPdX9838F5QtaEjG4NdLLW0O8mA=) 2: 58C00854905211EC90E6100FC4F9AE02.roa (hash: 5eLmPskwIg5y4gDpqWBeusWbrOc+t34TIFwmF+boTps=) 3: 989BBF70904F11EC8B118911C4F9AE02.roa (hash: sO6E1E+nR+eYc5iIU6EYUSE2ekfNEYMYq4mKBPQmsro=) 4: 7E8442B68FE511EC94D98C7BC4F9AE02.roa (hash: oJI3ab/8fzhkHDC4Wzdxeh+CGGzoOkYJ9B82+ons7t8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:52:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 976 (0x3d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D14B, serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Validity Not Before: May 31 00:53:00 2025 GMT Not After : Jun 7 00:53:00 2025 GMT Subject: CN=683a52ec-9a01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ae:f8:c2:b8:d6:f8:6a:97:55:7d:8c:ab:a7: 77:9e:70:86:ce:19:23:44:59:2d:27:32:49:fd:22: be:c0:11:2a:8a:5d:cb:8a:6d:40:6e:61:96:1e:6d: 7a:eb:78:a5:75:46:c0:11:ae:92:02:63:73:ce:0c: df:e5:f7:55:43:4f:de:ef:78:4c:b0:b1:c0:4f:43: 6d:7d:3b:20:33:c0:a3:54:dc:a6:02:a9:ac:11:20: ed:d4:a5:be:bb:0d:b0:9c:3f:fb:cf:12:9a:6d:44: be:d8:ea:c2:cb:a5:12:25:d4:93:2e:3f:37:ff:d8: f6:07:29:fb:95:6b:a8:4e:48:14:dc:36:a9:bd:05: 91:72:63:ed:1e:a0:28:74:73:51:90:76:56:9b:d5: 72:d5:e7:dc:26:37:e2:1f:1e:04:6b:95:33:9d:ee: f6:79:60:dd:98:f2:9d:c9:d7:4c:8d:3c:e9:a7:d6: 2e:f6:66:4f:53:df:9e:c4:a1:3e:87:61:31:00:48: 9b:c0:e2:6e:6d:6e:e6:ae:55:ad:d1:1d:9c:6e:e5: 75:fd:2d:28:d9:de:1f:70:b7:30:13:1a:21:8d:dc: 6a:34:d6:1d:18:f7:11:d4:75:1b:27:fd:ce:6a:fe: c1:92:87:2a:cf:b6:46:09:f5:2d:06:3d:a5:5b:a5: a2:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:D2:AF:80:83:8B:C0:66:ED:CD:F7:3F:92:23:DE:85:83:68:E1:95 X509v3 Authority Key Identifier: keyid:8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:3a:89:79:3e:d5:9f:40:f7:98:24:f9:b9:4d:38:57:60:4a: 6b:af:33:b1:d8:13:87:54:0f:02:06:d8:4d:e7:36:87:df:da: d5:34:92:0e:e8:65:45:e1:6c:6b:1e:43:c2:d5:81:0e:84:a1: 7b:b0:44:83:4c:e4:36:e6:cb:cb:55:5b:91:d7:07:a0:2d:d4: 3b:95:3c:c9:5f:51:48:3e:70:cd:b3:77:65:54:13:40:aa:db: 18:a1:8d:e5:68:0c:05:5e:4f:07:20:b4:29:ab:3c:89:12:d0: 41:cf:d9:91:96:44:37:8f:60:68:32:4e:27:90:ef:85:8b:30: f5:9f:06:8d:11:80:a6:35:0a:80:54:a4:6b:d6:81:2d:91:9e: 12:24:93:4a:23:9f:14:c7:e8:59:65:b8:97:88:5a:8a:4d:9d: 9e:12:f2:3f:a0:fd:3b:e9:10:7b:81:ff:a6:73:89:57:84:c8: ec:2b:9d:2d:1d:59:86:fd:41:ee:81:94:ff:a2:74:17:6f:75: fe:dd:83:df:c9:73:83:00:dd:4f:5a:de:f0:04:de:4e:66:f3: e5:69:50:a9:61:32:de:94:fe:b9:76:62:48:9f:6c:ee:62:c1: cb:99:2d:0d:55:2f:14:67:44:91:ab:9c:5f:29:45:a8:c3:70: 02:9e:ce:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQxNEIxMTAvBgNVBAUTKDhCMjg1MDA1QURBMDA3M0UwQzA5NEI2REE2QTM4QkI1 MUZGRkExQTQwHhcNMjUwNTMxMDA1MzAwWhcNMjUwNjA3MDA1MzAwWjAYMRYwFAYD VQQDEw02ODNhNTJlYy05YTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0q74wrjW+GqXVX2Mq6d3nnCGzhkjRFktJzJJ/SK+wBEqil3Lim1AbmGWHm16 63ildUbAEa6SAmNzzgzf5fdVQ0/e73hMsLHAT0NtfTsgM8CjVNymAqmsESDt1KW+ uw2wnD/7zxKabUS+2OrCy6USJdSTLj83/9j2Byn7lWuoTkgU3DapvQWRcmPtHqAo dHNRkHZWm9Vy1efcJjfiHx4Ea5Uzne72eWDdmPKdyddMjTzpp9Yu9mZPU9+exKE+ h2ExAEibwOJubW7mrlWt0R2cbuV1/S0o2d4fcLcwExohjdxqNNYdGPcR1HUbJ/3O av7Bkocqz7ZGCfUtBj2lW6WiYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOPSr4CD i8Bm7c33P5Ij3oWDaOGVMB8GA1UdIwQYMBaAFIsoUAWtoAc+DAlLbaaji7Uf/6Gk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDE0Qi85NEM4OThDQzhG RTIxMUVDQThBRkVFNzhDNEY5QUUwMi9peWhRQmEyZ0J6NE1DVXR0cHFPTHRSX19v YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2l5aFFCYTJnQno0TUNVdHRwcU9MdFJfX29hUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDE0Qi85NEM4OThDQzhGRTIxMUVDQThBRkVFNzhDNEY5QUUwMi9peWhRQmEyZ0J6 NE1DVXR0cHFPTHRSX19vYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsOol5PtWfQPeYJPm5TThXYEprrzOx2BOHVA8CBthN5zaH39rVNJIO 6GVF4WxrHkPC1YEOhKF7sESDTOQ25svLVVuR1wegLdQ7lTzJX1FIPnDNs3dlVBNA qtsYoY3laAwFXk8HILQpqzyJEtBBz9mRlkQ3j2BoMk4nkO+FizD1nwaNEYCmNQqA VKRr1oEtkZ4SJJNKI58Ux+hZZbiXiFqKTZ2eEvI/oP076RB7gf+mc4lXhMjsK50t HVmG/UHugZT/onQXb3X+3YPfyXODAN1PWt7wBN5OZvPlaVCpYTLelP65dmJIn2zu YsHLmS0NVS8UZ0SRq5xfKUWow3ACns74 -----END CERTIFICATE-----Generated at Sat May 31 17:03:32 2025 by rpki-client