$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft File: IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft (raw, json) Hash identifier: dffOv63AHSmzr1LDhv+az/JIpq1qTdOpbnjy2GhGMJc= Subject key identifier: 11:82:5A:2E:21:53:4C:32:5B:31:27:23:8A:57:89:4F:3F:A4:C5:79 Authority key identifier: 22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 Certificate issuer: /CN=A9195BA9/serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Certificate serial: 099E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft Manifest number: 0992 Signing time: Wed 12 Mar 2025 19:50:01 +0000 Manifest this update: Wed 12 Mar 2025 19:50:00 +0000 Manifest next update: Wed 19 Mar 2025 19:50:00 +0000 Files and hashes: 1: IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl (hash: nkIPTqOHtBWIzrqI8R19aiBdjle9XVY6BBfVa8Bbqlw=) 2: 543CDDF0839011EAB5B82263C4F9AE02.roa (hash: PG+DCY3DsnT1DiiJh/CX8LITvJqbEq/+Av+Qqgc42Yc=) 3: 54DD69FA839011EAB5B82263C4F9AE02.roa (hash: YJ7W6HYFgOqdoVWF2hJtmCaUJf59puKnAmoMTngU5VA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 19:50:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2462 (0x99e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9 Validity Not Before: Mar 12 19:50:00 2025 GMT Not After : Mar 19 19:50:00 2025 GMT Subject: CN=67d1e569-1b06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:62:c8:3f:e2:5d:7c:f7:6f:9a:19:51:35:3b: e9:64:b5:29:13:87:8d:49:a8:c9:8f:22:7e:90:55: 0c:8e:62:ec:bc:cf:ac:eb:ab:41:e4:ed:42:5f:98: 15:0d:21:b4:0b:b6:b1:74:20:89:bf:2e:56:c8:c2: ff:7c:7c:6b:86:e6:2c:df:1f:b2:2b:b8:9f:8a:4a: fd:0d:69:31:c6:02:80:67:42:0f:c0:da:d5:c2:df: 1e:8c:7d:4a:19:f6:ab:63:5c:76:ab:c6:2c:f6:75: 06:d9:52:36:5c:47:c6:63:61:0f:e5:e1:21:b8:94: 34:ee:ed:c5:dc:cb:4f:99:57:f6:2e:7a:f9:bb:e5: 76:dd:2c:a5:3f:4f:80:b6:25:2a:f2:9f:7a:6a:53: 02:e3:61:26:e8:b4:5c:f6:29:88:9a:5d:29:a8:bb: cf:2b:a1:8f:77:cf:13:9f:a7:30:73:17:9b:31:ad: 34:8b:79:62:60:1a:73:52:8d:48:be:2b:3a:16:95: bc:a0:9d:83:18:c0:13:fe:d5:ed:8a:0b:fa:a5:82: ce:3a:a4:36:33:1f:55:d5:72:d3:81:06:b9:39:23: 87:ef:39:24:f7:fa:45:09:ab:3f:ff:16:79:cf:47: dc:96:8b:c7:78:a6:88:4c:63:78:6e:d7:35:95:61: 20:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:82:5A:2E:21:53:4C:32:5B:31:27:23:8A:57:89:4F:3F:A4:C5:79 X509v3 Authority Key Identifier: keyid:22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:0d:88:69:81:f6:91:a9:e1:69:8a:69:ec:4f:4c:1b:1a:e9: 32:f1:b2:b6:a3:dd:18:8a:59:c2:f1:19:6e:95:10:ac:c3:53: b1:d1:e9:17:bb:89:fd:b3:da:0a:8c:8b:16:0f:b3:3d:b9:38: c9:75:98:bb:d0:bf:df:6c:e5:cb:bd:fc:bc:10:a7:5b:70:d0: cc:71:ab:c5:6b:00:be:30:d4:02:c7:61:a1:f1:e6:f9:82:7a: 02:2c:51:b8:12:41:84:12:0b:29:fc:72:60:c9:dc:0f:37:5a: f5:02:e0:3e:01:32:cb:87:1c:39:29:39:d6:ec:d2:18:d4:a9: 7f:4f:80:47:9f:70:45:48:2a:c7:11:20:6e:94:c5:b1:80:4a: be:62:97:40:32:c7:45:a2:39:6c:17:ec:3b:a4:34:66:13:c1: e2:3c:e4:35:f2:a4:bb:1b:18:d4:ba:1e:fc:70:29:74:a5:44: 8b:4e:ca:91:1e:9f:90:56:71:d8:70:94:93:de:ee:bc:9d:4e: 2c:12:d8:f2:5b:ba:b2:66:1b:95:af:12:65:bf:40:b3:91:f9: 8b:57:e6:9c:0a:d3:1a:a1:30:78:af:77:37:85:cf:31:ac:43: 3d:46:f0:23:c6:13:6b:02:a1:66:fb:32:97:f4:73:c1:aa:dc: a7:d1:93:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKDIyNDVBRDkxNTQzQUREQUQ3ODEyM0RENDE1RDY1OUJC NTJENUZCNjIwHhcNMjUwMzEyMTk1MDAwWhcNMjUwMzE5MTk1MDAwWjAYMRYwFAYD VQQDEw02N2QxZTU2OS0xYjA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsmLIP+JdfPdvmhlRNTvpZLUpE4eNSajJjyJ+kFUMjmLsvM+s66tB5O1CX5gV DSG0C7axdCCJvy5WyML/fHxrhuYs3x+yK7ifikr9DWkxxgKAZ0IPwNrVwt8ejH1K GfarY1x2q8Ys9nUG2VI2XEfGY2EP5eEhuJQ07u3F3MtPmVf2Lnr5u+V23SylP0+A tiUq8p96alMC42Em6LRc9imIml0pqLvPK6GPd88Tn6cwcxebMa00i3liYBpzUo1I vis6FpW8oJ2DGMAT/tXtigv6pYLOOqQ2Mx9V1XLTgQa5OSOH7zkk9/pFCas//xZ5 z0fclovHeKaITGN4btc1lWEg1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBGCWi4h U0wyWzEnI4pXiU8/pMV5MB8GA1UdIwQYMBaAFCJFrZFUOt2teBI91BXWWbtS1fti MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9EODkxNDc4Qzgz OEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNhMTRFajNVRmRaWnUxTFYt MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lrV3RrVlE2M2ExNEVqM1VGZFpadTFMVi0ySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUJBOS9EODkxNDc4QzgzOEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNh MTRFajNVRmRaWnUxTFYtMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHDYhpgfaRqeFpimnsT0wbGuky8bK2o90YilnC8RlulRCsw1Ox0ekX u4n9s9oKjIsWD7M9uTjJdZi70L/fbOXLvfy8EKdbcNDMcavFawC+MNQCx2Gh8eb5 gnoCLFG4EkGEEgsp/HJgydwPN1r1AuA+ATLLhxw5KTnW7NIY1Kl/T4BHn3BFSCrH ESBulMWxgEq+YpdAMsdFojlsF+w7pDRmE8HiPOQ18qS7GxjUuh78cCl0pUSLTsqR Hp+QVnHYcJST3u68nU4sEtjyW7qyZhuVrxJlv0CzkfmLV+acCtMaoTB4r3c3hc8x rEM9RvAjxhNrAqFm+zKX9HPBqtyn0ZN8 -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:03 2025 by rpki-client