$ rpki-client -vvf rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft File: _IholOLXDjUuTxaAUsUbBasFrMU.mft (raw, json) Hash identifier: Bh7Oid2achucxf6nmSQdG8/MJz0AL9ND2S7p9+iXYzc= Subject key identifier: 5B:D6:A5:7B:B4:6A:3F:51:64:D1:A6:77:BB:9A:D6:D8:3F:1C:09:1A Authority key identifier: FC:88:68:94:E2:D7:0E:35:2E:4F:16:80:52:C5:1B:05:AB:05:AC:C5 Certificate issuer: /CN=A91CABF0/serialNumber=FC886894E2D70E352E4F168052C51B05AB05ACC5 Certificate serial: FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IholOLXDjUuTxaAUsUbBasFrMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft Manifest number: F8 Signing time: Sat 31 May 2025 04:49:39 +0000 Manifest this update: Sat 31 May 2025 04:49:39 +0000 Manifest next update: Sat 07 Jun 2025 04:49:39 +0000 Files and hashes: 1: _IholOLXDjUuTxaAUsUbBasFrMU.crl (hash: gYKbht10XvUPH796RYLvxrd1pyCqkWLQnpV+ynzUDcg=) 2: 740B66A6C09A11EE9839DC42C4F9AE02.roa (hash: NOsPGGlDSlCfn8hbBHu4EWI+usdJzaN80KZom3HQWsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.crl rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IholOLXDjUuTxaAUsUbBasFrMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:49:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 250 (0xfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CABF0, serialNumber=FC886894E2D70E352E4F168052C51B05AB05ACC5 Validity Not Before: May 31 04:49:39 2025 GMT Not After : Jun 7 04:49:39 2025 GMT Subject: CN=683a8a63-34af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:9e:6a:b7:f8:46:10:b6:f7:39:ce:04:38:7e: da:83:d8:c9:0e:c3:16:4d:e9:69:fc:9f:5f:6e:26: c1:aa:45:9f:6f:64:f5:16:33:19:54:b4:3e:d9:de: 8e:7a:81:69:df:67:fb:34:88:21:90:d6:7c:ae:ce: be:a3:33:31:45:8c:49:18:a0:6e:e1:f4:9b:b1:fe: 66:97:67:29:c6:51:bc:ed:9f:cb:b0:c6:de:bb:53: 7d:d7:75:13:bf:c6:10:43:0b:d3:d5:1a:e8:84:cd: 78:b7:e7:e4:08:1c:cb:b8:1c:cf:ba:59:e4:d5:22: 5f:7b:4a:31:1b:70:26:bc:35:ff:e3:68:b8:c7:fb: fd:50:8f:ec:27:9d:02:b8:0a:bb:a7:83:46:3c:98: 85:5f:53:65:64:91:09:aa:e4:5d:6d:d2:67:91:d3: a9:24:48:15:e1:66:38:0b:40:a8:c6:2f:f4:c4:45: a7:2b:78:8c:74:16:e7:0e:45:15:74:b3:ff:a9:f4: fb:df:0a:de:5d:0f:87:33:23:f6:b9:02:d0:b1:9c: 35:3f:c3:d1:7b:30:9a:74:63:a6:79:53:90:df:f4: 70:44:50:e5:01:c5:40:5d:54:be:a1:21:66:d5:f1: 21:ba:3a:44:3f:3c:96:c7:a8:76:06:a5:d4:fd:9a: f0:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:D6:A5:7B:B4:6A:3F:51:64:D1:A6:77:BB:9A:D6:D8:3F:1C:09:1A X509v3 Authority Key Identifier: keyid:FC:88:68:94:E2:D7:0E:35:2E:4F:16:80:52:C5:1B:05:AB:05:AC:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IholOLXDjUuTxaAUsUbBasFrMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:19:c3:36:77:24:17:90:e5:ce:e7:f4:ee:ac:50:59:fe:3e: 7d:44:5e:0a:fa:09:97:10:48:78:17:84:e6:84:1a:19:17:d8: 09:9b:05:72:7e:f8:8c:9a:41:19:b0:b9:ac:89:26:bd:da:56: 0d:45:c6:88:9f:58:85:4c:b6:9a:1d:ca:c5:c5:4e:27:50:bc: 9c:da:94:55:20:a7:35:f6:2f:cd:f9:fd:2e:93:38:f8:cf:09: e7:3d:75:07:83:0a:d9:ae:b9:fe:11:0f:4d:49:0a:db:f5:44: ed:5d:20:d3:43:56:b2:86:2e:c6:9f:cf:42:f2:9e:0b:49:8a: de:06:f3:6e:bc:80:c2:c7:c2:6f:39:2f:81:69:01:51:58:bd: 07:8d:f1:ff:b4:26:20:3f:f7:27:93:5a:ea:f0:76:07:11:60: c3:58:26:81:5f:c1:2a:7e:f7:c2:be:eb:42:4f:64:11:50:bf: c0:1d:cf:79:ef:20:68:09:ac:68:35:c2:ac:eb:8f:76:af:ec: f3:76:56:1c:9f:ce:72:fc:45:a2:fd:f4:91:e4:22:32:69:f5: 4d:94:2f:5a:be:bc:dc:38:5b:48:30:e9:88:12:db:05:3c:16: 81:26:fb:e4:af:65:8f:c1:a3:e3:6c:55:21:14:6b:a0:2f:ff: 5c:b2:c4:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FCRjAxMTAvBgNVBAUTKEZDODg2ODk0RTJENzBFMzUyRTRGMTY4MDUyQzUxQjA1 QUIwNUFDQzUwHhcNMjUwNTMxMDQ0OTM5WhcNMjUwNjA3MDQ0OTM5WjAYMRYwFAYD VQQDEw02ODNhOGE2My0zNGFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAop5qt/hGELb3Oc4EOH7ag9jJDsMWTelp/J9fbibBqkWfb2T1FjMZVLQ+2d6O eoFp32f7NIghkNZ8rs6+ozMxRYxJGKBu4fSbsf5ml2cpxlG87Z/LsMbeu1N913UT v8YQQwvT1RrohM14t+fkCBzLuBzPulnk1SJfe0oxG3AmvDX/42i4x/v9UI/sJ50C uAq7p4NGPJiFX1NlZJEJquRdbdJnkdOpJEgV4WY4C0Coxi/0xEWnK3iMdBbnDkUV dLP/qfT73wreXQ+HMyP2uQLQsZw1P8PRezCadGOmeVOQ3/RwRFDlAcVAXVS+oSFm 1fEhujpEPzyWx6h2BqXU/ZrwwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFvWpXu0 aj9RZNGmd7ua1tg/HAkaMB8GA1UdIwQYMBaAFPyIaJTi1w41Lk8WgFLFGwWrBazF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUJGMC9EOTZCQTY2MEMw OTkxMUVFQjk1MDVBNDFDNEY5QUUwMi9fSWhvbE9MWERqVXVUeGFBVXNVYkJhc0Zy TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19JaG9sT0xYRGpVdVR4YUFVc1ViQmFzRnJNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUJGMC9EOTZCQTY2MEMwOTkxMUVFQjk1MDVBNDFDNEY5QUUwMi9fSWhvbE9MWERq VXVUeGFBVXNVYkJhc0ZyTVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuGcM2dyQXkOXO5/TurFBZ/j59RF4K+gmXEEh4F4TmhBoZF9gJmwVy fviMmkEZsLmsiSa92lYNRcaIn1iFTLaaHcrFxU4nULyc2pRVIKc19i/N+f0ukzj4 zwnnPXUHgwrZrrn+EQ9NSQrb9UTtXSDTQ1ayhi7Gn89C8p4LSYreBvNuvIDCx8Jv OS+BaQFRWL0HjfH/tCYgP/cnk1rq8HYHEWDDWCaBX8EqfvfCvutCT2QRUL/AHc95 7yBoCaxoNcKs6492r+zzdlYcn85y/EWi/fSR5CIyafVNlC9avrzcOFtIMOmIEtsF PBaBJvvkr2WPwaPjbFUhFGugL/9cssSr -----END CERTIFICATE-----Generated at Sat May 31 14:35:10 2025 by rpki-client