$ rpki-client -vvf rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft File: ihuLzV7XzXIsUwBJjkqTZdBGo04.mft (raw, json) Hash identifier: WpoXTCUmwJMl2ImyjVltsCtbotofRdYPpIr8fBbDlno= Subject key identifier: BA:85:8A:AD:56:A9:02:19:9B:56:2C:1B:6F:B2:D6:07:CC:F6:D0:03 Authority key identifier: 8A:1B:8B:CD:5E:D7:CD:72:2C:53:00:49:8E:4A:93:65:D0:46:A3:4E Certificate issuer: /CN=A91E01C6/serialNumber=8A1B8BCD5ED7CD722C5300498E4A9365D046A34E Certificate serial: 084A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihuLzV7XzXIsUwBJjkqTZdBGo04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft Manifest number: 0843 Signing time: Fri 30 May 2025 20:58:59 +0000 Manifest this update: Fri 30 May 2025 20:58:58 +0000 Manifest next update: Fri 06 Jun 2025 20:58:58 +0000 Files and hashes: 1: ihuLzV7XzXIsUwBJjkqTZdBGo04.crl (hash: 4HYI4IFavZAFJosctXxUezjuxBbK9CFHzVu+TwFkY7g=) 2: B6EB6C5ED46611ECA1A27035C4F9AE02.roa (hash: MzytEdv6AFwyptJ19U9Ds4XRz9r3S4O8DZQCdtraCmo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.crl rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihuLzV7XzXIsUwBJjkqTZdBGo04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:58:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2122 (0x84a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E01C6, serialNumber=8A1B8BCD5ED7CD722C5300498E4A9365D046A34E Validity Not Before: May 30 20:58:58 2025 GMT Not After : Jun 6 20:58:58 2025 GMT Subject: CN=683a1c12-3ec5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:c9:db:c0:7b:b7:a7:3c:35:3f:34:16:99:73: 2b:af:8d:57:2f:6e:66:2f:6e:4b:41:d6:5e:61:82: 3e:9a:13:b9:5b:01:34:dd:55:ff:71:b4:68:1a:1d: 41:88:fc:cd:71:9f:55:26:d3:08:06:07:cf:c4:fc: a7:71:bc:cf:d9:39:4a:39:bf:0b:53:02:87:54:4c: 69:d9:20:ff:b6:5b:ea:d2:e4:ae:2e:6d:7a:64:ec: e9:c7:ee:a1:1b:83:00:1f:32:31:e1:df:80:cd:03: f4:1b:83:84:9a:d6:1a:38:99:81:3f:8f:90:e9:da: 0c:be:fc:70:3f:13:e6:1c:f8:0e:65:cc:5b:2d:8e: 99:7f:81:4d:6b:f7:b9:91:24:7b:5f:e5:10:e9:40: 23:59:1e:45:c5:12:9a:b4:9d:ba:b0:65:b1:b4:17: 46:5e:d3:1b:29:a6:32:67:d2:6c:90:18:b8:f3:e1: c0:86:34:05:d7:61:12:d9:78:21:de:86:17:da:9f: ae:45:31:7d:8a:bf:85:b8:01:14:f2:bd:0c:65:e7: 3e:94:fc:ed:d7:ff:f9:8d:c9:de:c3:c7:41:f2:2c: d7:f9:60:d0:06:92:7c:a1:a7:b6:e0:66:c7:95:5a: a3:34:c4:b9:1a:8b:b4:2c:fa:c3:f0:0d:81:30:29: 07:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:85:8A:AD:56:A9:02:19:9B:56:2C:1B:6F:B2:D6:07:CC:F6:D0:03 X509v3 Authority Key Identifier: keyid:8A:1B:8B:CD:5E:D7:CD:72:2C:53:00:49:8E:4A:93:65:D0:46:A3:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihuLzV7XzXIsUwBJjkqTZdBGo04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:79:54:0c:51:8b:7a:fe:38:de:fe:8a:97:5a:a3:bd:66:bb: fe:c0:3a:93:80:68:8b:ae:d6:d8:3a:ea:af:a7:43:1c:70:6e: 6a:12:26:67:88:b2:f2:00:3e:ef:59:10:13:f2:2b:90:55:2f: b7:26:b2:cb:8a:72:fd:e5:ce:84:b6:40:56:d4:d3:9f:f5:08: f3:89:03:1f:0d:ea:d1:5a:50:4c:aa:ae:18:c2:69:00:3f:7f: 15:aa:8f:50:a4:d5:7d:1a:ae:ca:fd:94:02:d3:8d:93:28:8c: c2:8f:c8:60:b9:83:9d:65:27:1c:6a:99:cf:0e:28:42:88:ff: c5:42:79:22:e0:ea:61:e5:60:08:09:72:09:1b:04:41:49:33: 99:20:78:4b:ef:28:6d:af:56:25:3e:da:3e:24:6e:19:dc:1f: 72:c4:50:df:95:cb:5b:68:a5:d2:52:87:e2:58:14:14:a1:49: 4f:3e:02:8d:e3:a6:55:4c:2f:35:d3:8e:fe:d9:71:bb:3e:fd: 16:e9:08:89:bf:42:73:6d:1b:04:ab:d3:de:47:83:de:7a:00: 54:26:40:66:e6:90:91:60:27:bc:7a:3a:0a:43:4b:f0:d5:da: 8b:29:1f:81:f7:59:df:00:5e:53:90:bf:06:c8:4b:e9:92:67: f0:4a:93:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAxQzYxMTAvBgNVBAUTKDhBMUI4QkNENUVEN0NENzIyQzUzMDA0OThFNEE5MzY1 RDA0NkEzNEUwHhcNMjUwNTMwMjA1ODU4WhcNMjUwNjA2MjA1ODU4WjAYMRYwFAYD VQQDEw02ODNhMWMxMi0zZWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8snbwHu3pzw1PzQWmXMrr41XL25mL25LQdZeYYI+mhO5WwE03VX/cbRoGh1B iPzNcZ9VJtMIBgfPxPyncbzP2TlKOb8LUwKHVExp2SD/tlvq0uSuLm16ZOzpx+6h G4MAHzIx4d+AzQP0G4OEmtYaOJmBP4+Q6doMvvxwPxPmHPgOZcxbLY6Zf4FNa/e5 kSR7X+UQ6UAjWR5FxRKatJ26sGWxtBdGXtMbKaYyZ9JskBi48+HAhjQF12ES2Xgh 3oYX2p+uRTF9ir+FuAEU8r0MZec+lPzt1//5jcnew8dB8izX+WDQBpJ8oae24GbH lVqjNMS5Gou0LPrD8A2BMCkH1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLqFiq1W qQIZm1YsG2+y1gfM9tADMB8GA1UdIwQYMBaAFIobi81e181yLFMASY5Kk2XQRqNO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDFDNi80OTFDOENFNkND OTExMUVBOEE1OUVGNDZDNEY5QUUwMi9paHVMelY3WHpYSXNVd0JKamtxVFpkQkdv MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lodUx6VjdYelhJc1V3Qkpqa3FUWmRCR28wNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDFDNi80OTFDOENFNkNDOTExMUVBOEE1OUVGNDZDNEY5QUUwMi9paHVMelY3WHpY SXNVd0JKamtxVFpkQkdvMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCceVQMUYt6/jje/oqXWqO9Zrv+wDqTgGiLrtbYOuqvp0MccG5qEiZn iLLyAD7vWRAT8iuQVS+3JrLLinL95c6EtkBW1NOf9QjziQMfDerRWlBMqq4YwmkA P38Vqo9QpNV9Gq7K/ZQC042TKIzCj8hguYOdZSccapnPDihCiP/FQnki4Oph5WAI CXIJGwRBSTOZIHhL7yhtr1YlPto+JG4Z3B9yxFDflctbaKXSUofiWBQUoUlPPgKN 46ZVTC81047+2XG7Pv0W6QiJv0JzbRsEq9PeR4PeegBUJkBm5pCRYCe8ejoKQ0vw 1dqLKR+B91nfAF5TkL8GyEvpkmfwSpNh -----END CERTIFICATE-----Generated at Sat May 31 17:00:21 2025 by rpki-client