$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2234/522569141D9611E29EE5CB7E08B02CD2/iQoeXMwexsfOHqcfSRKRH1mShrI.mft File: iQoeXMwexsfOHqcfSRKRH1mShrI.mft (raw, json) Hash identifier: ix4gxJxlJDNgs9tAE89UEAah6urzI8yUehcuZnQRg8w= Subject key identifier: 16:91:69:17:F0:3B:0A:8D:38:14:C7:0B:5B:AA:0C:CF:E3:AE:D3:18 Authority key identifier: 89:0A:1E:5C:CC:1E:C6:C7:CE:1E:A7:1F:49:12:91:1F:59:92:86:B2 Certificate issuer: /CN=A91E2234/serialNumber=890A1E5CCC1EC6C7CE1EA71F4912911F599286B2 Certificate serial: 3481 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQoeXMwexsfOHqcfSRKRH1mShrI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2234/522569141D9611E29EE5CB7E08B02CD2/iQoeXMwexsfOHqcfSRKRH1mShrI.mft Manifest number: 3481 Signing time: Sat 31 May 2025 14:49:01 +0000 Manifest this update: Sat 31 May 2025 14:49:00 +0000 Manifest next update: Sat 07 Jun 2025 14:49:00 +0000 Files and hashes: 1: iQoeXMwexsfOHqcfSRKRH1mShrI.crl (hash: 1uUOA0awPF/bhJQTNpIDPGhbsK6GeM/egy4IFIFLOLQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2234/522569141D9611E29EE5CB7E08B02CD2/iQoeXMwexsfOHqcfSRKRH1mShrI.crl rsync://rpki.apnic.net/member_repository/A91E2234/522569141D9611E29EE5CB7E08B02CD2/iQoeXMwexsfOHqcfSRKRH1mShrI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQoeXMwexsfOHqcfSRKRH1mShrI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 14:49:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13441 (0x3481) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2234, serialNumber=890A1E5CCC1EC6C7CE1EA71F4912911F599286B2 Validity Not Before: May 31 14:49:00 2025 GMT Not After : Jun 7 14:49:00 2025 GMT Subject: CN=683b16dc-3e48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:51:cf:7e:e3:3f:9a:5d:12:17:e7:37:b8:b7: eb:30:52:38:e6:24:2f:59:c3:9e:f4:a9:7c:03:02: 46:ae:7f:80:dd:e2:d6:22:db:b0:cc:d1:43:2c:38: 88:97:62:09:aa:42:6b:2c:c9:bd:54:a5:f0:ba:bf: ff:86:e8:48:e0:8a:02:1e:17:c9:c4:ad:4f:b5:73: 04:9c:ae:c1:44:61:c6:b5:56:7d:15:f8:e8:53:53: dc:62:af:29:76:40:c0:dc:e1:0b:60:3e:2a:89:86: bf:ba:d8:ae:8b:e4:13:83:cf:b2:b4:66:6e:03:96: 7d:dc:e3:ca:6b:7f:87:c0:48:15:b1:05:df:1e:41: 8d:d0:ef:8d:3c:38:94:aa:43:f0:3d:00:7b:b7:07: 5f:c3:36:e8:00:3f:bc:8b:00:28:fb:0a:75:bc:77: 44:3d:70:ca:20:3f:ba:0d:c1:28:17:78:7f:5a:2a: 90:ff:4d:6e:54:46:bb:d5:8e:7f:77:a6:2f:35:a8: f7:89:37:3a:7c:e7:2a:eb:6e:4d:91:25:fe:24:5f: 0a:06:a8:37:59:f4:30:6d:37:69:0c:f8:ee:38:b7: 86:82:3b:11:21:df:ce:85:4c:e8:f3:e1:17:e2:ae: f4:90:66:ff:7d:df:fc:ad:cc:0d:09:f5:1b:67:5d: 48:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:91:69:17:F0:3B:0A:8D:38:14:C7:0B:5B:AA:0C:CF:E3:AE:D3:18 X509v3 Authority Key Identifier: keyid:89:0A:1E:5C:CC:1E:C6:C7:CE:1E:A7:1F:49:12:91:1F:59:92:86:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2234/522569141D9611E29EE5CB7E08B02CD2/iQoeXMwexsfOHqcfSRKRH1mShrI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQoeXMwexsfOHqcfSRKRH1mShrI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2234/522569141D9611E29EE5CB7E08B02CD2/iQoeXMwexsfOHqcfSRKRH1mShrI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:72:14:ae:0c:c3:09:39:18:3d:10:e5:00:1e:03:e4:d7:da: 08:c5:06:d6:fe:2c:d6:87:d2:78:7a:b4:01:cf:ff:8c:39:a1: 13:b7:a4:59:dd:57:c1:07:45:c3:53:bf:8d:6b:3f:c1:b5:c8: 42:e7:2a:fe:15:af:ed:8b:e6:b7:8d:92:fd:4e:03:b2:48:ce: 83:f7:84:81:0f:e7:93:38:96:72:42:70:a6:1e:4c:e5:d8:e5: 7f:39:9c:49:c9:4e:5d:eb:fb:11:e5:a6:03:bf:a2:0d:cb:d5: 33:e0:0d:3b:8a:f7:3a:96:0f:48:98:49:09:26:fd:f1:23:87: 0b:e0:77:d7:ac:af:83:c5:7a:06:56:c8:ea:ae:81:fd:30:de: b1:3d:e7:90:8a:e3:a1:ee:31:cd:c8:ae:f9:ae:8c:8d:67:03: 55:c4:20:38:e0:74:45:5c:fc:30:52:62:26:79:43:2c:d2:29: 5d:da:4e:d5:e8:2d:bf:74:41:6b:e2:3b:51:57:67:50:8e:c2: f8:ca:9c:38:1a:15:c6:2a:b0:98:a4:bd:5d:09:e6:90:0b:95: ba:d0:3c:f8:73:7c:0f:f7:56:3e:50:36:0d:20:06:ad:f1:03: 06:19:34:cb:4b:ff:05:0b:80:a5:e9:75:cd:f2:03:23:7f:63: 49:a0:82:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTIyMzQxMTAvBgNVBAUTKDg5MEExRTVDQ0MxRUM2QzdDRTFFQTcxRjQ5MTI5MTFG NTk5Mjg2QjIwHhcNMjUwNTMxMTQ0OTAwWhcNMjUwNjA3MTQ0OTAwWjAYMRYwFAYD VQQDEw02ODNiMTZkYy0zZTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4lHPfuM/ml0SF+c3uLfrMFI45iQvWcOe9Kl8AwJGrn+A3eLWItuwzNFDLDiI l2IJqkJrLMm9VKXwur//huhI4IoCHhfJxK1PtXMEnK7BRGHGtVZ9FfjoU1PcYq8p dkDA3OELYD4qiYa/utiui+QTg8+ytGZuA5Z93OPKa3+HwEgVsQXfHkGN0O+NPDiU qkPwPQB7twdfwzboAD+8iwAo+wp1vHdEPXDKID+6DcEoF3h/WiqQ/01uVEa71Y5/ d6YvNaj3iTc6fOcq625NkSX+JF8KBqg3WfQwbTdpDPjuOLeGgjsRId/OhUzo8+EX 4q70kGb/fd/8rcwNCfUbZ11IJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBaRaRfw OwqNOBTHC1uqDM/jrtMYMB8GA1UdIwQYMBaAFIkKHlzMHsbHzh6nH0kSkR9Zkoay MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjIzNC81MjI1NjkxNDFE OTYxMUUyOUVFNUNCN0UwOEIwMkNEMi9pUW9lWE13ZXhzZk9IcWNmU1JLUkgxbVNo ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lRb2VYTXdleHNmT0hxY2ZTUktSSDFtU2hySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjIzNC81MjI1NjkxNDFEOTYxMUUyOUVFNUNCN0UwOEIwMkNEMi9pUW9lWE13ZXhz Zk9IcWNmU1JLUkgxbVNockkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfchSuDMMJORg9EOUAHgPk19oIxQbW/izWh9J4erQBz/+MOaETt6RZ 3VfBB0XDU7+Naz/BtchC5yr+Fa/ti+a3jZL9TgOySM6D94SBD+eTOJZyQnCmHkzl 2OV/OZxJyU5d6/sR5aYDv6INy9Uz4A07ivc6lg9ImEkJJv3xI4cL4HfXrK+DxXoG VsjqroH9MN6xPeeQiuOh7jHNyK75royNZwNVxCA44HRFXPwwUmImeUMs0ild2k7V 6C2/dEFr4jtRV2dQjsL4ypw4GhXGKrCYpL1dCeaQC5W60Dz4c3wP91Y+UDYNIAat 8QMGGTTLS/8FC4Cl6XXN8gMjf2NJoIJZ -----END CERTIFICATE-----Generated at Sat May 31 17:44:03 2025 by rpki-client