$ rpki-client -vvf rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft File: IcuqoETeGlZkRp9Bi80Id7ITlzo.mft (raw, json) Hash identifier: E4zyQmhOFuz4PG86mrYP0JCq04QoxhgD7tBMXQo1vlU= Subject key identifier: 0D:11:1E:A7:38:37:60:1F:FD:BB:93:EF:E3:6A:0D:28:E8:5F:FF:3A Authority key identifier: 21:CB:AA:A0:44:DE:1A:56:64:46:9F:41:8B:CD:08:77:B2:13:97:3A Certificate issuer: /CN=A911393B/serialNumber=21CBAAA044DE1A5664469F418BCD0877B213973A Certificate serial: 0132 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft Manifest number: 012F Signing time: Tue 13 May 2025 03:46:09 +0000 Manifest this update: Tue 13 May 2025 03:46:09 +0000 Manifest next update: Tue 20 May 2025 03:46:09 +0000 Files and hashes: 1: IcuqoETeGlZkRp9Bi80Id7ITlzo.crl (hash: 5+XYoTp9lY594n5NMFvNDdTny44NZ2mFpAQAor9LwJc=) 2: 6538D178628E11EEBF375134C4F9AE02.roa (hash: a5Qs3LUcbSVUj/0GZbXTErNFIjAHGfhVv7lawUtiA/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.crl rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 03:46:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 306 (0x132) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911393B, serialNumber=21CBAAA044DE1A5664469F418BCD0877B213973A Validity Not Before: May 13 03:46:09 2025 GMT Not After : May 20 03:46:09 2025 GMT Subject: CN=6822c081-95d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2a:9c:10:12:ea:77:a0:29:9e:39:0c:e4:25: 94:eb:7d:04:91:83:c9:8b:80:75:ea:68:2e:34:6c: ac:71:71:a7:fb:b4:43:ae:c3:7b:ad:df:18:de:62: e2:4e:b8:bc:49:5b:de:90:e8:cd:79:ce:2e:02:54: 29:dd:28:4f:f0:16:9a:e5:52:b9:34:77:cd:8f:13: e9:af:c5:49:71:b4:bb:9d:49:c0:f7:c2:c7:d8:b7: b1:87:3e:57:64:8f:0d:ea:63:5e:64:d0:1f:72:85: 94:2b:17:36:6f:b7:e5:72:a1:1b:47:3f:69:fa:37: 6b:37:2c:41:b4:d8:5c:12:41:48:02:e0:d6:1b:7c: fa:cb:46:44:c8:90:90:19:6f:62:2a:70:66:96:56: a2:95:cf:d9:60:16:57:64:ea:a9:98:38:c1:b9:6e: 24:45:0b:77:15:5d:9d:9d:5c:cd:e6:41:c4:f5:88: ef:5f:0e:77:1f:9d:32:18:dc:6d:cc:8a:87:cd:11: 0f:2d:5b:d1:3a:84:a8:cc:40:3a:32:bc:9e:a5:06: db:38:f4:e5:9d:00:3a:8e:bd:6f:b3:e6:da:ef:26: 5c:bc:2d:67:da:c7:43:f0:6b:c8:17:1a:38:6e:f6: fd:c1:11:20:f1:5e:55:93:0b:6a:4f:36:94:65:7b: ae:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:11:1E:A7:38:37:60:1F:FD:BB:93:EF:E3:6A:0D:28:E8:5F:FF:3A X509v3 Authority Key Identifier: keyid:21:CB:AA:A0:44:DE:1A:56:64:46:9F:41:8B:CD:08:77:B2:13:97:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:44:70:4b:fb:0b:a9:dd:75:21:ba:d0:3e:af:69:f3:20:9c: d4:fe:39:c1:3d:eb:ef:72:0b:98:98:91:da:82:be:a0:9a:fa: fe:3c:ea:db:7b:83:92:e8:bd:fc:cf:ca:82:a6:7f:b5:e7:54: 08:50:9a:ea:d4:8e:f7:e5:7c:2c:f7:90:df:ef:2a:3e:f2:d6: 3e:cd:8c:c6:2c:25:2d:74:27:65:61:07:b5:3b:7c:6d:16:54: 6b:ae:4e:8b:d8:17:dc:39:5b:15:4d:63:81:15:d7:e1:8b:11: a2:8a:4c:df:b3:07:8f:99:b3:cf:c9:4f:0e:f4:db:33:40:a1: 86:06:06:f1:3e:e2:5a:39:0f:6e:a1:95:35:20:1e:7c:f3:01: 15:68:c1:cb:db:17:a1:8a:92:d4:6f:04:28:28:6b:a7:af:3b: a6:d5:db:73:bc:17:73:da:11:62:8a:4e:6e:ac:39:89:e5:6f: 60:e2:15:de:e8:ca:1c:7f:b9:b7:4f:ab:c8:68:c7:4b:37:4a: 6a:d7:11:c4:27:1c:8d:47:7d:c0:73:ec:ff:3d:ec:17:8e:10: eb:0b:a4:3c:e9:c0:db:90:aa:ff:4b:32:7d:b2:ad:9c:2c:c0: a5:a8:ed:69:af:b8:52:31:c6:b7:1f:e1:b2:1c:6e:72:72:72: b8:5e:45:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTM5M0IxMTAvBgNVBAUTKDIxQ0JBQUEwNDRERTFBNTY2NDQ2OUY0MThCQ0QwODc3 QjIxMzk3M0EwHhcNMjUwNTEzMDM0NjA5WhcNMjUwNTIwMDM0NjA5WjAYMRYwFAYD VQQDEw02ODIyYzA4MS05NWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsiqcEBLqd6ApnjkM5CWU630EkYPJi4B16mguNGyscXGn+7RDrsN7rd8Y3mLi Tri8SVvekOjNec4uAlQp3ShP8Baa5VK5NHfNjxPpr8VJcbS7nUnA98LH2Lexhz5X ZI8N6mNeZNAfcoWUKxc2b7flcqEbRz9p+jdrNyxBtNhcEkFIAuDWG3z6y0ZEyJCQ GW9iKnBmllailc/ZYBZXZOqpmDjBuW4kRQt3FV2dnVzN5kHE9YjvXw53H50yGNxt zIqHzREPLVvROoSozEA6MryepQbbOPTlnQA6jr1vs+ba7yZcvC1n2sdD8GvIFxo4 bvb9wREg8V5VkwtqTzaUZXuuFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA0RHqc4 N2Af/buT7+NqDSjoX/86MB8GA1UdIwQYMBaAFCHLqqBE3hpWZEafQYvNCHeyE5c6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzkzQi82N0QwOEJBODYy OEMxMUVFOTU2NUI1NjlDNEY5QUUwMi9JY3Vxb0VUZUdsWmtScDlCaTgwSWQ3SVRs em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljdXFvRVRlR2xaa1JwOUJpODBJZDdJVGx6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MzkzQi82N0QwOEJBODYyOEMxMUVFOTU2NUI1NjlDNEY5QUUwMi9JY3Vxb0VUZUds WmtScDlCaTgwSWQ3SVRsem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChRHBL+wup3XUhutA+r2nzIJzU/jnBPevvcguYmJHagr6gmvr+POrb e4OS6L38z8qCpn+151QIUJrq1I735Xws95Df7yo+8tY+zYzGLCUtdCdlYQe1O3xt FlRrrk6L2BfcOVsVTWOBFdfhixGiikzfswePmbPPyU8O9NszQKGGBgbxPuJaOQ9u oZU1IB588wEVaMHL2xehipLUbwQoKGunrzum1dtzvBdz2hFiik5urDmJ5W9g4hXe 6Mocf7m3T6vIaMdLN0pq1xHEJxyNR33Ac+z/PewXjhDrC6Q86cDbkKr/SzJ9sq2c LMClqO1pr7hSMca3H+GyHG5ycnK4XkVK -----END CERTIFICATE-----Generated at Wed May 14 04:43:15 2025 by rpki-client