$ rpki-client -vvf rpki.apnic.net/member_repository/A911A702/939CAE2C8DD911EB8EFB4158C4F9AE02/iNHJlOgQj8ClM99LuOLOjRxLnxc.mft File: iNHJlOgQj8ClM99LuOLOjRxLnxc.mft (raw, json) Hash identifier: ATnBNAvB/gO1U66CEibHF/46MmYDgLrWLdVo9J0g3Wc= Subject key identifier: 47:C9:BA:4D:D6:5B:2A:B1:1A:FB:42:FA:60:74:CF:ED:BC:8C:39:7D Authority key identifier: 88:D1:C9:94:E8:10:8F:C0:A5:33:DF:4B:B8:E2:CE:8D:1C:4B:9F:17 Certificate issuer: /CN=A911A702/serialNumber=88D1C994E8108FC0A533DF4BB8E2CE8D1C4B9F17 Certificate serial: 064D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iNHJlOgQj8ClM99LuOLOjRxLnxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A702/939CAE2C8DD911EB8EFB4158C4F9AE02/iNHJlOgQj8ClM99LuOLOjRxLnxc.mft Manifest number: 0644 Signing time: Wed 14 May 2025 22:40:29 +0000 Manifest this update: Wed 14 May 2025 22:40:29 +0000 Manifest next update: Wed 21 May 2025 22:40:29 +0000 Files and hashes: 1: iNHJlOgQj8ClM99LuOLOjRxLnxc.crl (hash: NxiSPEqhw7gnsz4ZJj0B+roMMJuWK/MUFsDpFiku/b0=) 2: 6339493A516311ED90F04711C4F9AE02.roa (hash: UZVHz0fvOssKPNLwiZ35IeL2xHQA6a7FTosxanmpoZw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A702/939CAE2C8DD911EB8EFB4158C4F9AE02/iNHJlOgQj8ClM99LuOLOjRxLnxc.crl rsync://rpki.apnic.net/member_repository/A911A702/939CAE2C8DD911EB8EFB4158C4F9AE02/iNHJlOgQj8ClM99LuOLOjRxLnxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iNHJlOgQj8ClM99LuOLOjRxLnxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 22:32:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1613 (0x64d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A702, serialNumber=88D1C994E8108FC0A533DF4BB8E2CE8D1C4B9F17 Validity Not Before: May 14 22:40:29 2025 GMT Not After : May 21 22:40:29 2025 GMT Subject: CN=68251bdd-32b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:b8:40:5d:9f:2f:c8:c9:78:a1:41:0a:d9:4e: 38:9c:02:f8:c3:df:ea:ce:9d:f1:26:b3:b7:c2:27: 4a:e4:f1:b0:52:2e:5e:20:9a:7f:f0:eb:d1:c8:a0: f2:7a:3f:9a:e3:00:2a:a5:c1:e0:96:66:8a:bd:e4: f5:37:46:70:86:36:4a:2e:34:79:e2:15:b0:10:e6: c0:45:cb:c1:66:91:a3:19:6c:75:d3:aa:4a:8f:a2: b0:a3:08:75:a5:4a:4a:ec:af:5e:8c:fe:60:da:66: 44:0b:0b:07:74:97:36:44:88:dd:50:af:1a:42:ce: fe:eb:fe:c1:5d:b7:70:aa:5e:9f:ae:b8:53:f5:14: c2:65:73:cd:91:3d:e5:f7:df:02:ee:a0:cd:aa:7c: 3a:57:7e:d9:9f:f8:5e:7c:45:4d:1b:0f:02:11:a7: a6:1f:ef:bb:20:73:31:5b:0f:ab:2b:24:63:d0:b9: cd:60:e4:0b:d3:4f:29:14:53:fb:31:14:e7:8a:12: b4:13:90:d5:d3:f4:33:51:52:26:b7:ab:6c:39:79: 97:38:71:6e:c5:25:c5:e3:35:ab:bf:01:1b:50:b0: 4f:94:66:bd:93:f7:6c:39:45:a1:62:37:0d:08:bd: 59:21:bc:be:de:02:2d:16:4c:4b:58:d4:81:1c:d4: 48:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:C9:BA:4D:D6:5B:2A:B1:1A:FB:42:FA:60:74:CF:ED:BC:8C:39:7D X509v3 Authority Key Identifier: keyid:88:D1:C9:94:E8:10:8F:C0:A5:33:DF:4B:B8:E2:CE:8D:1C:4B:9F:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A702/939CAE2C8DD911EB8EFB4158C4F9AE02/iNHJlOgQj8ClM99LuOLOjRxLnxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iNHJlOgQj8ClM99LuOLOjRxLnxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A702/939CAE2C8DD911EB8EFB4158C4F9AE02/iNHJlOgQj8ClM99LuOLOjRxLnxc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:97:3b:c9:9e:a7:76:05:2c:a4:36:38:bb:da:24:c8:4c:8d: 62:d6:55:d6:32:a8:a8:12:43:30:66:ee:cc:55:ee:37:0a:89: aa:cb:20:0e:cc:71:af:fd:b5:58:48:a5:69:b7:01:c7:a8:91: 7d:7a:ef:99:93:dc:3a:9a:cc:ed:6e:20:42:e1:51:6d:55:f7: d1:06:82:18:36:bf:1c:80:ae:9d:a0:86:ca:1f:bf:1f:f7:64: 66:da:89:2d:b6:42:21:2c:30:8e:84:54:6a:01:81:9a:26:99: 37:f1:b3:6c:3f:ae:a3:f6:ee:cc:31:db:77:2d:77:9b:6d:99: 6e:69:91:5b:8e:dc:72:00:a2:e7:7e:fd:74:20:c8:d9:da:7b: ba:a2:d7:be:7f:27:c9:c8:29:6f:d5:a3:16:3e:fe:c3:08:c7: ea:33:3e:92:bb:33:88:0a:6e:99:3f:44:67:91:5d:50:fb:ff: ed:81:a6:cc:ec:9f:be:57:ce:77:eb:05:83:a7:40:25:d6:34: 6b:61:72:34:bd:7e:27:84:f4:47:02:9c:9c:32:69:1a:3c:de: cf:ef:44:63:92:1d:0d:c4:1e:34:e9:23:19:35:a6:89:e2:7f: a6:e4:72:60:58:df:24:e7:b1:d3:29:e4:ab:ee:0d:1e:e4:87: cc:83:8f:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBk0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUE3MDIxMTAvBgNVBAUTKDg4RDFDOTk0RTgxMDhGQzBBNTMzREY0QkI4RTJDRThE MUM0QjlGMTcwHhcNMjUwNTE0MjI0MDI5WhcNMjUwNTIxMjI0MDI5WjAYMRYwFAYD VQQDEw02ODI1MWJkZC0zMmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqrhAXZ8vyMl4oUEK2U44nAL4w9/qzp3xJrO3widK5PGwUi5eIJp/8OvRyKDy ej+a4wAqpcHglmaKveT1N0ZwhjZKLjR54hWwEObARcvBZpGjGWx106pKj6Kwowh1 pUpK7K9ejP5g2mZECwsHdJc2RIjdUK8aQs7+6/7BXbdwql6frrhT9RTCZXPNkT3l 998C7qDNqnw6V37Zn/hefEVNGw8CEaemH++7IHMxWw+rKyRj0LnNYOQL008pFFP7 MRTnihK0E5DV0/QzUVImt6tsOXmXOHFuxSXF4zWrvwEbULBPlGa9k/dsOUWhYjcN CL1ZIby+3gItFkxLWNSBHNRIQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEfJuk3W WyqxGvtC+mB0z+28jDl9MB8GA1UdIwQYMBaAFIjRyZToEI/ApTPfS7jizo0cS58X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTcwMi85MzlDQUUyQzhE RDkxMUVCOEVGQjQxNThDNEY5QUUwMi9pTkhKbE9nUWo4Q2xNOTlMdU9MT2pSeExu eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lOSEpsT2dRajhDbE05OUx1T0xPalJ4TG54Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTcwMi85MzlDQUUyQzhERDkxMUVCOEVGQjQxNThDNEY5QUUwMi9pTkhKbE9nUWo4 Q2xNOTlMdU9MT2pSeExueGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrlzvJnqd2BSykNji72iTITI1i1lXWMqioEkMwZu7MVe43ComqyyAO zHGv/bVYSKVptwHHqJF9eu+Zk9w6msztbiBC4VFtVffRBoIYNr8cgK6doIbKH78f 92Rm2okttkIhLDCOhFRqAYGaJpk38bNsP66j9u7MMdt3LXebbZluaZFbjtxyAKLn fv10IMjZ2nu6ote+fyfJyClv1aMWPv7DCMfqMz6SuzOICm6ZP0RnkV1Q+//tgabM 7J++V8536wWDp0Al1jRrYXI0vX4nhPRHApycMmkaPN7P70Rjkh0NxB406SMZNaaJ 4n+m5HJgWN8k57HTKeSr7g0e5IfMg4+I -----END CERTIFICATE-----Generated at Thu May 15 00:31:18 2025 by rpki-client