$ rpki-client -vvf rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft File: IhKO6LQdoZG8pEiIxhUzENZmp78.mft (raw, json) Hash identifier: +EqJ7pidF562UIoGhXttIhbKeyoOqLZbbD8iRD+Uaho= Subject key identifier: CC:9B:37:9C:32:17:28:21:7E:63:1C:B8:E3:76:BE:5A:2F:D4:2A:54 Authority key identifier: 22:12:8E:E8:B4:1D:A1:91:BC:A4:48:88:C6:15:33:10:D6:66:A7:BF Certificate issuer: /CN=A9135F03/serialNumber=22128EE8B41DA191BCA44888C6153310D666A7BF Certificate serial: 06FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft Manifest number: 06FD Signing time: Wed 14 May 2025 21:59:15 +0000 Manifest this update: Wed 14 May 2025 21:59:14 +0000 Manifest next update: Wed 21 May 2025 21:59:14 +0000 Files and hashes: 1: IhKO6LQdoZG8pEiIxhUzENZmp78.crl (hash: NunPiK4IXcdOM1XceMdgWqopgrlnOp0ySH4kIzVMjTM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.crl rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 21:59:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1789 (0x6fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135F03, serialNumber=22128EE8B41DA191BCA44888C6153310D666A7BF Validity Not Before: May 14 21:59:14 2025 GMT Not After : May 21 21:59:14 2025 GMT Subject: CN=68251233-fa73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:56:be:ca:59:72:4b:59:43:21:79:00:4d:20: ca:ad:94:2a:dc:c2:96:4c:27:ba:dc:7a:7a:d8:53: 08:fd:8b:5a:cc:56:af:70:e6:9d:0a:bc:eb:5d:39: 84:f7:e8:f2:14:5d:86:96:cd:32:1b:a9:b9:77:d3: de:e0:78:c7:cc:b6:13:40:0e:84:58:7a:e8:4b:cf: bf:52:c8:f7:4d:65:fa:1f:09:fc:e0:32:1f:34:a2: fd:22:c1:7c:73:ba:e3:2e:83:85:68:a8:3f:c0:46: 77:00:9c:65:75:fa:9b:65:ab:fb:89:a7:1c:bf:6c: 53:d4:b2:bd:fe:68:41:e4:32:d3:66:1a:9a:a5:4c: 2c:88:23:4f:fa:42:ee:70:9e:a2:4b:e7:c3:99:84: 32:a8:9d:8e:4b:9a:ff:a8:7a:0e:7f:cf:f0:ef:4a: 34:58:bb:8c:d0:ae:4d:33:fc:fb:e0:94:26:52:60: 5c:bd:01:ed:2f:eb:fb:56:c2:f3:74:13:fc:da:c4: e7:5c:ec:36:4e:f8:3b:7b:e6:ff:f8:ea:d4:04:e9: 18:10:9c:fc:bf:fc:4e:6a:d0:26:cc:6a:cd:e1:71: 97:08:0f:fc:16:81:ad:1f:12:95:ec:ee:73:f7:5a: b9:fd:20:1a:3b:d1:90:cf:20:e0:85:b6:5d:cc:1d: 7e:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:9B:37:9C:32:17:28:21:7E:63:1C:B8:E3:76:BE:5A:2F:D4:2A:54 X509v3 Authority Key Identifier: keyid:22:12:8E:E8:B4:1D:A1:91:BC:A4:48:88:C6:15:33:10:D6:66:A7:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:8f:6e:7b:80:c2:0a:3a:8a:c7:4b:df:90:46:10:e3:17:5a: 77:40:c2:59:eb:0d:c1:0f:7c:92:d3:9a:a4:0f:b0:6e:a7:2d: b4:54:62:b6:e0:db:ff:69:89:8f:42:12:dd:98:8f:2c:42:71: 26:4b:9b:e4:ca:2d:02:74:56:f5:af:cf:29:f4:b6:29:3c:1e: 3a:e6:4d:6d:5b:59:20:3e:10:22:7d:75:e2:80:1e:5f:ad:6a: a5:f6:6a:4e:8a:80:ce:e7:d4:76:cb:c5:4e:df:36:05:98:91: c1:3f:4e:59:4c:b7:d6:77:d5:dd:7d:33:90:f1:17:9f:ea:91: 67:17:74:76:7a:57:3c:52:f4:db:d3:e8:d8:2c:64:5d:cb:26: 42:b1:74:c8:31:dc:a1:63:ec:a4:2e:a5:44:eb:71:62:a6:b6: 32:16:47:9c:e3:88:90:c9:23:2b:4d:01:d3:4c:6d:b0:44:69: 58:ed:73:2d:37:75:e8:84:61:f9:7a:68:f4:8e:33:14:be:f9: a3:fa:b0:d3:4f:cb:93:70:ae:32:1b:f4:0c:8b:2b:b3:b9:22: 32:17:e5:43:74:81:2b:85:68:af:e9:ac:35:16:67:42:db:4e: 2b:ec:be:3e:9d:80:39:2d:20:96:96:4b:de:14:74:ff:06:75: f5:ad:d6:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBv0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzVGMDMxMTAvBgNVBAUTKDIyMTI4RUU4QjQxREExOTFCQ0E0NDg4OEM2MTUzMzEw RDY2NkE3QkYwHhcNMjUwNTE0MjE1OTE0WhcNMjUwNTIxMjE1OTE0WjAYMRYwFAYD VQQDEw02ODI1MTIzMy1mYTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3la+yllyS1lDIXkATSDKrZQq3MKWTCe63Hp62FMI/YtazFavcOadCrzrXTmE 9+jyFF2Gls0yG6m5d9Pe4HjHzLYTQA6EWHroS8+/Usj3TWX6Hwn84DIfNKL9IsF8 c7rjLoOFaKg/wEZ3AJxldfqbZav7iaccv2xT1LK9/mhB5DLTZhqapUwsiCNP+kLu cJ6iS+fDmYQyqJ2OS5r/qHoOf8/w70o0WLuM0K5NM/z74JQmUmBcvQHtL+v7VsLz dBP82sTnXOw2Tvg7e+b/+OrUBOkYEJz8v/xOatAmzGrN4XGXCA/8FoGtHxKV7O5z 91q5/SAaO9GQzyDghbZdzB1+ywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMybN5wy FyghfmMcuON2vlov1CpUMB8GA1UdIwQYMBaAFCISjui0HaGRvKRIiMYVMxDWZqe/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNUYwMy8xQkZDMDBFRTNG RTAxMUVCODc0MzE4MERDNEY5QUUwMi9JaEtPNkxRZG9aRzhwRWlJeGhVekVOWm1w NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0loS082TFFkb1pHOHBFaUl4aFV6RU5abXA3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NUYwMy8xQkZDMDBFRTNGRTAxMUVCODc0MzE4MERDNEY5QUUwMi9JaEtPNkxRZG9a RzhwRWlJeGhVekVOWm1wNzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRj257gMIKOorHS9+QRhDjF1p3QMJZ6w3BD3yS05qkD7Bupy20VGK2 4Nv/aYmPQhLdmI8sQnEmS5vkyi0CdFb1r88p9LYpPB465k1tW1kgPhAifXXigB5f rWql9mpOioDO59R2y8VO3zYFmJHBP05ZTLfWd9XdfTOQ8Ref6pFnF3R2elc8UvTb 0+jYLGRdyyZCsXTIMdyhY+ykLqVE63FiprYyFkec44iQySMrTQHTTG2wRGlY7XMt N3XohGH5emj0jjMUvvmj+rDTT8uTcK4yG/QMiyuzuSIyF+VDdIErhWiv6aw1FmdC 204r7L4+nYA5LSCWlkveFHT/BnX1rdaz -----END CERTIFICATE-----Generated at Thu May 15 19:05:52 2025 by rpki-client