$ rpki-client -vvf rpki.apnic.net/member_repository/A913AD90/0300C5140F0A11EF90C8A132C4F9AE02/iAkYqHVvBJMaMvTOo0HE8j-tUO8.mft File: iAkYqHVvBJMaMvTOo0HE8j-tUO8.mft (raw, json) Hash identifier: ASAx+GL57EG29+gT9448TPjlD10upghDiMzpcGpsqJU= Subject key identifier: 2D:25:4F:12:47:E4:EB:44:FC:35:D8:DD:D7:66:50:E2:E7:FD:C2:60 Authority key identifier: 88:09:18:A8:75:6F:04:93:1A:32:F4:CE:A3:41:C4:F2:3F:AD:50:EF Certificate issuer: /CN=A913AD90/serialNumber=880918A8756F04931A32F4CEA341C4F23FAD50EF Certificate serial: CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iAkYqHVvBJMaMvTOo0HE8j-tUO8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AD90/0300C5140F0A11EF90C8A132C4F9AE02/iAkYqHVvBJMaMvTOo0HE8j-tUO8.mft Manifest number: C8 Signing time: Thu 15 May 2025 05:10:33 +0000 Manifest this update: Thu 15 May 2025 05:10:33 +0000 Manifest next update: Thu 22 May 2025 05:10:33 +0000 Files and hashes: 1: iAkYqHVvBJMaMvTOo0HE8j-tUO8.crl (hash: AbCAdmT49Vf6yUNrTXY+fALN9erlyuZVGIFb+txiNSQ=) 2: 5DB3B5AA145C11EFAE012A55C4F9AE02.roa (hash: IjBd7XUR2i0dTIqKZWCJ7zm+gZSogWBX4IMREVDmhgQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AD90/0300C5140F0A11EF90C8A132C4F9AE02/iAkYqHVvBJMaMvTOo0HE8j-tUO8.crl rsync://rpki.apnic.net/member_repository/A913AD90/0300C5140F0A11EF90C8A132C4F9AE02/iAkYqHVvBJMaMvTOo0HE8j-tUO8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iAkYqHVvBJMaMvTOo0HE8j-tUO8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:10:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AD90, serialNumber=880918A8756F04931A32F4CEA341C4F23FAD50EF Validity Not Before: May 15 05:10:33 2025 GMT Not After : May 22 05:10:33 2025 GMT Subject: CN=68257749-6397 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:48:50:1e:f1:9f:17:5c:4c:14:73:55:2e:9a: 44:11:28:9f:35:eb:a5:eb:61:ff:7a:17:f4:b7:37: 55:41:3c:8d:fe:04:5c:d3:f3:61:06:63:0e:5e:d2: 4f:ac:8f:f5:4a:d9:7e:2d:58:ba:43:4b:ab:a1:35: 67:5e:65:04:43:f3:3b:60:fc:66:df:71:fe:8f:b9: 8a:e0:aa:58:5a:13:92:07:c5:32:72:da:f7:b5:6c: 6c:2e:f6:23:fa:90:ae:39:ba:9f:79:7f:46:b4:64: f1:60:8a:ba:c2:89:fc:5f:ad:ab:cb:21:7e:0e:df: 33:be:19:9b:84:f9:da:7e:99:b1:cb:fc:10:7d:c9: f4:67:39:b2:4a:27:96:aa:ac:8d:05:34:76:e5:0d: 34:13:c4:d2:03:de:b1:e2:42:1d:cf:18:b3:68:84: 45:b3:3d:ff:24:1f:bf:43:4e:7b:9b:86:82:d3:3d: 44:04:5a:79:ad:8e:1b:e7:78:9b:ec:a2:f2:95:c7: ac:97:e8:2b:fb:ad:bd:05:3a:a3:d4:00:0c:0f:43: a4:32:00:01:04:78:33:0f:a6:37:20:cd:1d:cb:0f: cf:d4:99:c4:a4:c6:e4:37:16:0e:34:5a:ef:ab:d4: 7d:e8:60:03:67:09:a7:6d:6a:de:4f:17:72:64:5e: a7:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:25:4F:12:47:E4:EB:44:FC:35:D8:DD:D7:66:50:E2:E7:FD:C2:60 X509v3 Authority Key Identifier: keyid:88:09:18:A8:75:6F:04:93:1A:32:F4:CE:A3:41:C4:F2:3F:AD:50:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AD90/0300C5140F0A11EF90C8A132C4F9AE02/iAkYqHVvBJMaMvTOo0HE8j-tUO8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iAkYqHVvBJMaMvTOo0HE8j-tUO8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AD90/0300C5140F0A11EF90C8A132C4F9AE02/iAkYqHVvBJMaMvTOo0HE8j-tUO8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:f2:06:7e:95:69:2e:5a:13:a9:cd:b2:b7:14:2a:82:a3:94: 5b:b7:42:de:3d:45:48:48:89:a6:2f:cb:c4:b0:06:76:eb:20: 77:86:5b:e6:f8:14:51:1e:f5:73:e4:ee:c2:d9:e4:c8:58:73: 8d:2f:1a:1c:35:7c:67:9f:40:c6:ea:72:c1:0d:bc:2f:29:5f: 8a:75:3f:3d:bc:4f:35:c0:d2:5e:22:b7:9f:ff:81:b9:38:0e: d1:a2:03:82:f1:79:13:46:d6:32:e5:4c:8c:7e:74:4d:90:10: 79:68:c7:b6:d3:9a:ed:04:d5:fc:15:1e:4b:df:9e:85:4f:24: c3:56:8b:f7:3d:3c:f4:64:12:f6:3c:7d:4b:58:bf:e8:60:2b: 30:dc:20:a7:eb:6e:bc:35:91:17:28:36:dd:a9:ab:b1:bc:21: d9:b1:ed:36:fc:3e:ed:6d:b7:cd:bf:ac:c2:59:37:5f:c6:fa: da:4a:f5:5c:99:b8:4d:ff:a9:95:cf:23:04:44:6c:ce:2d:59: 19:46:01:2c:b3:9f:88:57:b8:27:73:97:82:19:21:9c:ea:04: d5:2c:b4:bb:50:18:2c:29:2b:a4:13:5e:f8:a4:3b:f1:ea:b9: 50:1f:7c:44:f8:3c:56:59:6b:bf:fd:1e:64:52:bd:11:0c:14: 3e:21:a9:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FEOTAxMTAvBgNVBAUTKDg4MDkxOEE4NzU2RjA0OTMxQTMyRjRDRUEzNDFDNEYy M0ZBRDUwRUYwHhcNMjUwNTE1MDUxMDMzWhcNMjUwNTIyMDUxMDMzWjAYMRYwFAYD VQQDEw02ODI1Nzc0OS02Mzk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxEhQHvGfF1xMFHNVLppEESifNeul62H/ehf0tzdVQTyN/gRc0/NhBmMOXtJP rI/1Stl+LVi6Q0uroTVnXmUEQ/M7YPxm33H+j7mK4KpYWhOSB8Uyctr3tWxsLvYj +pCuObqfeX9GtGTxYIq6won8X62ryyF+Dt8zvhmbhPnafpmxy/wQfcn0ZzmySieW qqyNBTR25Q00E8TSA96x4kIdzxizaIRFsz3/JB+/Q057m4aC0z1EBFp5rY4b53ib 7KLylcesl+gr+629BTqj1AAMD0OkMgABBHgzD6Y3IM0dyw/P1JnEpMbkNxYONFrv q9R96GADZwmnbWreTxdyZF6noQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC0lTxJH 5OtE/DXY3ddmUOLn/cJgMB8GA1UdIwQYMBaAFIgJGKh1bwSTGjL0zqNBxPI/rVDv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUQ5MC8wMzAwQzUxNDBG MEExMUVGOTBDOEExMzJDNEY5QUUwMi9pQWtZcUhWdkJKTWFNdlRPbzBIRThqLXRV TzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lBa1lxSFZ2QkpNYU12VE9vMEhFOGotdFVPOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUQ5MC8wMzAwQzUxNDBGMEExMUVGOTBDOEExMzJDNEY5QUUwMi9pQWtZcUhWdkJK TWFNdlRPbzBIRThqLXRVTzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA88gZ+lWkuWhOpzbK3FCqCo5Rbt0LePUVISImmL8vEsAZ26yB3hlvm +BRRHvVz5O7C2eTIWHONLxocNXxnn0DG6nLBDbwvKV+KdT89vE81wNJeIref/4G5 OA7RogOC8XkTRtYy5UyMfnRNkBB5aMe205rtBNX8FR5L356FTyTDVov3PTz0ZBL2 PH1LWL/oYCsw3CCn6268NZEXKDbdqauxvCHZse02/D7tbbfNv6zCWTdfxvraSvVc mbhN/6mVzyMERGzOLVkZRgEss5+IV7gnc5eCGSGc6gTVLLS7UBgsKSukE174pDvx 6rlQH3xE+DxWWWu//R5kUr0RDBQ+Iakl -----END CERTIFICATE-----Generated at Thu May 15 21:54:19 2025 by rpki-client