$ rpki-client -vvf rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.mft File: IiyUNfXVTN9jafhecaodhG7MXz4.mft (raw, json) Hash identifier: VWcgQz7luZ9RdD6QNj2eNNCYPg49UB+/lPrN5VUJEsw= Subject key identifier: 80:2B:01:35:AD:A0:68:EF:57:A0:55:61:50:B1:E0:8D:FD:60:49:5F Authority key identifier: 22:2C:94:35:F5:D5:4C:DF:63:69:F8:5E:71:AA:1D:84:6E:CC:5F:3E Certificate issuer: /CN=A9142E4E/serialNumber=222C9435F5D54CDF6369F85E71AA1D846ECC5F3E Certificate serial: 0C3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiyUNfXVTN9jafhecaodhG7MXz4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.mft Manifest number: 0C36 Signing time: Mon 12 May 2025 18:21:14 +0000 Manifest this update: Mon 12 May 2025 18:21:14 +0000 Manifest next update: Mon 19 May 2025 18:21:14 +0000 Files and hashes: 1: IiyUNfXVTN9jafhecaodhG7MXz4.crl (hash: 923xQoCuxJdMm7AvRypUPUEX/0KBeTtDHVhMnmL3wME=) 2: 778B8788063711EA981E916CC4F9AE02.roa (hash: ZF76+TdQMAvJkkO6rvtsiHzBwUDEVkLOtw/tW67c6tM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.crl rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiyUNfXVTN9jafhecaodhG7MXz4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3135 (0xc3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142E4E, serialNumber=222C9435F5D54CDF6369F85E71AA1D846ECC5F3E Validity Not Before: May 12 18:21:14 2025 GMT Not After : May 19 18:21:14 2025 GMT Subject: CN=68223c1a-0034 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:0a:f4:46:e5:1e:ee:e7:95:e7:4f:16:70:15: 77:f9:89:de:62:46:b2:7e:b1:c3:fe:ab:14:51:b7: 0e:c6:2b:e1:31:43:cd:42:57:53:e7:87:1c:f3:5e: b1:84:0f:ad:d6:b1:70:b6:3e:ea:58:de:43:e3:c3: 91:79:16:4e:17:f3:26:26:73:67:be:2c:15:ba:52: 8d:f6:d4:a9:9a:ca:7b:2f:6d:28:31:4b:f0:ff:cf: d7:24:7c:87:8a:9c:a2:a9:7f:9d:74:3b:70:d1:35: a7:90:b9:29:73:85:ad:c7:43:6d:50:d1:0c:33:59: d0:25:73:e9:c2:51:8e:03:11:36:d0:49:56:d9:06: e2:41:66:4e:04:2f:4d:e0:89:5b:05:63:fe:40:c4: be:1b:af:49:cf:60:e8:1e:16:b2:46:7c:5a:14:67: f7:dc:46:73:22:e6:6e:32:67:8b:7a:d3:9e:d7:f1: dc:44:f9:91:05:b2:86:c8:c7:ea:ad:93:7c:8e:8b: 4f:4c:31:89:c8:f8:8d:d3:ac:10:1e:20:0a:bf:9b: 58:b9:45:02:74:f3:d4:a7:1e:10:9a:44:d5:e3:13: 46:71:d7:e0:e7:20:bc:8f:96:98:15:0a:8c:dc:25: 5e:fb:ab:ca:ae:1f:77:9e:7d:df:5c:67:6b:c4:f1: 09:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:2B:01:35:AD:A0:68:EF:57:A0:55:61:50:B1:E0:8D:FD:60:49:5F X509v3 Authority Key Identifier: keyid:22:2C:94:35:F5:D5:4C:DF:63:69:F8:5E:71:AA:1D:84:6E:CC:5F:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiyUNfXVTN9jafhecaodhG7MXz4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:0b:61:21:d4:57:d2:9c:cd:96:34:80:61:91:54:6a:9a:6f: 10:6a:f7:65:d1:0b:d9:9a:ae:a1:f9:c3:75:91:a1:42:57:3a: c9:3d:8b:10:79:78:c3:78:1c:02:eb:56:2c:3a:5f:45:75:1a: 6f:85:2b:89:37:df:5e:53:19:38:09:05:87:bc:3e:6f:a8:7c: 85:05:74:0b:e1:75:7b:e2:dc:f4:4e:94:5a:51:18:72:c4:b2: 21:43:5c:49:05:1e:b0:15:65:a0:c1:9c:83:93:6e:98:b4:4e: e1:7e:67:5f:3c:7b:88:14:7b:ce:2c:f9:4f:69:b0:b4:29:97: 1f:a7:5d:4d:78:93:f3:bd:7d:ba:c2:89:7c:1e:8d:d5:a2:f2: 02:ea:eb:89:43:31:04:e3:c3:5b:5d:c1:8f:2f:9b:ae:64:f0: b1:e4:4a:84:2c:cb:3c:b3:aa:29:9a:96:c5:49:77:d3:f3:3a: e9:42:d7:cd:39:60:c1:ce:5c:d5:59:cf:70:88:12:c3:6e:23: 37:98:77:c1:f5:58:f0:ab:57:d2:f0:65:10:1f:12:c2:f9:1e: 28:40:bf:a5:f9:a4:91:22:7b:9d:58:8d:03:c3:cf:f0:0b:5c: 67:3a:13:57:fc:be:c1:10:b0:20:47:4c:a6:63:1f:90:5b:df: 46:5a:1a:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDD8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJFNEUxMTAvBgNVBAUTKDIyMkM5NDM1RjVENTRDREY2MzY5Rjg1RTcxQUExRDg0 NkVDQzVGM0UwHhcNMjUwNTEyMTgyMTE0WhcNMjUwNTE5MTgyMTE0WjAYMRYwFAYD VQQDEw02ODIyM2MxYS0wMDM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2gr0RuUe7ueV508WcBV3+YneYkayfrHD/qsUUbcOxivhMUPNQldT54cc816x hA+t1rFwtj7qWN5D48OReRZOF/MmJnNnviwVulKN9tSpmsp7L20oMUvw/8/XJHyH ipyiqX+ddDtw0TWnkLkpc4Wtx0NtUNEMM1nQJXPpwlGOAxE20ElW2QbiQWZOBC9N 4IlbBWP+QMS+G69Jz2DoHhayRnxaFGf33EZzIuZuMmeLetOe1/HcRPmRBbKGyMfq rZN8jotPTDGJyPiN06wQHiAKv5tYuUUCdPPUpx4QmkTV4xNGcdfg5yC8j5aYFQqM 3CVe+6vKrh93nn3fXGdrxPEJkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIArATWt oGjvV6BVYVCx4I39YElfMB8GA1UdIwQYMBaAFCIslDX11UzfY2n4XnGqHYRuzF8+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkU0RS9DMTczQ0RFODA2 MzYxMUVBQjI0OUI5NkJDNEY5QUUwMi9JaXlVTmZYVlROOWphZmhlY2FvZGhHN01Y ejQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lpeVVOZlhWVE45amFmaGVjYW9kaEc3TVh6NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkU0RS9DMTczQ0RFODA2MzYxMUVBQjI0OUI5NkJDNEY5QUUwMi9JaXlVTmZYVlRO OWphZmhlY2FvZGhHN01YejQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCC2Eh1FfSnM2WNIBhkVRqmm8Qavdl0QvZmq6h+cN1kaFCVzrJPYsQ eXjDeBwC61YsOl9FdRpvhSuJN99eUxk4CQWHvD5vqHyFBXQL4XV74tz0TpRaURhy xLIhQ1xJBR6wFWWgwZyDk26YtE7hfmdfPHuIFHvOLPlPabC0KZcfp11NeJPzvX26 wol8Ho3VovIC6uuJQzEE48NbXcGPL5uuZPCx5EqELMs8s6opmpbFSXfT8zrpQtfN OWDBzlzVWc9wiBLDbiM3mHfB9Vjwq1fS8GUQHxLC+R4oQL+l+aSRInudWI0Dw8/w C1xnOhNX/L7BELAgR0ymYx+QW99GWhr0 -----END CERTIFICATE-----Generated at Tue May 13 15:09:53 2025 by rpki-client