$ rpki-client -vvf rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft File: -ibzSoM5sd823JwRkSBXw6WD9nM.mft (raw, json) Hash identifier: imM+MnQ0VqPiFbNZJR9UmVRRSqaBDYfK8nbZcBJivkY= Subject key identifier: 75:7A:27:95:BF:24:FE:1F:1D:2F:F0:61:B7:11:E8:F2:10:39:86:1A Authority key identifier: FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 Certificate issuer: /CN=A914711C/serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Certificate serial: 033F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft Manifest number: 033C Signing time: Sun 11 May 2025 00:37:07 +0000 Manifest this update: Sun 11 May 2025 00:37:07 +0000 Manifest next update: Sun 18 May 2025 00:37:07 +0000 Files and hashes: 1: -ibzSoM5sd823JwRkSBXw6WD9nM.crl (hash: 14CdFVXiaRGc2d8wnrGECP+gpTxM0hG5JqR6Z9V9XYE=) 2: 1AF42E76BBAC11EC8A07FE72C4F9AE02.roa (hash: M8EeCK4wseDGRAVaayv2SdcAD2UENUp0dQWvk3BdYlg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 00:37:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 831 (0x33f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914711C, serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Validity Not Before: May 11 00:37:07 2025 GMT Not After : May 18 00:37:07 2025 GMT Subject: CN=681ff133-f0ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:90:21:a3:d4:b9:ad:74:3e:80:de:5e:33:4a: 96:e5:cc:4f:43:19:42:c3:bf:6d:6d:6e:e1:be:54: f2:87:b2:f1:57:62:d8:10:cc:d6:5a:ae:3f:d6:92: 1f:82:29:49:b2:81:ab:af:31:dd:77:0d:0e:af:48: c8:ee:cc:26:4d:71:5a:50:a2:37:00:7d:2b:f8:7e: 35:25:60:85:a0:d3:cb:32:7c:1b:d6:64:bf:7d:ca: dd:c1:89:06:03:b2:2e:71:de:9c:0b:0a:07:79:4e: 70:b0:86:5e:8a:90:b3:1f:a9:4a:81:e8:b5:75:16: a6:21:3a:c5:f6:ea:89:07:b5:d0:76:ba:fe:0c:f9: f0:b6:47:59:b0:c8:b8:bb:12:b1:60:56:4e:e1:47: a8:bf:d1:40:e7:f8:57:24:d0:3e:f1:19:86:03:3b: 89:3f:71:12:56:70:3c:c7:7d:5f:0f:23:77:df:7b: 97:31:ac:85:9f:06:e8:d3:e4:1a:1e:e3:15:91:65: 34:01:3f:33:de:f3:7e:f1:33:bf:55:e5:93:27:18: a8:57:d8:df:d5:bf:df:4f:2f:a0:d5:9a:8a:76:02: f8:c9:06:32:17:5d:81:3c:b7:b5:76:a4:ac:fa:03: 1c:60:62:59:ef:b3:9c:5c:8a:a2:e1:e5:8a:93:34: 53:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:7A:27:95:BF:24:FE:1F:1D:2F:F0:61:B7:11:E8:F2:10:39:86:1A X509v3 Authority Key Identifier: keyid:FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:70:36:e4:87:4f:b3:e5:44:6a:20:40:8c:d4:ad:8c:7b:ef: 4a:ec:90:f9:03:40:e0:e7:e9:40:f3:ee:a7:3c:6e:33:8b:3b: 6d:ca:5e:74:5c:0f:85:a8:f2:2e:81:02:6b:78:9b:57:e3:4a: 41:2e:08:6e:85:81:1d:99:d1:1f:7a:5f:e8:03:08:36:57:ff: 41:e4:ae:84:6f:78:04:f0:ff:ce:1a:d6:89:05:6f:10:74:be: 6f:ab:2c:f0:86:6a:a1:77:00:51:94:bd:aa:0c:ba:02:b3:74: 55:d1:dc:aa:47:93:e7:2c:97:2c:36:72:d1:a7:03:f1:8b:fc: 55:8b:cf:88:69:c7:9b:03:23:5d:52:f6:ad:ed:67:86:14:44: 85:d7:b4:77:80:69:68:04:24:97:0f:e1:4e:fd:9c:88:79:13: 3e:35:f4:fc:32:d3:16:7e:e1:39:5b:49:f9:4d:b1:d6:f5:80: cc:83:7b:7c:b9:cf:c7:7d:a4:1d:1e:c7:1a:ce:5a:63:9f:67: 59:0c:87:61:aa:3d:63:4e:d7:67:ca:c3:3f:4c:b6:66:d2:a8: 46:6c:fb:e4:7f:83:e4:fd:d7:4b:46:1b:d7:1c:30:8a:66:e6: e2:0e:05:37:bd:d4:64:2f:3a:ef:00:aa:01:ae:56:af:ab:04: a7:5f:c9:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcxMUMxMTAvBgNVBAUTKEZBMjZGMzRBODMzOUIxREYzNkRDOUMxMTkxMjA1N0Mz QTU4M0Y2NzMwHhcNMjUwNTExMDAzNzA3WhcNMjUwNTE4MDAzNzA3WjAYMRYwFAYD VQQDEw02ODFmZjEzMy1mMGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt5Aho9S5rXQ+gN5eM0qW5cxPQxlCw79tbW7hvlTyh7LxV2LYEMzWWq4/1pIf gilJsoGrrzHddw0Or0jI7swmTXFaUKI3AH0r+H41JWCFoNPLMnwb1mS/fcrdwYkG A7Iucd6cCwoHeU5wsIZeipCzH6lKgei1dRamITrF9uqJB7XQdrr+DPnwtkdZsMi4 uxKxYFZO4Ueov9FA5/hXJNA+8RmGAzuJP3ESVnA8x31fDyN333uXMayFnwbo0+Qa HuMVkWU0AT8z3vN+8TO/VeWTJxioV9jf1b/fTy+g1ZqKdgL4yQYyF12BPLe1dqSs +gMcYGJZ77OcXIqi4eWKkzRTXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHV6J5W/ JP4fHS/wYbcR6PIQOYYaMB8GA1UdIwQYMBaAFPom80qDObHfNtycEZEgV8Olg/Zz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzExQy9BOEFDNzI1MEJC QTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNkODIzSndSa1NCWHc2V0Q5 bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1pYnpTb001c2Q4MjNKd1JrU0JYdzZXRDluTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzExQy9BOEFDNzI1MEJCQTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNk ODIzSndSa1NCWHc2V0Q5bk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIcDbkh0+z5URqIECM1K2Me+9K7JD5A0Dg5+lA8+6nPG4zizttyl50 XA+FqPIugQJreJtX40pBLghuhYEdmdEfel/oAwg2V/9B5K6Eb3gE8P/OGtaJBW8Q dL5vqyzwhmqhdwBRlL2qDLoCs3RV0dyqR5PnLJcsNnLRpwPxi/xVi8+IacebAyNd Uvat7WeGFESF17R3gGloBCSXD+FO/ZyIeRM+NfT8MtMWfuE5W0n5TbHW9YDMg3t8 uc/HfaQdHscazlpjn2dZDIdhqj1jTtdnysM/TLZm0qhGbPvkf4Pk/ddLRhvXHDCK ZubiDgU3vdRkLzrvAKoBrlavqwSnX8ke -----END CERTIFICATE-----Generated at Sun May 11 09:41:02 2025 by rpki-client