$ rpki-client -vvf rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft File: IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft (raw, json) Hash identifier: hbLKx7v3GGmfi3QOw1I2rJprKro6BDKSi6DK17a8XVM= Subject key identifier: 6C:83:51:DE:3C:58:B1:B7:DD:93:F0:2C:39:5B:8C:8C:CA:92:E2:E5 Authority key identifier: 22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 Certificate issuer: /CN=A914C475/serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Certificate serial: 06F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft Manifest number: 0BF6 Signing time: Wed 14 May 2025 18:49:15 +0000 Manifest this update: Wed 14 May 2025 18:49:15 +0000 Manifest next update: Wed 21 May 2025 18:49:15 +0000 Files and hashes: 1: IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl (hash: /IigLi6pGDUNxS0m2XgTd3CaoXdTdW3VfUc86znUM9w=) 2: 01283BC2532011EBAE6D1F37C4F9AE02.roa (hash: +Gukm6enyIbdbaf1JuwEUsgqXGQfDTqeuMKRTtycATA=) 3: D6F76118231C11EF84144357C4F9AE02.roa (hash: es734osl5liZ5XtweVos6tWec0UeUjh4JQH+2AuNXUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 18:49:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1776 (0x6f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C475, serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Validity Not Before: May 14 18:49:15 2025 GMT Not After : May 21 18:49:15 2025 GMT Subject: CN=6824e5ab-2d2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a6:cc:a6:ab:c9:08:a4:10:70:01:6b:44:28: b6:44:10:d9:e5:d7:f9:fd:f7:f1:e9:0c:69:c7:41: c0:f4:69:c5:58:bd:5d:f6:c9:1a:6d:8c:84:c8:2d: 60:b4:0e:62:14:95:f3:98:ff:1f:09:87:29:d8:ac: cd:56:7c:65:69:03:11:bd:12:90:d4:2b:f7:50:31: 37:0b:0f:3d:a8:91:75:c7:7c:9a:c9:9d:6e:58:bf: 5b:6d:2e:9e:f8:44:4f:39:d1:01:d2:1f:7d:ae:29: 5e:53:f1:1a:8f:61:9e:f5:55:08:50:d8:da:53:8b: 18:da:38:17:65:07:c5:34:db:a4:9a:88:07:18:48: 86:62:ce:71:c0:e0:ea:03:7b:44:ec:6d:de:e0:0a: d0:2c:78:9e:10:4c:f8:c4:87:4b:93:0c:69:06:f9: 82:a7:ff:a4:08:81:86:8b:87:5d:d7:7f:3f:52:1a: 50:86:3f:b0:94:cb:eb:a3:cd:5f:95:4e:81:39:97: 94:cb:00:73:49:aa:2f:1b:76:27:e0:f7:cd:0e:5e: f3:3f:fb:3f:d4:8b:5f:3e:9e:1f:22:e7:a9:20:f1: 00:95:7c:90:be:e5:bf:cb:e5:60:4f:3e:74:ee:ff: 42:8f:de:0c:a4:bc:b3:0a:82:ba:b5:80:e4:e0:9a: 51:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:83:51:DE:3C:58:B1:B7:DD:93:F0:2C:39:5B:8C:8C:CA:92:E2:E5 X509v3 Authority Key Identifier: keyid:22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:7f:e8:a2:db:ad:66:22:ac:e9:74:a1:8b:97:c1:94:2c:3c: 6a:68:e0:d7:dc:25:fe:9e:96:fb:5b:8f:f5:38:fd:d1:00:4d: 29:0e:94:cb:f3:6f:7f:96:44:4f:d0:84:6e:5d:6f:2c:36:18: 9a:54:5a:13:9f:8c:24:a1:a8:7f:54:1f:70:5a:2b:5c:c6:dd: 4e:70:75:78:55:35:b8:c7:47:86:12:04:ae:3d:44:6c:54:97: 0b:75:53:39:04:7b:50:c4:c0:4d:f6:68:43:b6:59:dd:f7:b8: 58:94:03:1a:4b:a2:1a:37:82:a6:e4:0e:06:f0:4c:a9:68:e2: 6b:55:de:d9:f2:3c:86:c3:24:f0:fb:97:bb:f4:31:17:86:56: b0:97:d2:68:95:d4:9a:9d:83:cb:f1:81:3b:66:b3:f9:45:40: 92:3e:d2:9f:f7:ea:22:42:d6:79:c8:da:21:1b:cf:83:98:45: a3:a5:24:00:17:36:43:d5:fb:bd:a3:16:55:f7:51:8c:69:fa: 33:e9:62:28:77:d5:2d:d5:00:39:98:43:1b:7c:12:6a:35:7a: 26:4e:fc:f9:75:af:1c:86:7f:c6:dc:67:a6:ac:57:36:71:6f: ca:14:3b:68:c8:5e:da:63:63:51:4c:7a:32:20:0a:c0:18:7f: 00:f9:1c:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0NzUxMTAvBgNVBAUTKDIyODUwN0VGRjgxQUEyOEU0OTFFMzI2RkJEMURDM0Iz QzkwODcyQjgwHhcNMjUwNTE0MTg0OTE1WhcNMjUwNTIxMTg0OTE1WjAYMRYwFAYD VQQDEw02ODI0ZTVhYi0yZDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt6bMpqvJCKQQcAFrRCi2RBDZ5df5/ffx6Qxpx0HA9GnFWL1d9skabYyEyC1g tA5iFJXzmP8fCYcp2KzNVnxlaQMRvRKQ1Cv3UDE3Cw89qJF1x3yayZ1uWL9bbS6e +ERPOdEB0h99rileU/Eaj2Ge9VUIUNjaU4sY2jgXZQfFNNukmogHGEiGYs5xwODq A3tE7G3e4ArQLHieEEz4xIdLkwxpBvmCp/+kCIGGi4dd138/UhpQhj+wlMvro81f lU6BOZeUywBzSaovG3Yn4PfNDl7zP/s/1ItfPp4fIuepIPEAlXyQvuW/y+VgTz50 7v9Cj94MpLyzCoK6tYDk4JpR5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGyDUd48 WLG33ZPwLDlbjIzKkuLlMB8GA1UdIwQYMBaAFCKFB+/4GqKOSR4yb70dw7PJCHK4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzQ3NS9FMDIyQTA1ODBF OTExMUVBQjBFODc0NDFDNEY5QUUwMi9Jb1VIN19nYW9vNUpIakp2dlIzRHM4a0lj cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lvVUg3X2dhb281SkhqSnZ2UjNEczhrSWNyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzQ3NS9FMDIyQTA1ODBFOTExMUVBQjBFODc0NDFDNEY5QUUwMi9Jb1VIN19nYW9v NUpIakp2dlIzRHM4a0ljcmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXf+ii261mIqzpdKGLl8GULDxqaODX3CX+npb7W4/1OP3RAE0pDpTL 829/lkRP0IRuXW8sNhiaVFoTn4wkoah/VB9wWitcxt1OcHV4VTW4x0eGEgSuPURs VJcLdVM5BHtQxMBN9mhDtlnd97hYlAMaS6IaN4Km5A4G8EypaOJrVd7Z8jyGwyTw +5e79DEXhlawl9JoldSanYPL8YE7ZrP5RUCSPtKf9+oiQtZ5yNohG8+DmEWjpSQA FzZD1fu9oxZV91GMafoz6WIod9Ut1QA5mEMbfBJqNXomTvz5da8chn/G3GemrFc2 cW/KFDtoyF7aY2NRTHoyIArAGH8A+RyX -----END CERTIFICATE-----Generated at Thu May 15 03:35:34 2025 by rpki-client