$ rpki-client -vvf rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft File: IpO9TF5PmillNYywGN8-Tu5N8c8.mft (raw, json) Hash identifier: pau0Y7Z1gqsYhNODGi04WYCNvKIDPiw03ackS0o2xTY= Subject key identifier: 27:CA:CF:C4:AA:39:80:34:32:AC:5D:B1:41:25:CD:C4:0F:E9:BA:6F Authority key identifier: 22:93:BD:4C:5E:4F:9A:29:65:35:8C:B0:18:DF:3E:4E:EE:4D:F1:CF Certificate issuer: /CN=A915177C/serialNumber=2293BD4C5E4F9A2965358CB018DF3E4EEE4DF1CF Certificate serial: 2FE0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft Manifest number: 2FBC Signing time: Wed 14 May 2025 15:31:28 +0000 Manifest this update: Wed 14 May 2025 15:31:27 +0000 Manifest next update: Wed 21 May 2025 15:31:27 +0000 Files and hashes: 1: IpO9TF5PmillNYywGN8-Tu5N8c8.crl (hash: PanmQj8a5fkdzRwc7fu5KAT77jQdvuf9bDP+l0MOziY=) 2: 149AB4BE7CE911EEB9A02D83C4F9AE02.roa (hash: E2NZXpYraOPVv0cpnUWbQpkzMNGT1LYi52LyYrBbmwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.crl rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 15:31:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12256 (0x2fe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915177C, serialNumber=2293BD4C5E4F9A2965358CB018DF3E4EEE4DF1CF Validity Not Before: May 14 15:31:27 2025 GMT Not After : May 21 15:31:27 2025 GMT Subject: CN=6824b74f-5640 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:aa:59:7a:b0:4f:b4:68:4b:d0:c6:b1:a3:ec: 07:72:69:85:e0:ac:45:9e:a0:21:ff:c7:6c:b7:02: 19:9f:ac:45:7c:ba:b3:d4:7e:27:5e:98:f8:49:86: 88:15:6f:4b:b9:8e:31:86:02:92:19:12:b7:d9:c2: ca:c3:fd:6e:e6:c4:f7:eb:79:7a:8e:31:4f:b3:28: ea:29:ff:fe:11:f1:3f:e6:98:cb:77:61:77:48:75: a8:a5:ad:5d:c9:0a:b0:49:19:d5:09:a7:01:85:71: 23:fe:65:3e:36:68:27:97:59:d9:08:f6:66:53:b7: 5e:72:49:fd:13:cc:03:d7:ba:0f:aa:ae:35:59:3d: 84:62:89:5b:c2:38:9b:02:d1:78:81:84:e0:0a:75: 41:5f:34:7b:3d:77:61:0d:13:01:56:03:51:cb:84: ac:34:a0:f2:84:d5:2d:6a:b1:87:47:d7:5d:63:a5: e4:2a:20:f3:b3:0f:91:ef:f4:c3:1e:70:42:b4:37: c0:58:50:b9:09:0d:35:9a:c2:b9:82:80:fd:ef:ea: 63:c9:a3:ff:5c:e7:58:f2:8e:41:f9:0f:0b:a4:f2: 3f:4c:89:4e:a1:ad:82:5b:c4:48:09:91:bc:7d:2f: f4:c0:68:ef:0c:9b:77:fd:f0:fc:94:22:e7:c1:cf: 20:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:CA:CF:C4:AA:39:80:34:32:AC:5D:B1:41:25:CD:C4:0F:E9:BA:6F X509v3 Authority Key Identifier: keyid:22:93:BD:4C:5E:4F:9A:29:65:35:8C:B0:18:DF:3E:4E:EE:4D:F1:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:03:9b:ca:99:ea:66:72:9f:0f:42:5e:1c:12:5c:40:ef:56: 5b:54:aa:96:2c:99:a0:68:db:72:ee:38:fd:5a:06:3e:d9:b2: 61:a7:4a:27:7e:85:60:59:c5:3d:41:8a:e1:55:9e:0e:3f:30: 49:7e:d9:c6:44:a3:69:b5:c0:73:5f:db:03:6d:ff:c7:6c:5f: e0:96:bb:cf:be:fb:b5:47:51:ac:0f:57:58:3d:3a:0a:e4:d7: b9:04:ff:40:bc:84:c6:1e:85:7b:49:f9:22:7c:69:6b:19:37: 94:e0:0a:62:67:83:5d:85:0b:63:55:5e:fc:e7:20:ee:cb:c7: 8c:c3:31:ce:06:29:d4:aa:bc:93:f1:a0:6d:91:18:65:b9:1a: 7d:c7:af:3b:c4:cb:01:ff:e8:3a:17:ce:83:06:54:b6:ef:bf: ad:db:bd:ff:68:09:6f:f6:fa:0d:d6:1a:d5:0a:c4:e0:c4:18: a2:f0:d1:ad:d1:dd:b3:0a:39:3b:6b:71:0f:6e:61:34:cb:b0: c6:8c:6c:41:86:63:4f:7e:fb:06:b1:eb:d9:b8:d8:4b:ef:3a: d6:4f:e6:83:53:62:82:36:c1:e9:df:d2:d7:c0:9f:e3:14:c9: 90:0b:67:9f:48:69:d7:d3:46:fd:05:08:3c:ef:cc:df:6e:ae: 96:8f:b0:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICL+AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE3N0MxMTAvBgNVBAUTKDIyOTNCRDRDNUU0RjlBMjk2NTM1OENCMDE4REYzRTRF RUU0REYxQ0YwHhcNMjUwNTE0MTUzMTI3WhcNMjUwNTIxMTUzMTI3WjAYMRYwFAYD VQQDEw02ODI0Yjc0Zi01NjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlKpZerBPtGhL0Maxo+wHcmmF4KxFnqAh/8dstwIZn6xFfLqz1H4nXpj4SYaI FW9LuY4xhgKSGRK32cLKw/1u5sT363l6jjFPsyjqKf/+EfE/5pjLd2F3SHWopa1d yQqwSRnVCacBhXEj/mU+Nmgnl1nZCPZmU7deckn9E8wD17oPqq41WT2EYolbwjib AtF4gYTgCnVBXzR7PXdhDRMBVgNRy4SsNKDyhNUtarGHR9ddY6XkKiDzsw+R7/TD HnBCtDfAWFC5CQ01msK5goD97+pjyaP/XOdY8o5B+Q8LpPI/TIlOoa2CW8RICZG8 fS/0wGjvDJt3/fD8lCLnwc8gIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCfKz8Sq OYA0MqxdsUElzcQP6bpvMB8GA1UdIwQYMBaAFCKTvUxeT5opZTWMsBjfPk7uTfHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTc3Qy85MjRDRENDMDE0 MzAxMUUzQTBCMTlGMkE1OTExRUEzMi9JcE85VEY1UG1pbGxOWXl3R044LVR1NU44 YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lwTzlURjVQbWlsbE5ZeXdHTjgtVHU1TjhjOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTc3Qy85MjRDRENDMDE0MzAxMUUzQTBCMTlGMkE1OTExRUEzMi9JcE85VEY1UG1p bGxOWXl3R044LVR1NU44YzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmA5vKmepmcp8PQl4cElxA71ZbVKqWLJmgaNty7jj9WgY+2bJhp0on foVgWcU9QYrhVZ4OPzBJftnGRKNptcBzX9sDbf/HbF/glrvPvvu1R1GsD1dYPToK 5Ne5BP9AvITGHoV7SfkifGlrGTeU4ApiZ4NdhQtjVV785yDuy8eMwzHOBinUqryT 8aBtkRhluRp9x687xMsB/+g6F86DBlS277+t273/aAlv9voN1hrVCsTgxBii8NGt 0d2zCjk7a3EPbmE0y7DGjGxBhmNPfvsGsevZuNhL7zrWT+aDU2KCNsHp39LXwJ/j FMmQC2efSGnX00b9BQg878zfbq6Wj7D0 -----END CERTIFICATE-----Generated at Fri May 16 07:07:08 2025 by rpki-client