$ rpki-client -vvf rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft File: IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft (raw, json) Hash identifier: 47sUK//khNglOFd4cw80RDWsYXK95M8htPrkewbokcs= Subject key identifier: A0:9F:83:DD:2B:40:14:E1:4B:AB:2C:0E:C4:F9:ED:74:F1:25:0B:BD Authority key identifier: 21:7C:3D:8B:ED:0B:40:C0:FB:08:8B:59:EE:6E:65:AE:6C:66:1F:0D Certificate issuer: /CN=A9152DE4/serialNumber=217C3D8BED0B40C0FB088B59EE6E65AE6C661F0D Certificate serial: 03F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft Manifest number: 03ED Signing time: Mon 05 May 2025 00:07:59 +0000 Manifest this update: Mon 05 May 2025 00:07:58 +0000 Manifest next update: Mon 12 May 2025 00:07:58 +0000 Files and hashes: 1: IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl (hash: y7mrQq6+Ctrq2MPaFzaiIXr0a/VuCKgsPifyZJefuas=) 2: E986DDEC979911ECB3B7CE39C4F9AE02.roa (hash: yvgJMR+/eFQNfa9YPke7BcqszX7za/b5BsbuAWKuz/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 00:07:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1015 (0x3f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152DE4, serialNumber=217C3D8BED0B40C0FB088B59EE6E65AE6C661F0D Validity Not Before: May 5 00:07:58 2025 GMT Not After : May 12 00:07:58 2025 GMT Subject: CN=6818015f-c815 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:24:75:6c:4e:c3:c1:41:f0:e9:07:a7:f3:7e: f6:b8:39:30:a3:22:c5:79:5c:e0:3c:2f:99:b4:62: 57:9e:8d:41:f4:cc:80:ab:9f:48:f3:68:56:47:40: cb:c1:15:bc:9e:31:6e:dd:8d:79:ad:b3:a7:97:1a: f7:9b:db:90:b6:5c:5d:90:44:9d:be:71:28:3d:00: 74:5c:11:f9:52:56:7a:45:32:15:f6:bf:95:eb:9e: 45:26:b1:d6:b4:a9:47:3a:57:ea:83:68:e5:9d:a2: eb:d5:da:0b:7b:23:a9:72:29:74:4c:0c:e6:7e:3f: b1:62:4b:6b:20:74:dd:7b:ad:8d:ca:66:9f:f8:6b: 45:ca:b4:aa:6a:53:b4:57:7c:99:56:80:ed:eb:2b: a6:44:fa:53:49:b3:8d:d0:ef:02:de:f8:48:cb:32: 10:2f:f3:1b:6a:21:ae:a9:22:85:74:fa:e8:7b:63: 5b:25:20:a7:96:b7:c3:a4:ba:cd:bf:fe:ed:90:e4: 58:09:b3:bb:89:2a:5b:2c:5c:d3:bc:40:99:1c:e9: 92:a8:83:d8:e5:bd:56:46:01:65:8c:ec:87:62:64: c4:9f:55:2d:ca:7e:c7:4c:f6:58:3d:5f:24:05:49: 95:b8:d1:7c:5b:75:28:f3:3a:38:e4:c7:06:b4:59: 4e:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:9F:83:DD:2B:40:14:E1:4B:AB:2C:0E:C4:F9:ED:74:F1:25:0B:BD X509v3 Authority Key Identifier: keyid:21:7C:3D:8B:ED:0B:40:C0:FB:08:8B:59:EE:6E:65:AE:6C:66:1F:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:be:18:99:0a:cf:23:20:20:01:84:b8:f2:ea:f2:16:50:62: 6d:e3:b5:6d:7b:a8:91:99:6c:fa:4f:3e:5a:e8:28:42:e2:f1: c2:67:6b:e2:92:3e:08:1f:83:07:a5:ea:01:3c:4e:90:1c:67: 7c:83:be:24:56:16:8f:a9:96:7f:28:5e:54:58:aa:86:87:1c: 76:7d:8b:17:29:9a:82:63:36:1c:a9:12:f1:38:14:a6:ce:9b: 85:b0:a3:9f:63:15:0e:85:84:de:24:d5:7e:47:aa:2b:ed:2e: 1d:2b:92:7a:1b:83:59:9b:df:23:90:23:3b:b6:89:f9:8f:83: d9:37:1d:ca:9c:03:a5:ec:67:7d:8f:f0:ba:1e:68:4f:bb:30: 01:d3:71:b9:be:e6:df:b2:60:cc:f4:45:45:80:0d:c7:4a:e2: 6c:d7:a3:87:19:8a:6a:c3:c3:fd:bd:58:9f:c6:c6:57:ac:e7: f1:60:14:b8:47:16:d5:b3:20:4d:fe:09:4a:35:a7:1d:01:f8: 05:89:29:27:28:1e:8c:4f:47:28:43:49:a0:f8:d5:e5:75:64: bc:b6:e6:2a:a3:b3:8c:a9:61:4d:1a:50:c3:5e:0b:db:54:a2: a8:79:33:c6:a2:d6:da:79:56:e2:12:9a:2f:cd:72:3e:07:a5: 15:02:2a:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJERTQxMTAvBgNVBAUTKDIxN0MzRDhCRUQwQjQwQzBGQjA4OEI1OUVFNkU2NUFF NkM2NjFGMEQwHhcNMjUwNTA1MDAwNzU4WhcNMjUwNTEyMDAwNzU4WjAYMRYwFAYD VQQDEw02ODE4MDE1Zi1jODE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3SR1bE7DwUHw6Qen8372uDkwoyLFeVzgPC+ZtGJXno1B9MyAq59I82hWR0DL wRW8njFu3Y15rbOnlxr3m9uQtlxdkESdvnEoPQB0XBH5UlZ6RTIV9r+V655FJrHW tKlHOlfqg2jlnaLr1doLeyOpcil0TAzmfj+xYktrIHTde62Nymaf+GtFyrSqalO0 V3yZVoDt6yumRPpTSbON0O8C3vhIyzIQL/MbaiGuqSKFdProe2NbJSCnlrfDpLrN v/7tkORYCbO7iSpbLFzTvECZHOmSqIPY5b1WRgFljOyHYmTEn1Utyn7HTPZYPV8k BUmVuNF8W3Uo8zo45McGtFlOGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKCfg90r QBThS6ssDsT57XTxJQu9MB8GA1UdIwQYMBaAFCF8PYvtC0DA+wiLWe5uZa5sZh8N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkRFNC80Q0NDQzMzMjc5 MkExMUVDQjBDNTkxNjJDNEY5QUUwMi9JWHc5aS0wTFFNRDdDSXRaN201bHJteG1I dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lYdzlpLTBMUU1EN0NJdFo3bTVscm14bUh3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MkRFNC80Q0NDQzMzMjc5MkExMUVDQjBDNTkxNjJDNEY5QUUwMi9JWHc5aS0wTFFN RDdDSXRaN201bHJteG1IdzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChvhiZCs8jICABhLjy6vIWUGJt47Vte6iRmWz6Tz5a6ChC4vHCZ2vi kj4IH4MHpeoBPE6QHGd8g74kVhaPqZZ/KF5UWKqGhxx2fYsXKZqCYzYcqRLxOBSm zpuFsKOfYxUOhYTeJNV+R6or7S4dK5J6G4NZm98jkCM7ton5j4PZNx3KnAOl7Gd9 j/C6HmhPuzAB03G5vubfsmDM9EVFgA3HSuJs16OHGYpqw8P9vVifxsZXrOfxYBS4 RxbVsyBN/glKNacdAfgFiSknKB6MT0coQ0mg+NXldWS8tuYqo7OMqWFNGlDDXgvb VKKoeTPGotbaeVbiEpovzXI+B6UVAirR -----END CERTIFICATE-----Generated at Mon May 5 12:43:49 2025 by rpki-client