$ rpki-client -vvf rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft File: iCJHhVdMHyPKnEOe2PVTiPamjOI.mft (raw, json) Hash identifier: Hdugl86Pwi4AcTzgEchR/SNEqVZTv7E7Aid7R7VHwLY= Subject key identifier: D3:3C:51:B5:15:62:BF:41:B2:66:89:C2:8D:AF:D3:A6:4F:9C:B3:A8 Authority key identifier: 88:22:47:85:57:4C:1F:23:CA:9C:43:9E:D8:F5:53:88:F6:A6:8C:E2 Certificate issuer: /CN=A91689B7/serialNumber=88224785574C1F23CA9C439ED8F55388F6A68CE2 Certificate serial: 01E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iCJHhVdMHyPKnEOe2PVTiPamjOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft Manifest number: 01E0 Signing time: Sun 11 May 2025 01:43:48 +0000 Manifest this update: Sun 11 May 2025 01:43:47 +0000 Manifest next update: Sun 18 May 2025 01:43:47 +0000 Files and hashes: 1: iCJHhVdMHyPKnEOe2PVTiPamjOI.crl (hash: otVYAhzT7XjqTzfrfmbHXfu6S2XwWuurkqRYJotNcek=) 2: 2455276E39B311EEA6DFE66BC4F9AE02.roa (hash: i/snzsv5ugVK5M4wkOzh02txTFh9Vl9HyndyddhSqd8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.crl rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iCJHhVdMHyPKnEOe2PVTiPamjOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 01:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 486 (0x1e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91689B7, serialNumber=88224785574C1F23CA9C439ED8F55388F6A68CE2 Validity Not Before: May 11 01:43:47 2025 GMT Not After : May 18 01:43:47 2025 GMT Subject: CN=682000d3-383d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1f:e7:ef:be:44:8f:0b:6f:0e:7b:08:d1:c4: 07:9b:e7:0c:3a:b8:41:fd:42:df:1b:ce:04:2e:a4: 5b:26:24:8b:4d:c9:8f:ff:bf:6e:ec:af:79:62:ea: 61:f6:fa:03:40:47:8f:21:95:c7:99:6d:66:c7:d6: e7:18:6b:8c:04:23:fd:e8:d7:f2:21:ea:5a:01:ef: f6:88:84:12:f6:21:23:02:b9:5e:68:11:43:17:e3: 2a:87:d1:9a:6a:52:7e:78:12:c5:e5:b0:ec:21:e6: e6:36:96:ee:b8:83:7f:2d:e5:03:ac:20:e9:3e:73: 7a:02:34:58:ee:ce:14:8f:3b:20:de:e5:4b:f2:a4: 47:c3:82:59:8a:a0:94:a6:72:08:74:52:e9:80:bf: 8b:46:20:0d:c1:3e:60:52:73:0c:fe:32:d0:6b:e9: 8c:02:be:3c:d1:d7:66:7f:db:da:b1:5e:b2:7a:48: f1:60:75:c8:59:0a:ae:5f:38:1e:25:45:c4:ec:46: bf:39:0f:48:67:a9:c6:5a:7d:d5:94:bc:e6:44:b7: 26:f3:e0:6e:bc:28:19:b6:df:21:86:1f:1b:c4:80: d5:d9:79:6f:8f:28:36:9b:ef:5e:6c:a2:f3:5e:25: 01:17:84:17:0a:6e:9d:56:ad:1c:38:f2:ed:ec:5f: a3:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:3C:51:B5:15:62:BF:41:B2:66:89:C2:8D:AF:D3:A6:4F:9C:B3:A8 X509v3 Authority Key Identifier: keyid:88:22:47:85:57:4C:1F:23:CA:9C:43:9E:D8:F5:53:88:F6:A6:8C:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iCJHhVdMHyPKnEOe2PVTiPamjOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:4d:50:f6:82:aa:de:8f:fb:15:95:3b:b6:5b:da:4c:8d:11: d7:4d:7a:69:9a:2a:93:3c:0f:02:31:79:14:cb:90:9e:6c:82: b8:06:6f:02:1d:9a:ce:60:5c:24:54:68:3b:0f:6c:69:96:7d: 21:32:71:37:12:9c:e9:fc:7e:1d:b6:f0:02:38:39:73:35:a1: b8:c9:8f:eb:ad:1d:10:5c:37:29:29:22:46:84:85:40:d7:b2: 29:88:3a:3e:23:f6:bb:64:01:59:64:81:0d:78:1a:5a:a7:f3: 55:ac:54:23:01:1e:0c:a8:42:4c:6a:35:73:ca:d9:8d:4e:c2: 55:00:c7:1d:e7:48:d2:d7:fa:d3:6d:69:18:c2:05:a0:29:46: 6c:5f:99:38:f4:93:32:91:a2:d8:9b:d7:9c:58:d8:1a:99:4d: 4f:e1:1f:c6:4c:87:fb:ce:37:ba:61:37:b2:ff:9a:99:6e:06: 04:d0:47:7a:3e:7f:a7:03:ef:18:d8:c0:b0:fd:f0:e2:60:fc: 53:74:51:78:ce:74:a8:76:20:0d:1f:82:b9:d6:cf:48:9b:af: e8:bc:3b:37:57:84:e4:17:0f:b7:e2:23:01:2b:5e:5c:01:fb: 39:5c:8e:59:75:d1:ef:4f:c7:70:65:a6:d9:0d:69:6c:2d:14: 28:aa:50:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg5QjcxMTAvBgNVBAUTKDg4MjI0Nzg1NTc0QzFGMjNDQTlDNDM5RUQ4RjU1Mzg4 RjZBNjhDRTIwHhcNMjUwNTExMDE0MzQ3WhcNMjUwNTE4MDE0MzQ3WjAYMRYwFAYD VQQDEw02ODIwMDBkMy0zODNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvR/n775EjwtvDnsI0cQHm+cMOrhB/ULfG84ELqRbJiSLTcmP/79u7K95Yuph 9voDQEePIZXHmW1mx9bnGGuMBCP96NfyIepaAe/2iIQS9iEjArleaBFDF+Mqh9Ga alJ+eBLF5bDsIebmNpbuuIN/LeUDrCDpPnN6AjRY7s4Ujzsg3uVL8qRHw4JZiqCU pnIIdFLpgL+LRiANwT5gUnMM/jLQa+mMAr480ddmf9vasV6yekjxYHXIWQquXzge JUXE7Ea/OQ9IZ6nGWn3VlLzmRLcm8+BuvCgZtt8hhh8bxIDV2Xlvjyg2m+9ebKLz XiUBF4QXCm6dVq0cOPLt7F+jswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNM8UbUV Yr9BsmaJwo2v06ZPnLOoMB8GA1UdIwQYMBaAFIgiR4VXTB8jypxDntj1U4j2pozi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODlCNy9CMUU1NEFCODU2 QTIxMUVEQjRBMUIyMjVDNEY5QUUwMi9pQ0pIaFZkTUh5UEtuRU9lMlBWVGlQYW1q T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lDSkhoVmRNSHlQS25FT2UyUFZUaVBhbWpPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODlCNy9CMUU1NEFCODU2QTIxMUVEQjRBMUIyMjVDNEY5QUUwMi9pQ0pIaFZkTUh5 UEtuRU9lMlBWVGlQYW1qT0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMTVD2gqrej/sVlTu2W9pMjRHXTXppmiqTPA8CMXkUy5CebIK4Bm8C HZrOYFwkVGg7D2xpln0hMnE3Epzp/H4dtvACODlzNaG4yY/rrR0QXDcpKSJGhIVA 17IpiDo+I/a7ZAFZZIENeBpap/NVrFQjAR4MqEJMajVzytmNTsJVAMcd50jS1/rT bWkYwgWgKUZsX5k49JMykaLYm9ecWNgamU1P4R/GTIf7zje6YTey/5qZbgYE0Ed6 Pn+nA+8Y2MCw/fDiYPxTdFF4znSodiANH4K51s9Im6/ovDs3V4TkFw+34iMBK15c Afs5XI5ZddHvT8dwZabZDWlsLRQoqlA0 -----END CERTIFICATE-----Generated at Mon May 12 12:47:11 2025 by rpki-client