$ rpki-client -vvf rpki.apnic.net/member_repository/A916BE2F/FEB122583B3011EAA9B7A027C4F9AE02/IooLm4TrYOtGFVZbAhDVR1xRiKk.mft File: IooLm4TrYOtGFVZbAhDVR1xRiKk.mft (raw, json) Hash identifier: YChUQsEUP96QFZofV8QZYMzl9dDTFGUkjrMBh+jBPD4= Subject key identifier: 74:C6:C0:B1:BB:32:F7:BC:92:FE:10:C4:FB:58:AB:DF:0B:B5:A2:E7 Authority key identifier: 22:8A:0B:9B:84:EB:60:EB:46:15:56:5B:02:10:D5:47:5C:51:88:A9 Certificate issuer: /CN=A916BE2F/serialNumber=228A0B9B84EB60EB4615565B0210D5475C5188A9 Certificate serial: 0B2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IooLm4TrYOtGFVZbAhDVR1xRiKk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BE2F/FEB122583B3011EAA9B7A027C4F9AE02/IooLm4TrYOtGFVZbAhDVR1xRiKk.mft Manifest number: 0B23 Signing time: Sat 10 May 2025 18:58:19 +0000 Manifest this update: Sat 10 May 2025 18:58:18 +0000 Manifest next update: Sat 17 May 2025 18:58:18 +0000 Files and hashes: 1: IooLm4TrYOtGFVZbAhDVR1xRiKk.crl (hash: 15YDAFo7BjO7vFzT68NYqD0TH77+NKUIRzOa7AyGnAA=) 2: CFF490F63B3211EAA19CAB2DC4F9AE02.roa (hash: 6Ds3NGu2wYLJMMD3M602IBKNI5PFzIBlSYGM/Hpizc8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BE2F/FEB122583B3011EAA9B7A027C4F9AE02/IooLm4TrYOtGFVZbAhDVR1xRiKk.crl rsync://rpki.apnic.net/member_repository/A916BE2F/FEB122583B3011EAA9B7A027C4F9AE02/IooLm4TrYOtGFVZbAhDVR1xRiKk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IooLm4TrYOtGFVZbAhDVR1xRiKk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 18:58:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2858 (0xb2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BE2F, serialNumber=228A0B9B84EB60EB4615565B0210D5475C5188A9 Validity Not Before: May 10 18:58:18 2025 GMT Not After : May 17 18:58:18 2025 GMT Subject: CN=681fa1cb-3e2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:86:ef:ca:f8:20:60:a3:e7:70:26:3f:31:30: 57:bd:bc:12:fb:74:20:79:72:90:6c:1a:62:2e:56: c7:bd:02:bf:14:06:a7:71:10:32:81:d8:c4:24:c4: f4:3b:9f:3b:e5:0f:bd:d9:df:10:ef:08:4d:3c:39: e4:42:8a:fc:24:83:bf:7e:c2:2b:ec:49:bd:9a:9f: 01:27:c3:7e:00:f7:b8:e2:2c:f5:90:72:4b:f3:59: 0b:01:00:44:6e:0b:24:fc:3c:11:41:b5:fb:f8:78: 51:d7:a6:67:54:ff:90:9a:8e:7c:74:c4:5c:a2:1b: e5:de:44:b5:c0:68:48:2e:87:35:0b:5e:5b:a0:38: c3:5b:85:a8:bc:b7:56:3c:07:86:09:55:f6:fe:71: 0c:6b:d0:11:25:a1:f7:36:1b:46:d3:3e:2c:b9:5a: 3c:6e:43:c3:d0:c4:c4:99:57:6c:d5:ac:f5:b4:85: cb:f0:c2:7c:07:f2:e5:1e:6f:d3:16:40:fb:1f:0b: 9d:67:ce:95:db:be:01:93:9c:41:0e:73:6a:3a:b1: 62:5e:67:77:74:c6:b9:0f:7e:26:0f:0a:bb:e6:ca: 7b:09:73:95:7d:16:a7:87:95:99:62:c5:f9:5e:90: 83:a0:f9:68:2a:11:51:ef:2a:2d:42:02:a0:c1:5b: 62:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:C6:C0:B1:BB:32:F7:BC:92:FE:10:C4:FB:58:AB:DF:0B:B5:A2:E7 X509v3 Authority Key Identifier: keyid:22:8A:0B:9B:84:EB:60:EB:46:15:56:5B:02:10:D5:47:5C:51:88:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BE2F/FEB122583B3011EAA9B7A027C4F9AE02/IooLm4TrYOtGFVZbAhDVR1xRiKk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IooLm4TrYOtGFVZbAhDVR1xRiKk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BE2F/FEB122583B3011EAA9B7A027C4F9AE02/IooLm4TrYOtGFVZbAhDVR1xRiKk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:d2:95:f2:e9:0d:78:59:23:32:9b:c7:19:08:c9:23:63:2e: 37:5c:9a:d4:20:15:e5:d4:78:c4:c1:aa:b7:54:b6:cb:f2:0b: ad:84:31:1d:22:3a:6d:8b:3d:d2:c1:00:6a:b3:6d:a4:45:20: 6b:fb:44:76:f5:f1:4c:5b:f4:a7:67:da:b2:ae:a1:a6:73:53: 6b:ca:b6:70:03:06:3a:1a:09:bb:f2:c8:d6:3f:58:6f:93:f9: d9:fe:60:4b:2d:16:23:01:4c:e0:fc:ce:4f:2c:6b:8c:62:d2: 59:ba:08:3b:75:fc:6e:84:09:4e:2e:53:14:62:6f:ca:1b:fb: ea:e0:78:c3:71:68:3e:c2:21:bc:7e:82:c6:25:79:f6:65:3c: cd:4c:85:b8:8f:1d:c1:9d:ea:03:d4:f2:bf:fe:fc:69:6c:65: 81:2c:35:63:25:c2:a2:39:5e:d0:7d:f0:c1:79:47:49:05:63: d4:1c:9a:1e:03:8f:1b:d9:9d:a3:32:79:d3:7e:34:a2:2e:36: e8:42:7c:bc:f8:4d:be:d4:ce:47:18:ce:1d:70:9e:b0:c3:63: ae:a8:f6:83:41:1a:cb:f3:9f:90:45:97:15:0f:76:a1:1b:62: 2d:5f:89:73:6e:b2:5a:9d:93:90:0e:48:cf:62:0a:dd:e2:3a: 1d:67:42:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJFMkYxMTAvBgNVBAUTKDIyOEEwQjlCODRFQjYwRUI0NjE1NTY1QjAyMTBENTQ3 NUM1MTg4QTkwHhcNMjUwNTEwMTg1ODE4WhcNMjUwNTE3MTg1ODE4WjAYMRYwFAYD VQQDEw02ODFmYTFjYi0zZTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvobvyvggYKPncCY/MTBXvbwS+3QgeXKQbBpiLlbHvQK/FAancRAygdjEJMT0 O5875Q+92d8Q7whNPDnkQor8JIO/fsIr7Em9mp8BJ8N+APe44iz1kHJL81kLAQBE bgsk/DwRQbX7+HhR16ZnVP+Qmo58dMRcohvl3kS1wGhILoc1C15boDjDW4WovLdW PAeGCVX2/nEMa9ARJaH3NhtG0z4suVo8bkPD0MTEmVds1az1tIXL8MJ8B/LlHm/T FkD7HwudZ86V274Bk5xBDnNqOrFiXmd3dMa5D34mDwq75sp7CXOVfRanh5WZYsX5 XpCDoPloKhFR7yotQgKgwVtinwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHTGwLG7 Mve8kv4QxPtYq98LtaLnMB8GA1UdIwQYMBaAFCKKC5uE62DrRhVWWwIQ1UdcUYip MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkUyRi9GRUIxMjI1ODNC MzAxMUVBQTlCN0EwMjdDNEY5QUUwMi9Jb29MbTRUcllPdEdGVlpiQWhEVlIxeFJp S2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lvb0xtNFRyWU90R0ZWWmJBaERWUjF4UmlLay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkUyRi9GRUIxMjI1ODNCMzAxMUVBQTlCN0EwMjdDNEY5QUUwMi9Jb29MbTRUcllP dEdGVlpiQWhEVlIxeFJpS2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBt0pXy6Q14WSMym8cZCMkjYy43XJrUIBXl1HjEwaq3VLbL8guthDEd Ijptiz3SwQBqs22kRSBr+0R29fFMW/SnZ9qyrqGmc1NryrZwAwY6Ggm78sjWP1hv k/nZ/mBLLRYjAUzg/M5PLGuMYtJZugg7dfxuhAlOLlMUYm/KG/vq4HjDcWg+wiG8 foLGJXn2ZTzNTIW4jx3BneoD1PK//vxpbGWBLDVjJcKiOV7QffDBeUdJBWPUHJoe A48b2Z2jMnnTfjSiLjboQny8+E2+1M5HGM4dcJ6ww2OuqPaDQRrL85+QRZcVD3ah G2ItX4lzbrJanZOQDkjPYgrd4jodZ0Lt -----END CERTIFICATE-----Generated at Mon May 12 19:08:22 2025 by rpki-client