$ rpki-client -vvf rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft File: ItPpdE2tSXUDbMQirBHEBHIOZuo.mft (raw, json) Hash identifier: KIG27N2KVtTShQxY+bA2gHP3w0eEmoQ5zZhb2YG2RAk= Subject key identifier: D4:9A:4C:DF:06:22:2F:5D:56:60:B6:47:F1:8A:46:EC:84:DC:E3:F8 Authority key identifier: 22:D3:E9:74:4D:AD:49:75:03:6C:C4:22:AC:11:C4:04:72:0E:66:EA Certificate issuer: /CN=A917A4F7/serialNumber=22D3E9744DAD4975036CC422AC11C404720E66EA Certificate serial: 011B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItPpdE2tSXUDbMQirBHEBHIOZuo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft Manifest number: 0119 Signing time: Sun 11 May 2025 03:38:55 +0000 Manifest this update: Sun 11 May 2025 03:38:55 +0000 Manifest next update: Sun 18 May 2025 03:38:55 +0000 Files and hashes: 1: ItPpdE2tSXUDbMQirBHEBHIOZuo.crl (hash: aT/oNVm77k+nu5zfu7Net/Clec6Q0VVoFqnkWPgpK1w=) 2: 9BE3C7087E8311EEBC7E6681C4F9AE02.roa (hash: dQp1RFXkmdHYdN2uYRrVX4OpwPj5pGn/GAC5Xyj0LE8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.crl rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItPpdE2tSXUDbMQirBHEBHIOZuo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 03:38:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 283 (0x11b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A4F7, serialNumber=22D3E9744DAD4975036CC422AC11C404720E66EA Validity Not Before: May 11 03:38:55 2025 GMT Not After : May 18 03:38:55 2025 GMT Subject: CN=68201bcf-6ec6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:f7:d1:25:9c:4e:fc:3c:53:88:e3:e9:19:ef: 1e:51:2c:ac:cc:97:49:68:40:12:57:70:14:96:b1: 41:2f:0d:d7:6f:e0:e1:95:24:8c:9e:79:5c:cb:46: 47:ba:73:87:da:ff:93:83:7f:c0:c6:83:46:2c:47: 7b:5d:17:96:28:cf:2f:3f:a6:c4:aa:a2:02:30:12: 4e:ad:cf:0a:d9:cb:8f:1d:d3:db:21:6c:e7:1f:d6: 8c:36:1e:0b:2e:f6:c6:d7:81:79:f7:c9:a6:ae:48: b6:ef:60:c2:61:84:d8:08:bf:14:12:b0:f5:72:51: 9c:97:1b:43:c5:cd:a9:8e:a6:0b:4d:29:7e:4d:ba: 2c:21:00:d8:76:72:5a:10:e2:d8:b5:d9:bd:d5:ae: 9e:a6:51:b8:83:3f:ed:b2:7e:89:9d:07:d0:8e:7e: 87:87:71:68:7c:1b:9f:85:d2:c5:a2:7f:de:85:c8: 9d:79:27:d2:68:f0:2e:d3:ab:31:89:88:72:2d:2a: a1:48:9a:af:40:c6:6e:52:ac:5e:d9:cd:c4:95:f4: f7:12:20:43:90:bf:49:7a:37:80:d7:7d:43:51:b7: 4b:8b:13:c8:60:f4:9a:c6:8d:a1:1b:37:f4:6a:c5: 64:82:77:97:b4:1e:0a:0d:0a:28:80:d1:15:69:66: 83:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:9A:4C:DF:06:22:2F:5D:56:60:B6:47:F1:8A:46:EC:84:DC:E3:F8 X509v3 Authority Key Identifier: keyid:22:D3:E9:74:4D:AD:49:75:03:6C:C4:22:AC:11:C4:04:72:0E:66:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItPpdE2tSXUDbMQirBHEBHIOZuo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:26:24:5e:e6:d5:9d:16:c4:1f:70:f9:fb:5c:43:cf:dc:e4: 52:1b:da:e9:ee:26:ed:c8:56:44:e4:03:19:ac:3b:e0:e6:a6: b1:c6:55:be:e6:06:ea:db:11:78:1c:47:ce:94:bd:ae:72:04: a8:fa:a7:37:2e:b5:39:b9:02:81:e4:52:72:f0:c7:84:87:64: 48:94:b2:ba:ee:e9:e5:52:43:14:54:e9:ea:76:e4:3f:8b:8f: 6c:6e:21:32:28:aa:57:3a:08:be:22:6a:00:74:71:34:85:0a: 21:63:da:e3:6d:e3:53:59:02:bd:b1:2e:9f:cf:4b:f3:d8:77: 84:17:f4:f2:6d:72:e7:d1:34:e7:8f:0f:f5:16:8f:d2:e9:82: 29:f6:66:de:76:e2:a6:c0:01:92:bd:81:d7:8b:a4:b8:5a:20: 4e:d7:7c:7c:da:d9:99:3d:8e:68:0f:aa:70:91:dc:50:19:b0: f8:60:64:1b:3b:ee:b7:89:bd:57:43:c5:74:dc:04:f3:2a:4a: 43:e6:1a:0c:30:f3:9c:17:24:b3:fa:e0:6e:75:60:a6:ae:56: fc:4f:a3:77:f5:52:2d:ea:2a:ca:d9:b7:75:a4:22:02:2d:d2: b4:ef:ca:0a:5a:67:96:50:b7:60:c1:e2:ba:15:b8:8f:76:c4: f4:80:72:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E0RjcxMTAvBgNVBAUTKDIyRDNFOTc0NERBRDQ5NzUwMzZDQzQyMkFDMTFDNDA0 NzIwRTY2RUEwHhcNMjUwNTExMDMzODU1WhcNMjUwNTE4MDMzODU1WjAYMRYwFAYD VQQDEw02ODIwMWJjZi02ZWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn/fRJZxO/DxTiOPpGe8eUSyszJdJaEASV3AUlrFBLw3Xb+DhlSSMnnlcy0ZH unOH2v+Tg3/AxoNGLEd7XReWKM8vP6bEqqICMBJOrc8K2cuPHdPbIWznH9aMNh4L LvbG14F598mmrki272DCYYTYCL8UErD1clGclxtDxc2pjqYLTSl+TbosIQDYdnJa EOLYtdm91a6eplG4gz/tsn6JnQfQjn6Hh3FofBufhdLFon/ehcideSfSaPAu06sx iYhyLSqhSJqvQMZuUqxe2c3ElfT3EiBDkL9JejeA131DUbdLixPIYPSaxo2hGzf0 asVkgneXtB4KDQoogNEVaWaDEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNSaTN8G Ii9dVmC2R/GKRuyE3OP4MB8GA1UdIwQYMBaAFCLT6XRNrUl1A2zEIqwRxARyDmbq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTRGNy8yQTQ4OTM4NjdF ODIxMUVFOTlEQTlCN0FDNEY5QUUwMi9JdFBwZEUydFNYVURiTVFpckJIRUJISU9a dW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l0UHBkRTJ0U1hVRGJNUWlyQkhFQkhJT1p1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTRGNy8yQTQ4OTM4NjdFODIxMUVFOTlEQTlCN0FDNEY5QUUwMi9JdFBwZEUydFNY VURiTVFpckJIRUJISU9adW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkJiRe5tWdFsQfcPn7XEPP3ORSG9rp7ibtyFZE5AMZrDvg5qaxxlW+ 5gbq2xF4HEfOlL2ucgSo+qc3LrU5uQKB5FJy8MeEh2RIlLK67unlUkMUVOnqduQ/ i49sbiEyKKpXOgi+ImoAdHE0hQohY9rjbeNTWQK9sS6fz0vz2HeEF/TybXLn0TTn jw/1Fo/S6YIp9mbeduKmwAGSvYHXi6S4WiBO13x82tmZPY5oD6pwkdxQGbD4YGQb O+63ib1XQ8V03ATzKkpD5hoMMPOcFySz+uBudWCmrlb8T6N39VIt6irK2bd1pCIC LdK078oKWmeWULdgweK6FbiPdsT0gHKG -----END CERTIFICATE-----Generated at Sun May 11 22:05:37 2025 by rpki-client