$ rpki-client -vvf rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft File: ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft (raw, json) Hash identifier: YL8SfvzFgdVB/OEzXMuLWB/zjhRhU5TsMpOY5GYkuQ4= Subject key identifier: 57:A4:62:8A:0E:74:70:CB:50:16:9E:47:18:86:E8:E6:CA:A4:D6:4A Authority key identifier: 8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A Certificate issuer: /CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Certificate serial: 1D2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft Manifest number: 1CB7 Signing time: Sun 04 May 2025 16:07:21 +0000 Manifest this update: Sun 04 May 2025 16:07:21 +0000 Manifest next update: Sun 11 May 2025 16:07:21 +0000 Files and hashes: 1: ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl (hash: y/g/Qbn/bBvCL+aHDXjUrBhTEUgReaZZcgEHNYU//zo=) 2: 5AF6DD08FAE611EF88903035C4F9AE02.roa (hash: KNe37v08jiMTHI1bvjZ6KE/Vcj+r6uVPwkyGH49Kddo=) 3: 75D2A3666E8011EF92BDE465C4F9AE02.roa (hash: Geibmj5f7sWd8ePmSyK9CqZnwcGstWhLmjedleooMUY=) 4: 3BDD23E27CA611EE82D65D19C4F9AE02.roa (hash: DWVN0wHi6QUPs6snWtASAJaDoQXZR8E1QW/cZGA9SNI=) 5: 2F9A7A1648FC11EBBAE0991CC4F9AE02.roa (hash: EyyP05+w3I6zJfg1bK7YEVwaO6aHmtM/Fo2uP4RPYlc=) 6: 84064494E48F11EF8386EA50C4F9AE02.roa (hash: d3vLmOzYTOa3NHb3yIWalGAnlNbBjiF+dtQHwr43NhM=) 7: 87F433B2234C11EBA94AE637C4F9AE02.roa (hash: aPQE1e4nKCiHqR/TnLkZpZpyO3+vgwvIqog88dCR8mk=) 8: 3EF78CAA9DF911EF971AD149C4F9AE02.roa (hash: JvMqjKLoQToshoNSeubhlEpU1GQez85G+xjPh2YQQpU=) 9: CCD092AE4E6411EF92C0EC3AC4F9AE02.roa (hash: UwXH1XygsxxIwL/5ppPhVWdo9CvnJPBBvjk5qqmH4lU=) 10: D3C8593E905E11EFAF2C185CC4F9AE02.roa (hash: mX5h1pe0z8G3BqKuVtzq+wiHKMx8BkOvpXEXAJFLe90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 16:07:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7466 (0x1d2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A84A, serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Validity Not Before: May 4 16:07:21 2025 GMT Not After : May 11 16:07:21 2025 GMT Subject: CN=681790b9-620f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:1b:02:5c:9f:20:54:7f:ff:69:b0:33:7d:70: a1:c5:35:d0:d7:f6:f4:43:19:36:0c:a3:a0:c3:aa: c7:0a:97:2b:51:ce:98:7e:ab:56:17:30:3d:0f:59: f1:3b:8d:f9:36:42:c4:7e:a6:fb:4c:29:b1:19:b8: d0:d9:be:1f:4b:a8:e6:da:25:32:ee:6a:70:ea:48: e4:6a:4a:6c:5a:bc:6b:fd:30:a0:86:e0:f5:c9:ee: 3b:43:55:27:0c:33:39:6f:79:a3:d6:fe:54:2b:97: 5b:02:55:c0:71:4a:ec:4b:91:09:8a:2e:54:f5:15: f6:b6:df:fb:f9:12:ca:54:18:2e:2c:b2:04:42:c1: 94:e8:ab:61:d6:a6:d0:2a:bb:a3:62:48:d1:39:ef: 42:d1:9b:d1:ec:25:e5:aa:82:79:71:3f:51:5b:b5: 3d:93:ae:aa:94:c5:90:5f:d2:0b:e8:7f:ae:70:8b: f7:16:29:13:54:5c:ef:6e:a0:76:09:69:8a:2a:91: a0:8a:58:a0:d5:94:9f:a4:33:2a:53:1d:92:73:82: a6:56:56:d4:09:06:f0:af:24:b6:45:8e:b2:91:81: 47:96:81:c9:18:b9:4a:b7:12:c4:1a:ab:23:c0:6f: d5:95:3a:2b:83:c0:87:65:58:bf:33:3b:0d:8a:04: 02:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:A4:62:8A:0E:74:70:CB:50:16:9E:47:18:86:E8:E6:CA:A4:D6:4A X509v3 Authority Key Identifier: keyid:8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:40:91:5a:2f:ae:56:9e:50:2a:cf:4e:d6:a2:d1:4e:01:19: 4e:b5:a2:94:8b:94:5d:86:73:0c:62:34:c9:89:78:09:60:7f: 65:8d:c1:a1:2d:2b:ab:ac:5a:7d:48:53:f4:67:1f:92:08:9e: 9f:fa:fd:8f:8e:af:29:24:c3:21:5a:52:df:17:61:4a:17:3b: 1d:c9:a2:69:8e:06:74:98:33:74:f3:50:ae:bd:08:fb:ee:3c: 70:89:59:33:cb:8c:e0:6f:22:50:1d:6b:49:43:f1:5f:50:01: ed:a4:ed:01:0a:ad:91:3f:98:4d:47:a3:8c:37:96:8e:71:62: 9e:82:a5:31:b4:f6:eb:d4:5a:a3:a3:e4:02:1d:96:a6:ab:cd: 82:9c:85:2c:a7:23:8c:e5:75:aa:83:ac:c3:b7:4a:95:3c:32: 54:95:0d:d5:33:19:9b:64:c1:45:f0:6f:56:0d:11:36:a0:65: 2e:9c:b1:e3:e5:3f:68:bd:c9:f4:45:38:8a:96:89:4e:62:89: 52:81:52:72:e3:f7:27:e2:d8:99:db:27:b0:d0:e2:89:5f:eb: 58:b8:8a:bf:a5:eb:b3:89:f2:3a:fb:9d:49:2f:f2:86:3c:c5: c2:9f:75:07:60:d2:17:b7:2b:09:91:f9:47:49:7a:3f:a6:31: 70:79:47:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHSowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E4NEExMTAvBgNVBAUTKDhBMUExMEVCOEZCQTQ1QzIxNTJDQTg5NTZGNDMyRjlB ODEzOTYwM0EwHhcNMjUwNTA0MTYwNzIxWhcNMjUwNTExMTYwNzIxWjAYMRYwFAYD VQQDEw02ODE3OTBiOS02MjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6BsCXJ8gVH//abAzfXChxTXQ1/b0Qxk2DKOgw6rHCpcrUc6YfqtWFzA9D1nx O435NkLEfqb7TCmxGbjQ2b4fS6jm2iUy7mpw6kjkakpsWrxr/TCghuD1ye47Q1Un DDM5b3mj1v5UK5dbAlXAcUrsS5EJii5U9RX2tt/7+RLKVBguLLIEQsGU6Kth1qbQ KrujYkjROe9C0ZvR7CXlqoJ5cT9RW7U9k66qlMWQX9IL6H+ucIv3FikTVFzvbqB2 CWmKKpGgilig1ZSfpDMqUx2Sc4KmVlbUCQbwryS2RY6ykYFHloHJGLlKtxLEGqsj wG/VlTorg8CHZVi/MzsNigQChwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFekYooO dHDLUBaeRxiG6ObKpNZKMB8GA1UdIwQYMBaAFIoaEOuPukXCFSyolW9DL5qBOWA6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTg0QS8xODA1MTkxQUUx RUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJjSVZMS2lWYjBNdm1vRTVZ RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lob1E2NC02UmNJVkxLaVZiME12bW9FNVlEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTg0QS8xODA1MTkxQUUxRUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJj SVZMS2lWYjBNdm1vRTVZRG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsQJFaL65WnlAqz07WotFOARlOtaKUi5RdhnMMYjTJiXgJYH9ljcGh LSurrFp9SFP0Zx+SCJ6f+v2Pjq8pJMMhWlLfF2FKFzsdyaJpjgZ0mDN081CuvQj7 7jxwiVkzy4zgbyJQHWtJQ/FfUAHtpO0BCq2RP5hNR6OMN5aOcWKegqUxtPbr1Fqj o+QCHZamq82CnIUspyOM5XWqg6zDt0qVPDJUlQ3VMxmbZMFF8G9WDRE2oGUunLHj 5T9ovcn0RTiKlolOYolSgVJy4/cn4tiZ2yew0OKJX+tYuIq/peuzifI6+51JL/KG PMXCn3UHYNIXtysJkflHSXo/pjFweUfd -----END CERTIFICATE-----Generated at Mon May 5 12:26:07 2025 by rpki-client