$ rpki-client -vvf rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft File: Ic_hSZujbpQWt_68gTw8LqkWvEY.mft (raw, json) Hash identifier: SIJgPxZ+HMOhOcmE5WZNhSuVDrJrzGAVY5XQTGfe0A8= Subject key identifier: 46:25:37:FB:E4:1A:DF:E2:20:98:AE:70:90:AD:B4:59:D3:5D:2A:F9 Authority key identifier: 21:CF:E1:49:9B:A3:6E:94:16:B7:FE:BC:81:3C:3C:2E:A9:16:BC:46 Certificate issuer: /CN=A917B413/serialNumber=21CFE1499BA36E9416B7FEBC813C3C2EA916BC46 Certificate serial: 0ABC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft Manifest number: 0AB3 Signing time: Mon 12 May 2025 19:20:09 +0000 Manifest this update: Mon 12 May 2025 19:20:09 +0000 Manifest next update: Mon 19 May 2025 19:20:09 +0000 Files and hashes: 1: Ic_hSZujbpQWt_68gTw8LqkWvEY.crl (hash: ZQ7jM7NmuqTa3UrWWsPsCgJu8BRMNcnQJ6cmJ045peY=) 2: 498B6EFE942411EA816FC855C4F9AE02.roa (hash: AU3Frw6p1SnNaYVLPNPNSlHZdunuBupMTCIgXK+Ojng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.crl rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 19:20:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2748 (0xabc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B413, serialNumber=21CFE1499BA36E9416B7FEBC813C3C2EA916BC46 Validity Not Before: May 12 19:20:09 2025 GMT Not After : May 19 19:20:09 2025 GMT Subject: CN=682249e9-ce10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:a7:e4:e7:d1:b0:42:0f:3c:62:d1:c1:53:ea: 50:94:9d:ba:04:86:e7:1c:01:6a:48:11:09:c7:4e: 16:df:5d:22:fd:fb:3e:34:29:d2:33:f7:6b:b5:17: f8:59:dd:f7:47:6a:3c:3e:9f:03:25:64:76:ac:65: 64:58:2e:1c:5a:82:3a:3d:5e:b2:c1:77:96:05:f8: f1:ba:1e:e6:94:9a:90:58:49:60:74:bb:8e:2a:9b: 27:9d:75:cc:8b:d2:a6:36:c1:82:b1:6e:75:74:5e: 34:1c:1f:95:5e:39:4c:45:24:62:a7:fc:5f:a7:a4: 39:ac:cd:bb:da:8a:ea:85:1c:a9:c1:38:67:ca:dc: 3f:44:14:7a:e7:6a:3f:b2:95:30:40:b4:57:4d:d3: 2e:1d:45:21:b9:26:00:1e:e9:91:cf:1e:80:d8:8c: a2:1d:94:0b:3d:9a:ab:66:ef:92:27:cd:d6:94:b4: 10:1a:55:a2:53:bf:e8:a8:9d:f1:48:9c:d1:d6:cd: 97:e6:f5:d6:63:e8:4b:53:72:c9:63:86:21:44:a6: 1c:dc:7b:86:af:19:b3:80:18:fd:7d:36:90:aa:5a: 30:7b:9e:2c:87:49:f6:46:d4:5a:9f:d2:ab:6a:8d: ab:f7:4b:0a:aa:0b:31:d1:ec:2d:1c:e4:e8:6d:74: a5:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:25:37:FB:E4:1A:DF:E2:20:98:AE:70:90:AD:B4:59:D3:5D:2A:F9 X509v3 Authority Key Identifier: keyid:21:CF:E1:49:9B:A3:6E:94:16:B7:FE:BC:81:3C:3C:2E:A9:16:BC:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:95:df:f2:e8:0c:7c:71:23:2d:3f:0e:20:14:2a:cd:f4:3e: 32:48:70:30:8f:52:b9:7e:a9:b8:72:4a:7a:03:03:de:2b:5e: b1:ac:02:3a:87:a0:e7:00:92:f4:16:5d:15:6f:ba:72:85:18: 0b:3c:c9:65:d0:b6:27:71:ce:6c:4c:3b:d2:77:d6:e5:5d:2d: b1:51:0c:81:39:d5:49:5c:8f:17:c2:b2:3a:0a:ed:84:e3:c9: 6a:c4:66:13:2f:79:b3:84:33:b0:fd:9a:46:76:94:c2:59:0a: 6b:ad:21:db:a5:b5:58:3f:44:29:ce:d9:fb:e2:64:3a:2f:d4: ee:cb:7a:9a:a6:b7:61:a6:e2:d3:7f:4f:77:07:d8:25:64:49: 40:16:5e:77:12:0e:63:93:c0:41:8a:98:2a:0e:48:1f:9f:9a: 1d:4a:2d:72:9e:55:0b:26:30:dc:db:79:37:26:bb:12:22:ba: d5:95:f1:47:10:6a:04:76:17:b7:46:59:15:31:dc:a5:0f:3a: 46:08:e3:1a:3c:63:eb:31:ab:32:84:49:d7:3f:23:99:00:2b: 56:7e:c0:e4:1c:54:c1:2c:9a:43:a4:01:21:af:ec:5f:90:54: 55:65:6a:d5:0c:94:e8:7c:f7:3a:e3:04:97:ec:f7:d7:e9:dc: 90:ae:7d:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCrwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0MTMxMTAvBgNVBAUTKDIxQ0ZFMTQ5OUJBMzZFOTQxNkI3RkVCQzgxM0MzQzJF QTkxNkJDNDYwHhcNMjUwNTEyMTkyMDA5WhcNMjUwNTE5MTkyMDA5WjAYMRYwFAYD VQQDEw02ODIyNDllOS1jZTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnqfk59GwQg88YtHBU+pQlJ26BIbnHAFqSBEJx04W310i/fs+NCnSM/drtRf4 Wd33R2o8Pp8DJWR2rGVkWC4cWoI6PV6ywXeWBfjxuh7mlJqQWElgdLuOKpsnnXXM i9KmNsGCsW51dF40HB+VXjlMRSRip/xfp6Q5rM272orqhRypwThnytw/RBR652o/ spUwQLRXTdMuHUUhuSYAHumRzx6A2IyiHZQLPZqrZu+SJ83WlLQQGlWiU7/oqJ3x SJzR1s2X5vXWY+hLU3LJY4YhRKYc3HuGrxmzgBj9fTaQqlowe54sh0n2RtRan9Kr ao2r90sKqgsx0ewtHOTobXSlIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEYlN/vk Gt/iIJiucJCttFnTXSr5MB8GA1UdIwQYMBaAFCHP4Umbo26UFrf+vIE8PC6pFrxG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjQxMy9COEZDQTdCQTUx NkUxMUVBOTgwQTI4N0VDNEY5QUUwMi9JY19oU1p1amJwUVd0XzY4Z1R3OExxa1d2 RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljX2hTWnVqYnBRV3RfNjhnVHc4THFrV3ZFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjQxMy9COEZDQTdCQTUxNkUxMUVBOTgwQTI4N0VDNEY5QUUwMi9JY19oU1p1amJw UVd0XzY4Z1R3OExxa1d2RVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzld/y6Ax8cSMtPw4gFCrN9D4ySHAwj1K5fqm4ckp6AwPeK16xrAI6 h6DnAJL0Fl0Vb7pyhRgLPMll0LYncc5sTDvSd9blXS2xUQyBOdVJXI8XwrI6Cu2E 48lqxGYTL3mzhDOw/ZpGdpTCWQprrSHbpbVYP0Qpztn74mQ6L9Tuy3qaprdhpuLT f093B9glZElAFl53Eg5jk8BBipgqDkgfn5odSi1ynlULJjDc23k3JrsSIrrVlfFH EGoEdhe3RlkVMdylDzpGCOMaPGPrMasyhEnXPyOZACtWfsDkHFTBLJpDpAEhr+xf kFRVZWrVDJTofPc64wSX7PfX6dyQrn0o -----END CERTIFICATE-----Generated at Tue May 13 22:06:26 2025 by rpki-client