$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft File: IokuPYxEn1qaxkz8tjS1n2xTE2s.mft (raw, json) Hash identifier: vmsknjXk3lmII/SrgMGBkbWgiqdCanOYzSgMi+/rEPM= Subject key identifier: 43:0A:50:73:5F:92:41:CB:F6:52:3E:08:CA:59:04:64:85:99:10:7D Authority key identifier: 22:89:2E:3D:8C:44:9F:5A:9A:C6:4C:FC:B6:34:B5:9F:6C:53:13:6B Certificate issuer: /CN=A917BB59/serialNumber=22892E3D8C449F5A9AC64CFCB634B59F6C53136B Certificate serial: 078E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft Manifest number: 0783 Signing time: Wed 14 May 2025 21:29:19 +0000 Manifest this update: Wed 14 May 2025 21:29:18 +0000 Manifest next update: Wed 21 May 2025 21:29:18 +0000 Files and hashes: 1: IokuPYxEn1qaxkz8tjS1n2xTE2s.crl (hash: n70NEsIyecJjC0mbJKIS0ASEIyvUsw9o1WeT7O5Bf6Y=) 2: 7BF36C680DCB11EBA17D032EC4F9AE02.roa (hash: TZy3mzqffsTM4n4Rbmohmuv3VCPWE9WJRvRzq53CbvQ=) 3: 8FEA9564C2AE11EB94777A0CC4F9AE02.roa (hash: IPmClsdSMbassfXddv44p/mv8kyQ7PdScutwrTiO+q0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.crl rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 21:29:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1934 (0x78e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB59, serialNumber=22892E3D8C449F5A9AC64CFCB634B59F6C53136B Validity Not Before: May 14 21:29:18 2025 GMT Not After : May 21 21:29:18 2025 GMT Subject: CN=68250b2e-bff6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:df:65:95:52:37:52:9a:cd:ad:6e:e7:84:19: ff:f9:0d:1a:0d:74:89:b3:bb:22:a3:d0:25:8b:12: 90:83:f9:70:1c:71:95:5c:9c:20:e3:75:f8:e8:c6: 2a:08:83:4b:78:30:7c:90:3d:08:a4:8d:f6:00:0e: 7e:7e:f1:af:75:1e:55:cd:67:de:11:5e:c9:e0:9a: c3:db:02:06:4d:4f:08:51:88:e3:0a:26:56:bf:a8: 19:94:69:b2:d9:a3:aa:ab:04:f7:04:24:ef:7b:fc: 99:37:38:6a:27:05:9a:a2:b9:d0:41:4a:a6:0b:6d: a5:25:08:d1:3c:ad:2e:6f:ed:e6:2a:44:fb:ef:ff: 77:eb:01:ea:46:0c:7d:15:6e:50:62:fd:02:33:08: 6e:8e:dc:fa:b1:25:03:a0:7f:5c:10:2b:d0:6d:4c: e4:67:df:92:aa:76:bf:cc:2f:0c:c1:3c:21:f7:f8: cd:1f:c2:86:1b:36:ed:27:7c:aa:b4:02:dd:85:03: 87:80:51:39:f8:1e:67:6c:ab:0e:39:8c:a5:a0:55: 28:b2:eb:e1:c6:15:db:8f:3b:37:96:e9:73:11:89: 80:f9:f8:3b:3e:c3:4a:ae:19:3b:c9:c9:5a:55:af: ff:42:53:46:91:c5:d5:ea:ee:f7:a6:50:12:31:fd: 2e:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:0A:50:73:5F:92:41:CB:F6:52:3E:08:CA:59:04:64:85:99:10:7D X509v3 Authority Key Identifier: keyid:22:89:2E:3D:8C:44:9F:5A:9A:C6:4C:FC:B6:34:B5:9F:6C:53:13:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:d8:ed:5c:2d:b1:4f:4e:f8:0c:06:d0:1a:0d:18:be:97:cf: dc:d2:d4:34:40:80:3d:9e:9f:f2:f6:2f:d2:35:f5:23:e5:7a: 93:50:82:bc:1f:85:7a:78:5a:b5:7d:35:d1:a2:09:fc:0b:e3: a0:a5:14:09:4b:c2:aa:fe:2e:a0:37:3a:d4:b7:b8:32:97:ca: 0b:f3:51:88:65:5a:a5:7b:28:86:87:2c:89:a5:13:02:3e:47: 55:13:c1:61:da:ba:c5:b2:f6:1b:46:71:29:b8:8e:04:a6:d8: 6c:3a:f2:cf:a6:29:07:8d:e9:cc:d5:eb:d0:89:8d:44:97:94: 97:68:72:b0:a3:4a:90:45:dd:a4:88:4c:2c:09:5c:50:55:1c: 89:b9:7e:53:7e:a8:69:52:3e:48:ca:75:70:da:57:50:36:d1: 72:36:cf:6b:94:88:3a:4b:4f:5a:3d:98:72:e9:06:fa:fd:9b: b3:4e:d7:15:68:24:97:72:bf:bb:ba:83:b0:02:1e:3c:af:17: d1:2b:6c:58:5b:42:54:ce:d1:01:8f:be:38:5b:92:92:89:e9: 19:9b:9e:cb:18:47:d8:f3:e2:17:23:67:b1:13:e6:e9:79:4f: b2:ef:1c:9c:2e:d5:2b:9f:56:13:af:a0:f7:b7:43:f0:67:f3: 0b:b2:9b:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB44wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCNTkxMTAvBgNVBAUTKDIyODkyRTNEOEM0NDlGNUE5QUM2NENGQ0I2MzRCNTlG NkM1MzEzNkIwHhcNMjUwNTE0MjEyOTE4WhcNMjUwNTIxMjEyOTE4WjAYMRYwFAYD VQQDEw02ODI1MGIyZS1iZmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsd9llVI3UprNrW7nhBn/+Q0aDXSJs7sio9AlixKQg/lwHHGVXJwg43X46MYq CINLeDB8kD0IpI32AA5+fvGvdR5VzWfeEV7J4JrD2wIGTU8IUYjjCiZWv6gZlGmy 2aOqqwT3BCTve/yZNzhqJwWaornQQUqmC22lJQjRPK0ub+3mKkT77/936wHqRgx9 FW5QYv0CMwhujtz6sSUDoH9cECvQbUzkZ9+Sqna/zC8MwTwh9/jNH8KGGzbtJ3yq tALdhQOHgFE5+B5nbKsOOYyloFUosuvhxhXbjzs3lulzEYmA+fg7PsNKrhk7ycla Va//QlNGkcXV6u73plASMf0uXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEMKUHNf kkHL9lI+CMpZBGSFmRB9MB8GA1UdIwQYMBaAFCKJLj2MRJ9amsZM/LY0tZ9sUxNr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkI1OS9CNjhCOTBENjBE Q0ExMUVCQTdDMkUyMkRDNEY5QUUwMi9Jb2t1UFl4RW4xcWF4a3o4dGpTMW4yeFRF MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lva3VQWXhFbjFxYXhrejh0alMxbjJ4VEUycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkI1OS9CNjhCOTBENjBEQ0ExMUVCQTdDMkUyMkRDNEY5QUUwMi9Jb2t1UFl4RW4x cWF4a3o4dGpTMW4yeFRFMnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAy2O1cLbFPTvgMBtAaDRi+l8/c0tQ0QIA9np/y9i/SNfUj5XqTUIK8 H4V6eFq1fTXRogn8C+OgpRQJS8Kq/i6gNzrUt7gyl8oL81GIZVqleyiGhyyJpRMC PkdVE8Fh2rrFsvYbRnEpuI4EpthsOvLPpikHjenM1evQiY1El5SXaHKwo0qQRd2k iEwsCVxQVRyJuX5TfqhpUj5IynVw2ldQNtFyNs9rlIg6S09aPZhy6Qb6/ZuzTtcV aCSXcr+7uoOwAh48rxfRK2xYW0JUztEBj744W5KSiekZm57LGEfY8+IXI2exE+bp eU+y7xycLtUrn1YTr6D3t0PwZ/MLspsD -----END CERTIFICATE-----Generated at Fri May 16 04:57:37 2025 by rpki-client