$ rpki-client -vvf rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft File: iTEhgF-UFH033MbXS2N4Rvcjl8U.mft (raw, json) Hash identifier: ctxNySKBAXr3KexNp0PRWzaUN0WYK0FjIYzOwd6AtkU= Subject key identifier: ED:D1:AD:61:99:EE:71:6F:CA:A8:F0:26:11:0A:9D:32:C6:47:2C:CE Authority key identifier: 89:31:21:80:5F:94:14:7D:37:DC:C6:D7:4B:63:78:46:F7:23:97:C5 Certificate issuer: /CN=A917E00F/serialNumber=893121805F94147D37DCC6D74B637846F72397C5 Certificate serial: 054A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iTEhgF-UFH033MbXS2N4Rvcjl8U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft Manifest number: 0640 Signing time: Sat 10 May 2025 23:01:50 +0000 Manifest this update: Sat 10 May 2025 23:01:50 +0000 Manifest next update: Sat 17 May 2025 23:01:50 +0000 Files and hashes: 1: iTEhgF-UFH033MbXS2N4Rvcjl8U.crl (hash: jI+1xgmZiCbvDrYQjlklnhTPGEslwwfsPgyOt7z64DE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.crl rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iTEhgF-UFH033MbXS2N4Rvcjl8U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 23:01:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1354 (0x54a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E00F, serialNumber=893121805F94147D37DCC6D74B637846F72397C5 Validity Not Before: May 10 23:01:50 2025 GMT Not After : May 17 23:01:50 2025 GMT Subject: CN=681fdade-fd36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:b3:d4:89:f5:5e:53:6c:6b:03:29:c8:72:96: a3:6e:d1:4a:55:57:90:68:58:86:2b:61:c3:d5:96: ad:ec:a2:02:87:cc:c1:79:df:f4:01:c2:42:a0:73: b7:b9:55:1c:b6:f1:7d:93:98:ba:c3:91:91:07:d4: 9b:b0:e5:99:3b:5f:fd:e3:e6:df:b0:dc:b1:24:bb: 97:7a:e8:78:eb:2a:f0:2f:40:a0:92:54:9e:60:ad: 87:d6:c3:ef:ac:aa:2b:cb:d1:55:a5:73:05:e9:4d: 94:f4:d4:a3:c0:3f:aa:c8:44:de:6a:ca:d1:bb:e4: d5:bb:55:34:4b:c4:65:62:2c:3d:87:ad:fc:07:d2: e4:53:07:e9:f4:66:63:89:34:14:a4:af:6e:bc:b8: 11:40:0b:4f:c7:56:0d:e1:e2:65:e7:cd:22:ab:26: ff:32:63:e2:76:f2:7b:7f:d3:5a:4b:8b:01:bb:ae: 5d:9e:f4:96:81:c0:fb:a6:e0:aa:4f:36:73:ac:c2: 30:e1:b3:2d:54:be:f0:ce:ef:70:99:33:d4:2c:f0: a2:09:28:29:b1:bd:8b:56:76:72:d8:7d:8b:6d:d3: 5a:22:ec:48:8c:9c:64:85:10:68:ae:6b:c5:bd:df: a0:9e:4a:07:63:cb:0f:71:34:f8:09:6e:b2:dc:78: 3f:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:D1:AD:61:99:EE:71:6F:CA:A8:F0:26:11:0A:9D:32:C6:47:2C:CE X509v3 Authority Key Identifier: keyid:89:31:21:80:5F:94:14:7D:37:DC:C6:D7:4B:63:78:46:F7:23:97:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iTEhgF-UFH033MbXS2N4Rvcjl8U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:39:18:db:1f:5a:78:d1:40:2d:5f:e0:92:2a:f7:52:9b:c4: 70:66:a9:46:26:38:4d:54:48:ba:a5:a9:b4:2b:92:ac:5b:71: 06:b0:39:86:67:40:54:37:1c:14:7f:b9:a6:a8:eb:b7:48:0d: b0:2e:7d:38:54:43:ba:62:27:7f:b4:40:88:2b:06:38:f0:8a: 0c:5e:b1:11:67:74:35:2f:34:49:b6:cd:2f:0a:d4:bc:24:e4: 0e:2e:06:8c:0a:81:66:9a:09:a5:77:3e:22:ca:05:8e:f0:c7: 65:12:4a:29:51:67:c2:3f:c7:d5:58:bb:3e:55:aa:4f:8f:84: f9:86:fa:2a:af:92:f4:d2:41:55:ef:46:ae:2d:c5:a1:9b:ef: 61:1d:74:1e:8e:75:48:d0:0c:63:b7:4a:24:be:01:cf:d4:c6: 8f:be:1a:43:2e:14:14:a7:29:46:96:09:83:c8:e8:34:ed:2b: 14:3f:13:01:44:16:86:43:05:2e:fa:05:99:81:96:c0:2d:66: 6a:a1:7d:ff:bb:41:cd:d4:48:3b:b8:91:4d:02:73:b8:ff:58: e2:27:1c:6a:83:7f:0d:6c:4d:b5:68:b0:c9:59:0f:b4:1d:31: 68:5c:bb:dd:78:3d:fa:1c:26:0c:63:dc:e2:f0:3f:95:bd:47: 46:56:45:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwMEYxMTAvBgNVBAUTKDg5MzEyMTgwNUY5NDE0N0QzN0RDQzZENzRCNjM3ODQ2 RjcyMzk3QzUwHhcNMjUwNTEwMjMwMTUwWhcNMjUwNTE3MjMwMTUwWjAYMRYwFAYD VQQDEw02ODFmZGFkZS1mZDM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5bPUifVeU2xrAynIcpajbtFKVVeQaFiGK2HD1Zat7KICh8zBed/0AcJCoHO3 uVUctvF9k5i6w5GRB9SbsOWZO1/94+bfsNyxJLuXeuh46yrwL0CgklSeYK2H1sPv rKory9FVpXMF6U2U9NSjwD+qyETeasrRu+TVu1U0S8RlYiw9h638B9LkUwfp9GZj iTQUpK9uvLgRQAtPx1YN4eJl580iqyb/MmPidvJ7f9NaS4sBu65dnvSWgcD7puCq TzZzrMIw4bMtVL7wzu9wmTPULPCiCSgpsb2LVnZy2H2LbdNaIuxIjJxkhRBormvF vd+gnkoHY8sPcTT4CW6y3Hg/DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO3RrWGZ 7nFvyqjwJhEKnTLGRyzOMB8GA1UdIwQYMBaAFIkxIYBflBR9N9zG10tjeEb3I5fF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTAwRi9FREU0OEI5Q0VF MjkxMUVCODA4NEI2MzhDNEY5QUUwMi9pVEVoZ0YtVUZIMDMzTWJYUzJONFJ2Y2ps OFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lURWhnRi1VRkgwMzNNYlhTMk40UnZjamw4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTAwRi9FREU0OEI5Q0VFMjkxMUVCODA4NEI2MzhDNEY5QUUwMi9pVEVoZ0YtVUZI MDMzTWJYUzJONFJ2Y2psOFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHORjbH1p40UAtX+CSKvdSm8RwZqlGJjhNVEi6pam0K5KsW3EGsDmG Z0BUNxwUf7mmqOu3SA2wLn04VEO6Yid/tECIKwY48IoMXrERZ3Q1LzRJts0vCtS8 JOQOLgaMCoFmmgmldz4iygWO8MdlEkopUWfCP8fVWLs+VapPj4T5hvoqr5L00kFV 70auLcWhm+9hHXQejnVI0Axjt0okvgHP1MaPvhpDLhQUpylGlgmDyOg07SsUPxMB RBaGQwUu+gWZgZbALWZqoX3/u0HN1Eg7uJFNAnO4/1jiJxxqg38NbE21aLDJWQ+0 HTFoXLvdeD36HCYMY9zi8D+VvUdGVkVs -----END CERTIFICATE-----Generated at Sun May 11 14:51:12 2025 by rpki-client