$ rpki-client -vvf rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/iA5rTc1s7FPI0D10DIjpdzsEexk.mft File: iA5rTc1s7FPI0D10DIjpdzsEexk.mft (raw, json) Hash identifier: /Ta+SJM39hwubaQoES2cnjHzDgSQ9S/lc075kwfAqkM= Subject key identifier: 17:99:29:39:87:54:BC:FC:AC:DD:1C:FF:E2:F2:58:99:85:B4:F0:82 Authority key identifier: 88:0E:6B:4D:CD:6C:EC:53:C8:D0:3D:74:0C:88:E9:77:3B:04:7B:19 Certificate issuer: /CN=A9187465/serialNumber=880E6B4DCD6CEC53C8D03D740C88E9773B047B19 Certificate serial: 1669 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iA5rTc1s7FPI0D10DIjpdzsEexk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/iA5rTc1s7FPI0D10DIjpdzsEexk.mft Manifest number: 1655 Signing time: Wed 14 May 2025 16:47:34 +0000 Manifest this update: Wed 14 May 2025 16:47:34 +0000 Manifest next update: Wed 21 May 2025 16:47:34 +0000 Files and hashes: 1: iA5rTc1s7FPI0D10DIjpdzsEexk.crl (hash: Ah34oTmHwHkiyUvaTVn5vsxHVl/ORNC5DqS8nTNa1Eg=) 2: E1ADA4BC062B11F08449516EC4F9AE02.roa (hash: irCyzZt8lLVT2O/nBYFOPs0nEEY6FDn9ohpC+rSN6lg=) 3: E259315C57CA11EA8D931284C4F9AE02.roa (hash: UF4UGi4YvKSRTlKCNcjEh8f4bqwvLQuk9xLcKAJKTWQ=) 4: 7D2EA194B20711EA8B74F445C4F9AE02.roa (hash: slzLXwHdalwSZSG2cdS37Tf6mGAWnLHG4M+IywxJpUk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/iA5rTc1s7FPI0D10DIjpdzsEexk.crl rsync://rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/iA5rTc1s7FPI0D10DIjpdzsEexk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iA5rTc1s7FPI0D10DIjpdzsEexk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 16:47:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5737 (0x1669) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187465, serialNumber=880E6B4DCD6CEC53C8D03D740C88E9773B047B19 Validity Not Before: May 14 16:47:34 2025 GMT Not After : May 21 16:47:34 2025 GMT Subject: CN=6824c926-d37d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d3:f3:06:55:13:b3:88:13:1a:34:4f:5b:f8: db:06:54:23:14:e9:78:30:59:d2:3b:69:3c:a6:c9: bd:e5:3e:83:d3:c1:f9:6b:7e:98:e8:cc:f1:d0:d4: 84:ae:23:50:4a:e0:07:f9:91:0d:49:1e:d1:e0:dd: ee:b0:cf:1d:93:b4:f8:65:1d:96:71:ee:00:aa:18: 05:a9:49:81:7f:00:74:a6:b7:b6:7f:cf:c6:7a:8b: e0:b6:f7:05:a9:36:0f:ad:0f:33:13:e1:65:72:d5: 88:af:35:6e:97:7e:55:4f:b6:32:8f:60:c6:42:fe: 22:e5:74:e3:9d:99:a3:c7:d5:7f:5c:e5:6e:1f:d4: 23:b1:93:25:ee:8c:c1:57:af:a8:1e:7a:a5:47:38: bc:52:97:7c:65:ca:61:1e:4e:61:ad:62:1c:1b:02: f6:f5:25:5f:a9:53:f3:c4:f3:35:af:76:84:95:51: bd:6e:12:ea:cc:67:f3:95:8c:e4:6a:c3:9b:fb:44: cc:26:6f:51:da:7b:9c:0a:87:3e:3b:10:ae:8f:8a: ad:5e:6d:0a:ea:4b:f4:76:e4:75:31:d4:94:09:5b: 3e:28:91:f5:10:88:6e:f6:8d:28:88:96:3a:2e:fd: 42:fd:87:cf:0a:04:70:b8:31:ef:8d:eb:b8:47:ba: 46:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:99:29:39:87:54:BC:FC:AC:DD:1C:FF:E2:F2:58:99:85:B4:F0:82 X509v3 Authority Key Identifier: keyid:88:0E:6B:4D:CD:6C:EC:53:C8:D0:3D:74:0C:88:E9:77:3B:04:7B:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/iA5rTc1s7FPI0D10DIjpdzsEexk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iA5rTc1s7FPI0D10DIjpdzsEexk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/iA5rTc1s7FPI0D10DIjpdzsEexk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:55:fd:30:c7:74:38:8a:da:ed:32:44:c3:ad:07:10:d1:f7: 48:2d:d9:ae:70:41:0c:33:a7:d0:db:48:8c:c9:59:c3:01:4c: ab:9f:e3:d9:86:dd:09:f4:77:ec:ff:6a:75:da:80:02:5a:c0: 21:f0:24:0f:63:34:6d:b7:10:0a:7a:6b:ae:aa:ac:66:0b:8c: 3d:0e:b6:d7:66:6b:74:c4:d3:36:e9:74:39:37:50:a7:ac:65: 17:9b:29:41:eb:43:a0:8c:24:d0:6d:b0:42:2d:6e:62:5f:29: 11:61:16:fe:9f:b9:b6:aa:55:9c:d5:c1:1d:b8:7d:79:3c:9d: b7:a7:49:9e:c0:e6:fb:c8:6d:da:bb:25:7a:ec:dd:d6:0c:5e: 61:b9:10:98:fa:95:4b:ad:42:76:09:a5:bb:b0:1c:9d:a8:64: c7:45:2c:7a:d7:cc:e2:db:e2:69:48:62:e5:9a:4e:d1:4a:e5: a6:b0:8d:e4:6f:00:e3:59:55:a2:ce:13:3f:54:82:ce:72:fb: 3e:36:b8:03:ae:5e:5e:8f:0f:ff:b0:56:1f:2a:6a:e5:bc:b2: f5:44:ac:cb:30:e1:dc:85:80:a3:5c:96:6a:8e:4f:ab:0f:25: 72:bb:50:0b:47:c2:6f:fa:96:af:d8:48:c9:d4:ce:6c:48:e3: 3b:f1:d7:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFmkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc0NjUxMTAvBgNVBAUTKDg4MEU2QjREQ0Q2Q0VDNTNDOEQwM0Q3NDBDODhFOTc3 M0IwNDdCMTkwHhcNMjUwNTE0MTY0NzM0WhcNMjUwNTIxMTY0NzM0WjAYMRYwFAYD VQQDEw02ODI0YzkyNi1kMzdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAztPzBlUTs4gTGjRPW/jbBlQjFOl4MFnSO2k8psm95T6D08H5a36Y6Mzx0NSE riNQSuAH+ZENSR7R4N3usM8dk7T4ZR2Wce4AqhgFqUmBfwB0pre2f8/GeovgtvcF qTYPrQ8zE+FlctWIrzVul35VT7Yyj2DGQv4i5XTjnZmjx9V/XOVuH9QjsZMl7ozB V6+oHnqlRzi8Upd8ZcphHk5hrWIcGwL29SVfqVPzxPM1r3aElVG9bhLqzGfzlYzk asOb+0TMJm9R2nucCoc+OxCuj4qtXm0K6kv0duR1MdSUCVs+KJH1EIhu9o0oiJY6 Lv1C/YfPCgRwuDHvjeu4R7pGQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBeZKTmH VLz8rN0c/+LyWJmFtPCCMB8GA1UdIwQYMBaAFIgOa03NbOxTyNA9dAyI6Xc7BHsZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzQ2NS9CMUFGQjZGQTBB NTMxMUU4QUM3QkVFMkVDNEY5QUUwMi9pQTVyVGMxczdGUEkwRDEwRElqcGR6c0Vl eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lBNXJUYzFzN0ZQSTBEMTBESWpwZHpzRWV4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzQ2NS9CMUFGQjZGQTBBNTMxMUU4QUM3QkVFMkVDNEY5QUUwMi9pQTVyVGMxczdG UEkwRDEwRElqcGR6c0VleGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtVf0wx3Q4itrtMkTDrQcQ0fdILdmucEEMM6fQ20iMyVnDAUyrn+PZ ht0J9Hfs/2p12oACWsAh8CQPYzRttxAKemuuqqxmC4w9DrbXZmt0xNM26XQ5N1Cn rGUXmylB60OgjCTQbbBCLW5iXykRYRb+n7m2qlWc1cEduH15PJ23p0mewOb7yG3a uyV67N3WDF5huRCY+pVLrUJ2CaW7sBydqGTHRSx618zi2+JpSGLlmk7RSuWmsI3k bwDjWVWizhM/VILOcvs+NrgDrl5ejw//sFYfKmrlvLL1RKzLMOHchYCjXJZqjk+r DyVyu1ALR8Jv+pav2EjJ1M5sSOM78dej -----END CERTIFICATE-----Generated at Thu May 15 00:34:31 2025 by rpki-client