$ rpki-client -vvf rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft File: iifxtRRZ_TbLLIBghxxVOPnSPX4.mft (raw, json) Hash identifier: rm/uXsPaTlHGpahT1IhCcVCIbqWlO4yM/T7AaZA5vKE= Subject key identifier: D2:98:99:CE:BA:D6:17:00:04:D5:8F:03:F7:96:DD:18:77:49:8E:05 Authority key identifier: 8A:27:F1:B5:14:59:FD:36:CB:2C:80:60:87:1C:55:38:F9:D2:3D:7E Certificate issuer: /CN=A918AACD/serialNumber=8A27F1B51459FD36CB2C8060871C5538F9D23D7E Certificate serial: BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iifxtRRZ_TbLLIBghxxVOPnSPX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft Manifest number: BA Signing time: Tue 13 May 2025 05:08:17 +0000 Manifest this update: Tue 13 May 2025 05:08:16 +0000 Manifest next update: Tue 20 May 2025 05:08:16 +0000 Files and hashes: 1: iifxtRRZ_TbLLIBghxxVOPnSPX4.crl (hash: yIus6wYNqZZrs7WAnZHXk+sCn7vJPfL0SPLUAZaw92I=) 2: 7DA22F2C199D11EFB19DA380C4F9AE02.roa (hash: m/G/Sff8tqA/XbNYboOxx50mkuYuHxKvPy3vRj80oOo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.crl rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iifxtRRZ_TbLLIBghxxVOPnSPX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 05:08:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AACD, serialNumber=8A27F1B51459FD36CB2C8060871C5538F9D23D7E Validity Not Before: May 13 05:08:16 2025 GMT Not After : May 20 05:08:16 2025 GMT Subject: CN=6822d3c0-59c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:df:59:f3:3c:6f:e6:d8:8a:11:48:79:1f:25: 0a:37:6d:ea:34:21:3f:d6:0f:cf:b7:ce:2c:f2:9c: 98:2a:af:53:c1:71:0c:70:7e:51:4d:b8:a2:ca:bd: 1d:56:f1:70:8d:bd:02:72:57:ed:10:dc:2e:7e:2e: d0:24:c6:5b:a5:76:ef:7d:71:0f:06:8c:88:5d:b4: 3d:93:8f:40:cd:cb:6c:a1:2d:5e:51:d9:2f:a0:31: 01:dd:f6:2f:ca:2e:81:2c:f6:48:97:79:46:f6:40: c8:37:98:9a:99:2d:f0:6b:3b:c9:e7:a4:e3:fe:14: ef:64:97:4d:9b:2f:21:f1:06:d4:bf:dc:c7:e6:09: 27:8d:e4:f8:94:e2:c5:bd:dc:1b:2e:8a:50:40:03: 3b:b0:00:e0:e7:9c:ad:66:57:ce:ad:4b:a6:9e:4d: 7b:e8:59:15:e3:e6:14:8a:12:37:c2:61:f7:ca:da: 50:c3:36:28:9d:34:53:e9:fa:5c:ec:aa:f7:39:a9: d7:2d:83:9f:56:3e:08:6c:ab:cf:ab:f9:85:52:80: b2:04:9b:80:ea:69:48:6f:06:e9:0d:c9:41:97:12: 73:f2:6a:5d:63:98:4f:8e:24:4a:61:90:cf:94:c8: f5:75:98:ca:4f:25:c3:9e:15:d3:9b:c4:7a:1e:b6: ad:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:98:99:CE:BA:D6:17:00:04:D5:8F:03:F7:96:DD:18:77:49:8E:05 X509v3 Authority Key Identifier: keyid:8A:27:F1:B5:14:59:FD:36:CB:2C:80:60:87:1C:55:38:F9:D2:3D:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iifxtRRZ_TbLLIBghxxVOPnSPX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:6c:b6:d3:05:41:28:f1:db:ad:d1:ba:d3:b3:6f:02:b5:b8: c0:57:8b:d6:8e:5e:4c:fb:74:1b:1e:2f:4c:fa:b0:23:58:7d: 3d:5a:03:93:5b:e0:d6:fa:a8:76:05:ec:c9:87:81:e1:11:9a: 72:33:b2:83:a7:9f:7e:c4:db:e5:71:f2:74:cb:12:ea:88:05: ce:ff:ab:7c:fe:6e:fb:df:d5:91:71:85:29:14:44:f6:75:d9: 92:27:c8:61:04:4b:77:5b:68:f3:86:87:fd:68:d5:d0:1a:9a: ef:eb:61:4b:90:ed:26:a0:70:45:bf:43:28:48:19:af:8a:6c: e9:40:08:1a:f0:30:ae:08:fa:a4:75:da:d7:3e:57:f9:78:5c: 04:7d:b5:a8:b3:ed:14:e8:a1:3e:f0:a3:f3:44:6e:ee:02:c4: 65:a5:14:08:c9:2e:60:71:bd:01:80:c5:73:63:d7:aa:1e:71: 3e:98:e3:76:fb:5a:56:32:8a:33:c9:d3:d5:57:ef:4b:6b:78: 29:51:c4:3d:63:11:f0:32:28:b5:83:52:dc:a6:ba:e2:c9:6a: 25:03:8e:32:04:53:6a:55:5b:48:7e:9f:c2:88:97:73:5e:5d: 47:d2:5f:ae:fe:71:28:f3:0d:24:84:8f:8d:86:7b:3c:54:8d: 46:5f:f5:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFBQ0QxMTAvBgNVBAUTKDhBMjdGMUI1MTQ1OUZEMzZDQjJDODA2MDg3MUM1NTM4 RjlEMjNEN0UwHhcNMjUwNTEzMDUwODE2WhcNMjUwNTIwMDUwODE2WjAYMRYwFAYD VQQDEw02ODIyZDNjMC01OWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy99Z8zxv5tiKEUh5HyUKN23qNCE/1g/Pt84s8pyYKq9TwXEMcH5RTbiiyr0d VvFwjb0CclftENwufi7QJMZbpXbvfXEPBoyIXbQ9k49AzctsoS1eUdkvoDEB3fYv yi6BLPZIl3lG9kDIN5iamS3wazvJ56Tj/hTvZJdNmy8h8QbUv9zH5gknjeT4lOLF vdwbLopQQAM7sADg55ytZlfOrUumnk176FkV4+YUihI3wmH3ytpQwzYonTRT6fpc 7Kr3OanXLYOfVj4IbKvPq/mFUoCyBJuA6mlIbwbpDclBlxJz8mpdY5hPjiRKYZDP lMj1dZjKTyXDnhXTm8R6Hrat1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNKYmc66 1hcABNWPA/eW3Rh3SY4FMB8GA1UdIwQYMBaAFIon8bUUWf02yyyAYIccVTj50j1+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUFDRC84RUExOUFBMjE5 OUMxMUVGOTY5NzM0N0ZDNEY5QUUwMi9paWZ4dFJSWl9UYkxMSUJnaHh4Vk9QblNQ WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lpZnh0UlJaX1RiTExJQmdoeHhWT1BuU1BYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QUFDRC84RUExOUFBMjE5OUMxMUVGOTY5NzM0N0ZDNEY5QUUwMi9paWZ4dFJSWl9U YkxMSUJnaHh4Vk9QblNQWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcbLbTBUEo8dut0brTs28CtbjAV4vWjl5M+3QbHi9M+rAjWH09WgOT W+DW+qh2BezJh4HhEZpyM7KDp59+xNvlcfJ0yxLqiAXO/6t8/m7739WRcYUpFET2 ddmSJ8hhBEt3W2jzhof9aNXQGprv62FLkO0moHBFv0MoSBmvimzpQAga8DCuCPqk ddrXPlf5eFwEfbWos+0U6KE+8KPzRG7uAsRlpRQIyS5gcb0BgMVzY9eqHnE+mON2 +1pWMoozydPVV+9La3gpUcQ9YxHwMii1g1LcprriyWolA44yBFNqVVtIfp/CiJdz Xl1H0l+u/nEo8w0khI+Nhns8VI1GX/Ux -----END CERTIFICATE-----Generated at Wed May 14 15:18:22 2025 by rpki-client