$ rpki-client -vvf rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.mft File: IHRtqWxsk0jpS7t03MtZAcbst7M.mft (raw, json) Hash identifier: gUEGUy/BWQaa+RPmrLMj6YEI26Ov5L4Dum3v6n2QzAQ= Subject key identifier: 07:0E:54:B3:27:D7:E8:E0:F8:EA:56:C2:6D:CD:60:52:87:D8:DE:60 Authority key identifier: 20:74:6D:A9:6C:6C:93:48:E9:4B:BB:74:DC:CB:59:01:C6:EC:B7:B3 Certificate issuer: /CN=A918BD1A/serialNumber=20746DA96C6C9348E94BBB74DCCB5901C6ECB7B3 Certificate serial: 03A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHRtqWxsk0jpS7t03MtZAcbst7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.mft Manifest number: 039F Signing time: Tue 13 May 2025 00:34:40 +0000 Manifest this update: Tue 13 May 2025 00:34:40 +0000 Manifest next update: Tue 20 May 2025 00:34:40 +0000 Files and hashes: 1: IHRtqWxsk0jpS7t03MtZAcbst7M.crl (hash: TllaLtEwpalrQ1UnfhKm8zllxoEX0iS0E40R5bmmF5I=) 2: FC11F400240611EFA8F45A54C4F9AE02.roa (hash: o33RNCZroDwsAJGcMgsni5M3q2cYV8AkaewWNhrky5w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.crl rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHRtqWxsk0jpS7t03MtZAcbst7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 00:34:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 934 (0x3a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BD1A, serialNumber=20746DA96C6C9348E94BBB74DCCB5901C6ECB7B3 Validity Not Before: May 13 00:34:40 2025 GMT Not After : May 20 00:34:40 2025 GMT Subject: CN=682293a0-5d3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:52:60:d1:7a:1f:20:ef:87:9c:38:ef:d8:01: c7:d5:33:18:14:cb:4c:00:28:c8:0c:7d:98:5a:f4: 40:d5:e7:79:b8:05:b7:da:e3:4e:80:17:17:5d:a5: c2:23:be:c2:24:85:fd:21:fc:68:97:6c:03:04:6c: d6:ab:08:c2:59:de:7e:f9:86:2d:67:69:5e:72:49: f6:2e:44:e2:1e:7f:b4:ed:1f:85:14:6b:73:db:20: 5e:3a:80:df:4f:cb:a0:14:29:b3:da:f8:c3:42:d0: 0d:85:7e:7c:79:01:e3:10:2a:3b:bb:32:61:7a:35: 69:88:b7:06:2e:5d:a6:ed:6e:b7:49:33:0d:52:b5: 3e:0a:73:b3:0a:cb:67:e6:5a:a5:32:e7:46:51:63: c5:74:5b:4e:ff:98:dc:4b:c3:b2:e4:09:31:30:17: 5b:5d:83:fd:20:ae:70:a1:f8:b4:3e:ba:e8:f6:2e: a5:82:8e:df:2c:15:f7:30:58:69:cb:4f:09:aa:80: 51:29:51:61:d7:9f:d0:c5:e6:aa:96:bf:b6:8a:01: af:4e:c0:92:16:d9:55:b9:59:61:18:95:20:78:42: 3c:b6:06:2d:e8:1f:22:74:4a:9d:58:88:dd:57:0e: 67:41:7e:81:0a:69:d1:88:56:b0:5a:af:90:51:fd: 59:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:0E:54:B3:27:D7:E8:E0:F8:EA:56:C2:6D:CD:60:52:87:D8:DE:60 X509v3 Authority Key Identifier: keyid:20:74:6D:A9:6C:6C:93:48:E9:4B:BB:74:DC:CB:59:01:C6:EC:B7:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHRtqWxsk0jpS7t03MtZAcbst7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:9d:18:46:11:f2:2a:a0:34:f9:d7:ae:1c:13:90:92:30:d7: d6:47:b1:17:3f:bc:c7:53:30:1b:70:d5:11:8c:60:ca:7b:43: d5:fb:9b:02:0f:f1:cc:90:00:cc:95:f0:01:a4:86:ac:a9:50: 4b:f8:29:d1:6c:32:d0:0e:0a:bb:dd:3b:10:4f:64:e3:93:c9: 37:e1:11:7d:90:74:22:c7:0e:d8:e1:2f:be:bb:c9:93:66:b0: 3f:89:da:f7:73:26:a4:46:a5:4f:ce:79:1e:80:83:0d:40:b5: 12:de:b1:10:7b:6b:a5:c1:66:7f:b7:e0:0b:08:b7:4b:37:c7: ea:fd:6b:79:4a:04:8c:6a:0b:1a:c2:a4:33:ee:64:e4:ea:60: 8c:be:0d:b7:26:66:09:88:2b:ef:71:0a:57:e4:d3:b7:8a:68: e6:3f:12:e6:b1:aa:79:23:92:60:db:e6:0c:73:f4:1f:bb:ca: 17:fe:f8:91:dd:48:99:bb:e3:29:85:8a:46:ba:5f:dc:26:76: dd:ca:6d:94:e8:77:ae:32:9e:26:4e:88:cd:05:47:37:7e:36: 3d:7c:64:f6:ec:eb:94:f4:08:3d:f4:99:e4:f7:cb:3d:8e:cf: e4:eb:81:f7:7d:1b:01:57:f1:b6:49:96:1f:98:eb:3f:9c:9b: 18:3d:cc:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJEMUExMTAvBgNVBAUTKDIwNzQ2REE5NkM2QzkzNDhFOTRCQkI3NERDQ0I1OTAx QzZFQ0I3QjMwHhcNMjUwNTEzMDAzNDQwWhcNMjUwNTIwMDAzNDQwWjAYMRYwFAYD VQQDEw02ODIyOTNhMC01ZDNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuFJg0XofIO+HnDjv2AHH1TMYFMtMACjIDH2YWvRA1ed5uAW32uNOgBcXXaXC I77CJIX9Ifxol2wDBGzWqwjCWd5++YYtZ2leckn2LkTiHn+07R+FFGtz2yBeOoDf T8ugFCmz2vjDQtANhX58eQHjECo7uzJhejVpiLcGLl2m7W63STMNUrU+CnOzCstn 5lqlMudGUWPFdFtO/5jcS8Oy5AkxMBdbXYP9IK5wofi0Prro9i6lgo7fLBX3MFhp y08JqoBRKVFh15/Qxeaqlr+2igGvTsCSFtlVuVlhGJUgeEI8tgYt6B8idEqdWIjd Vw5nQX6BCmnRiFawWq+QUf1ZXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAcOVLMn 1+jg+OpWwm3NYFKH2N5gMB8GA1UdIwQYMBaAFCB0balsbJNI6Uu7dNzLWQHG7Lez MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkQxQS80QzZFQUJFODk5 RDgxMUVDQjlFMzU3NkZDNEY5QUUwMi9JSFJ0cVd4c2swanBTN3QwM010WkFjYnN0 N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lIUnRxV3hzazBqcFM3dDAzTXRaQWNic3Q3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QkQxQS80QzZFQUJFODk5RDgxMUVDQjlFMzU3NkZDNEY5QUUwMi9JSFJ0cVd4c2sw anBTN3QwM010WkFjYnN0N00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdnRhGEfIqoDT5164cE5CSMNfWR7EXP7zHUzAbcNURjGDKe0PV+5sC D/HMkADMlfABpIasqVBL+CnRbDLQDgq73TsQT2Tjk8k34RF9kHQixw7Y4S++u8mT ZrA/idr3cyakRqVPznkegIMNQLUS3rEQe2ulwWZ/t+ALCLdLN8fq/Wt5SgSMagsa wqQz7mTk6mCMvg23JmYJiCvvcQpX5NO3imjmPxLmsap5I5Jg2+YMc/Qfu8oX/viR 3UiZu+MphYpGul/cJnbdym2U6HeuMp4mTojNBUc3fjY9fGT27OuU9Ag99Jnk98s9 js/k64H3fRsBV/G2SZYfmOs/nJsYPcyK -----END CERTIFICATE-----Generated at Wed May 14 09:33:39 2025 by rpki-client