$ rpki-client -vvf rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft File: iyhQBa2gBz4MCUttpqOLtR__oaQ.mft (raw, json) Hash identifier: TVXfts6IfldpP9cR1fevSrIcDxqv7JHoBAEd/3q+i4I= Subject key identifier: 7A:FA:7E:E5:6B:C0:54:FD:EE:E1:A0:60:41:E2:63:12:D6:3A:C1:A1 Authority key identifier: 8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 Certificate issuer: /CN=A918D14B/serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Certificate serial: 03C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft Manifest number: 03B5 Signing time: Tue 13 May 2025 00:30:52 +0000 Manifest this update: Tue 13 May 2025 00:30:51 +0000 Manifest next update: Tue 20 May 2025 00:30:51 +0000 Files and hashes: 1: iyhQBa2gBz4MCUttpqOLtR__oaQ.crl (hash: oShTz8jtUIgS0HYrFBBPd62aw+zjQiYC7XuzzMl0+Bo=) 2: 58C00854905211EC90E6100FC4F9AE02.roa (hash: 5eLmPskwIg5y4gDpqWBeusWbrOc+t34TIFwmF+boTps=) 3: 989BBF70904F11EC8B118911C4F9AE02.roa (hash: sO6E1E+nR+eYc5iIU6EYUSE2ekfNEYMYq4mKBPQmsro=) 4: 7E8442B68FE511EC94D98C7BC4F9AE02.roa (hash: oJI3ab/8fzhkHDC4Wzdxeh+CGGzoOkYJ9B82+ons7t8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 21:34:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 968 (0x3c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D14B, serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Validity Not Before: May 13 00:30:51 2025 GMT Not After : May 20 00:30:51 2025 GMT Subject: CN=682292bc-7201 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:a4:b4:a0:fc:b8:d9:52:8a:9d:9f:0d:65:5d: f6:4f:cb:dc:d2:bb:4c:c5:ea:fe:41:45:97:9c:30: 88:52:af:f5:3e:98:10:85:37:99:f9:7f:23:09:87: 5f:f9:63:ab:b0:c2:f5:c5:85:26:04:1f:92:00:c9: 7b:57:41:6d:b7:d8:c4:c2:72:d8:bf:a1:5e:f2:c8: 3d:e7:3b:ca:d4:c6:a2:c6:af:2e:fc:a2:43:56:5d: 3c:f3:1e:0c:e9:e2:da:ea:eb:41:45:48:2e:85:aa: e8:74:14:2d:d2:5c:4b:6e:59:ee:cf:ac:f9:28:5d: 70:d4:bb:77:92:55:1d:88:04:b2:35:7f:ac:4d:0e: c6:44:d6:a1:19:6a:11:63:c5:f5:90:cc:f9:23:c7: 68:69:4f:31:7b:96:af:69:64:52:db:83:7f:65:a5: be:fe:f3:28:a8:4a:35:36:c0:93:f7:38:99:37:88: f1:f7:04:a3:a0:57:67:5f:d5:5f:41:42:6c:1a:ff: 1a:11:cf:5f:e3:c7:aa:ff:1b:b7:aa:12:34:b2:a6: ad:a5:b7:88:bf:2e:f5:51:01:eb:df:77:cf:f8:18: 3a:05:6a:96:8d:f0:c8:33:79:f9:e6:ba:47:d0:a1: 35:f9:1a:f4:4d:4f:00:26:6a:2d:30:1f:e9:fe:66: a2:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:FA:7E:E5:6B:C0:54:FD:EE:E1:A0:60:41:E2:63:12:D6:3A:C1:A1 X509v3 Authority Key Identifier: keyid:8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:54:b9:84:5a:4c:69:2f:c0:03:e8:f4:91:54:d7:42:2f:04: 88:30:ac:ba:82:30:c0:e6:fb:5d:ff:2b:17:9c:7f:e6:34:68: 72:80:ac:d7:50:5f:5f:96:52:f8:ea:15:da:df:ea:75:1e:49: 59:c5:56:91:14:d5:d4:da:13:4f:26:67:0e:20:81:2d:16:be: d6:3e:5a:fa:c6:e0:f4:e3:94:e7:74:11:04:0b:3d:d8:89:0b: 5a:97:1c:95:39:58:4a:00:36:67:53:df:7f:53:4c:da:28:ef: 45:1b:a3:3c:ec:6c:63:06:58:41:5b:6b:14:da:25:c8:40:5f: 0c:36:e8:da:f1:9d:69:bd:1f:67:60:28:f7:00:f8:ba:d5:15: 33:da:61:80:c7:bf:6b:be:d9:21:ec:ba:cd:a5:ae:60:d0:7a: c5:27:29:5e:21:ef:70:e8:5f:6a:b0:94:1c:36:0e:66:93:21: 46:77:33:7a:6e:08:be:a1:c3:04:f2:ef:da:82:47:77:ba:e4: a4:01:01:18:e8:f8:7a:74:0c:8e:66:98:98:63:ac:74:d2:69: 3a:ff:2c:ee:07:e8:1c:96:1d:de:17:10:84:ae:fd:b2:3d:5d: 33:6c:f6:2a:55:e8:4f:2a:3c:58:65:f6:6a:3a:65:ca:b3:0e: 9c:bb:13:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQxNEIxMTAvBgNVBAUTKDhCMjg1MDA1QURBMDA3M0UwQzA5NEI2REE2QTM4QkI1 MUZGRkExQTQwHhcNMjUwNTEzMDAzMDUxWhcNMjUwNTIwMDAzMDUxWjAYMRYwFAYD VQQDEw02ODIyOTJiYy03MjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5qS0oPy42VKKnZ8NZV32T8vc0rtMxer+QUWXnDCIUq/1PpgQhTeZ+X8jCYdf +WOrsML1xYUmBB+SAMl7V0Ftt9jEwnLYv6Fe8sg95zvK1Maixq8u/KJDVl088x4M 6eLa6utBRUguharodBQt0lxLblnuz6z5KF1w1Lt3klUdiASyNX+sTQ7GRNahGWoR Y8X1kMz5I8doaU8xe5avaWRS24N/ZaW+/vMoqEo1NsCT9ziZN4jx9wSjoFdnX9Vf QUJsGv8aEc9f48eq/xu3qhI0sqatpbeIvy71UQHr33fP+Bg6BWqWjfDIM3n55rpH 0KE1+Rr0TU8AJmotMB/p/maigQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHr6fuVr wFT97uGgYEHiYxLWOsGhMB8GA1UdIwQYMBaAFIsoUAWtoAc+DAlLbaaji7Uf/6Gk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDE0Qi85NEM4OThDQzhG RTIxMUVDQThBRkVFNzhDNEY5QUUwMi9peWhRQmEyZ0J6NE1DVXR0cHFPTHRSX19v YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2l5aFFCYTJnQno0TUNVdHRwcU9MdFJfX29hUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDE0Qi85NEM4OThDQzhGRTIxMUVDQThBRkVFNzhDNEY5QUUwMi9peWhRQmEyZ0J6 NE1DVXR0cHFPTHRSX19vYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvVLmEWkxpL8AD6PSRVNdCLwSIMKy6gjDA5vtd/ysXnH/mNGhygKzX UF9fllL46hXa3+p1HklZxVaRFNXU2hNPJmcOIIEtFr7WPlr6xuD045TndBEECz3Y iQtalxyVOVhKADZnU99/U0zaKO9FG6M87GxjBlhBW2sU2iXIQF8MNuja8Z1pvR9n YCj3APi61RUz2mGAx79rvtkh7LrNpa5g0HrFJyleIe9w6F9qsJQcNg5mkyFGdzN6 bgi+ocME8u/agkd3uuSkAQEY6Ph6dAyOZpiYY6x00mk6/yzuB+gclh3eFxCErv2y PV0zbPYqVehPKjxYZfZqOmXKsw6cuxMI -----END CERTIFICATE-----Generated at Tue May 13 02:39:24 2025 by rpki-client