$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft File: IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft (raw, json) Hash identifier: mtG/j/Khhgdz/bRWWhL2CQ4Dho+/GWakQ6XVidlb/mw= Subject key identifier: B6:17:9A:E3:1C:E3:32:CA:06:50:B2:82:82:49:93:53:C7:35:54:79 Authority key identifier: 22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 Certificate issuer: /CN=A9195BA9/serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Certificate serial: 09BE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft Manifest number: 09B2 Signing time: Wed 14 May 2025 20:08:00 +0000 Manifest this update: Wed 14 May 2025 20:08:00 +0000 Manifest next update: Wed 21 May 2025 20:08:00 +0000 Files and hashes: 1: IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl (hash: voV/QnG/vs2K0lFPlSEDb8VhaK3JOn29OfiC4Px3DFg=) 2: 543CDDF0839011EAB5B82263C4F9AE02.roa (hash: PG+DCY3DsnT1DiiJh/CX8LITvJqbEq/+Av+Qqgc42Yc=) 3: 54DD69FA839011EAB5B82263C4F9AE02.roa (hash: YJ7W6HYFgOqdoVWF2hJtmCaUJf59puKnAmoMTngU5VA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 20:07:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2494 (0x9be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9, serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Validity Not Before: May 14 20:08:00 2025 GMT Not After : May 21 20:08:00 2025 GMT Subject: CN=6824f820-b2d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:55:ca:65:90:00:cc:00:fb:43:e8:c4:16:bb: 11:43:c5:2c:8e:b1:4f:3c:33:5f:5d:a6:f6:d7:0a: 51:14:36:fd:5f:36:10:1a:f2:5c:db:54:b3:69:ad: 41:fe:ba:c1:18:b8:9e:22:2f:b2:72:7e:26:79:8c: 60:15:bc:da:e3:38:33:aa:b2:36:b9:a2:34:3f:6e: 7d:f6:80:9f:29:c1:9e:ba:4f:db:7b:6f:28:a6:08: c2:d5:c7:8a:95:0e:e6:26:e7:63:1d:a2:7f:25:03: 0a:1a:2a:a7:ef:8f:f8:8d:8c:f0:8e:60:96:74:c5: 5b:b9:d2:dc:be:36:3f:c5:dd:86:53:09:e6:dc:d4: 1d:ed:49:dd:08:b6:64:c2:9a:5a:21:1a:6c:24:d8: c0:96:19:62:3c:5f:8e:fa:16:fd:b7:fb:a9:f8:1b: 10:20:05:e1:b1:34:59:cb:36:6d:29:51:4e:f8:0c: 5d:67:82:c7:a9:b8:66:d5:55:b7:16:54:d5:a9:14: 96:0e:2f:83:9c:bf:8d:75:ac:e0:51:24:63:06:e3: 92:3c:f5:4c:90:32:2f:83:a0:ea:ce:a4:a4:68:33: 33:49:cc:35:a1:23:87:52:34:28:33:93:35:8d:2f: bd:ff:0c:48:dc:2e:6c:96:96:be:37:bb:05:da:c9: b8:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:17:9A:E3:1C:E3:32:CA:06:50:B2:82:82:49:93:53:C7:35:54:79 X509v3 Authority Key Identifier: keyid:22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:93:de:ef:9c:35:6f:5d:bc:e6:dd:7f:a5:37:07:b1:53:4d: 03:78:8e:35:fe:ac:15:00:89:d5:2b:1b:27:50:70:e7:b2:0a: 8d:05:b5:1b:8b:28:64:aa:ed:3c:a8:1b:28:b6:8a:70:4e:eb: 2d:cb:33:da:1e:92:3d:38:a7:3d:29:0b:b9:18:91:c4:82:47: 3e:43:c3:42:83:20:a2:fc:48:f1:c4:dc:72:2d:fb:af:7a:82: 6e:7d:78:e5:d4:af:7b:eb:e6:5c:3b:78:63:f0:e5:55:03:a0: 62:3f:90:2c:c5:ac:16:ad:45:d8:f4:f0:8f:73:58:d9:b0:e2: 5e:c8:38:28:22:a0:db:e1:b9:bd:6b:00:12:5e:0b:1b:51:a9: 55:35:15:3d:cb:8b:63:e8:e3:13:f0:79:7c:ed:1e:1f:31:e9: 1f:b8:65:97:99:c2:99:c2:b6:64:27:ee:0a:17:85:81:1a:e2: 6e:4b:e4:f0:53:a6:3a:b8:a0:48:32:c1:36:ef:79:cc:c3:a7: 79:c6:9a:3a:cb:3b:f8:46:bd:96:53:41:51:af:99:bd:9b:34: 2d:38:47:e3:45:c1:b6:f0:06:50:37:0f:c1:02:78:83:4f:a0: 76:c2:4f:33:d6:d4:bb:57:2e:6a:e3:68:0d:03:52:6b:27:33: a9:95:c8:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKDIyNDVBRDkxNTQzQUREQUQ3ODEyM0RENDE1RDY1OUJC NTJENUZCNjIwHhcNMjUwNTE0MjAwODAwWhcNMjUwNTIxMjAwODAwWjAYMRYwFAYD VQQDEw02ODI0ZjgyMC1iMmQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvFXKZZAAzAD7Q+jEFrsRQ8UsjrFPPDNfXab21wpRFDb9XzYQGvJc21Szaa1B /rrBGLieIi+ycn4meYxgFbza4zgzqrI2uaI0P2599oCfKcGeuk/be28opgjC1ceK lQ7mJudjHaJ/JQMKGiqn74/4jYzwjmCWdMVbudLcvjY/xd2GUwnm3NQd7UndCLZk wppaIRpsJNjAlhliPF+O+hb9t/up+BsQIAXhsTRZyzZtKVFO+AxdZ4LHqbhm1VW3 FlTVqRSWDi+DnL+NdazgUSRjBuOSPPVMkDIvg6DqzqSkaDMzScw1oSOHUjQoM5M1 jS+9/wxI3C5slpa+N7sF2sm4OQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLYXmuMc 4zLKBlCygoJJk1PHNVR5MB8GA1UdIwQYMBaAFCJFrZFUOt2teBI91BXWWbtS1fti MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9EODkxNDc4Qzgz OEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNhMTRFajNVRmRaWnUxTFYt MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lrV3RrVlE2M2ExNEVqM1VGZFpadTFMVi0ySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUJBOS9EODkxNDc4QzgzOEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNh MTRFajNVRmRaWnUxTFYtMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNk97vnDVvXbzm3X+lNwexU00DeI41/qwVAInVKxsnUHDnsgqNBbUb iyhkqu08qBsotopwTustyzPaHpI9OKc9KQu5GJHEgkc+Q8NCgyCi/EjxxNxyLfuv eoJufXjl1K976+ZcO3hj8OVVA6BiP5AsxawWrUXY9PCPc1jZsOJeyDgoIqDb4bm9 awASXgsbUalVNRU9y4tj6OMT8Hl87R4fMekfuGWXmcKZwrZkJ+4KF4WBGuJuS+Tw U6Y6uKBIMsE273nMw6d5xpo6yzv4Rr2WU0FRr5m9mzQtOEfjRcG28AZQNw/BAniD T6B2wk8z1tS7Vy5q42gNA1JrJzOplcjG -----END CERTIFICATE-----Generated at Fri May 16 13:55:52 2025 by rpki-client