$ rpki-client -vvf rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft File: iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft (raw, json) Hash identifier: 3+9mq30arbAsNlXZmC1+JJiWGKwsdENgZDpEbewX1Lg= Subject key identifier: 03:EF:C8:B3:2F:DA:F7:4A:CD:9C:98:0B:C6:2D:8B:B5:B1:15:51:7B Authority key identifier: 89:0B:1D:EF:E8:8D:59:19:6B:CC:7B:65:26:8C:62:E8:6E:54:D4:6D Certificate issuer: /CN=A9195F7B/serialNumber=890B1DEFE88D59196BCC7B65268C62E86E54D46D Certificate serial: 0112 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft Manifest number: 0103 Signing time: Tue 13 May 2025 04:26:34 +0000 Manifest this update: Tue 13 May 2025 04:26:34 +0000 Manifest next update: Tue 20 May 2025 04:26:34 +0000 Files and hashes: 1: iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl (hash: Sc2WMR94uEms3iYvN9bocM37j9tJSwbaS2kqg5Y2pzc=) 2: 87662556555511EF88D9F680C4F9AE02.roa (hash: k8ciaOJiovKzhjLhsMW8Olbo59H12ftecdkV4UavoKg=) 3: F406C3F26AE311EF82D7860FC4F9AE02.roa (hash: BGxl2SOPQW6C/i2r2VN80go3aEYSETpmK67AkebR/E4=) 4: D7FEF354562111EFA7B3F00AC4F9AE02.roa (hash: Z74c44o/GimXrdeWvw94wRAl3MPTrcV7W0A3AuI0ILk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 04:26:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 274 (0x112) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195F7B, serialNumber=890B1DEFE88D59196BCC7B65268C62E86E54D46D Validity Not Before: May 13 04:26:34 2025 GMT Not After : May 20 04:26:34 2025 GMT Subject: CN=6822c9fa-fb50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:96:3e:64:1f:33:ca:d8:d0:bb:26:55:ab:01: 54:e4:9a:02:04:b3:38:12:ba:34:fe:31:9c:19:13: de:a2:c1:59:60:6f:66:77:0a:88:a5:78:65:eb:71: bd:cf:c0:db:a9:ff:de:a6:58:6d:c6:5a:eb:7d:00: 8d:87:05:e6:28:35:6e:99:1a:f7:23:a2:57:53:82: 3b:7c:35:f8:f6:52:e6:65:82:29:50:f6:52:dd:ea: 0d:ac:9f:20:5c:ef:95:75:bb:75:2c:c2:00:79:49: 57:e0:30:5d:4b:7e:3f:76:e6:d3:fe:75:92:ce:a2: c0:4f:92:35:19:5b:0f:08:55:3b:f2:aa:fc:84:ea: dc:c1:5c:53:0f:9d:2a:9f:83:4b:95:0f:97:9e:75: 84:7a:e5:64:38:a5:72:87:70:35:db:19:3c:6b:8e: e0:4b:c5:47:02:1c:5e:f3:bc:58:bd:41:ef:97:62: e0:0a:e4:c8:f4:9c:0a:f1:01:b9:26:48:11:e1:65: c3:a2:72:40:0f:cc:e4:90:a9:b5:f3:76:f6:e7:7b: 51:4f:fc:da:05:a1:8f:cc:45:7d:6a:42:fb:93:b1: fc:45:4c:8f:77:1e:69:5b:24:02:94:67:b4:f0:86: d3:84:f3:4f:4b:d0:cb:6f:2e:bb:50:31:2e:54:55: aa:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:EF:C8:B3:2F:DA:F7:4A:CD:9C:98:0B:C6:2D:8B:B5:B1:15:51:7B X509v3 Authority Key Identifier: keyid:89:0B:1D:EF:E8:8D:59:19:6B:CC:7B:65:26:8C:62:E8:6E:54:D4:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:ae:93:22:82:df:ea:f7:f2:76:05:eb:71:bd:20:f5:97:a1: 7a:c8:16:35:d8:b0:f5:65:f5:9f:c6:69:f4:6c:f8:82:9d:de: 05:d2:45:17:8d:8e:19:04:06:ea:5d:6e:85:6b:d3:da:34:d6: a3:61:47:7f:69:96:60:5b:5f:c1:a4:6b:20:1c:d7:71:27:f9: 36:82:f5:f9:96:b2:d3:9c:cd:0f:05:ed:83:4c:fa:7c:67:40: 36:9b:93:7b:cc:cf:ac:c1:8b:43:f7:40:fb:f4:15:6f:6f:4c: a2:7b:bf:f1:aa:ed:ff:f4:17:74:6a:e9:e8:5f:4c:a5:b7:6b: 2f:7d:18:39:ef:c6:3b:37:92:97:fe:76:3f:f7:52:db:65:28: 1a:28:10:5f:1e:69:33:a9:36:d8:04:94:f5:ca:b5:76:c5:c1: 58:0f:cc:c2:bf:8c:26:f4:fd:07:e4:c3:f4:51:92:a0:c0:13: b7:bc:88:13:90:1f:01:41:f8:13:0e:07:4c:f5:07:1c:d9:c8: 5c:e5:1c:36:d7:9f:4b:fd:30:33:03:ac:87:49:b6:4e:91:a1: 12:10:e1:d0:13:02:73:58:44:bc:e4:90:b0:82:4b:5d:f1:1a: d8:9d:4a:3d:03:83:ee:76:99:35:07:5a:7e:78:4a:94:50:7d: 6e:74:64:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVGN0IxMTAvBgNVBAUTKDg5MEIxREVGRTg4RDU5MTk2QkNDN0I2NTI2OEM2MkU4 NkU1NEQ0NkQwHhcNMjUwNTEzMDQyNjM0WhcNMjUwNTIwMDQyNjM0WjAYMRYwFAYD VQQDEw02ODIyYzlmYS1mYjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6JY+ZB8zytjQuyZVqwFU5JoCBLM4Ero0/jGcGRPeosFZYG9mdwqIpXhl63G9 z8Dbqf/eplhtxlrrfQCNhwXmKDVumRr3I6JXU4I7fDX49lLmZYIpUPZS3eoNrJ8g XO+Vdbt1LMIAeUlX4DBdS34/dubT/nWSzqLAT5I1GVsPCFU78qr8hOrcwVxTD50q n4NLlQ+XnnWEeuVkOKVyh3A12xk8a47gS8VHAhxe87xYvUHvl2LgCuTI9JwK8QG5 JkgR4WXDonJAD8zkkKm183b253tRT/zaBaGPzEV9akL7k7H8RUyPdx5pWyQClGe0 8IbThPNPS9DLby67UDEuVFWqPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAPvyLMv 2vdKzZyYC8Yti7WxFVF7MB8GA1UdIwQYMBaAFIkLHe/ojVkZa8x7ZSaMYuhuVNRt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUY3Qi9BMTMxQjM5NEJC MzkxMUVFQTY1NTQxN0VDNEY5QUUwMi9pUXNkNy1pTldSbHJ6SHRsSm94aTZHNVUx RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lRc2Q3LWlOV1JscnpIdGxKb3hpNkc1VTFHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUY3Qi9BMTMxQjM5NEJCMzkxMUVFQTY1NTQxN0VDNEY5QUUwMi9pUXNkNy1pTldS bHJ6SHRsSm94aTZHNVUxRzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCArpMigt/q9/J2BetxvSD1l6F6yBY12LD1ZfWfxmn0bPiCnd4F0kUX jY4ZBAbqXW6Fa9PaNNajYUd/aZZgW1/BpGsgHNdxJ/k2gvX5lrLTnM0PBe2DTPp8 Z0A2m5N7zM+swYtD90D79BVvb0yie7/xqu3/9Bd0aunoX0ylt2svfRg578Y7N5KX /nY/91LbZSgaKBBfHmkzqTbYBJT1yrV2xcFYD8zCv4wm9P0H5MP0UZKgwBO3vIgT kB8BQfgTDgdM9Qcc2chc5Rw2159L/TAzA6yHSbZOkaESEOHQEwJzWES85JCwgktd 8RrYnUo9A4Pudpk1B1p+eEqUUH1udGRx -----END CERTIFICATE-----Generated at Wed May 14 07:56:16 2025 by rpki-client