$ rpki-client -vvf rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/iiZW272QAzaEH_UDU2_5kY_rJcY.mft File: iiZW272QAzaEH_UDU2_5kY_rJcY.mft (raw, json) Hash identifier: VR9UKWRZ8n8qtKZCFX6PiZSQtu6h3kOBHrMnGmWdPQo= Subject key identifier: 68:E4:E6:D6:41:BD:58:54:5F:32:D9:BA:FD:91:36:B5:7A:60:D4:3A Authority key identifier: 8A:26:56:DB:BD:90:03:36:84:1F:F5:03:53:6F:F9:91:8F:EB:25:C6 Certificate issuer: /CN=A91A267C/serialNumber=8A2656DBBD900336841FF503536FF9918FEB25C6 Certificate serial: 09E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iiZW272QAzaEH_UDU2_5kY_rJcY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/iiZW272QAzaEH_UDU2_5kY_rJcY.mft Manifest number: 09D8 Signing time: Mon 12 May 2025 19:45:57 +0000 Manifest this update: Mon 12 May 2025 19:45:57 +0000 Manifest next update: Mon 19 May 2025 19:45:57 +0000 Files and hashes: 1: iiZW272QAzaEH_UDU2_5kY_rJcY.crl (hash: DpQ7s+5w857eQszIM7IqNM7nw+LuHFV4I/3ZNAVibxA=) 2: 9244682C7BD711EAA889485EC4F9AE02.roa (hash: p9kCZDh5UAqZ2BMmqpg1+O7Ke6v3jmI1iGjmFDJZpjY=) 3: 8B802D485F2211EC88AA0F84C4F9AE02.roa (hash: K7z8kKU5BqzIOHwB0jfNZHDe2Ivnb5VNPYxOnFpEPT0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/iiZW272QAzaEH_UDU2_5kY_rJcY.crl rsync://rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/iiZW272QAzaEH_UDU2_5kY_rJcY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iiZW272QAzaEH_UDU2_5kY_rJcY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 19:45:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2530 (0x9e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A267C, serialNumber=8A2656DBBD900336841FF503536FF9918FEB25C6 Validity Not Before: May 12 19:45:57 2025 GMT Not After : May 19 19:45:57 2025 GMT Subject: CN=68224ff5-cdb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:b2:35:d5:b5:41:ff:2c:d8:ae:aa:0f:cc:c1: 04:fd:10:78:df:2c:66:6d:3f:d4:a6:9a:44:a1:df: 8b:02:0c:9c:5f:d5:b6:fb:f5:ab:cb:4c:db:84:bc: 21:7c:f5:2b:54:b4:24:94:4b:73:fc:fa:91:94:f0: 76:c0:c4:bf:9e:40:60:77:12:39:b7:20:bf:9c:c8: 08:d6:83:e3:76:6b:a8:9c:a4:a2:74:86:99:99:13: 1d:cb:fb:a0:cb:5a:bb:13:7e:18:71:35:68:73:d1: 6e:bc:b4:40:70:d0:fd:06:10:c3:22:72:82:00:89: 5c:33:30:79:29:fb:4e:db:b2:0f:26:c3:f7:b0:ea: 36:9d:d4:50:1e:06:ea:21:51:c9:1a:e4:4a:ac:09: 1e:97:bb:79:c0:b4:1b:bd:ad:01:c9:a7:18:8d:fa: 33:70:8d:1c:52:ae:66:1f:1b:be:b3:ab:94:73:95: 1f:e8:3e:0e:c5:e3:d8:c3:83:10:32:6f:32:37:27: 01:50:8d:46:aa:37:4f:bf:b7:be:4f:7c:90:93:83: 78:8b:65:1f:fc:9f:e0:5b:67:0c:eb:2c:8a:e3:24: 22:b8:2f:31:8f:3e:f3:21:c7:4c:fd:73:4d:8d:41: 9a:52:61:7a:80:ce:da:61:ad:8f:b6:80:e1:c5:84: aa:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:E4:E6:D6:41:BD:58:54:5F:32:D9:BA:FD:91:36:B5:7A:60:D4:3A X509v3 Authority Key Identifier: keyid:8A:26:56:DB:BD:90:03:36:84:1F:F5:03:53:6F:F9:91:8F:EB:25:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/iiZW272QAzaEH_UDU2_5kY_rJcY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iiZW272QAzaEH_UDU2_5kY_rJcY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/iiZW272QAzaEH_UDU2_5kY_rJcY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:f0:b3:5c:f8:6a:4a:04:0d:8a:71:ab:4d:90:38:11:62:20: 7d:80:90:be:7e:03:24:03:f0:8c:0d:e7:16:97:20:72:a1:b3: b1:60:26:4d:07:d1:9d:4a:36:51:9e:e2:60:ac:9f:d3:71:ec: bb:e8:86:49:34:c0:e7:b6:bf:64:db:1c:7f:9a:fd:a8:1c:bb: 93:a5:ea:c7:28:58:03:59:03:af:82:23:1c:56:9f:9a:dd:56: 0d:50:c6:5a:ef:0a:ea:8f:37:fb:09:00:81:ea:9d:d8:f7:06: 62:d8:a7:d0:bf:36:1e:45:f6:aa:8e:f6:bf:b3:ec:d6:34:16: 21:4e:0b:6d:b5:9a:e4:22:d6:f2:c4:11:82:28:3c:fd:6d:0c: 5a:af:74:60:f3:60:7e:3a:83:aa:d2:7a:3e:1b:5f:dd:18:1c: 69:fc:21:05:2f:e3:63:3c:ab:5d:b3:bf:b5:dd:97:4a:ce:99: 44:1f:b3:79:d0:e4:16:bb:e2:68:d4:f1:6c:af:e1:5e:c9:9c: 85:45:41:39:bb:75:16:f9:97:4f:99:82:55:c6:61:1c:2d:ca: db:1d:e9:83:af:6b:d3:c6:23:41:f4:6f:c0:18:81:31:60:2d: 17:57:14:21:76:a5:d1:1b:ca:61:0e:77:87:76:0b:7a:f4:e7: 8d:27:06:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTI2N0MxMTAvBgNVBAUTKDhBMjY1NkRCQkQ5MDAzMzY4NDFGRjUwMzUzNkZGOTkx OEZFQjI1QzYwHhcNMjUwNTEyMTk0NTU3WhcNMjUwNTE5MTk0NTU3WjAYMRYwFAYD VQQDEw02ODIyNGZmNS1jZGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA37I11bVB/yzYrqoPzMEE/RB43yxmbT/UpppEod+LAgycX9W2+/Wry0zbhLwh fPUrVLQklEtz/PqRlPB2wMS/nkBgdxI5tyC/nMgI1oPjdmuonKSidIaZmRMdy/ug y1q7E34YcTVoc9FuvLRAcND9BhDDInKCAIlcMzB5KftO27IPJsP3sOo2ndRQHgbq IVHJGuRKrAkel7t5wLQbva0ByacYjfozcI0cUq5mHxu+s6uUc5Uf6D4OxePYw4MQ Mm8yNycBUI1GqjdPv7e+T3yQk4N4i2Uf/J/gW2cM6yyK4yQiuC8xjz7zIcdM/XNN jUGaUmF6gM7aYa2PtoDhxYSqRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGjk5tZB vVhUXzLZuv2RNrV6YNQ6MB8GA1UdIwQYMBaAFIomVtu9kAM2hB/1A1Nv+ZGP6yXG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjY3Qy81QjUzODk2NjdC RDYxMUVBODAzRjlCNUNDNEY5QUUwMi9paVpXMjcyUUF6YUVIX1VEVTJfNWtZX3JK Y1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lpWlcyNzJRQXphRUhfVURVMl81a1lfckpjWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjY3Qy81QjUzODk2NjdCRDYxMUVBODAzRjlCNUNDNEY5QUUwMi9paVpXMjcyUUF6 YUVIX1VEVTJfNWtZX3JKY1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBM8LNc+GpKBA2KcatNkDgRYiB9gJC+fgMkA/CMDecWlyByobOxYCZN B9GdSjZRnuJgrJ/Tcey76IZJNMDntr9k2xx/mv2oHLuTperHKFgDWQOvgiMcVp+a 3VYNUMZa7wrqjzf7CQCB6p3Y9wZi2KfQvzYeRfaqjva/s+zWNBYhTgtttZrkItby xBGCKDz9bQxar3Rg82B+OoOq0no+G1/dGBxp/CEFL+NjPKtds7+13ZdKzplEH7N5 0OQWu+Jo1PFsr+FeyZyFRUE5u3UW+ZdPmYJVxmEcLcrbHemDr2vTxiNB9G/AGIEx YC0XVxQhdqXRG8phDneHdgt69OeNJwZp -----END CERTIFICATE-----Generated at Wed May 14 04:33:51 2025 by rpki-client