$ rpki-client -vvf rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft File: iWZCPuKkFWMfevMU5NiEAHqEaLY.mft (raw, json) Hash identifier: xQ06Zs0NMQDwF1aytKqpDM6BTH1R6LMgBiqIH+EdzMA= Subject key identifier: C9:F8:FA:B2:CF:33:B0:D1:22:03:69:19:F3:24:AD:04:4D:B4:AC:A9 Authority key identifier: 89:66:42:3E:E2:A4:15:63:1F:7A:F3:14:E4:D8:84:00:7A:84:68:B6 Certificate issuer: /CN=A91A91CB/serialNumber=8966423EE2A415631F7AF314E4D884007A8468B6 Certificate serial: 31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft Manifest number: 30 Signing time: Thu 15 May 2025 06:57:23 +0000 Manifest this update: Thu 15 May 2025 06:57:23 +0000 Manifest next update: Thu 22 May 2025 06:57:23 +0000 Files and hashes: 1: iWZCPuKkFWMfevMU5NiEAHqEaLY.crl (hash: 7dKiEOSLp5Y3l8fkA89CJhMg4pbMulnx/+ZuZ0KJACg=) 2: 0EB302DCEA5B11EFABB07C6DC4F9AE02.roa (hash: gvmSDCYZSC63LrY5JrPQoisd5tgDkXkEX0SCy3pFzuY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.crl rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 06:57:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49 (0x31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A91CB, serialNumber=8966423EE2A415631F7AF314E4D884007A8468B6 Validity Not Before: May 15 06:57:23 2025 GMT Not After : May 22 06:57:23 2025 GMT Subject: CN=68259053-2973 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:73:f3:16:f9:0f:34:7d:54:6e:ac:b6:df:98: 85:cb:ca:3d:46:66:23:ba:3b:83:7a:10:7b:4b:9c: 8f:f3:98:89:c0:a9:70:de:dd:5d:85:d7:39:47:40: de:fb:ce:2a:e3:02:97:ba:c3:cf:79:d4:1a:5e:36: 20:b7:5c:f5:7e:14:24:ba:95:ce:d5:ee:83:8e:ae: 94:d0:3d:98:ac:83:6c:aa:56:50:e2:42:40:b6:27: 2e:7d:00:bb:16:a0:9a:cb:a2:8a:a6:60:dc:9d:5e: cf:79:54:5f:86:c0:22:c8:d6:22:e5:4d:3d:5e:d8: 52:53:9c:30:91:ff:f1:ed:7e:d9:b9:68:90:05:09: 6a:0b:fb:5d:ac:de:ac:4d:9d:1d:c6:24:46:6f:bf: ae:d8:f2:87:3c:2c:d0:97:e6:73:95:3f:93:43:f2: bc:21:6e:23:6c:c8:f8:ec:54:ba:3a:84:10:08:fe: 94:a7:c8:22:5c:96:cb:91:0a:55:61:de:69:df:f6: cd:fc:65:56:37:3d:78:73:16:4e:7b:c5:ed:c0:03: 03:dd:e7:4e:ac:78:80:4c:80:64:d7:ff:37:24:04: a4:b6:4e:7e:8a:40:de:13:c5:b2:3a:1d:8a:3d:ee: ef:e8:6d:aa:3c:91:6e:ef:f2:e5:f9:79:8a:72:8d: 62:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:F8:FA:B2:CF:33:B0:D1:22:03:69:19:F3:24:AD:04:4D:B4:AC:A9 X509v3 Authority Key Identifier: keyid:89:66:42:3E:E2:A4:15:63:1F:7A:F3:14:E4:D8:84:00:7A:84:68:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:60:e6:ea:c8:d0:48:82:1f:b7:cf:09:f5:aa:06:c6:1a:16: 55:e1:46:5d:a4:30:9e:72:ab:b6:7e:0f:5f:1a:d9:88:f7:80: dd:e9:48:a2:71:8d:2b:e4:d6:f1:fa:57:ef:3f:3e:90:c4:33: bf:48:44:c2:81:22:d1:ca:6e:1d:c2:91:d5:e7:1c:04:4a:e6: 65:f4:6c:f7:af:96:d2:ca:c8:75:94:26:11:25:87:88:f7:c1: 6b:47:04:bc:5b:04:15:42:e4:5f:c5:d8:23:86:90:aa:ad:1c: a3:73:a0:cc:9e:a0:cc:ba:2c:fc:66:c0:2d:16:0a:f3:b8:3a: 08:3e:62:ac:92:b2:c4:f2:98:e7:62:91:d1:47:be:ad:72:2f: dd:cd:a7:e3:4e:ce:6b:37:6f:19:ad:88:14:ed:7f:6f:f7:2d: aa:26:fa:a6:62:e6:5b:33:52:6c:26:f3:3a:d3:c8:2b:55:a5: c6:ca:d6:5c:b8:80:9b:96:99:32:04:7d:f5:0a:b3:6a:eb:29: 47:ad:e3:c8:94:e0:d6:4a:60:26:0b:1f:5a:2f:16:84:07:f9: df:ea:fc:c9:01:00:09:99:f1:ab:3b:89:13:de:93:49:f5:39: 3f:44:5e:ff:16:a0:5f:ff:45:f1:d5:2f:93:f5:4a:b0:04:e3: 83:ee:05:18 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTFDQjExMC8GA1UEBRMoODk2NjQyM0VFMkE0MTU2MzFGN0FGMzE0RTREODg0MDA3 QTg0NjhCNjAeFw0yNTA1MTUwNjU3MjNaFw0yNTA1MjIwNjU3MjNaMBgxFjAUBgNV BAMTDTY4MjU5MDUzLTI5NzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDvc/MW+Q80fVRurLbfmIXLyj1GZiO6O4N6EHtLnI/zmInAqXDe3V2F1zlHQN77 zirjApe6w8951BpeNiC3XPV+FCS6lc7V7oOOrpTQPZisg2yqVlDiQkC2Jy59ALsW oJrLooqmYNydXs95VF+GwCLI1iLlTT1e2FJTnDCR//Htftm5aJAFCWoL+12s3qxN nR3GJEZvv67Y8oc8LNCX5nOVP5ND8rwhbiNsyPjsVLo6hBAI/pSnyCJclsuRClVh 3mnf9s38ZVY3PXhzFk57xe3AAwPd506seIBMgGTX/zckBKS2Tn6KQN4TxbI6HYo9 7u/obao8kW7v8uX5eYpyjWIlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyfj6ss8z sNEiA2kZ8yStBE20rKkwHwYDVR0jBBgwFoAUiWZCPuKkFWMfevMU5NiEAHqEaLYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5MUNCLzY1MEU2MDBBRUE1 QTExRUZCODRBRTQ2OEM0RjlBRTAyL2lXWkNQdUtrRldNZmV2TVU1TmlFQUhxRWFM WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVdaQ1B1S2tGV01mZXZNVTVOaUVBSHFFYUxZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5 MUNCLzY1MEU2MDBBRUE1QTExRUZCODRBRTQ2OEM0RjlBRTAyL2lXWkNQdUtrRldN ZmV2TVU1TmlFQUhxRWFMWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFVg5urI0EiCH7fPCfWqBsYaFlXhRl2kMJ5yq7Z+D18a2Yj3gN3pSKJx jSvk1vH6V+8/PpDEM79IRMKBItHKbh3CkdXnHARK5mX0bPevltLKyHWUJhElh4j3 wWtHBLxbBBVC5F/F2COGkKqtHKNzoMyeoMy6LPxmwC0WCvO4Ogg+YqySssTymOdi kdFHvq1yL93Np+NOzms3bxmtiBTtf2/3Laom+qZi5lszUmwm8zrTyCtVpcbK1ly4 gJuWmTIEffUKs2rrKUet48iU4NZKYCYLH1ovFoQH+d/q/MkBAAmZ8as7iRPek0n1 OT9EXv8WoF//RfHVL5P1SrAE44PuBRg= -----END CERTIFICATE-----Generated at Fri May 16 18:54:32 2025 by rpki-client