$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.mft File: MIoPBCNx10Tky2KrUekE9wys03o.mft (raw, json) Hash identifier: kvI1BPYsBi5Ex/K/RPdrhzR0BQrYlchUqMVLneUvisA= Subject key identifier: 7A:8F:19:6B:FC:E0:8A:78:95:20:CE:BE:3D:11:63:26:FA:F2:CA:E6 Authority key identifier: 30:8A:0F:04:23:71:D7:44:E4:CB:62:AB:51:E9:04:F7:0C:AC:D3:7A Certificate issuer: /CN=A91B2252/serialNumber=308A0F042371D744E4CB62AB51E904F70CACD37A Certificate serial: 07CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MIoPBCNx10Tky2KrUekE9wys03o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.mft Manifest number: 07C1 Signing time: Mon 12 May 2025 20:56:07 +0000 Manifest this update: Mon 12 May 2025 20:56:06 +0000 Manifest next update: Mon 19 May 2025 20:56:06 +0000 Files and hashes: 1: MIoPBCNx10Tky2KrUekE9wys03o.crl (hash: FVQnnw9lbvjLYfY/vcZMNN8eDw5LGLfGHOAagRrTnVk=) 2: 727EECD2678811EF99602F53C4F9AE02.roa (hash: WvAkrs/LiVkRHkVog2xW2/ey9F5S8FH9WKoT4JG9/2M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.crl rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MIoPBCNx10Tky2KrUekE9wys03o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 20:56:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1995 (0x7cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2252, serialNumber=308A0F042371D744E4CB62AB51E904F70CACD37A Validity Not Before: May 12 20:56:06 2025 GMT Not After : May 19 20:56:06 2025 GMT Subject: CN=68226067-d8e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:f3:1e:2b:a6:c4:db:cc:01:40:9f:16:76:ef: d4:4d:3e:34:1d:24:04:c2:28:50:37:36:cc:50:f8: 4d:ac:c4:17:0b:e8:bc:50:03:86:a1:84:72:eb:f9: d2:9a:28:d4:6b:71:ab:f8:22:74:60:5d:9c:4a:46: 5f:19:6b:75:4f:97:a4:8b:f6:06:7e:7b:8b:ab:56: 25:ff:11:c0:81:28:50:e1:78:11:dc:d1:e0:d5:96: 3a:c0:64:de:3f:5d:5a:d1:52:ea:cb:bc:2e:94:c8: f5:67:aa:bc:37:c3:18:95:1a:a1:b7:3d:17:49:c9: 51:22:ae:a7:b2:08:c4:dc:6f:d0:df:c9:52:08:6d: 01:0a:e9:8c:f6:84:66:a8:36:12:40:f5:b0:54:7e: 73:4b:2f:8b:10:7c:ab:33:b9:ae:f7:63:71:73:00: 2d:97:6d:60:68:90:8d:4c:a6:56:de:33:65:2d:e8: 9f:9e:c3:c5:b3:98:d3:dc:78:8d:23:22:80:c2:ea: 92:5b:5b:a2:1e:cc:d0:7c:39:e5:cf:e5:70:c4:9e: aa:89:52:5f:eb:49:e0:5b:47:ff:76:1a:98:81:70: cf:9c:07:16:b3:34:65:06:b7:9c:d0:51:54:d2:46: 9a:3c:13:82:f5:ac:60:97:c2:a8:7a:6c:a0:22:00: eb:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:8F:19:6B:FC:E0:8A:78:95:20:CE:BE:3D:11:63:26:FA:F2:CA:E6 X509v3 Authority Key Identifier: keyid:30:8A:0F:04:23:71:D7:44:E4:CB:62:AB:51:E9:04:F7:0C:AC:D3:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MIoPBCNx10Tky2KrUekE9wys03o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:3c:21:68:b4:a0:81:ed:a7:ca:c1:f5:91:f1:a3:6c:75:01: 1e:8a:50:49:71:3a:bb:c5:53:34:59:fc:f6:93:d4:2a:b2:8a: 14:37:0c:7c:37:69:c4:8e:4d:2a:b2:41:f7:29:13:30:04:c4: 5c:ed:89:0c:33:89:49:b6:dd:85:a9:cb:7d:e1:fd:6f:96:a9: 44:66:1b:97:24:eb:49:72:f9:b8:fa:5c:19:14:71:bd:de:9b: 08:13:3c:d0:bb:9b:64:41:b0:da:be:5f:b6:be:6d:da:89:99: f9:fe:92:94:0d:82:e0:02:8e:e5:77:e0:fa:5d:9b:17:25:40: 63:e0:3e:a1:62:16:6f:f1:f8:c4:eb:19:5a:d7:90:c6:2d:62: f6:eb:cc:3b:5c:67:5e:90:03:2f:db:2c:ae:c4:55:f8:95:a5: 53:24:4e:d5:ba:35:1b:cd:22:1e:de:bd:56:92:d7:a7:36:4c: 9a:13:b9:c0:a8:79:a1:d6:11:1d:78:62:cb:4a:e7:8c:f9:fd: e2:b3:4c:95:91:9b:dc:71:bf:05:26:7a:e5:84:6c:c5:38:3c: c4:39:50:c4:21:61:64:f7:43:37:ea:56:99:51:41:b9:ca:b1: e8:16:80:66:73:ca:84:61:34:04:83:bf:55:91:19:c1:f0:7a: 76:81:fd:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjIyNTIxMTAvBgNVBAUTKDMwOEEwRjA0MjM3MUQ3NDRFNENCNjJBQjUxRTkwNEY3 MENBQ0QzN0EwHhcNMjUwNTEyMjA1NjA2WhcNMjUwNTE5MjA1NjA2WjAYMRYwFAYD VQQDEw02ODIyNjA2Ny1kOGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3fMeK6bE28wBQJ8Wdu/UTT40HSQEwihQNzbMUPhNrMQXC+i8UAOGoYRy6/nS mijUa3Gr+CJ0YF2cSkZfGWt1T5eki/YGfnuLq1Yl/xHAgShQ4XgR3NHg1ZY6wGTe P11a0VLqy7wulMj1Z6q8N8MYlRqhtz0XSclRIq6nsgjE3G/Q38lSCG0BCumM9oRm qDYSQPWwVH5zSy+LEHyrM7mu92NxcwAtl21gaJCNTKZW3jNlLeifnsPFs5jT3HiN IyKAwuqSW1uiHszQfDnlz+VwxJ6qiVJf60ngW0f/dhqYgXDPnAcWszRlBrec0FFU 0kaaPBOC9axgl8KoemygIgDrHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHqPGWv8 4Ip4lSDOvj0RYyb68srmMB8GA1UdIwQYMBaAFDCKDwQjcddE5Mtiq1HpBPcMrNN6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjI1Mi9DNThGOEI3QUY2 M0ExMUVBQjcwQTM2MUZDNEY5QUUwMi9NSW9QQkNOeDEwVGt5MktyVWVrRTl3eXMw M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01Jb1BCQ054MTBUa3kyS3JVZWtFOXd5czAzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjI1Mi9DNThGOEI3QUY2M0ExMUVBQjcwQTM2MUZDNEY5QUUwMi9NSW9QQkNOeDEw VGt5MktyVWVrRTl3eXMwM28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1PCFotKCB7afKwfWR8aNsdQEeilBJcTq7xVM0Wfz2k9QqsooUNwx8 N2nEjk0qskH3KRMwBMRc7YkMM4lJtt2Fqct94f1vlqlEZhuXJOtJcvm4+lwZFHG9 3psIEzzQu5tkQbDavl+2vm3aiZn5/pKUDYLgAo7ld+D6XZsXJUBj4D6hYhZv8fjE 6xla15DGLWL268w7XGdekAMv2yyuxFX4laVTJE7VujUbzSIe3r1WktenNkyaE7nA qHmh1hEdeGLLSueM+f3is0yVkZvccb8FJnrlhGzFODzEOVDEIWFk90M36laZUUG5 yrHoFoBmc8qEYTQEg79VkRnB8Hp2gf3S -----END CERTIFICATE-----Generated at Wed May 14 18:25:31 2025 by rpki-client