$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft File: iUKJrUDufmJvXNgvzsVAbbkeHnE.mft (raw, json) Hash identifier: F85MElhsDUQGWNi1eaI4+9p7wiRF5hTk1SuGJgJDR5Y= Subject key identifier: E7:E0:E0:AD:A5:E4:D4:6D:D4:B1:C6:24:B4:DC:35:66:5A:3C:1C:87 Authority key identifier: 89:42:89:AD:40:EE:7E:62:6F:5C:D8:2F:CE:C5:40:6D:B9:1E:1E:71 Certificate issuer: /CN=A91B9790/serialNumber=894289AD40EE7E626F5CD82FCEC5406DB91E1E71 Certificate serial: 96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft Manifest number: 92 Signing time: Thu 15 May 2025 05:43:41 +0000 Manifest this update: Thu 15 May 2025 05:43:40 +0000 Manifest next update: Thu 22 May 2025 05:43:40 +0000 Files and hashes: 1: iUKJrUDufmJvXNgvzsVAbbkeHnE.crl (hash: Jdi8kg/mW1te4t+l9/jwzLg1CaNs9uNwJysGjLTRQPk=) 2: B1CB71925DDF11EF8DBEED1FC4F9AE02.roa (hash: 7PzqCay1JqLU8XnJXQhTQ8qxdPkeE0fg0K7DtdeCRDM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.crl rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:43:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 150 (0x96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9790, serialNumber=894289AD40EE7E626F5CD82FCEC5406DB91E1E71 Validity Not Before: May 15 05:43:40 2025 GMT Not After : May 22 05:43:40 2025 GMT Subject: CN=68257f0d-37db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:0f:2e:e8:d8:0d:77:07:f7:75:f0:34:98:a3: 81:26:96:18:cb:ef:1a:0f:fd:62:fa:e8:07:e0:0e: 0b:ac:72:31:fa:25:f5:98:f3:a5:16:b4:a2:a8:24: 2a:08:76:fc:34:42:8a:84:ce:2d:46:13:41:29:33: 96:04:42:07:53:2e:95:ef:3b:05:c0:53:b0:4a:bb: f6:bf:8b:9c:3d:a6:1b:db:3d:80:f2:5f:4c:d0:3b: 04:90:5d:e0:03:f2:a6:09:fa:ed:72:c9:2a:43:d5: fe:fb:10:ed:ba:e9:6f:f1:a5:1c:5c:b0:e9:5c:2b: 3f:cd:17:e4:bf:0d:a1:93:54:da:0e:14:85:b0:2c: c1:a4:c0:d8:15:60:39:11:65:c0:10:62:ad:8d:23: 10:41:bd:66:00:3a:9d:71:2b:d8:c9:be:38:fa:fc: 9b:ce:97:d4:4a:95:5e:03:9d:3b:0a:56:66:b5:7f: 5c:f8:72:87:14:83:d5:71:6f:99:21:21:2c:ce:df: a7:4d:b7:f5:66:dd:7b:26:2e:1f:e8:d0:89:d2:01: b8:b2:8e:99:8d:8b:a6:e0:ef:fe:3b:f6:e9:34:9f: f9:81:a8:c5:d9:2f:89:96:fe:82:4d:95:77:68:3a: ca:de:13:f5:c3:ff:15:46:88:a0:00:fc:f8:19:5e: 45:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:E0:E0:AD:A5:E4:D4:6D:D4:B1:C6:24:B4:DC:35:66:5A:3C:1C:87 X509v3 Authority Key Identifier: keyid:89:42:89:AD:40:EE:7E:62:6F:5C:D8:2F:CE:C5:40:6D:B9:1E:1E:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:49:17:3e:cc:95:06:a5:44:ed:f6:fb:5b:1b:d3:71:66:1a: 34:37:1b:e2:33:e2:a8:b2:b6:59:14:ab:78:53:3f:e9:4b:73: 37:7f:da:72:c4:5a:49:ef:84:16:8b:06:7d:43:a9:be:b6:03: 35:70:48:9d:4d:b6:60:30:70:34:e1:19:c5:68:8e:73:ec:10: e9:6d:e8:b8:8d:b7:2d:26:12:54:1b:5d:5f:f1:fe:ce:8c:17: b1:58:0d:e7:29:20:8b:7a:a6:de:fb:b8:b8:57:95:04:dc:69: c2:8a:fb:ac:e4:75:95:46:01:a7:cc:5a:66:d9:77:0d:3c:6c: a8:18:41:ea:36:49:8c:d5:0d:80:8f:07:e7:18:b1:26:27:6c: 9e:fa:b3:f9:ef:1a:97:4c:fa:ca:55:46:33:12:ab:55:c2:21: 33:b3:ff:45:b1:fc:3b:24:fd:20:df:12:f0:ca:c0:bc:21:61: 13:50:70:95:a9:2a:65:95:a3:92:b3:6c:1c:c8:d7:70:38:b3: 83:cd:fc:26:c1:9b:6b:bb:0e:cb:34:ce:fa:fe:1c:0a:3b:0c: 1a:db:f6:fb:07:71:76:9d:1e:83:13:a5:ed:4f:cf:44:11:88: 41:2d:6d:83:83:3d:2f:fe:69:d8:d6:ac:a6:b9:e7:5d:42:81: 86:ca:a2:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3OTAxMTAvBgNVBAUTKDg5NDI4OUFENDBFRTdFNjI2RjVDRDgyRkNFQzU0MDZE QjkxRTFFNzEwHhcNMjUwNTE1MDU0MzQwWhcNMjUwNTIyMDU0MzQwWjAYMRYwFAYD VQQDEw02ODI1N2YwZC0zN2RiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyQ8u6NgNdwf3dfA0mKOBJpYYy+8aD/1i+ugH4A4LrHIx+iX1mPOlFrSiqCQq CHb8NEKKhM4tRhNBKTOWBEIHUy6V7zsFwFOwSrv2v4ucPaYb2z2A8l9M0DsEkF3g A/KmCfrtcskqQ9X++xDtuulv8aUcXLDpXCs/zRfkvw2hk1TaDhSFsCzBpMDYFWA5 EWXAEGKtjSMQQb1mADqdcSvYyb44+vybzpfUSpVeA507ClZmtX9c+HKHFIPVcW+Z ISEszt+nTbf1Zt17Ji4f6NCJ0gG4so6ZjYum4O/+O/bpNJ/5gajF2S+Jlv6CTZV3 aDrK3hP1w/8VRoigAPz4GV5FswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOfg4K2l 5NRt1LHGJLTcNWZaPByHMB8GA1UdIwQYMBaAFIlCia1A7n5ib1zYL87FQG25Hh5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTc5MC83MTgwNUJBQzVB RTIxMUVGQUVCMDMxMkVDNEY5QUUwMi9pVUtKclVEdWZtSnZYTmd2enNWQWJia2VI bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVS0pyVUR1Zm1KdlhOZ3Z6c1ZBYmJrZUhuRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTc5MC83MTgwNUJBQzVBRTIxMUVGQUVCMDMxMkVDNEY5QUUwMi9pVUtKclVEdWZt SnZYTmd2enNWQWJia2VIbkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgSRc+zJUGpUTt9vtbG9NxZho0NxviM+KosrZZFKt4Uz/pS3M3f9py xFpJ74QWiwZ9Q6m+tgM1cEidTbZgMHA04RnFaI5z7BDpbei4jbctJhJUG11f8f7O jBexWA3nKSCLeqbe+7i4V5UE3GnCivus5HWVRgGnzFpm2XcNPGyoGEHqNkmM1Q2A jwfnGLEmJ2ye+rP57xqXTPrKVUYzEqtVwiEzs/9Fsfw7JP0g3xLwysC8IWETUHCV qSpllaOSs2wcyNdwOLODzfwmwZtruw7LNM76/hwKOwwa2/b7B3F2nR6DE6XtT89E EYhBLW2Dgz0v/mnY1qymueddQoGGyqIp -----END CERTIFICATE-----Generated at Fri May 16 22:23:12 2025 by rpki-client