$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/iZOTjIV1ACgOj15T3As-kweu1Kc.mft File: iZOTjIV1ACgOj15T3As-kweu1Kc.mft (raw, json) Hash identifier: ROAuFBujl24mEHtRty7g84OF9MPzYH+2007ZrD00JLo= Subject key identifier: 24:E6:45:C8:94:85:E6:F9:C8:DD:E6:91:75:DA:B7:18:62:9E:C1:CF Authority key identifier: 89:93:93:8C:85:75:00:28:0E:8F:5E:53:DC:0B:3E:93:07:AE:D4:A7 Certificate issuer: /CN=A91BD3E1/serialNumber=8993938C857500280E8F5E53DC0B3E9307AED4A7 Certificate serial: 30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iZOTjIV1ACgOj15T3As-kweu1Kc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/iZOTjIV1ACgOj15T3As-kweu1Kc.mft Manifest number: 2E Signing time: Tue 13 May 2025 06:55:45 +0000 Manifest this update: Tue 13 May 2025 06:55:44 +0000 Manifest next update: Tue 20 May 2025 06:55:44 +0000 Files and hashes: 1: iZOTjIV1ACgOj15T3As-kweu1Kc.crl (hash: AiSZp/SRdaP20ieVgJmlhy6X1MgJotff4TAF6JZWM7I=) 2: 459FAF10EF4811EF8F4B9284C4F9AE02.roa (hash: t4VsjBzDPnCNqQJ4/+l/e7o+o8AvICh72VVWJ8BMmY0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/iZOTjIV1ACgOj15T3As-kweu1Kc.crl rsync://rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/iZOTjIV1ACgOj15T3As-kweu1Kc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iZOTjIV1ACgOj15T3As-kweu1Kc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:55:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48 (0x30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD3E1, serialNumber=8993938C857500280E8F5E53DC0B3E9307AED4A7 Validity Not Before: May 13 06:55:44 2025 GMT Not After : May 20 06:55:44 2025 GMT Subject: CN=6822ecf1-ad1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4b:b3:ca:95:75:aa:9c:d0:91:2b:fe:00:fa: 8f:97:4f:d4:95:68:f9:94:8b:7c:30:ee:c0:29:cd: fd:c8:f1:f8:3a:65:3d:60:95:f2:50:94:b9:7d:77: 1d:2b:9a:d7:48:c3:31:e5:33:85:57:f5:d3:8a:a9: c6:f5:34:93:4e:0e:72:79:f8:db:cd:ff:c7:56:4e: 36:94:59:0a:b3:06:41:14:84:e2:4f:a1:f1:62:7e: 6f:4b:fe:bd:4b:80:09:82:90:10:35:55:41:34:d0: e0:d9:44:7f:60:43:ee:ae:66:9e:ed:8b:85:15:b6: ea:50:b6:6a:63:45:c2:c7:98:0c:01:d1:e9:06:03: f6:12:45:75:bd:60:42:d4:e4:39:ca:e4:b3:ac:38: 24:d1:cc:23:86:01:b0:c8:8c:d1:60:4d:f6:c4:ea: 3a:5e:7c:97:4a:c9:3c:a5:f9:c9:5b:89:b5:1d:6a: 93:b8:dc:a6:9d:40:a8:7d:09:c8:19:4e:d5:e2:ce: af:00:e0:9e:e7:7e:f9:b5:cb:58:a1:ec:58:59:90: 04:45:2c:58:4b:83:ba:5a:8e:70:e5:72:05:9f:e8: 18:1a:76:22:8f:cf:a0:55:7f:52:1e:6b:15:95:6b: ec:85:5e:30:ab:03:ab:45:8a:d6:20:06:47:e1:cd: f7:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:E6:45:C8:94:85:E6:F9:C8:DD:E6:91:75:DA:B7:18:62:9E:C1:CF X509v3 Authority Key Identifier: keyid:89:93:93:8C:85:75:00:28:0E:8F:5E:53:DC:0B:3E:93:07:AE:D4:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/iZOTjIV1ACgOj15T3As-kweu1Kc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iZOTjIV1ACgOj15T3As-kweu1Kc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/iZOTjIV1ACgOj15T3As-kweu1Kc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:bc:5c:34:c1:cd:18:e1:dd:97:6c:bb:b5:01:b1:64:b7:24: 04:12:36:25:6e:c2:c4:c9:82:ab:8d:af:b7:05:8b:6c:ac:d5: f7:bb:a6:5b:65:0f:e8:d1:c2:dc:dd:85:6c:99:a6:14:9e:ec: 27:06:d5:45:30:50:5b:53:e8:eb:1d:9b:1e:ab:ad:b8:93:2b: 24:4d:e7:92:e2:e1:9a:1f:c9:24:31:73:a2:07:71:26:f1:7e: 0c:a0:d7:29:f8:e0:1a:30:53:04:43:9c:8f:9a:40:e1:b5:2d: 0a:56:5c:f7:06:43:89:d5:28:db:61:3b:fc:db:25:a6:9e:94: d3:3d:f2:c3:5a:5c:6b:63:1d:40:03:fa:f9:71:c4:ac:e9:67: ee:f3:5d:90:99:72:8d:a0:24:ef:65:cd:e3:0e:97:2f:aa:ce: a7:40:6d:19:19:c4:b4:4c:81:03:a8:e8:d7:c8:90:2f:7e:af: 76:40:ec:1a:00:8e:ea:7b:6c:94:01:5e:ca:b1:73:35:e6:93: 6c:a7:ef:40:05:41:88:1c:df:de:b3:14:b0:3c:9a:33:4d:b4: 35:88:86:e0:c5:29:f3:b4:be:5e:e0:98:50:8d:90:3a:e2:18: 7c:37:99:61:b3:30:fc:48:78:23:ac:fa:3e:97:35:fa:b9:a2: 1a:00:a3:e0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RDNFMTExMC8GA1UEBRMoODk5MzkzOEM4NTc1MDAyODBFOEY1RTUzREMwQjNFOTMw N0FFRDRBNzAeFw0yNTA1MTMwNjU1NDRaFw0yNTA1MjAwNjU1NDRaMBgxFjAUBgNV BAMTDTY4MjJlY2YxLWFkMWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/S7PKlXWqnNCRK/4A+o+XT9SVaPmUi3ww7sApzf3I8fg6ZT1glfJQlLl9dx0r mtdIwzHlM4VX9dOKqcb1NJNODnJ5+NvN/8dWTjaUWQqzBkEUhOJPofFifm9L/r1L gAmCkBA1VUE00ODZRH9gQ+6uZp7ti4UVtupQtmpjRcLHmAwB0ekGA/YSRXW9YELU 5DnK5LOsOCTRzCOGAbDIjNFgTfbE6jpefJdKyTyl+clbibUdapO43KadQKh9CcgZ TtXizq8A4J7nfvm1y1ih7FhZkARFLFhLg7pajnDlcgWf6BgadiKPz6BVf1IeaxWV a+yFXjCrA6tFitYgBkfhzfclAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJOZFyJSF 5vnI3eaRddq3GGKewc8wHwYDVR0jBBgwFoAUiZOTjIV1ACgOj15T3As+kweu1Kcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJEM0UxLzdDRjA3QkM2RUY0 NzExRUZBRjRDNDk2OEM0RjlBRTAyL2laT1RqSVYxQUNnT2oxNVQzQXMta3dldTFL Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVpPVGpJVjFBQ2dPajE1VDNBcy1rd2V1MUtjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJE M0UxLzdDRjA3QkM2RUY0NzExRUZBRjRDNDk2OEM0RjlBRTAyL2laT1RqSVYxQUNn T2oxNVQzQXMta3dldTFLYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKy8XDTBzRjh3Zdsu7UBsWS3JAQSNiVuwsTJgquNr7cFi2ys1fe7pltl D+jRwtzdhWyZphSe7CcG1UUwUFtT6Osdmx6rrbiTKyRN55Li4ZofySQxc6IHcSbx fgyg1yn44BowUwRDnI+aQOG1LQpWXPcGQ4nVKNthO/zbJaaelNM98sNaXGtjHUAD +vlxxKzpZ+7zXZCZco2gJO9lzeMOly+qzqdAbRkZxLRMgQOo6NfIkC9+r3ZA7BoA jup7bJQBXsqxczXmk2yn70AFQYgc396zFLA8mjNNtDWIhuDFKfO0vl7gmFCNkDri GHw3mWGzMPxIeCOs+j6XNfq5ohoAo+A= -----END CERTIFICATE-----Generated at Wed May 14 15:22:51 2025 by rpki-client