$ rpki-client -vvf rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft File: _IholOLXDjUuTxaAUsUbBasFrMU.mft (raw, json) Hash identifier: KjlEf7lNJh8oiLCSDuB8h7orXYYFHJ41TR3cZI7Ykrc= Subject key identifier: 3F:CE:CA:6C:74:F4:EC:B2:38:DA:06:CB:5B:9F:1D:17:38:D4:44:4D Authority key identifier: FC:88:68:94:E2:D7:0E:35:2E:4F:16:80:52:C5:1B:05:AB:05:AC:C5 Certificate issuer: /CN=A91CABF0/serialNumber=FC886894E2D70E352E4F168052C51B05AB05ACC5 Certificate serial: EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IholOLXDjUuTxaAUsUbBasFrMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft Manifest number: EC Signing time: Mon 05 May 2025 04:13:28 +0000 Manifest this update: Mon 05 May 2025 04:13:27 +0000 Manifest next update: Mon 12 May 2025 04:13:27 +0000 Files and hashes: 1: _IholOLXDjUuTxaAUsUbBasFrMU.crl (hash: fYa9m5uR/qb0E3YiXvlbepNycTsz+IpZRYXNcu9qBT0=) 2: 740B66A6C09A11EE9839DC42C4F9AE02.roa (hash: NOsPGGlDSlCfn8hbBHu4EWI+usdJzaN80KZom3HQWsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.crl rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IholOLXDjUuTxaAUsUbBasFrMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 04:13:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 238 (0xee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CABF0, serialNumber=FC886894E2D70E352E4F168052C51B05AB05ACC5 Validity Not Before: May 5 04:13:27 2025 GMT Not After : May 12 04:13:27 2025 GMT Subject: CN=68183ae7-f560 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:31:80:dc:c2:98:3b:4e:32:0a:eb:60:49:e6: b3:36:3d:5d:27:d3:91:d0:5a:17:45:cf:41:36:74: e6:b2:0a:b6:59:93:d4:39:07:ec:24:b4:d0:57:e3: 1c:67:70:7d:15:95:fb:d0:31:75:56:88:4f:ec:ba: ae:0a:7e:a3:b0:b0:2b:21:50:46:55:4f:45:85:e2: 92:99:ad:9c:62:70:64:c0:47:ec:4f:be:e8:99:5b: 2a:0c:e2:4c:f5:87:b7:71:75:44:5f:34:19:4c:76: a4:cf:c9:5b:ae:5b:62:2f:87:76:c4:a8:b9:e1:7b: 96:8a:ca:63:85:be:4d:f0:0b:a1:e8:16:ed:dc:a2: 1a:1f:e4:22:34:22:e2:b2:e2:bb:93:11:e6:3b:95: 74:46:9b:d3:21:ed:a2:98:28:5d:57:c0:b0:76:de: 0c:c2:48:1a:43:ec:89:c0:d4:09:80:92:3b:04:1c: 13:d5:29:2e:35:9c:10:eb:f4:07:d3:10:32:78:c0: 28:d6:cf:01:77:65:d8:ad:a7:c6:e5:3a:62:fe:bc: 59:76:b7:36:b4:c7:38:65:1f:76:10:94:7a:f0:be: 20:d9:d8:e0:e9:05:23:dc:57:9c:d9:11:fb:cb:0b: e3:99:a4:0e:92:5c:df:f6:8d:51:25:47:37:35:32: 73:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:CE:CA:6C:74:F4:EC:B2:38:DA:06:CB:5B:9F:1D:17:38:D4:44:4D X509v3 Authority Key Identifier: keyid:FC:88:68:94:E2:D7:0E:35:2E:4F:16:80:52:C5:1B:05:AB:05:AC:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IholOLXDjUuTxaAUsUbBasFrMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:2d:c9:12:5b:ea:89:66:0c:4f:b2:3d:b9:0e:ae:1b:9e:ec: ae:2f:b6:03:33:c9:52:f3:6c:54:83:4a:8f:4e:97:9d:fe:00: dc:b8:d1:c9:a8:7f:65:f6:31:39:59:93:70:9c:5e:59:b2:78: 46:f3:a4:74:4e:2e:fe:00:db:57:f1:30:15:86:11:03:67:b4: 67:f2:81:c8:bc:f5:1a:e9:a7:c4:9c:12:74:7a:b0:f2:b3:1f: 80:72:a6:55:c5:b7:11:12:07:bf:29:84:64:2b:10:73:f0:ee: 40:7d:13:5d:66:b4:11:5b:6c:39:c6:89:f9:63:30:7f:9d:0a: 37:ee:5e:c1:18:74:79:ce:26:66:4b:20:4f:05:e2:b5:ed:4b: f7:07:5a:f4:2d:c4:cf:67:b3:83:6c:92:73:43:5d:75:c3:c1: 3e:48:e1:41:a3:56:70:37:47:42:2a:d9:bc:35:dc:ba:da:ee: 2c:c0:90:a0:bd:3c:f9:4b:30:85:98:b3:10:f3:da:c9:c8:4a: e2:ba:a1:38:8d:db:2c:08:0e:75:ad:6a:5a:53:bd:8d:f5:6d: ee:31:fa:ce:03:22:0d:25:6f:7c:21:6a:44:93:d3:97:1e:44: c4:d3:f7:95:50:21:b9:cd:8f:09:d9:21:fa:3e:0f:e3:d5:39: 39:b3:97:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FCRjAxMTAvBgNVBAUTKEZDODg2ODk0RTJENzBFMzUyRTRGMTY4MDUyQzUxQjA1 QUIwNUFDQzUwHhcNMjUwNTA1MDQxMzI3WhcNMjUwNTEyMDQxMzI3WjAYMRYwFAYD VQQDEw02ODE4M2FlNy1mNTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjGA3MKYO04yCutgSeazNj1dJ9OR0FoXRc9BNnTmsgq2WZPUOQfsJLTQV+Mc Z3B9FZX70DF1VohP7LquCn6jsLArIVBGVU9FheKSma2cYnBkwEfsT77omVsqDOJM 9Ye3cXVEXzQZTHakz8lbrltiL4d2xKi54XuWispjhb5N8Auh6Bbt3KIaH+QiNCLi suK7kxHmO5V0RpvTIe2imChdV8Cwdt4MwkgaQ+yJwNQJgJI7BBwT1SkuNZwQ6/QH 0xAyeMAo1s8Bd2XYrafG5Tpi/rxZdrc2tMc4ZR92EJR68L4g2djg6QUj3Fec2RH7 ywvjmaQOklzf9o1RJUc3NTJzxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD/Oymx0 9OyyONoGy1ufHRc41ERNMB8GA1UdIwQYMBaAFPyIaJTi1w41Lk8WgFLFGwWrBazF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUJGMC9EOTZCQTY2MEMw OTkxMUVFQjk1MDVBNDFDNEY5QUUwMi9fSWhvbE9MWERqVXVUeGFBVXNVYkJhc0Zy TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19JaG9sT0xYRGpVdVR4YUFVc1ViQmFzRnJNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUJGMC9EOTZCQTY2MEMwOTkxMUVFQjk1MDVBNDFDNEY5QUUwMi9fSWhvbE9MWERq VXVUeGFBVXNVYkJhc0ZyTVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBELckSW+qJZgxPsj25Dq4bnuyuL7YDM8lS82xUg0qPTped/gDcuNHJ qH9l9jE5WZNwnF5ZsnhG86R0Ti7+ANtX8TAVhhEDZ7Rn8oHIvPUa6afEnBJ0erDy sx+AcqZVxbcREge/KYRkKxBz8O5AfRNdZrQRW2w5xon5YzB/nQo37l7BGHR5ziZm SyBPBeK17Uv3B1r0LcTPZ7ODbJJzQ111w8E+SOFBo1ZwN0dCKtm8Ndy62u4swJCg vTz5SzCFmLMQ89rJyEriuqE4jdssCA51rWpaU72N9W3uMfrOAyINJW98IWpEk9OX HkTE0/eVUCG5zY8J2SH6Pg/j1Tk5s5cZ -----END CERTIFICATE-----Generated at Mon May 5 06:16:20 2025 by rpki-client