$ rpki-client -vvf rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft File: ihuLzV7XzXIsUwBJjkqTZdBGo04.mft (raw, json) Hash identifier: EMCB0X2JAi5FyqwQOftxH4zd0y8xj0G38YHSSy/fits= Subject key identifier: 52:2B:9B:D6:21:7B:7D:AF:87:57:EA:D9:52:75:D2:F7:4A:68:FD:10 Authority key identifier: 8A:1B:8B:CD:5E:D7:CD:72:2C:53:00:49:8E:4A:93:65:D0:46:A3:4E Certificate issuer: /CN=A91E01C6/serialNumber=8A1B8BCD5ED7CD722C5300498E4A9365D046A34E Certificate serial: 0842 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihuLzV7XzXIsUwBJjkqTZdBGo04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft Manifest number: 083B Signing time: Mon 12 May 2025 20:35:50 +0000 Manifest this update: Mon 12 May 2025 20:35:50 +0000 Manifest next update: Mon 19 May 2025 20:35:50 +0000 Files and hashes: 1: ihuLzV7XzXIsUwBJjkqTZdBGo04.crl (hash: Aa5CNrKyKktY7jyPuH0Du91i/kzamTRhsMSdi9Ra6cg=) 2: B6EB6C5ED46611ECA1A27035C4F9AE02.roa (hash: MzytEdv6AFwyptJ19U9Ds4XRz9r3S4O8DZQCdtraCmo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.crl rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihuLzV7XzXIsUwBJjkqTZdBGo04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 20:35:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2114 (0x842) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E01C6, serialNumber=8A1B8BCD5ED7CD722C5300498E4A9365D046A34E Validity Not Before: May 12 20:35:50 2025 GMT Not After : May 19 20:35:50 2025 GMT Subject: CN=68225ba6-fed3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:00:5f:81:43:e9:e1:96:1f:5e:53:72:39:a8: 47:54:e1:7b:b6:39:9a:26:1c:00:f3:61:7c:fb:aa: eb:a4:ac:b0:75:58:cc:7e:6a:df:40:c1:32:a4:d5: d1:c2:de:c2:f0:b7:df:26:48:c7:9f:b2:d7:b1:fa: 63:f4:03:87:be:da:0e:38:5e:15:f5:56:fc:37:b0: 1d:97:59:a7:08:fc:4a:59:2f:77:7f:96:2d:ee:75: 52:7f:67:16:9c:79:2d:35:e2:a9:86:e1:f8:37:aa: 9a:a8:7e:ab:ca:66:d6:fa:79:88:22:05:72:84:84: 73:71:88:17:02:46:03:81:9f:77:1a:33:ae:bd:32: df:34:1f:f5:44:10:15:6c:c7:95:f4:7f:d2:26:d9: 30:84:9a:54:c5:39:0c:93:69:cf:7c:12:11:a4:5a: 84:31:9f:d8:ec:3b:ce:33:f3:01:00:00:9b:4a:03: c1:eb:ca:3f:55:fe:f9:2b:b6:c4:67:2e:52:f0:09: 17:e4:c3:71:fa:f1:8a:f7:d3:67:73:68:54:d2:b4: c0:50:61:7f:0b:38:b4:53:d6:aa:73:53:32:42:65: ff:a8:2d:c2:a7:44:f3:dd:ec:39:67:95:f9:cd:7c: fe:fd:e3:75:68:04:6c:c1:0e:69:ed:76:fe:55:3e: 3a:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:2B:9B:D6:21:7B:7D:AF:87:57:EA:D9:52:75:D2:F7:4A:68:FD:10 X509v3 Authority Key Identifier: keyid:8A:1B:8B:CD:5E:D7:CD:72:2C:53:00:49:8E:4A:93:65:D0:46:A3:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihuLzV7XzXIsUwBJjkqTZdBGo04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:c5:48:48:37:c8:4e:25:7a:32:37:9e:8d:20:98:97:5d:08: 46:b5:48:1d:6f:7c:ea:4b:d2:1e:9b:92:18:4a:e6:9f:12:26: c4:45:0f:15:76:c6:bc:fb:99:bc:6b:73:a2:4f:68:3a:47:c5: 78:d8:15:57:29:24:11:1c:98:27:ef:c4:9f:2a:39:df:1f:47: 8e:3e:1b:ad:12:cf:f3:fe:84:00:7d:7b:da:58:6e:1c:7d:ea: 17:39:a6:d3:0f:ff:49:5c:e4:da:51:c6:27:3d:8d:fe:48:dc: bf:d8:24:a0:11:84:af:ad:5d:fa:97:64:c2:be:35:a1:8a:14: 67:9b:e9:47:27:7f:cd:07:19:34:8d:51:b5:a5:de:9d:2a:83: b1:b4:a7:ca:6d:8d:e4:77:88:63:e2:bf:f9:cb:e3:67:1b:75: bb:a1:6e:a3:b8:5c:a7:b6:a7:bf:22:2e:68:8c:21:2b:a1:6c: cd:f4:34:6d:12:5d:61:c1:e2:e3:ff:5f:74:99:ad:78:c8:2e: 27:17:0b:24:5a:14:80:43:f7:77:df:00:f9:be:af:c9:bc:eb: 52:5c:0f:d9:b1:ff:71:f9:80:27:18:ff:65:94:fe:9b:46:20: ef:ef:d9:29:34:d4:f5:ad:32:62:5e:44:cf:66:3c:79:44:75: c7:6e:ff:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAxQzYxMTAvBgNVBAUTKDhBMUI4QkNENUVEN0NENzIyQzUzMDA0OThFNEE5MzY1 RDA0NkEzNEUwHhcNMjUwNTEyMjAzNTUwWhcNMjUwNTE5MjAzNTUwWjAYMRYwFAYD VQQDEw02ODIyNWJhNi1mZWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQBfgUPp4ZYfXlNyOahHVOF7tjmaJhwA82F8+6rrpKywdVjMfmrfQMEypNXR wt7C8LffJkjHn7LXsfpj9AOHvtoOOF4V9Vb8N7Adl1mnCPxKWS93f5Yt7nVSf2cW nHktNeKphuH4N6qaqH6rymbW+nmIIgVyhIRzcYgXAkYDgZ93GjOuvTLfNB/1RBAV bMeV9H/SJtkwhJpUxTkMk2nPfBIRpFqEMZ/Y7DvOM/MBAACbSgPB68o/Vf75K7bE Zy5S8AkX5MNx+vGK99Nnc2hU0rTAUGF/Czi0U9aqc1MyQmX/qC3Cp0Tz3ew5Z5X5 zXz+/eN1aARswQ5p7Xb+VT46dwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFIrm9Yh e32vh1fq2VJ10vdKaP0QMB8GA1UdIwQYMBaAFIobi81e181yLFMASY5Kk2XQRqNO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDFDNi80OTFDOENFNkND OTExMUVBOEE1OUVGNDZDNEY5QUUwMi9paHVMelY3WHpYSXNVd0JKamtxVFpkQkdv MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lodUx6VjdYelhJc1V3Qkpqa3FUWmRCR28wNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDFDNi80OTFDOENFNkNDOTExMUVBOEE1OUVGNDZDNEY5QUUwMi9paHVMelY3WHpY SXNVd0JKamtxVFpkQkdvMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARxUhIN8hOJXoyN56NIJiXXQhGtUgdb3zqS9Iem5IYSuafEibERQ8V dsa8+5m8a3OiT2g6R8V42BVXKSQRHJgn78SfKjnfH0eOPhutEs/z/oQAfXvaWG4c feoXOabTD/9JXOTaUcYnPY3+SNy/2CSgEYSvrV36l2TCvjWhihRnm+lHJ3/NBxk0 jVG1pd6dKoOxtKfKbY3kd4hj4r/5y+NnG3W7oW6juFyntqe/Ii5ojCEroWzN9DRt El1hweLj/190ma14yC4nFwskWhSAQ/d33wD5vq/JvOtSXA/Zsf9x+YAnGP9llP6b RiDv79kpNNT1rTJiXkTPZjx5RHXHbv9j -----END CERTIFICATE-----Generated at Tue May 13 02:39:23 2025 by rpki-client