$ rpki-client -vvf rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft File: IrGnF151_9hHOR8sLpZl5O7ht0I.mft (raw, json) Hash identifier: OnJmAJta8cotVAYgbNVaVi+aWQVBEBAoCuGPRE/7yT0= Subject key identifier: 27:C1:08:1B:02:40:50:50:64:22:F0:29:76:5F:73:7B:6E:DD:7D:59 Authority key identifier: 22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 Certificate issuer: /CN=A91E57DC/serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Certificate serial: 1109 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft Manifest number: 10E1 Signing time: Sun 04 May 2025 17:13:14 +0000 Manifest this update: Sun 04 May 2025 17:13:14 +0000 Manifest next update: Sun 11 May 2025 17:13:14 +0000 Files and hashes: 1: IrGnF151_9hHOR8sLpZl5O7ht0I.crl (hash: IoRadsCfaoUSS9jYr1aU6qHgOx9YsZ/P0GlEOg79txw=) 2: 13D21C6EFEBA11ED9D83553FC4F9AE02.roa (hash: mPVwkbrmgIGFwgmxOu/KgFG11TMB51WhYaitUgpspRc=) 3: A9204F96917F11EDA5B26357C4F9AE02.roa (hash: GKHRKfwk3bqrqOFGPvJ+kjY0NTnB33jXoiW8bXeNOjw=) 4: 16C96BAE18E311EFB8960668C4F9AE02.roa (hash: PDXFymAQeHbTCItIfy8LqqoHr3PVKA+eJZNU6voGL5A=) 5: 1856F8E8CCC411EFBDE7CF74C4F9AE02.roa (hash: 3ZvdvOYIsr/GLwsfHu77Tcpi6csxMwAyCAlksdMfA5A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 17:13:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4361 (0x1109) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E57DC, serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Validity Not Before: May 4 17:13:14 2025 GMT Not After : May 11 17:13:14 2025 GMT Subject: CN=6817a02a-f419 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:b5:78:4e:bb:a4:77:1c:9c:01:45:af:cb:d6: 57:dd:c9:47:8a:ec:23:29:24:8e:ae:bf:7b:ec:d0: 4d:50:de:9c:97:0c:25:51:6f:79:50:e6:fa:0f:50: e4:e1:f5:b4:0b:8a:65:8a:32:98:e4:28:5d:97:e4: 85:b3:ec:1c:85:83:33:7b:20:2e:fb:2e:da:6b:ab: 24:0b:3e:2d:7f:65:03:f7:a6:4a:da:e4:73:de:76: 79:e1:2f:2c:76:50:69:b9:7b:d0:53:e3:3c:4b:69: 8a:0a:87:59:c1:01:75:ea:3b:2f:77:a0:6c:0c:86: 48:4d:38:3e:54:a4:31:4a:19:46:72:f1:27:3a:fb: f7:4d:85:82:0a:76:d6:57:ef:c0:6e:7a:7d:04:0f: 53:e6:34:9f:98:e0:fc:d9:35:76:89:dc:93:a8:ea: 23:ea:0f:8e:14:85:c2:37:e0:08:34:26:09:63:93: 2e:83:bf:cb:fd:9b:64:1b:c8:27:9f:9b:f4:fc:b8: b7:a3:59:cf:f0:01:89:60:75:65:6f:0d:f8:5f:48: e7:5e:d2:ee:48:79:2a:01:60:28:62:47:c5:8c:72: d0:10:92:47:47:ae:a1:26:4d:e9:5f:29:55:d8:e3: 92:aa:42:35:7b:29:66:20:0f:f0:21:65:0e:c6:99: 91:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:C1:08:1B:02:40:50:50:64:22:F0:29:76:5F:73:7B:6E:DD:7D:59 X509v3 Authority Key Identifier: keyid:22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:7e:81:6d:dd:73:e1:84:3e:9a:ba:a6:c6:66:62:01:08:49: ca:3f:0e:1b:3c:ea:07:33:94:f4:19:1a:71:25:8f:d6:01:41: cb:0a:2d:e5:10:42:3d:ca:61:59:7b:a3:97:80:4f:e5:48:af: e8:cb:d4:bb:7a:70:78:13:ea:aa:0f:37:5e:1c:c3:b7:17:26: a8:a9:ac:31:04:3e:80:d1:cf:b3:5b:55:ff:6a:0b:ac:41:2d: 55:ac:2f:82:a2:ed:27:38:14:76:62:17:50:02:43:4b:dc:af: 03:d2:a7:fb:5a:85:4d:b5:25:73:17:df:a7:2e:7a:f3:ab:3b: f2:2d:f4:04:12:7d:7e:d3:6d:eb:e8:c1:7e:ef:82:eb:83:59: 22:96:ae:e8:e3:05:c5:ad:45:46:57:c7:56:aa:b3:c8:81:e4: b9:bd:19:f6:76:bf:66:48:cf:54:75:f5:18:cf:c8:f3:83:dc: d6:55:87:3f:89:89:b4:b9:79:b3:97:28:e5:85:05:6f:36:75: 2f:9a:64:16:9b:d2:42:84:27:b1:2b:56:2b:e5:75:9f:bd:ac: 57:bb:25:37:c2:a1:4e:4b:12:f6:e9:92:6a:a8:cc:90:b1:31: 41:c4:bf:0e:6a:f9:3e:74:be:fd:0a:59:45:98:a5:85:e0:9f: c9:59:dd:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU3REMxMTAvBgNVBAUTKDIyQjFBNzE3NUU3NUZGRDg0NzM5MUYyQzJFOTY2NUU0 RUVFMUI3NDIwHhcNMjUwNTA0MTcxMzE0WhcNMjUwNTExMTcxMzE0WjAYMRYwFAYD VQQDEw02ODE3YTAyYS1mNDE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1LV4TrukdxycAUWvy9ZX3clHiuwjKSSOrr977NBNUN6clwwlUW95UOb6D1Dk 4fW0C4plijKY5Chdl+SFs+wchYMzeyAu+y7aa6skCz4tf2UD96ZK2uRz3nZ54S8s dlBpuXvQU+M8S2mKCodZwQF16jsvd6BsDIZITTg+VKQxShlGcvEnOvv3TYWCCnbW V+/Abnp9BA9T5jSfmOD82TV2idyTqOoj6g+OFIXCN+AINCYJY5Mug7/L/ZtkG8gn n5v0/Li3o1nP8AGJYHVlbw34X0jnXtLuSHkqAWAoYkfFjHLQEJJHR66hJk3pXylV 2OOSqkI1eylmIA/wIWUOxpmRvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCfBCBsC QFBQZCLwKXZfc3tu3X1ZMB8GA1UdIwQYMBaAFCKxpxdedf/YRzkfLC6WZeTu4bdC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTdEQy8zNUY3OTg2NjFG MDExMUU5QjFBQTk0MzZDNEY5QUUwMi9JckduRjE1MV85aEhPUjhzTHBabDVPN2h0 MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lyR25GMTUxXzloSE9SOHNMcFpsNU83aHQwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTdEQy8zNUY3OTg2NjFGMDExMUU5QjFBQTk0MzZDNEY5QUUwMi9JckduRjE1MV85 aEhPUjhzTHBabDVPN2h0MEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKfoFt3XPhhD6auqbGZmIBCEnKPw4bPOoHM5T0GRpxJY/WAUHLCi3l EEI9ymFZe6OXgE/lSK/oy9S7enB4E+qqDzdeHMO3FyaoqawxBD6A0c+zW1X/agus QS1VrC+Cou0nOBR2YhdQAkNL3K8D0qf7WoVNtSVzF9+nLnrzqzvyLfQEEn1+023r 6MF+74Lrg1kilq7o4wXFrUVGV8dWqrPIgeS5vRn2dr9mSM9UdfUYz8jzg9zWVYc/ iYm0uXmzlyjlhQVvNnUvmmQWm9JChCexK1Yr5XWfvaxXuyU3wqFOSxL26ZJqqMyQ sTFBxL8Oavk+dL79CllFmKWF4J/JWd0S -----END CERTIFICATE-----Generated at Mon May 5 03:24:50 2025 by rpki-client