$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft File: iruZJsMSoUFJxSMLpV-oz1uJquE.mft (raw, json) Hash identifier: l/sMyg9jSxvQZJYfaBAtFzgQKkLthNGy5Gz+x0IzRUA= Subject key identifier: EE:D0:1C:52:08:65:E8:B1:D4:C0:5D:47:C8:21:AD:12:67:E4:64:19 Authority key identifier: 8A:BB:99:26:C3:12:A1:41:49:C5:23:0B:A5:5F:A8:CF:5B:89:AA:E1 Certificate issuer: /CN=A91E8C52/serialNumber=8ABB9926C312A14149C5230BA55FA8CF5B89AAE1 Certificate serial: 063B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iruZJsMSoUFJxSMLpV-oz1uJquE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft Manifest number: 0635 Signing time: Mon 12 May 2025 22:27:49 +0000 Manifest this update: Mon 12 May 2025 22:27:49 +0000 Manifest next update: Mon 19 May 2025 22:27:49 +0000 Files and hashes: 1: iruZJsMSoUFJxSMLpV-oz1uJquE.crl (hash: YRxnUCjLNPHrarbRk4obXz7UiDMDfC/K06W5loI0sT0=) 2: 09C9D20691BC11EB8C38801CC4F9AE02.roa (hash: WLK6J5FK1cyYi8od3TiV/xRyzkXSS7BDCS8cGAhSdLw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.crl rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iruZJsMSoUFJxSMLpV-oz1uJquE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 21:34:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1595 (0x63b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C52, serialNumber=8ABB9926C312A14149C5230BA55FA8CF5B89AAE1 Validity Not Before: May 12 22:27:49 2025 GMT Not After : May 19 22:27:49 2025 GMT Subject: CN=682275e5-db46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:2d:45:b5:59:89:02:8b:03:01:7a:9a:84:8f: e2:3b:84:26:95:5a:57:3f:4b:c2:9d:7f:39:5b:35: 46:ef:ea:97:be:9a:e2:7a:4f:e8:d3:ec:29:b6:2b: 34:b1:f8:f4:a2:69:d1:9a:cc:75:e9:3c:8f:20:aa: 6e:d0:78:cb:bf:fb:db:75:46:20:b3:b1:38:b4:7c: 04:ff:fe:e0:d9:74:8f:f6:c9:30:53:17:d5:5d:86: 6c:0a:13:89:ab:8a:52:08:72:e5:78:f5:79:79:54: 7b:00:67:40:f9:35:3e:c1:74:34:d1:dc:89:9a:fc: a5:c0:c3:75:cf:43:be:37:87:5d:03:a4:b2:d6:6a: ce:1a:78:1e:96:6e:b9:3a:5b:df:0a:f1:58:3f:eb: 6e:1b:f3:f2:b5:36:00:9b:0c:7c:96:56:f9:33:ba: 47:87:86:90:5b:3d:2c:67:b7:b6:cd:cc:96:0e:a1: 0c:0a:f2:42:fa:d5:0d:4b:76:d8:29:50:07:d5:75: 35:85:ea:74:33:5e:75:8c:4a:ea:fa:ec:eb:45:58: 34:9a:6f:d9:a3:2a:be:86:5c:75:ca:1f:d3:11:7b: a7:87:f5:ec:a2:bd:fc:b3:b1:3e:5e:c7:38:76:26: 0c:ea:87:87:e8:ad:6e:43:bf:da:dd:aa:7c:0a:fb: cf:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:D0:1C:52:08:65:E8:B1:D4:C0:5D:47:C8:21:AD:12:67:E4:64:19 X509v3 Authority Key Identifier: keyid:8A:BB:99:26:C3:12:A1:41:49:C5:23:0B:A5:5F:A8:CF:5B:89:AA:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iruZJsMSoUFJxSMLpV-oz1uJquE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:a8:c9:70:43:7f:82:ef:13:07:89:42:25:6f:1c:4f:e5:93: cd:9c:58:c4:b2:2d:7e:46:07:b1:8b:94:57:cf:f0:10:9f:4e: d4:f8:65:1a:e8:10:2f:de:59:61:a9:04:96:82:8e:ef:b0:d2: c6:d3:bd:8b:33:cf:b4:de:b8:78:59:34:17:d8:ed:d7:b8:c8: a4:90:e0:21:dc:3a:3a:6b:fc:9a:22:ef:7d:98:ae:89:97:df: 69:0e:6c:99:da:30:36:b4:a2:b7:d2:c7:50:c8:8b:5a:2e:d1: bb:cd:58:0d:b6:bd:50:f5:10:f5:8e:11:90:50:a7:31:8c:aa: 27:88:65:b8:b1:0f:65:f0:d3:8f:b4:73:36:a9:96:88:64:83: 88:70:1d:bc:5d:31:78:b4:83:37:b5:0d:9f:d6:97:59:2e:c6: 79:93:59:0e:41:88:70:f1:b2:94:80:ba:5f:f7:9f:27:24:70: 31:b6:02:8a:05:1f:ce:0b:12:09:1c:0a:16:90:c0:f3:58:be: 27:f8:53:a0:1a:32:3a:28:ea:f4:94:ba:1c:4e:31:4f:a7:15: 72:48:7f:ec:7a:5c:00:b9:c4:88:9b:e0:e5:a3:62:65:f0:8d: 92:bd:bf:d3:2c:07:c2:a6:3a:d0:bf:1e:8b:f3:46:b1:06:9a: 1a:2a:62:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDNTIxMTAvBgNVBAUTKDhBQkI5OTI2QzMxMkExNDE0OUM1MjMwQkE1NUZBOENG NUI4OUFBRTEwHhcNMjUwNTEyMjIyNzQ5WhcNMjUwNTE5MjIyNzQ5WjAYMRYwFAYD VQQDEw02ODIyNzVlNS1kYjQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoi1FtVmJAosDAXqahI/iO4QmlVpXP0vCnX85WzVG7+qXvpriek/o0+wptis0 sfj0omnRmsx16TyPIKpu0HjLv/vbdUYgs7E4tHwE//7g2XSP9skwUxfVXYZsChOJ q4pSCHLlePV5eVR7AGdA+TU+wXQ00dyJmvylwMN1z0O+N4ddA6Sy1mrOGngelm65 OlvfCvFYP+tuG/PytTYAmwx8llb5M7pHh4aQWz0sZ7e2zcyWDqEMCvJC+tUNS3bY KVAH1XU1hep0M151jErq+uzrRVg0mm/Zoyq+hlx1yh/TEXunh/Xsor38s7E+Xsc4 diYM6oeH6K1uQ7/a3ap8CvvPJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO7QHFII Zeix1MBdR8ghrRJn5GQZMB8GA1UdIwQYMBaAFIq7mSbDEqFBScUjC6VfqM9biarh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM1Mi9CNDZDRDc3RTkx QjkxMUVCOUM1QjQ2MThDNEY5QUUwMi9pcnVaSnNNU29VRkp4U01McFYtb3oxdUpx dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lydVpKc01Tb1VGSnhTTUxwVi1vejF1SnF1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEM1Mi9CNDZDRDc3RTkxQjkxMUVCOUM1QjQ2MThDNEY5QUUwMi9pcnVaSnNNU29V Rkp4U01McFYtb3oxdUpxdUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWqMlwQ3+C7xMHiUIlbxxP5ZPNnFjEsi1+Rgexi5RXz/AQn07U+GUa 6BAv3llhqQSWgo7vsNLG072LM8+03rh4WTQX2O3XuMikkOAh3Do6a/yaIu99mK6J l99pDmyZ2jA2tKK30sdQyItaLtG7zVgNtr1Q9RD1jhGQUKcxjKoniGW4sQ9l8NOP tHM2qZaIZIOIcB28XTF4tIM3tQ2f1pdZLsZ5k1kOQYhw8bKUgLpf958nJHAxtgKK BR/OCxIJHAoWkMDzWL4n+FOgGjI6KOr0lLocTjFPpxVySH/selwAucSIm+Dlo2Jl 8I2Svb/TLAfCpjrQvx6L80axBpoaKmKe -----END CERTIFICATE-----Generated at Tue May 13 01:46:52 2025 by rpki-client