$ rpki-client -vvf rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.mft File: IZ6mPGrJZt2yhYhr1xHHihTfUSs.mft (raw, json) Hash identifier: ACjGP+mWpTxWq2gKzY5zdb9spAuUoAILezq44FpwO5Y= Subject key identifier: BB:50:B2:1D:7F:69:91:E1:76:A6:E1:42:DF:EE:0F:33:73:1E:0E:D9 Authority key identifier: 21:9E:A6:3C:6A:C9:66:DD:B2:85:88:6B:D7:11:C7:8A:14:DF:51:2B Certificate issuer: /CN=A91E96D9/serialNumber=219EA63C6AC966DDB285886BD711C78A14DF512B Certificate serial: 084C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZ6mPGrJZt2yhYhr1xHHihTfUSs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.mft Manifest number: 0817 Signing time: Sat 10 May 2025 20:39:01 +0000 Manifest this update: Sat 10 May 2025 20:39:00 +0000 Manifest next update: Sat 17 May 2025 20:39:00 +0000 Files and hashes: 1: IZ6mPGrJZt2yhYhr1xHHihTfUSs.crl (hash: xHh07E3/+xwIoX3j/SKhMuywn0IT9RnWw5HB+15x/yk=) 2: EF40C4AC404611EFA2014651C4F9AE02.roa (hash: czaYuAZrmltxjeFq6mD06OZKMChDyKz2TsFDBFMIxYw=) 3: 4A06FF10FF2711EAB7D5F235C4F9AE02.roa (hash: IR0gL9HuGQPasCSDeDXOONGQSnX5FqddD0h9jerJFTk=) 4: C8C64A4AED4D11EA895BC037C4F9AE02.roa (hash: RgPF5melWGZf5AFZ9hv+NJPKC/EOsjcNRxGMLnUAhvk=) 5: 35D16082404911EFBC4C610EC4F9AE02.roa (hash: CZyYnpg8fZRv7/01XkAyfUiNYVCaEIGt11t+Ww7CLyk=) 6: BAEB4B28FBDF11EA8B73595BC4F9AE02.roa (hash: 5tsj3TAsFxb8qTqVXGn9He+Eq077vpR4YIaSiSHaTqQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.crl rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZ6mPGrJZt2yhYhr1xHHihTfUSs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 20:39:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2124 (0x84c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E96D9, serialNumber=219EA63C6AC966DDB285886BD711C78A14DF512B Validity Not Before: May 10 20:39:00 2025 GMT Not After : May 17 20:39:00 2025 GMT Subject: CN=681fb965-00d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:a0:d7:b8:70:83:b0:5d:14:f0:9c:a0:e7:d4: f3:7b:0f:8d:61:7f:de:8d:61:f2:59:b0:f9:84:a6: 58:01:57:97:08:98:95:fb:ec:64:08:08:62:e2:eb: b0:6a:bf:ce:d9:1f:e3:ab:c9:75:8c:52:b6:c9:8e: d8:d3:0b:08:06:d7:4e:a2:c0:86:4c:20:35:a6:06: fd:5a:8e:64:03:1d:ca:5b:e0:40:00:38:71:a8:61: 43:d0:6a:fe:22:9a:6c:c5:2d:c4:de:9d:86:90:92: d1:95:03:55:31:90:29:02:dc:5e:62:40:e6:eb:db: 1d:9a:75:71:1a:0f:6f:fe:0c:68:10:fb:b5:78:cd: 68:bb:47:2f:39:db:b6:e8:ca:c0:ae:7b:30:c3:28: 2a:1d:be:f8:9d:fb:31:a6:d1:ec:9e:46:fa:b2:c9: 0a:46:f7:81:b6:f1:b1:c4:a9:59:82:3f:02:a4:b6: 24:cf:3c:81:29:c8:6e:70:c0:ba:c9:8c:c6:93:c6: ca:33:9e:08:0b:f0:6f:21:27:1f:6d:50:24:a0:27: 0f:dd:9c:7d:72:47:8e:a0:03:c2:8e:d8:b9:99:0f: 88:92:b5:e9:8f:18:93:37:8a:d0:77:3f:63:6f:22: e5:11:14:98:5c:4a:ef:5a:37:92:d5:9f:ca:a5:aa: 6f:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:50:B2:1D:7F:69:91:E1:76:A6:E1:42:DF:EE:0F:33:73:1E:0E:D9 X509v3 Authority Key Identifier: keyid:21:9E:A6:3C:6A:C9:66:DD:B2:85:88:6B:D7:11:C7:8A:14:DF:51:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZ6mPGrJZt2yhYhr1xHHihTfUSs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:fa:76:04:7d:e0:d3:66:ca:a9:fe:14:29:20:ed:24:a7:ce: e4:16:ee:3a:cd:23:79:95:40:b8:4b:cc:20:72:a6:07:26:6d: 98:2e:a5:56:d3:9d:89:4c:1f:f4:3b:53:57:64:18:fb:0c:d6: e6:2a:96:0a:65:5e:87:3b:38:a5:3a:92:b4:91:5d:bd:0b:08: 39:a8:12:fc:aa:60:24:a9:58:34:07:0e:1b:9e:fd:6a:5a:e9: ab:81:a0:24:27:ac:bb:c7:b3:c7:12:e4:55:91:d0:4e:e4:de: fc:78:4d:b2:81:ac:2c:53:99:d6:d7:52:50:1e:bf:21:08:36: e8:9b:98:5f:14:7e:4e:41:de:b9:d9:6b:a8:48:cd:e4:f5:8b: de:5a:56:8e:33:c5:9f:42:12:5d:30:9a:eb:ec:25:71:5a:11: 0f:ec:12:af:b9:cf:16:74:71:45:7d:d6:84:f2:e4:ee:ee:0b: b2:01:08:97:72:01:0b:f6:ff:47:de:bc:59:ea:17:46:73:65: 19:71:bb:a7:2a:c6:cd:ab:57:5c:cb:81:a4:6c:6d:45:21:d3: 31:4d:d3:48:1f:4d:9c:29:60:91:9f:f2:02:a1:19:d3:a8:9d: 12:99:23:42:bb:9b:c4:4c:8f:39:23:19:11:5f:fb:a6:c4:f3: e7:23:59:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk2RDkxMTAvBgNVBAUTKDIxOUVBNjNDNkFDOTY2RERCMjg1ODg2QkQ3MTFDNzhB MTRERjUxMkIwHhcNMjUwNTEwMjAzOTAwWhcNMjUwNTE3MjAzOTAwWjAYMRYwFAYD VQQDEw02ODFmYjk2NS0wMGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1KDXuHCDsF0U8Jyg59Tzew+NYX/ejWHyWbD5hKZYAVeXCJiV++xkCAhi4uuw ar/O2R/jq8l1jFK2yY7Y0wsIBtdOosCGTCA1pgb9Wo5kAx3KW+BAADhxqGFD0Gr+ IppsxS3E3p2GkJLRlQNVMZApAtxeYkDm69sdmnVxGg9v/gxoEPu1eM1ou0cvOdu2 6MrArnswwygqHb74nfsxptHsnkb6sskKRveBtvGxxKlZgj8CpLYkzzyBKchucMC6 yYzGk8bKM54IC/BvIScfbVAkoCcP3Zx9ckeOoAPCjti5mQ+IkrXpjxiTN4rQdz9j byLlERSYXErvWjeS1Z/KpapvGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLtQsh1/ aZHhdqbhQt/uDzNzHg7ZMB8GA1UdIwQYMBaAFCGepjxqyWbdsoWIa9cRx4oU31Er MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTZEOS84MERGREVDMEU1 REQxMUVBQjI0NjhENjVDNEY5QUUwMi9JWjZtUEdySlp0MnloWWhyMXhISGloVGZV U3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0laNm1QR3JKWnQyeWhZaHIxeEhIaWhUZlVTcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTZEOS84MERGREVDMEU1REQxMUVBQjI0NjhENjVDNEY5QUUwMi9JWjZtUEdySlp0 MnloWWhyMXhISGloVGZVU3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBm+nYEfeDTZsqp/hQpIO0kp87kFu46zSN5lUC4S8wgcqYHJm2YLqVW 052JTB/0O1NXZBj7DNbmKpYKZV6HOzilOpK0kV29Cwg5qBL8qmAkqVg0Bw4bnv1q WumrgaAkJ6y7x7PHEuRVkdBO5N78eE2ygawsU5nW11JQHr8hCDbom5hfFH5OQd65 2WuoSM3k9YveWlaOM8WfQhJdMJrr7CVxWhEP7BKvuc8WdHFFfdaE8uTu7guyAQiX cgEL9v9H3rxZ6hdGc2UZcbunKsbNq1dcy4GkbG1FIdMxTdNIH02cKWCRn/ICoRnT qJ0SmSNCu5vETI85IxkRX/umxPPnI1nA -----END CERTIFICATE-----Generated at Mon May 12 09:33:12 2025 by rpki-client