$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/Iln4cJbkCts8hBgOKLVsPogi9lE.mft File: Iln4cJbkCts8hBgOKLVsPogi9lE.mft (raw, json) Hash identifier: nxiEZBdwEMlov6blahJrli42kXGaKP0qPE9HvIAO78M= Subject key identifier: 33:CF:38:77:7A:D2:30:AB:39:9B:34:60:77:4A:36:F8:0D:95:4C:44 Authority key identifier: 22:59:F8:70:96:E4:0A:DB:3C:84:18:0E:28:B5:6C:3E:88:22:F6:51 Certificate issuer: /CN=A91E9B89/serialNumber=2259F87096E40ADB3C84180E28B56C3E8822F651 Certificate serial: 85 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Iln4cJbkCts8hBgOKLVsPogi9lE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/Iln4cJbkCts8hBgOKLVsPogi9lE.mft Manifest number: 83 Signing time: Tue 13 May 2025 05:50:07 +0000 Manifest this update: Tue 13 May 2025 05:50:07 +0000 Manifest next update: Tue 20 May 2025 05:50:07 +0000 Files and hashes: 1: Iln4cJbkCts8hBgOKLVsPogi9lE.crl (hash: Uv8OTwCPF+tPiTAGc2Q5rLUqXnhvOB9H/RvdHWSTZHw=) 2: CCFF219C6C1811EFA5619D0FC4F9AE02.roa (hash: 3XxXrUl7XjjQy54chnpbCmHALQO6VY0UNh1QIEO4utw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/Iln4cJbkCts8hBgOKLVsPogi9lE.crl rsync://rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/Iln4cJbkCts8hBgOKLVsPogi9lE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Iln4cJbkCts8hBgOKLVsPogi9lE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 05:50:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9B89, serialNumber=2259F87096E40ADB3C84180E28B56C3E8822F651 Validity Not Before: May 13 05:50:07 2025 GMT Not After : May 20 05:50:07 2025 GMT Subject: CN=6822dd8f-afbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:eb:19:a6:f3:fc:aa:e7:df:1d:56:5d:84:0b: 7f:60:b7:e7:37:b7:3f:c3:5a:8d:c3:f2:11:aa:2c: 8e:c0:ac:06:40:48:57:e7:e9:7d:b6:ac:f2:59:25: f4:1b:68:d4:9f:d9:b1:c3:84:2f:06:b0:4b:e8:e5: 06:fe:1f:5d:12:b9:b9:ba:c4:f5:bb:26:d6:f5:f7: c8:50:05:15:1a:0d:07:e8:cf:b6:d2:2f:54:5d:88: b7:7f:b8:f9:49:f0:02:61:ed:3d:b3:e3:1a:b7:84: ee:08:0b:b8:04:5a:82:bb:70:3f:d1:d0:94:18:f5: 76:14:eb:dc:12:1a:78:28:89:9c:97:2e:10:6d:6d: 61:f4:75:2d:e5:79:e0:49:70:cf:1e:47:ff:07:03: 57:93:f7:cf:ed:be:a8:16:7c:e5:06:36:59:d8:e5: 2e:95:0b:d8:2b:0a:a5:21:99:cd:b6:89:c8:d7:92: 00:b3:06:08:56:0f:fc:93:34:c4:11:ec:db:8f:d6: 04:b6:2f:d0:5e:a5:12:8e:26:07:0b:c1:e6:71:bf: 40:f9:9c:74:7f:85:3a:d4:ad:89:2e:64:07:38:38: 08:a4:60:47:06:57:69:5e:f8:3f:c1:f6:bd:89:d5: 15:b4:67:48:d4:0b:07:1c:51:be:54:97:5e:62:69: f5:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:CF:38:77:7A:D2:30:AB:39:9B:34:60:77:4A:36:F8:0D:95:4C:44 X509v3 Authority Key Identifier: keyid:22:59:F8:70:96:E4:0A:DB:3C:84:18:0E:28:B5:6C:3E:88:22:F6:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/Iln4cJbkCts8hBgOKLVsPogi9lE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Iln4cJbkCts8hBgOKLVsPogi9lE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/Iln4cJbkCts8hBgOKLVsPogi9lE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:cb:50:e9:df:63:49:43:5f:13:70:3d:9b:26:2c:a0:26:1e: 8f:8e:62:66:7f:2c:c4:31:bd:48:54:13:da:77:c2:c3:b7:c3: 6b:6f:1e:9a:44:bd:89:f8:e8:de:fe:46:09:2f:40:f1:cc:9c: 2d:89:67:99:b2:a5:cd:77:7d:fe:7e:5b:d2:a8:f4:d0:9d:64: c2:6e:10:46:09:e7:b5:d8:6b:59:76:6b:c2:a6:3c:a5:5f:61: ac:14:db:37:af:b5:b0:98:a1:a7:80:89:60:9e:8e:13:c1:de: ef:4c:f2:d2:6a:88:12:5e:25:64:02:cc:0d:41:65:fb:88:a6: ed:ba:9b:48:97:f0:d0:27:6a:47:34:31:d7:a0:a6:04:e6:ba: 75:12:35:6e:c3:08:8b:d3:9f:91:99:3f:57:fb:67:ee:e1:e6: cd:43:77:4d:0c:23:18:0a:01:47:c1:e6:12:57:9a:26:af:d8: 8d:e7:60:8c:15:e2:eb:d7:93:aa:6f:e0:9b:a8:e0:a4:9b:be: b6:37:86:8e:1a:52:91:2a:3d:aa:72:19:f0:52:a6:61:9a:2e: 7f:f4:32:b5:3b:32:af:4f:b8:8c:73:37:14:6f:85:e1:ce:47: 2f:d8:31:ae:a0:63:9f:ce:ab:0f:1b:a3:c6:4a:08:f1:29:e6: 01:03:fd:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlCODkxMTAvBgNVBAUTKDIyNTlGODcwOTZFNDBBREIzQzg0MTgwRTI4QjU2QzNF ODgyMkY2NTEwHhcNMjUwNTEzMDU1MDA3WhcNMjUwNTIwMDU1MDA3WjAYMRYwFAYD VQQDEw02ODIyZGQ4Zi1hZmJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4esZpvP8quffHVZdhAt/YLfnN7c/w1qNw/IRqiyOwKwGQEhX5+l9tqzyWSX0 G2jUn9mxw4QvBrBL6OUG/h9dErm5usT1uybW9ffIUAUVGg0H6M+20i9UXYi3f7j5 SfACYe09s+Mat4TuCAu4BFqCu3A/0dCUGPV2FOvcEhp4KImcly4QbW1h9HUt5Xng SXDPHkf/BwNXk/fP7b6oFnzlBjZZ2OUulQvYKwqlIZnNtonI15IAswYIVg/8kzTE Eezbj9YEti/QXqUSjiYHC8Hmcb9A+Zx0f4U61K2JLmQHODgIpGBHBldpXvg/wfa9 idUVtGdI1AsHHFG+VJdeYmn1SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDPPOHd6 0jCrOZs0YHdKNvgNlUxEMB8GA1UdIwQYMBaAFCJZ+HCW5ArbPIQYDii1bD6IIvZR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUI4OS8zQTlDOEE1NjZD MTgxMUVGQUI2QjY5MENDNEY5QUUwMi9JbG40Y0pia0N0czhoQmdPS0xWc1BvZ2k5 bEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lsbjRjSmJrQ3RzOGhCZ09LTFZzUG9naTlsRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUI4OS8zQTlDOEE1NjZDMTgxMUVGQUI2QjY5MENDNEY5QUUwMi9JbG40Y0pia0N0 czhoQmdPS0xWc1BvZ2k5bEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLy1Dp32NJQ18TcD2bJiygJh6PjmJmfyzEMb1IVBPad8LDt8Nrbx6a RL2J+Oje/kYJL0DxzJwtiWeZsqXNd33+flvSqPTQnWTCbhBGCee12GtZdmvCpjyl X2GsFNs3r7WwmKGngIlgno4Twd7vTPLSaogSXiVkAswNQWX7iKbtuptIl/DQJ2pH NDHXoKYE5rp1EjVuwwiL05+RmT9X+2fu4ebNQ3dNDCMYCgFHweYSV5omr9iN52CM FeLr15Oqb+CbqOCkm762N4aOGlKRKj2qchnwUqZhmi5/9DK1OzKvT7iMczcUb4Xh zkcv2DGuoGOfzqsPG6PGSgjxKeYBA/2k -----END CERTIFICATE-----Generated at Wed May 14 18:32:41 2025 by rpki-client