$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft File: IO0KqyB1C4snqG35iadUv1cm3X4.mft (raw, json) Hash identifier: e1RePRWbAVs2UZGU48Pwm5+IrYZhBWgMDPw80kByK1s= Subject key identifier: AB:4F:94:1B:06:D7:4D:8C:13:D0:44:4A:E4:09:15:25:5E:07:0A:F5 Authority key identifier: 20:ED:0A:AB:20:75:0B:8B:27:A8:6D:F9:89:A7:54:BF:57:26:DD:7E Certificate issuer: /CN=A91EAB64/serialNumber=20ED0AAB20750B8B27A86DF989A754BF5726DD7E Certificate serial: 0199 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft Manifest number: 053A Signing time: Thu 15 May 2025 00:43:36 +0000 Manifest this update: Thu 15 May 2025 00:43:36 +0000 Manifest next update: Thu 22 May 2025 00:43:36 +0000 Files and hashes: 1: IO0KqyB1C4snqG35iadUv1cm3X4.crl (hash: 7Hcam7PN1GIQ0mU7tqRtD7OYJd0MnnxFD7XJisDuvdg=) 2: 13C17EAE203211F09B9D141CC4F9AE02.roa (hash: HS1vi6nnSZ7fbVowIGS+cC1MW1aBR9pLwV7kayJA9l4=) 3: 0064309A203211F091C0061CC4F9AE02.roa (hash: CxjM8nT+6zqXXcEsv5r6YYN/NOjb/oMb5HsHrJLUpqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.crl rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 00:43:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 409 (0x199) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAB64, serialNumber=20ED0AAB20750B8B27A86DF989A754BF5726DD7E Validity Not Before: May 15 00:43:36 2025 GMT Not After : May 22 00:43:36 2025 GMT Subject: CN=682538b8-ea0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:af:b7:49:ca:22:66:c1:18:41:22:4a:f0:99: ae:78:8b:7a:bc:aa:5d:5b:92:a1:4d:80:dc:4d:9b: 08:38:c9:eb:4f:1d:01:47:3e:48:7e:1a:7c:95:a0: ee:e2:9b:fb:c4:1f:fc:35:bc:b8:f4:f9:95:46:6f: 53:32:f7:72:f9:be:79:74:0e:86:a1:d0:1d:7b:6a: 9a:e8:82:f3:45:85:e0:e9:94:67:ff:91:4b:db:50: ad:16:eb:cc:40:81:9f:1e:89:01:03:da:84:1b:95: 42:95:3e:4a:a0:19:88:78:bf:54:6e:85:ce:8c:88: 01:11:23:14:27:a8:d5:03:74:ce:76:5d:df:8b:5c: 21:8b:00:51:72:27:63:0c:68:7d:ea:33:73:a9:97: 80:db:65:df:84:35:b3:f2:4d:9b:06:60:06:ab:e9: 96:4e:9d:63:0c:d5:00:72:9d:98:55:7d:0f:f3:4a: 74:61:4a:25:f3:59:3b:62:a8:d7:9e:90:90:a1:b2: c1:e2:14:f4:92:e3:a5:ab:63:28:8e:b5:4c:8d:8a: 22:81:67:dc:60:10:1e:f6:2d:b4:81:53:81:24:07: ca:f8:ed:83:c3:41:ea:76:4a:c5:48:17:4e:8e:cd: 44:b8:d3:47:b6:ec:b7:3d:35:54:78:c6:01:9d:bc: 00:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:4F:94:1B:06:D7:4D:8C:13:D0:44:4A:E4:09:15:25:5E:07:0A:F5 X509v3 Authority Key Identifier: keyid:20:ED:0A:AB:20:75:0B:8B:27:A8:6D:F9:89:A7:54:BF:57:26:DD:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:0d:f1:b8:07:22:f7:2f:a1:9e:17:b6:f8:75:7f:8d:f9:79: cf:a6:08:da:3d:39:69:ac:2a:3d:71:c9:09:d1:c6:ce:de:29: 4e:12:fe:5e:63:7c:d9:8b:dd:6b:79:9c:a4:2a:2f:1f:6a:d3: f6:84:c9:3b:91:87:e4:3c:40:38:db:61:ee:94:14:27:0c:da: a4:4b:df:46:45:d1:ee:18:f1:97:de:b1:b8:be:73:cb:cf:13: 6b:31:08:cb:35:7f:58:3a:f3:e5:ad:a4:81:6d:c8:ca:6f:04: 5e:8c:de:45:a0:42:4c:f5:70:f3:2f:6a:cc:55:ab:2e:8e:15: fa:4d:ff:e4:e9:6c:0e:4b:c3:dd:a6:2e:7f:41:1f:f6:ad:ae: a8:64:9d:09:da:95:2c:69:18:4f:85:79:7f:30:dc:53:14:e6: 7f:c2:25:ce:02:de:2a:d7:a6:4a:79:80:17:cf:03:4c:ae:f8: eb:8c:88:44:31:12:ab:dd:ba:f8:98:05:ec:35:8c:8f:07:05: 77:dc:9d:24:40:09:ec:1c:b6:0c:34:ba:93:25:c8:09:39:f4: 1d:4c:9b:73:95:c3:e4:a4:fa:d4:65:19:fe:42:c9:6e:ff:1c: d2:9c:a9:43:d7:e3:46:99:e4:87:76:d9:bc:82:52:74:14:48: 22:59:7d:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFCNjQxMTAvBgNVBAUTKDIwRUQwQUFCMjA3NTBCOEIyN0E4NkRGOTg5QTc1NEJG NTcyNkREN0UwHhcNMjUwNTE1MDA0MzM2WhcNMjUwNTIyMDA0MzM2WjAYMRYwFAYD VQQDEw02ODI1MzhiOC1lYTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAna+3ScoiZsEYQSJK8JmueIt6vKpdW5KhTYDcTZsIOMnrTx0BRz5Ifhp8laDu 4pv7xB/8Nby49PmVRm9TMvdy+b55dA6GodAde2qa6ILzRYXg6ZRn/5FL21CtFuvM QIGfHokBA9qEG5VClT5KoBmIeL9UboXOjIgBESMUJ6jVA3TOdl3fi1whiwBRcidj DGh96jNzqZeA22XfhDWz8k2bBmAGq+mWTp1jDNUAcp2YVX0P80p0YUol81k7YqjX npCQobLB4hT0kuOlq2MojrVMjYoigWfcYBAe9i20gVOBJAfK+O2Dw0HqdkrFSBdO js1EuNNHtuy3PTVUeMYBnbwAsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKtPlBsG 102ME9BESuQJFSVeBwr1MB8GA1UdIwQYMBaAFCDtCqsgdQuLJ6ht+YmnVL9XJt1+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUI2NC85QjQ0RUI3NDhG MjkxMUVDQjZBNjk5NkNDNEY5QUUwMi9JTzBLcXlCMUM0c25xRzM1aWFkVXYxY20z WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lPMEtxeUIxQzRzbnFHMzVpYWRVdjFjbTNYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUI2NC85QjQ0RUI3NDhGMjkxMUVDQjZBNjk5NkNDNEY5QUUwMi9JTzBLcXlCMUM0 c25xRzM1aWFkVXYxY20zWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgDfG4ByL3L6GeF7b4dX+N+XnPpgjaPTlprCo9cckJ0cbO3ilOEv5e Y3zZi91reZykKi8fatP2hMk7kYfkPEA422HulBQnDNqkS99GRdHuGPGX3rG4vnPL zxNrMQjLNX9YOvPlraSBbcjKbwRejN5FoEJM9XDzL2rMVasujhX6Tf/k6WwOS8Pd pi5/QR/2ra6oZJ0J2pUsaRhPhXl/MNxTFOZ/wiXOAt4q16ZKeYAXzwNMrvjrjIhE MRKr3br4mAXsNYyPBwV33J0kQAnsHLYMNLqTJcgJOfQdTJtzlcPkpPrUZRn+Qslu /xzSnKlD1+NGmeSHdtm8glJ0FEgiWX0u -----END CERTIFICATE-----Generated at Fri May 16 05:06:32 2025 by rpki-client