$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft File: iBzVaxmrfMJiYzdmnqtzClWnLLY.mft (raw, json) Hash identifier: WQmWfLJwWi8wg6ZmudN/5QbyyCWzoqqEqYpXAibHsiY= Subject key identifier: 82:33:52:F9:25:35:5B:67:AC:B6:F1:E5:AD:EB:B9:4F:99:EC:C7:15 Authority key identifier: 88:1C:D5:6B:19:AB:7C:C2:62:63:37:66:9E:AB:73:0A:55:A7:2C:B6 Certificate issuer: /CN=A91ED9F9/serialNumber=881CD56B19AB7CC2626337669EAB730A55A72CB6 Certificate serial: F1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft Manifest number: ED Signing time: Sun 11 May 2025 04:11:58 +0000 Manifest this update: Sun 11 May 2025 04:11:57 +0000 Manifest next update: Sun 18 May 2025 04:11:57 +0000 Files and hashes: 1: iBzVaxmrfMJiYzdmnqtzClWnLLY.crl (hash: q0Qs6iDrH8KkLsYkzv/tUCuTXe9cmqJg+t0zw1l132A=) 2: D714E00CB26F11EFB2BFFC58C4F9AE02.roa (hash: fbK8JApyPVI7CqfBV4idqbGNutPDQ+/1nnEJoajk5Ao=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.crl rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 04:11:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 241 (0xf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED9F9, serialNumber=881CD56B19AB7CC2626337669EAB730A55A72CB6 Validity Not Before: May 11 04:11:57 2025 GMT Not After : May 18 04:11:57 2025 GMT Subject: CN=6820238d-6ff8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:af:b9:95:9c:69:e2:be:68:b0:28:a1:58:e9: 5f:6d:04:d8:70:8c:3e:ca:e7:6c:57:a4:2d:35:87: af:b9:e2:7b:42:48:82:c4:2b:2f:bc:52:1a:e2:e7: e6:59:d6:21:b4:04:2c:74:7b:58:8e:63:99:3a:70: ac:2a:53:a8:dd:80:81:ad:55:08:9b:a0:37:68:c4: b8:9c:9d:1d:dc:e7:6b:8d:36:06:db:dc:f5:95:e7: 70:25:40:1a:76:97:2e:9b:65:e2:6a:fd:51:97:0e: 3f:c1:ce:ac:51:1d:64:3c:8f:7b:3a:ed:f8:d4:ab: ae:0d:6a:d9:33:e2:44:f0:ef:ac:96:49:eb:20:c1: b4:fb:10:21:2e:c8:88:8f:87:dd:01:26:18:ae:10: 7d:34:12:02:69:aa:70:e1:d6:1d:e9:52:0d:f5:e5: 10:cb:82:3a:9b:eb:77:98:1e:9e:9d:e9:e4:fc:f6: b5:3b:7c:ca:ab:16:8c:d4:e5:ca:58:79:82:45:9b: 2f:0f:55:52:dd:41:85:e2:77:5f:5d:c9:33:af:c4: b1:8d:73:4c:d7:dd:41:21:ba:29:f3:67:29:9c:d2: 0e:9b:3d:f5:ef:de:2d:a1:ca:c2:ae:a7:0f:24:e4: f4:eb:43:36:dc:d1:93:8f:55:43:8e:97:ce:8c:a6: 8e:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:33:52:F9:25:35:5B:67:AC:B6:F1:E5:AD:EB:B9:4F:99:EC:C7:15 X509v3 Authority Key Identifier: keyid:88:1C:D5:6B:19:AB:7C:C2:62:63:37:66:9E:AB:73:0A:55:A7:2C:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:fc:73:e3:9d:f9:77:b8:6d:2f:8d:d8:21:49:95:36:90:f2: 4e:ce:d8:fe:7a:29:4e:17:3f:e4:65:5a:65:d1:4c:4f:57:67: 21:b6:17:c4:c0:dd:1e:8f:b5:32:de:16:87:de:3c:22:0f:61: 5d:d3:06:6a:a6:eb:03:a0:b7:cd:ad:97:58:49:af:f2:f0:b1: 46:91:77:61:cf:2f:04:13:71:a3:a7:05:ae:35:0b:18:3e:0c: 51:33:7b:10:8f:b0:d4:92:e8:5e:e7:bf:4d:49:ed:84:16:e8: 2d:49:3e:60:74:20:db:bb:dc:5c:a5:73:05:bf:b7:b5:b0:c6: bc:a7:54:38:97:ee:77:91:25:ba:ef:56:2e:3c:c4:ea:bc:03: 59:b3:a4:2c:98:f5:09:5c:a5:81:4f:b6:0a:ee:48:5d:00:ec: 07:0a:8a:fe:da:f7:6c:ec:92:98:14:7d:4d:ac:dc:11:27:55: 3a:ce:4f:63:e9:86:87:7a:fe:89:2f:b5:80:0c:6a:ed:8f:c1: d4:32:98:94:02:66:92:0c:50:c6:7f:94:ce:36:3b:d5:04:ae: b5:f5:90:d3:40:0c:03:5c:20:b1:c8:36:f3:0a:ba:e8:d3:12: 30:48:46:d0:71:b9:ab:4c:c7:c5:29:1f:3c:5e:f5:bd:9d:59: 1b:d5:49:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ5RjkxMTAvBgNVBAUTKDg4MUNENTZCMTlBQjdDQzI2MjYzMzc2NjlFQUI3MzBB NTVBNzJDQjYwHhcNMjUwNTExMDQxMTU3WhcNMjUwNTE4MDQxMTU3WjAYMRYwFAYD VQQDEw02ODIwMjM4ZC02ZmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsK+5lZxp4r5osCihWOlfbQTYcIw+yudsV6QtNYevueJ7QkiCxCsvvFIa4ufm WdYhtAQsdHtYjmOZOnCsKlOo3YCBrVUIm6A3aMS4nJ0d3OdrjTYG29z1ledwJUAa dpcum2Xiav1Rlw4/wc6sUR1kPI97Ou341KuuDWrZM+JE8O+slknrIMG0+xAhLsiI j4fdASYYrhB9NBICaapw4dYd6VIN9eUQy4I6m+t3mB6enenk/Pa1O3zKqxaM1OXK WHmCRZsvD1VS3UGF4ndfXckzr8SxjXNM191BIbop82cpnNIOmz31794tocrCrqcP JOT060M23NGTj1VDjpfOjKaOOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIIzUvkl NVtnrLbx5a3ruU+Z7McVMB8GA1UdIwQYMBaAFIgc1WsZq3zCYmM3Zp6rcwpVpyy2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDlGOS81RjM3OURCMEM5 NTIxMUVFQjdBRERENEVDNEY5QUUwMi9pQnpWYXhtcmZNSmlZemRtbnF0ekNsV25M TFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lCelZheG1yZk1KaVl6ZG1ucXR6Q2xXbkxMWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDlGOS81RjM3OURCMEM5NTIxMUVFQjdBRERENEVDNEY5QUUwMi9pQnpWYXhtcmZN SmlZemRtbnF0ekNsV25MTFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCF/HPjnfl3uG0vjdghSZU2kPJOztj+eilOFz/kZVpl0UxPV2chthfE wN0ej7Uy3haH3jwiD2Fd0wZqpusDoLfNrZdYSa/y8LFGkXdhzy8EE3GjpwWuNQsY PgxRM3sQj7DUkuhe579NSe2EFugtST5gdCDbu9xcpXMFv7e1sMa8p1Q4l+53kSW6 71YuPMTqvANZs6QsmPUJXKWBT7YK7khdAOwHCor+2vds7JKYFH1NrNwRJ1U6zk9j 6YaHev6JL7WADGrtj8HUMpiUAmaSDFDGf5TONjvVBK619ZDTQAwDXCCxyDbzCrro 0xIwSEbQcbmrTMfFKR88XvW9nVkb1UnK -----END CERTIFICATE-----Generated at Sun May 11 18:55:47 2025 by rpki-client