$ rpki-client -vvf rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft File: Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft (raw, json) Hash identifier: q+7Km53iUakQikUUvwmFiBjqGhtoxUii5hJTOImw1ss= Subject key identifier: 37:AC:B9:36:9E:1D:08:41:70:AB:47:6E:B4:5C:DB:D2:0F:F6:E2:DA Authority key identifier: 22:4E:66:8F:40:56:01:CA:DC:33:91:38:3F:CA:96:DF:94:68:D9:5A Certificate issuer: /CN=A91F83DC/serialNumber=224E668F405601CADC3391383FCA96DF9468D95A Certificate serial: B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft Manifest number: AE Signing time: Mon 05 May 2025 04:56:36 +0000 Manifest this update: Mon 05 May 2025 04:56:35 +0000 Manifest next update: Mon 12 May 2025 04:56:35 +0000 Files and hashes: 1: Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.crl (hash: uHJEDiEJDqH+dMFZDKg3rSjnBvHpmCTQ3dg1wmaaM20=) 2: 097951DC271E11EFA1884C2EC4F9AE02.roa (hash: TmyUhAAOaU6CYroA57XlncbnofjVXGoZ5jM7LnuMB/M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.crl rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 04:56:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F83DC, serialNumber=224E668F405601CADC3391383FCA96DF9468D95A Validity Not Before: May 5 04:56:35 2025 GMT Not After : May 12 04:56:35 2025 GMT Subject: CN=68184504-9833 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:90:48:cd:03:fa:51:55:74:b1:a0:66:e6:6a: 8a:55:28:77:de:cf:15:d1:52:37:4b:c6:4f:ff:09: 02:96:6a:41:75:dd:7c:47:7a:4d:52:64:43:eb:66: ee:04:35:05:d9:6d:d7:ac:fa:10:e9:60:63:12:8b: 0f:cd:95:a4:d9:d5:52:7b:18:c4:67:13:3f:2d:2c: 99:cb:94:5c:94:24:89:02:9c:8b:de:0f:99:a2:46: 4f:71:4c:e4:0c:a5:aa:3e:a6:f2:8f:9d:22:4c:fd: 17:3b:d5:2e:fe:29:fb:bd:12:e8:56:ae:84:58:8a: da:5a:29:88:8a:00:d3:44:1e:83:d2:3d:6d:0a:6d: 65:90:e9:e8:35:f0:98:5b:2e:58:af:c4:2b:0a:10: fa:b7:45:29:d6:41:12:33:ae:c5:3a:07:58:af:fb: 47:92:56:45:69:f3:35:67:83:32:ea:5a:8b:77:0f: 82:dc:ee:60:c8:cd:c3:e5:a2:ac:04:f9:d7:38:16: f8:d7:05:82:04:86:06:64:bc:57:b3:87:d5:34:23: ca:8d:9a:71:1a:2b:a7:0e:20:f9:1a:9e:d8:2d:c9: 06:f6:4e:8c:e0:ca:6b:14:9a:e7:6f:46:72:34:55: 5d:9a:05:7e:75:7d:10:b0:bc:5e:77:d0:3c:db:bf: 2e:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:AC:B9:36:9E:1D:08:41:70:AB:47:6E:B4:5C:DB:D2:0F:F6:E2:DA X509v3 Authority Key Identifier: keyid:22:4E:66:8F:40:56:01:CA:DC:33:91:38:3F:CA:96:DF:94:68:D9:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:d2:98:fe:f8:b4:49:1b:f0:8d:62:92:76:2b:91:78:5f:61: a7:0a:e0:db:ec:4b:7e:23:a9:1d:07:63:7a:9a:18:d0:bf:72: dc:ec:25:7e:4b:81:bb:06:3e:6d:2e:ce:9d:30:62:0b:4e:58: ff:c8:a8:43:b9:21:43:18:e4:12:8c:8e:6b:b8:63:12:93:65: ba:0e:7d:d5:38:f3:92:bd:96:43:d0:ab:ed:35:7f:9a:d4:b7: e3:e9:4e:a3:b6:79:f4:c1:20:aa:6e:ba:47:7c:c2:89:bd:19: 63:5d:79:81:5b:e8:b2:18:ce:75:76:63:d5:11:a1:46:b5:c5: 27:89:a5:74:8c:66:cd:62:8b:59:da:be:e4:c6:1a:61:2b:91: 23:0b:91:6d:0c:53:01:32:0e:39:ab:fe:1f:f9:40:a7:d9:db: bc:16:09:2b:e3:ce:7f:20:38:4f:9b:37:11:8d:b8:bf:b6:e2: 96:c4:a1:94:75:76:ad:1c:ac:20:c4:5f:ae:94:15:7a:09:07: 5b:70:00:3d:7c:a6:f2:35:62:60:50:d1:f0:72:45:5d:24:34: d3:97:d3:72:c4:ba:f6:b0:02:71:cc:ed:ac:27:db:73:af:cb: 80:92:72:ff:2c:5c:d5:a8:72:7d:ec:58:b3:bc:fb:75:08:0a: ac:4c:cc:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgzREMxMTAvBgNVBAUTKDIyNEU2NjhGNDA1NjAxQ0FEQzMzOTEzODNGQ0E5NkRG OTQ2OEQ5NUEwHhcNMjUwNTA1MDQ1NjM1WhcNMjUwNTEyMDQ1NjM1WjAYMRYwFAYD VQQDEw02ODE4NDUwNC05ODMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr5BIzQP6UVV0saBm5mqKVSh33s8V0VI3S8ZP/wkClmpBdd18R3pNUmRD62bu BDUF2W3XrPoQ6WBjEosPzZWk2dVSexjEZxM/LSyZy5RclCSJApyL3g+ZokZPcUzk DKWqPqbyj50iTP0XO9Uu/in7vRLoVq6EWIraWimIigDTRB6D0j1tCm1lkOnoNfCY Wy5Yr8QrChD6t0Up1kESM67FOgdYr/tHklZFafM1Z4My6lqLdw+C3O5gyM3D5aKs BPnXOBb41wWCBIYGZLxXs4fVNCPKjZpxGiunDiD5Gp7YLckG9k6M4MprFJrnb0Zy NFVdmgV+dX0QsLxed9A8278ucwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDesuTae HQhBcKtHbrRc29IP9uLaMB8GA1UdIwQYMBaAFCJOZo9AVgHK3DOROD/Klt+UaNla MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODNEQy85OUM3NDg4ODI2 RUQxMUVGQjRDOUJBMjhDNEY5QUUwMi9JazVtajBCV0FjcmNNNUU0UDhxVzM1Um8y Vm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lrNW1qMEJXQWNyY001RTRQOHFXMzVSbzJWby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODNEQy85OUM3NDg4ODI2RUQxMUVGQjRDOUJBMjhDNEY5QUUwMi9JazVtajBCV0Fj cmNNNUU0UDhxVzM1Um8yVm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBr0pj++LRJG/CNYpJ2K5F4X2GnCuDb7Et+I6kdB2N6mhjQv3Lc7CV+ S4G7Bj5tLs6dMGILTlj/yKhDuSFDGOQSjI5ruGMSk2W6Dn3VOPOSvZZD0KvtNX+a 1Lfj6U6jtnn0wSCqbrpHfMKJvRljXXmBW+iyGM51dmPVEaFGtcUniaV0jGbNYotZ 2r7kxhphK5EjC5FtDFMBMg45q/4f+UCn2du8Fgkr485/IDhPmzcRjbi/tuKWxKGU dXatHKwgxF+ulBV6CQdbcAA9fKbyNWJgUNHwckVdJDTTl9NyxLr2sAJxzO2sJ9tz r8uAknL/LFzVqHJ97FizvPt1CAqsTMyN -----END CERTIFICATE-----Generated at Tue May 6 22:32:01 2025 by rpki-client