$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft File: IWrR11qT4DeulPbJGJbS1YLY_1Q.mft (raw, json) Hash identifier: mABTzF0TSUEuo+Lz3cjNc2Ji2NEu3bsDfQ9Xho9RoQ4= Subject key identifier: 36:BB:96:BC:E8:0D:07:9C:45:E1:89:EC:E0:BD:8C:6B:54:0C:A1:82 Authority key identifier: 21:6A:D1:D7:5A:93:E0:37:AE:94:F6:C9:18:96:D2:D5:82:D8:FF:54 Certificate issuer: /CN=A91FDDD1/serialNumber=216AD1D75A93E037AE94F6C91896D2D582D8FF54 Certificate serial: 015C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft Manifest number: 014E Signing time: Tue 13 May 2025 03:28:49 +0000 Manifest this update: Tue 13 May 2025 03:28:48 +0000 Manifest next update: Tue 20 May 2025 03:28:48 +0000 Files and hashes: 1: IWrR11qT4DeulPbJGJbS1YLY_1Q.crl (hash: XKOnkOsj5nVNl413OHPW4nnfKp2t4jrT8KZGiNrem0U=) 2: 838096CA3BD311EE84056461C4F9AE02.roa (hash: MRW+pxq2rIQWqz0eewlHDxgHTLGzIYysThVYJrp2BDc=) 3: 27DB37683BD211EE8094355FC4F9AE02.roa (hash: Fv5yzaRaYXm7EcaxJ9d0RT5up4myTdlO4UPvIXp3L88=) 4: 82C54A1E3BD311EE84056461C4F9AE02.roa (hash: mGJXgF/PKI9FEq/cPxsdqAyVl2gi74HVL2n1gwNWhDo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.crl rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 03:28:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 348 (0x15c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDDD1, serialNumber=216AD1D75A93E037AE94F6C91896D2D582D8FF54 Validity Not Before: May 13 03:28:48 2025 GMT Not After : May 20 03:28:48 2025 GMT Subject: CN=6822bc71-7622 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:cf:7f:7e:eb:a1:47:41:d1:35:5f:a5:83:e6: 74:6e:5b:d4:58:f8:69:61:ab:a4:97:67:54:3c:63: 8c:cd:f0:8d:27:75:30:0b:aa:5a:5e:75:62:b3:07: 9f:3f:0b:c3:c1:87:02:c2:24:da:c1:b7:ae:3b:a8: a1:6f:8c:fc:93:aa:e0:14:d5:3b:26:1d:7b:06:76: 3b:15:03:8e:a5:0e:8f:c5:b9:40:c9:4b:55:74:e0: 1d:51:0e:2e:5f:95:85:bb:81:b7:7c:17:2b:56:f0: 15:67:e7:86:0b:c3:35:6b:41:0f:24:d4:1a:51:04: be:2d:87:b4:c7:f5:72:7f:25:fc:a1:87:b5:0e:d3: 3e:e3:ef:d0:24:3a:4a:9b:6e:d7:be:1c:4a:cc:b9: 74:bc:a8:8a:eb:83:71:08:eb:20:cb:ed:c0:60:a0: a7:05:b0:57:5b:fd:ed:fc:2d:4e:9b:be:d6:da:0c: 86:45:d1:80:ac:93:74:b9:fa:e2:2c:20:e8:be:18: ea:af:cd:e8:bb:a4:97:30:e3:68:c8:48:fe:b4:61: e4:a0:3e:00:2d:fa:87:d0:bf:fd:3d:75:89:8e:04: 4e:3e:04:76:e0:3a:df:fd:0b:ec:87:47:46:77:64: 5f:17:38:26:50:b1:90:fb:7d:d4:a6:35:ac:86:1e: 7a:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:BB:96:BC:E8:0D:07:9C:45:E1:89:EC:E0:BD:8C:6B:54:0C:A1:82 X509v3 Authority Key Identifier: keyid:21:6A:D1:D7:5A:93:E0:37:AE:94:F6:C9:18:96:D2:D5:82:D8:FF:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:a5:e4:e6:34:74:e7:49:27:03:e4:5f:aa:11:29:d2:55:9d: 8a:15:3e:95:cd:c3:79:51:31:15:bb:23:31:96:59:d7:8a:4c: c6:36:5f:98:34:79:05:8f:41:c2:76:ef:b9:cb:22:96:b7:20: ad:40:e5:e1:a7:d7:72:56:d5:5b:45:bc:50:5f:ca:90:f2:09: a1:19:5a:83:ce:1f:83:62:73:1b:4a:15:28:11:64:5d:18:c3: d1:fe:87:0d:94:10:6d:24:df:5a:64:74:ab:57:d6:b4:8a:3d: 13:b6:63:eb:d1:43:7f:b5:33:c6:91:66:6c:a0:8b:79:e2:8b: 73:40:ce:cd:81:b5:aa:3a:78:f2:27:88:20:5e:fd:33:85:79: 12:9c:cf:5d:6d:56:58:78:55:35:1b:b3:19:ba:34:ab:ba:98: 16:0b:66:61:af:3e:74:69:0a:bd:a7:54:b3:00:f0:fa:3d:fb: 83:b1:04:b4:0c:8b:68:cc:13:27:81:38:64:88:7c:98:d5:85: b8:e5:fa:27:16:a9:e9:c7:04:7d:42:24:82:b6:64:f8:e9:86: 6f:ec:5d:f7:df:05:cb:71:ab:3d:de:40:ae:79:a7:4e:3c:8c: d1:22:41:0e:11:b5:f1:25:a9:e1:17:76:45:4f:83:bb:b4:f8: aa:03:8e:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRERDExMTAvBgNVBAUTKDIxNkFEMUQ3NUE5M0UwMzdBRTk0RjZDOTE4OTZEMkQ1 ODJEOEZGNTQwHhcNMjUwNTEzMDMyODQ4WhcNMjUwNTIwMDMyODQ4WjAYMRYwFAYD VQQDEw02ODIyYmM3MS03NjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtM9/fuuhR0HRNV+lg+Z0blvUWPhpYaukl2dUPGOMzfCNJ3UwC6paXnViswef PwvDwYcCwiTawbeuO6ihb4z8k6rgFNU7Jh17BnY7FQOOpQ6PxblAyUtVdOAdUQ4u X5WFu4G3fBcrVvAVZ+eGC8M1a0EPJNQaUQS+LYe0x/VyfyX8oYe1DtM+4+/QJDpK m27XvhxKzLl0vKiK64NxCOsgy+3AYKCnBbBXW/3t/C1Om77W2gyGRdGArJN0ufri LCDovhjqr83ou6SXMONoyEj+tGHkoD4ALfqH0L/9PXWJjgROPgR24Drf/Qvsh0dG d2RfFzgmULGQ+33UpjWshh56NQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDa7lrzo DQecReGJ7OC9jGtUDKGCMB8GA1UdIwQYMBaAFCFq0ddak+A3rpT2yRiW0tWC2P9U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREREMS82OEMxRDQ5NjNC RDAxMUVFOEJBQzM1MUFDNEY5QUUwMi9JV3JSMTFxVDREZXVsUGJKR0piUzFZTFlf MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lXclIxMXFUNERldWxQYkpHSmJTMVlMWV8xUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REREMS82OEMxRDQ5NjNCRDAxMUVFOEJBQzM1MUFDNEY5QUUwMi9JV3JSMTFxVDRE ZXVsUGJKR0piUzFZTFlfMVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfpeTmNHTnSScD5F+qESnSVZ2KFT6VzcN5UTEVuyMxllnXikzGNl+Y NHkFj0HCdu+5yyKWtyCtQOXhp9dyVtVbRbxQX8qQ8gmhGVqDzh+DYnMbShUoEWRd GMPR/ocNlBBtJN9aZHSrV9a0ij0TtmPr0UN/tTPGkWZsoIt54otzQM7NgbWqOnjy J4ggXv0zhXkSnM9dbVZYeFU1G7MZujSrupgWC2Zhrz50aQq9p1SzAPD6PfuDsQS0 DItozBMngThkiHyY1YW45fonFqnpxwR9QiSCtmT46YZv7F333wXLcas93kCueadO PIzRIkEOEbXxJanhF3ZFT4O7tPiqA46s -----END CERTIFICATE-----Generated at Wed May 14 04:31:24 2025 by rpki-client