$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft File: IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft (raw, json) Hash identifier: ZA/gSD3lW3bFuh3OtPreGKTSnVdWrPkWiQyDM3aaoYk= Subject key identifier: F6:13:68:4D:66:83:A0:F3:CC:44:85:3A:8E:B4:36:95:74:1F:95:3A Authority key identifier: 23:3C:0D:3B:2A:75:C4:1A:B8:2E:5B:EB:70:DB:E2:E7:34:2D:66:1F Certificate issuer: /CN=A91FE26E/serialNumber=233C0D3B2A75C41AB82E5BEB70DBE2E7342D661F Certificate serial: 1CD0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft Manifest number: 1CBD Signing time: Mon 12 May 2025 16:07:57 +0000 Manifest this update: Mon 12 May 2025 16:07:56 +0000 Manifest next update: Mon 19 May 2025 16:07:56 +0000 Files and hashes: 1: IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl (hash: gM/HKuP8d8Q84vE9hozSyDpmuH/5HuP/4CE3wthxiXk=) 2: EB7012446FDE11E9AF945067C4F9AE02.roa (hash: 7u9f+gWjW4ewcVZaqyMD9ZqpjL5Hz8NvrMbvw9f5dXY=) 3: E8FF9A526FDE11E9AF945067C4F9AE02.roa (hash: RrfRQiaJQ/K/F0pEWCxhmnA6Eh04yX02RfUKJUyZudE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 16:07:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7376 (0x1cd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE26E, serialNumber=233C0D3B2A75C41AB82E5BEB70DBE2E7342D661F Validity Not Before: May 12 16:07:56 2025 GMT Not After : May 19 16:07:56 2025 GMT Subject: CN=68221cdc-2443 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:0f:26:c9:5b:67:de:d6:38:89:51:6b:09:81: 70:79:cc:09:5a:89:7c:18:5d:e6:39:f8:fc:8f:89: 08:af:77:28:f1:62:a4:f2:b1:33:e6:a8:70:a3:ed: b0:28:e8:9b:e8:34:f8:19:6a:16:ea:4d:cc:9a:5c: 4d:5e:63:d1:12:76:2d:8b:82:f3:1f:21:a9:52:f5: df:3a:9c:94:3b:6c:f6:74:3a:02:f0:8a:e3:f9:1a: a0:96:ee:a6:f8:8d:a3:d8:3c:fc:24:7c:ec:4d:aa: bd:59:8b:7c:10:08:78:12:82:79:71:31:f2:93:f9: f5:92:e1:a6:2e:54:a3:47:bc:8c:4d:a7:20:24:ee: 55:e7:28:92:34:f6:e3:78:92:c1:f7:ce:59:4c:1e: 1a:a5:5b:16:34:3a:b4:03:6a:35:a6:da:91:e4:1a: 17:5d:ef:6e:96:5b:dc:cc:7e:15:ae:36:50:81:26: d1:67:9f:a1:22:ea:56:9a:3c:60:c9:5e:ea:80:40: 97:c1:30:72:63:d2:fa:2f:ae:06:50:c1:4a:13:00: 03:76:9c:8b:23:17:59:95:dd:d5:2f:33:31:58:99: 16:f0:3a:85:f4:44:c1:a0:25:46:61:c6:7a:f2:57: 99:75:57:bc:76:fc:78:69:ef:c5:03:82:7d:cb:c4: a4:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:13:68:4D:66:83:A0:F3:CC:44:85:3A:8E:B4:36:95:74:1F:95:3A X509v3 Authority Key Identifier: keyid:23:3C:0D:3B:2A:75:C4:1A:B8:2E:5B:EB:70:DB:E2:E7:34:2D:66:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:d0:35:d5:7f:7e:a9:da:13:da:a5:97:5e:f1:5a:53:d7:5d: 09:63:db:24:19:08:57:f0:61:de:e2:36:96:ae:a8:86:f9:ef: 86:05:f8:eb:df:98:33:4e:9e:3a:f8:04:57:ba:01:b0:12:86: db:5e:01:50:f5:74:5f:0c:97:f9:40:b4:bf:77:bd:26:38:76: d3:e3:c0:fc:fd:bd:65:02:a3:c8:2a:3e:6f:ac:61:63:fb:d5: b9:fe:25:e4:8c:7b:ef:56:d8:4a:37:d6:ab:de:0b:d8:f8:73: d0:5b:37:a9:91:c6:3a:b8:ca:22:ea:c0:72:10:8b:9f:00:c7: f4:62:77:5e:24:12:0d:8d:6c:9f:15:60:bf:00:de:66:ab:83: 61:cb:eb:36:ee:bb:e2:dd:da:00:a0:cb:93:04:97:7f:0b:3a: 47:48:9d:db:55:3c:0b:96:7e:3a:9a:90:ab:16:36:01:2a:6c: 94:50:5e:22:9b:1a:5e:ac:33:7d:0c:a6:3f:74:01:34:37:77: 20:23:e8:70:cf:88:47:ab:7d:f4:47:49:4f:41:57:55:4b:e0: 89:95:2c:34:a5:55:28:73:16:56:6f:79:0e:0d:37:bc:db:34: d5:2d:13:2f:56:a1:d1:c4:91:9d:8e:91:50:c1:d1:3e:2f:e9: c9:9a:26:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHNAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkUyNkUxMTAvBgNVBAUTKDIzM0MwRDNCMkE3NUM0MUFCODJFNUJFQjcwREJFMkU3 MzQyRDY2MUYwHhcNMjUwNTEyMTYwNzU2WhcNMjUwNTE5MTYwNzU2WjAYMRYwFAYD VQQDEw02ODIyMWNkYy0yNDQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzQ8myVtn3tY4iVFrCYFwecwJWol8GF3mOfj8j4kIr3co8WKk8rEz5qhwo+2w KOib6DT4GWoW6k3MmlxNXmPREnYti4LzHyGpUvXfOpyUO2z2dDoC8Irj+Rqglu6m +I2j2Dz8JHzsTaq9WYt8EAh4EoJ5cTHyk/n1kuGmLlSjR7yMTacgJO5V5yiSNPbj eJLB985ZTB4apVsWNDq0A2o1ptqR5BoXXe9ullvczH4VrjZQgSbRZ5+hIupWmjxg yV7qgECXwTByY9L6L64GUMFKEwADdpyLIxdZld3VLzMxWJkW8DqF9ETBoCVGYcZ6 8leZdVe8dvx4ae/FA4J9y8SkUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPYTaE1m g6DzzESFOo60NpV0H5U6MB8GA1UdIwQYMBaAFCM8DTsqdcQauC5b63Db4uc0LWYf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTI2RS84N0I1Q0Q1MEM4 NUQxMUU2ODcwNTY5MjdDNEY5QUUwMi9JendOT3lwMXhCcTRMbHZyY052aTV6UXRa aDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l6d05PeXAxeEJxNExsdnJjTnZpNXpRdFpoOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTI2RS84N0I1Q0Q1MEM4NUQxMUU2ODcwNTY5MjdDNEY5QUUwMi9JendOT3lwMXhC cTRMbHZyY052aTV6UXRaaDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAP0DXVf36p2hPapZde8VpT110JY9skGQhX8GHe4jaWrqiG+e+GBfjr 35gzTp46+ARXugGwEobbXgFQ9XRfDJf5QLS/d70mOHbT48D8/b1lAqPIKj5vrGFj +9W5/iXkjHvvVthKN9ar3gvY+HPQWzepkcY6uMoi6sByEIufAMf0YndeJBINjWyf FWC/AN5mq4Nhy+s27rvi3doAoMuTBJd/CzpHSJ3bVTwLln46mpCrFjYBKmyUUF4i mxperDN9DKY/dAE0N3cgI+hwz4hHq330R0lPQVdVS+CJlSw0pVUocxZWb3kODTe8 2zTVLRMvVqHRxJGdjpFQwdE+L+nJmiZg -----END CERTIFICATE-----Generated at Wed May 14 10:31:36 2025 by rpki-client