$ rpki-client -vvf rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft File: U8Dn8GiqHvADoL7ipdUtvInc37g.mft (raw, json) Hash identifier: VogK4nbiMigfNTZpMj1YR0/wKAPb/z5HbbzVsjcpc88= Subject key identifier: 9D:2D:ED:5D:95:90:F6:E7:8A:23:64:31:C5:E6:87:C9:65:42:B9:33 Authority key identifier: 53:C0:E7:F0:68:AA:1E:F0:03:A0:BE:E2:A5:D5:2D:BC:89:DC:DF:B8 Certificate issuer: /CN=A91109A3/serialNumber=53C0E7F068AA1EF003A0BEE2A5D52DBC89DCDFB8 Certificate serial: 0108 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft Manifest number: 0102 Signing time: Thu 03 Apr 2025 04:22:08 +0000 Manifest this update: Thu 03 Apr 2025 04:22:07 +0000 Manifest next update: Thu 10 Apr 2025 04:22:07 +0000 Files and hashes: 1: U8Dn8GiqHvADoL7ipdUtvInc37g.crl (hash: J/bgpNRFXYeOW/f6sOzuU6vVbVXh6E4miydG0Sx4SHk=) 2: FEB0698C941C11EE89E27567C4F9AE02.roa (hash: L26fzptytT9bxS3tMFpfzEmv3OkfRWvu4Ly32GIlRg8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.crl rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 04:22:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 264 (0x108) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91109A3 Validity Not Before: Apr 3 04:22:07 2025 GMT Not After : Apr 10 04:22:07 2025 GMT Subject: CN=67ee0cf0-6f4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:c2:67:89:3f:97:31:5d:a7:03:8c:5c:35:cf: af:03:0d:36:01:a3:2d:80:64:4e:de:64:63:0b:fe: f9:7e:5b:4e:df:f4:94:e6:56:ca:73:e3:45:99:37: 96:3d:fb:ec:f2:e1:17:ca:a4:1b:9e:cb:14:0c:77: 44:7c:42:3f:1e:c8:c2:da:db:a3:50:63:2c:e6:27: bf:44:35:c7:bd:da:48:84:ed:b1:60:91:c7:13:76: bc:4b:04:87:34:aa:e1:83:81:b4:47:b2:0b:67:7b: 81:ec:e3:62:7c:40:4c:a7:47:22:8f:47:e5:8e:e0: 91:26:c7:82:eb:77:1a:d0:c0:30:09:aa:15:db:77: 64:d6:ad:ee:12:a1:c8:0a:b7:51:02:7e:69:b6:e9: f4:14:f8:c9:0f:07:d0:c1:d7:f9:92:08:59:fa:36: 39:ad:d5:13:44:39:26:7c:5e:1f:79:7e:40:96:61: cf:79:ad:3f:f5:e0:97:71:42:f3:53:a4:b9:2a:70: dc:57:24:81:30:e4:21:00:bf:97:ca:a2:0a:b7:2f: 51:04:df:53:64:53:7f:93:e4:1f:2a:00:b7:dc:20: c7:b7:2f:73:4d:97:6e:ac:52:ff:68:31:5c:82:34: 9b:7d:c5:5b:ba:72:1c:4b:0f:69:2a:98:6e:b9:bb: 11:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:2D:ED:5D:95:90:F6:E7:8A:23:64:31:C5:E6:87:C9:65:42:B9:33 X509v3 Authority Key Identifier: keyid:53:C0:E7:F0:68:AA:1E:F0:03:A0:BE:E2:A5:D5:2D:BC:89:DC:DF:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:f0:0f:2b:ea:99:6e:c3:82:ed:49:04:7c:92:fb:9b:5a:4b: 5f:4e:ed:f2:d7:e2:c7:08:85:5a:64:8c:6f:83:69:2a:07:fd: a8:f6:52:01:58:1c:78:1a:5f:7d:12:f2:59:37:9c:d0:bd:6f: 9a:ce:dc:27:62:92:9f:32:64:65:29:16:a0:8c:16:47:4b:63: 98:32:91:38:21:10:b5:a3:00:c3:62:22:a9:99:6a:bf:9a:b2: 52:7b:2f:50:a9:53:f5:9a:e1:2d:74:39:4a:34:00:15:2b:a8: 67:07:09:2e:c4:39:f6:f6:78:bc:00:ca:7a:42:d2:2b:ed:7f: f2:c7:8c:aa:92:b3:82:97:49:d4:be:c6:bd:c0:75:b9:cf:af: eb:a1:2d:25:63:c0:29:1a:3e:d3:b2:b0:5a:98:4d:82:35:da: f5:10:1c:6c:c7:bb:d1:fb:ed:39:e4:28:79:ce:03:a9:08:b0: 73:5d:f0:f2:0c:f3:b8:79:6a:b8:3c:c4:4d:05:72:77:66:76: ef:85:bb:ca:ea:d5:fd:79:e2:2c:50:4a:22:98:3b:a0:99:7f: 4c:2f:5b:d6:4d:1e:9d:39:87:a5:8f:92:b4:06:0f:89:33:6d: 4a:1f:f9:3a:40:ff:0e:1f:cc:b0:f0:9a:f9:39:e0:73:51:49: 87:df:ee:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA5QTMxMTAvBgNVBAUTKDUzQzBFN0YwNjhBQTFFRjAwM0EwQkVFMkE1RDUyREJD ODlEQ0RGQjgwHhcNMjUwNDAzMDQyMjA3WhcNMjUwNDEwMDQyMjA3WjAYMRYwFAYD VQQDEw02N2VlMGNmMC02ZjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6cJniT+XMV2nA4xcNc+vAw02AaMtgGRO3mRjC/75fltO3/SU5lbKc+NFmTeW Pfvs8uEXyqQbnssUDHdEfEI/HsjC2tujUGMs5ie/RDXHvdpIhO2xYJHHE3a8SwSH NKrhg4G0R7ILZ3uB7ONifEBMp0cij0fljuCRJseC63ca0MAwCaoV23dk1q3uEqHI CrdRAn5ptun0FPjJDwfQwdf5kghZ+jY5rdUTRDkmfF4feX5AlmHPea0/9eCXcULz U6S5KnDcVySBMOQhAL+XyqIKty9RBN9TZFN/k+QfKgC33CDHty9zTZdurFL/aDFc gjSbfcVbunIcSw9pKphuubsR6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ0t7V2V kPbniiNkMcXmh8llQrkzMB8GA1UdIwQYMBaAFFPA5/Boqh7wA6C+4qXVLbyJ3N+4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDlBMy80M0ZCNjJGQThG RTgxMUVFOTJGNUM3NkFDNEY5QUUwMi9VOERuOEdpcUh2QURvTDdpcGRVdHZJbmMz N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4RG44R2lxSHZBRG9MN2lwZFV0dkluYzM3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDlBMy80M0ZCNjJGQThGRTgxMUVFOTJGNUM3NkFDNEY5QUUwMi9VOERuOEdpcUh2 QURvTDdpcGRVdHZJbmMzN2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQ8A8r6pluw4LtSQR8kvubWktfTu3y1+LHCIVaZIxvg2kqB/2o9lIB WBx4Gl99EvJZN5zQvW+aztwnYpKfMmRlKRagjBZHS2OYMpE4IRC1owDDYiKpmWq/ mrJSey9QqVP1muEtdDlKNAAVK6hnBwkuxDn29ni8AMp6QtIr7X/yx4yqkrOCl0nU vsa9wHW5z6/roS0lY8ApGj7TsrBamE2CNdr1EBxsx7vR++055Ch5zgOpCLBzXfDy DPO4eWq4PMRNBXJ3ZnbvhbvK6tX9eeIsUEoimDugmX9ML1vWTR6dOYelj5K0Bg+J M21KH/k6QP8OH8yw8Jr5OeBzUUmH3+4V -----END CERTIFICATE-----Generated at Fri Apr 4 22:13:35 2025 by rpki-client