$ rpki-client -vvf rpki.apnic.net/member_repository/A91243F8/BA6481F616D111ED88248428C4F9AE02/8pKKSxDdhHSm3QrGXNE5TwIVXN4.mft File: 8pKKSxDdhHSm3QrGXNE5TwIVXN4.mft (raw, json) Hash identifier: wbrBl1Q6PZJSUI0Fk55p/2S3KHR6b1oA9s6SjLgq7EM= Subject key identifier: CB:5A:70:6E:9D:B3:15:46:8F:A2:63:18:BF:5C:BD:AF:52:8B:76:7B Authority key identifier: F2:92:8A:4B:10:DD:84:74:A6:DD:0A:C6:5C:D1:39:4F:02:15:5C:DE Certificate issuer: /CN=A91243F8/serialNumber=F2928A4B10DD8474A6DD0AC65CD1394F02155CDE Certificate serial: 0240 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8pKKSxDdhHSm3QrGXNE5TwIVXN4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91243F8/BA6481F616D111ED88248428C4F9AE02/8pKKSxDdhHSm3QrGXNE5TwIVXN4.mft Manifest number: 0240 Signing time: Mon 07 Apr 2025 01:28:26 +0000 Manifest this update: Mon 07 Apr 2025 01:28:26 +0000 Manifest next update: Mon 14 Apr 2025 01:28:26 +0000 Files and hashes: 1: 8pKKSxDdhHSm3QrGXNE5TwIVXN4.crl (hash: BXcdQDPWgjAD2lLDyrNXcJ3UNp58/4apx1EdnqtRX/0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91243F8/BA6481F616D111ED88248428C4F9AE02/8pKKSxDdhHSm3QrGXNE5TwIVXN4.crl rsync://rpki.apnic.net/member_repository/A91243F8/BA6481F616D111ED88248428C4F9AE02/8pKKSxDdhHSm3QrGXNE5TwIVXN4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8pKKSxDdhHSm3QrGXNE5TwIVXN4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 01:28:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 576 (0x240) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91243F8 Validity Not Before: Apr 7 01:28:26 2025 GMT Not After : Apr 14 01:28:26 2025 GMT Subject: CN=67f32a3a-9152 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:15:85:cf:03:cc:e9:e6:d5:3b:7b:b2:c7:9d: dc:8e:6a:8c:5b:62:62:7f:63:3a:c3:82:84:6b:96: 22:73:d3:cb:72:1a:f3:a7:15:01:ff:fc:0a:ac:35: 7d:2f:fd:bd:48:b1:ce:50:8c:cb:b2:dc:68:ae:84: c5:69:af:e9:c3:0d:39:c7:36:95:95:13:25:47:47: 57:14:cf:95:d9:be:b0:ab:62:5d:21:50:8d:96:03: a1:26:44:a3:21:56:d1:df:5f:f0:b9:7f:56:1b:2c: 91:10:6f:d8:ae:08:db:4f:9d:54:15:d3:a0:d4:d5: 67:33:c7:28:f4:f0:b0:fb:01:8b:a4:1f:88:17:0d: a1:c6:67:31:a3:a1:14:66:86:b4:a1:79:4a:11:e9: 57:05:22:9c:39:61:86:42:21:e6:a7:d3:ba:98:99: 77:88:1f:37:d8:ba:67:7c:f1:cf:fe:04:f7:c7:1b: 80:be:ff:f2:31:ba:22:f8:64:29:33:23:2a:b6:17: 58:60:05:bb:1d:07:2f:e0:65:b0:5c:b7:db:8b:db: 88:2d:38:d1:35:5d:bf:78:a6:05:c5:84:80:4c:36: ee:8e:37:a2:36:d6:be:9d:d3:96:19:d2:c2:8f:fc: ee:cc:7d:ba:e8:f1:cc:01:20:35:3c:0e:f2:75:09: ab:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:5A:70:6E:9D:B3:15:46:8F:A2:63:18:BF:5C:BD:AF:52:8B:76:7B X509v3 Authority Key Identifier: keyid:F2:92:8A:4B:10:DD:84:74:A6:DD:0A:C6:5C:D1:39:4F:02:15:5C:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91243F8/BA6481F616D111ED88248428C4F9AE02/8pKKSxDdhHSm3QrGXNE5TwIVXN4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8pKKSxDdhHSm3QrGXNE5TwIVXN4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91243F8/BA6481F616D111ED88248428C4F9AE02/8pKKSxDdhHSm3QrGXNE5TwIVXN4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:54:b0:9a:f0:dc:e9:f2:b3:12:99:a7:94:78:ec:ef:28:36: 14:2a:74:29:6f:85:e4:13:dc:4d:07:f8:1d:81:ec:88:a0:25: 32:e9:1b:8b:52:99:84:2c:a0:a5:ed:28:f5:86:05:8e:8d:05: fc:be:2a:18:ef:fd:c4:8e:91:49:d4:f0:59:c1:28:2f:d7:8d: 70:54:d3:0d:1e:0e:43:3a:ef:cd:b2:fe:bb:0d:61:e6:f6:47: f5:6d:b6:b1:12:f3:28:3c:6f:09:3f:9f:b5:38:96:5c:59:82: b3:d6:3a:05:8a:64:f8:99:4e:8b:00:75:0f:39:34:5f:16:03: 93:0e:61:ce:bf:8a:a8:f1:8c:84:79:e9:81:40:ab:cb:c3:ab: 05:16:fd:c9:da:11:3e:e5:88:bc:7e:85:0e:2b:f3:ce:de:28: ae:7b:f3:a7:cc:65:c1:da:f3:75:97:2a:ec:04:d4:a0:6a:e0: 6d:ca:b2:14:85:62:07:2b:d7:bd:a0:6a:02:16:75:5c:2a:67: 5f:8a:a1:e2:c0:9d:b0:13:b6:c6:2b:58:74:cf:d0:dd:f4:de: 90:45:48:be:3a:7b:1c:4c:f5:44:0a:65:64:8e:e1:91:d5:88: b8:8d:7e:c6:30:47:4a:95:96:9d:17:9e:7c:e2:b2:cc:e5:ee: 2b:59:b3:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQzRjgxMTAvBgNVBAUTKEYyOTI4QTRCMTBERDg0NzRBNkREMEFDNjVDRDEzOTRG MDIxNTVDREUwHhcNMjUwNDA3MDEyODI2WhcNMjUwNDE0MDEyODI2WjAYMRYwFAYD VQQDEw02N2YzMmEzYS05MTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwBWFzwPM6ebVO3uyx53cjmqMW2Jif2M6w4KEa5Yic9PLchrzpxUB//wKrDV9 L/29SLHOUIzLstxoroTFaa/pww05xzaVlRMlR0dXFM+V2b6wq2JdIVCNlgOhJkSj IVbR31/wuX9WGyyREG/YrgjbT51UFdOg1NVnM8co9PCw+wGLpB+IFw2hxmcxo6EU Zoa0oXlKEelXBSKcOWGGQiHmp9O6mJl3iB832LpnfPHP/gT3xxuAvv/yMboi+GQp MyMqthdYYAW7HQcv4GWwXLfbi9uILTjRNV2/eKYFxYSATDbujjeiNta+ndOWGdLC j/zuzH266PHMASA1PA7ydQmrzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMtacG6d sxVGj6JjGL9cva9Si3Z7MB8GA1UdIwQYMBaAFPKSiksQ3YR0pt0KxlzROU8CFVze MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDNGOC9CQTY0ODFGNjE2 RDExMUVEODgyNDg0MjhDNEY5QUUwMi84cEtLU3hEZGhIU20zUXJHWE5FNVR3SVZY TjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhwS0tTeERkaEhTbTNRckdYTkU1VHdJVlhONC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDNGOC9CQTY0ODFGNjE2RDExMUVEODgyNDg0MjhDNEY5QUUwMi84cEtLU3hEZGhI U20zUXJHWE5FNVR3SVZYTjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASVLCa8Nzp8rMSmaeUeOzvKDYUKnQpb4XkE9xNB/gdgeyIoCUy6RuL UpmELKCl7Sj1hgWOjQX8vioY7/3EjpFJ1PBZwSgv141wVNMNHg5DOu/Nsv67DWHm 9kf1bbaxEvMoPG8JP5+1OJZcWYKz1joFimT4mU6LAHUPOTRfFgOTDmHOv4qo8YyE eemBQKvLw6sFFv3J2hE+5Yi8foUOK/PO3iiue/OnzGXB2vN1lyrsBNSgauBtyrIU hWIHK9e9oGoCFnVcKmdfiqHiwJ2wE7bGK1h0z9Dd9N6QRUi+OnscTPVECmVkjuGR 1Yi4jX7GMEdKlZadF5584rLM5e4rWbO6 -----END CERTIFICATE-----Generated at Mon Apr 7 04:30:04 2025 by rpki-client