$ rpki-client -vvf rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft File: K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft (raw, json) Hash identifier: qcjQZZ8jj/olZ4kU/9f388nkByyh9V8DHy1KetLQXZ8= Subject key identifier: 52:03:2D:22:EF:8B:56:A0:CD:88:D1:63:6C:A3:16:66:AE:7B:31:A2 Authority key identifier: 2B:CA:CF:61:65:B5:87:40:59:0E:59:71:84:33:D8:18:3F:F9:46:6D Certificate issuer: /CN=A9144DEA/serialNumber=2BCACF6165B58740590E59718433D8183FF9466D Certificate serial: 83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8rPYWW1h0BZDllxhDPYGD_5Rm0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft Manifest number: 81 Signing time: Thu 17 Apr 2025 05:25:22 +0000 Manifest this update: Thu 17 Apr 2025 05:25:21 +0000 Manifest next update: Thu 24 Apr 2025 05:25:21 +0000 Files and hashes: 1: K8rPYWW1h0BZDllxhDPYGD_5Rm0.crl (hash: GkcUW/TayI40qzHioyiyMsfpcQ15b3saAhYpH936Vu0=) 2: 7490D0DE5AE111EFAD7EB82CC4F9AE02.roa (hash: 2zLHgEDWGwo9zlyqNnj3rIHawpIWGW43p4pSnf/kapk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.crl rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8rPYWW1h0BZDllxhDPYGD_5Rm0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 05:25:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 131 (0x83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144DEA, serialNumber=2BCACF6165B58740590E59718433D8183FF9466D Validity Not Before: Apr 17 05:25:21 2025 GMT Not After : Apr 24 05:25:21 2025 GMT Subject: CN=680090c2-23e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:cf:2a:b3:1a:34:15:82:4b:2a:0f:f4:9a:4b: c8:80:8c:22:90:aa:58:eb:a4:c0:72:5e:48:67:aa: 64:ee:20:1f:2b:27:19:db:64:12:b6:d6:d2:ae:94: a9:7a:7b:f5:80:2f:1b:28:0d:65:27:2e:90:7d:4e: 3c:91:25:0f:9b:26:b8:21:4d:b2:d1:a0:e1:d3:01: 05:90:d7:ae:a2:4d:bb:b8:fe:37:c3:9e:77:da:48: 79:33:ca:24:7f:29:b3:20:eb:63:2e:6d:4f:a1:b0: 77:b9:59:52:63:bc:27:b5:71:88:34:8c:03:e3:01: ac:28:3f:d3:b2:92:59:48:2a:b2:61:ee:64:5a:00: 48:be:4f:50:47:bc:54:33:b4:73:f1:1f:a2:98:a2: 3a:a1:2e:10:70:0b:dd:8a:71:92:6e:6b:fa:da:4b: 6e:91:c4:cd:7c:ee:f5:06:5b:5f:9a:8c:44:07:95: fd:f0:64:e7:24:06:63:22:a3:e4:56:d8:78:52:61: 4f:6a:63:cf:b3:92:e7:77:68:3a:9b:8f:ec:05:b3: fb:6b:d8:89:ac:b0:fe:ff:14:26:29:5b:fb:ca:90: 0b:86:65:a0:f5:d1:5e:58:11:71:c7:fe:fa:79:75: 56:43:94:31:d0:b2:81:9e:ec:b4:7b:93:e6:61:ec: 3c:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:03:2D:22:EF:8B:56:A0:CD:88:D1:63:6C:A3:16:66:AE:7B:31:A2 X509v3 Authority Key Identifier: keyid:2B:CA:CF:61:65:B5:87:40:59:0E:59:71:84:33:D8:18:3F:F9:46:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8rPYWW1h0BZDllxhDPYGD_5Rm0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:4b:f4:ad:68:cd:06:5f:d9:0f:ba:35:79:c1:e2:1a:36:89: 2d:70:fa:06:96:45:df:85:2c:01:6a:84:f1:48:f1:76:ab:4a: f6:fd:81:11:14:4c:fd:48:0b:5e:46:12:15:80:d5:0e:22:30: 2b:51:67:d9:73:81:02:43:0d:19:d7:51:b6:76:18:43:b0:e5: dd:be:f3:ce:a1:8e:0e:9d:84:29:66:17:d6:3b:65:79:e6:be: 3c:d5:32:80:e3:e5:2a:b8:39:2a:cf:7a:a9:c2:38:7d:8e:57: 43:6b:f4:7f:be:4d:e9:6e:bb:d7:11:0c:4d:6b:c1:6f:0d:2a: 3f:f3:b8:fd:4f:ce:3e:39:33:16:6a:aa:e4:55:ed:99:3a:54: bb:64:1e:0e:44:a3:84:ab:04:8c:ec:97:e5:84:9f:9d:52:64: 44:98:87:9d:6c:6f:7c:27:05:4a:a0:cf:0f:b1:ce:53:da:d0: ed:48:58:83:53:6d:51:44:ee:a5:2c:7f:43:83:4f:67:2d:51: 9d:92:36:20:5d:9d:9a:21:ba:ac:64:7f:17:7c:36:97:fc:38: 2c:56:96:73:f3:0f:3e:5a:35:96:08:0e:2e:1f:10:5a:10:c8: ec:cf:51:a7:99:7c:f7:e3:48:21:de:86:43:3d:5d:98:2f:32: 67:b1:cf:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRERUExMTAvBgNVBAUTKDJCQ0FDRjYxNjVCNTg3NDA1OTBFNTk3MTg0MzNEODE4 M0ZGOTQ2NkQwHhcNMjUwNDE3MDUyNTIxWhcNMjUwNDI0MDUyNTIxWjAYMRYwFAYD VQQDEw02ODAwOTBjMi0yM2UyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwc8qsxo0FYJLKg/0mkvIgIwikKpY66TAcl5IZ6pk7iAfKycZ22QSttbSrpSp env1gC8bKA1lJy6QfU48kSUPmya4IU2y0aDh0wEFkNeuok27uP43w5532kh5M8ok fymzIOtjLm1PobB3uVlSY7wntXGINIwD4wGsKD/TspJZSCqyYe5kWgBIvk9QR7xU M7Rz8R+imKI6oS4QcAvdinGSbmv62ktukcTNfO71BltfmoxEB5X98GTnJAZjIqPk Vth4UmFPamPPs5Lnd2g6m4/sBbP7a9iJrLD+/xQmKVv7ypALhmWg9dFeWBFxx/76 eXVWQ5Qx0LKBnuy0e5PmYew8MQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFIDLSLv i1agzYjRY2yjFmauezGiMB8GA1UdIwQYMBaAFCvKz2FltYdAWQ5ZcYQz2Bg/+UZt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NERFQS8zQkY1RjJFMDVB RTExMUVGQTc1NjNDMkNDNEY5QUUwMi9LOHJQWVdXMWgwQlpEbGx4aERQWUdEXzVS bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s4clBZV1cxaDBCWkRsbHhoRFBZR0RfNVJtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NERFQS8zQkY1RjJFMDVBRTExMUVGQTc1NjNDMkNDNEY5QUUwMi9LOHJQWVdXMWgw QlpEbGx4aERQWUdEXzVSbTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuS/StaM0GX9kPujV5weIaNoktcPoGlkXfhSwBaoTxSPF2q0r2/YER FEz9SAteRhIVgNUOIjArUWfZc4ECQw0Z11G2dhhDsOXdvvPOoY4OnYQpZhfWO2V5 5r481TKA4+UquDkqz3qpwjh9jldDa/R/vk3pbrvXEQxNa8FvDSo/87j9T84+OTMW aqrkVe2ZOlS7ZB4ORKOEqwSM7JflhJ+dUmREmIedbG98JwVKoM8Psc5T2tDtSFiD U21RRO6lLH9Dg09nLVGdkjYgXZ2aIbqsZH8XfDaX/DgsVpZz8w8+WjWWCA4uHxBa EMjsz1GnmXz340gh3oZDPV2YLzJnsc+K -----END CERTIFICATE-----Generated at Fri Apr 18 00:42:49 2025 by rpki-client