$ rpki-client -vvf rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft File: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft (raw, json) Hash identifier: UkWdreXHb1TpAGc+GSDXuM04MhL+BkQrQKaEToyXgDs= Subject key identifier: 52:6D:AF:D8:AE:63:A5:BF:D7:74:34:B3:64:AF:E7:35:5C:B1:45:62 Authority key identifier: F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 Certificate issuer: /CN=A9156DB4/serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Certificate serial: 0382 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft Manifest number: 0376 Signing time: Sat 29 Mar 2025 01:07:51 +0000 Manifest this update: Sat 29 Mar 2025 01:07:51 +0000 Manifest next update: Sat 05 Apr 2025 01:07:51 +0000 Files and hashes: 1: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl (hash: qlE7bXo4nm2bo76w0CoGtiPsqQ79elOHvNIKCr77zPE=) 2: 688C6AC29D9D11EC958A216AC4F9AE02.roa (hash: rQCKwpVXSCN9Y75hhPwPDo9+AXfNNoLzfRi82A6bdSI=) 3: 854ACCD2DFEA11ECB7DF0A2EC4F9AE02.roa (hash: C6Z/IfRVQV8LxL1Oc2uDTt0509ENzUWPGHXpk7TwKNY=) 4: 695DB5289D9D11EC958A216AC4F9AE02.roa (hash: c9fr6KD/Ih6e5aCRy3Bruof+Va6iYKpCGv8u+/ETzK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 01:07:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 898 (0x382) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156DB4 Validity Not Before: Mar 29 01:07:51 2025 GMT Not After : Apr 5 01:07:51 2025 GMT Subject: CN=67e747e7-3954 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b0:e3:9c:de:1f:51:1a:fa:cd:62:89:15:14: 06:48:6a:8b:cb:23:f4:71:ba:c9:69:a9:ee:f6:18: f6:ce:c4:6f:61:95:b5:04:5d:d0:2d:03:db:00:52: ad:c8:e8:9b:b1:35:25:bf:73:91:c1:9a:64:0b:c5: 31:ec:02:ca:4e:23:81:6f:81:11:bb:31:8b:f1:39: dd:09:91:8a:1b:6a:d7:92:c4:30:47:8d:2a:70:59: 73:cc:e6:e0:a0:af:e0:f6:f1:1c:3f:72:cc:83:7f: 0b:8e:e9:24:71:dc:7d:c6:2a:c2:58:58:76:1c:bc: ac:2b:a6:a0:b9:34:3d:60:55:e4:61:d0:7e:24:12: 0e:64:90:97:bd:6b:b5:93:38:38:0a:31:cb:85:8b: dd:07:02:0a:97:cf:94:ad:09:bd:e8:ff:d0:d9:7f: ae:bd:e1:38:aa:39:7a:8c:4d:e7:f4:1b:16:84:69: 10:81:62:fc:f5:db:94:61:4f:e3:27:60:90:fe:ba: 62:d4:7a:22:19:14:20:42:0c:72:e3:80:dc:f7:28: e5:19:80:65:b0:69:52:d6:de:e7:4c:ae:90:e1:ab: ba:4e:84:9b:ac:08:ea:25:1c:b0:bf:5d:23:e9:01: 22:e6:97:9b:80:e8:cd:ef:96:62:19:7c:7a:76:ac: 60:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:6D:AF:D8:AE:63:A5:BF:D7:74:34:B3:64:AF:E7:35:5C:B1:45:62 X509v3 Authority Key Identifier: keyid:F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:0f:09:62:fe:ea:48:be:50:88:59:2e:41:f6:26:33:5d:a2: 5f:1e:d3:8e:e7:41:cf:8b:a4:a3:eb:ca:7d:bf:2d:a2:dd:40: 3e:3b:4d:d8:f4:26:27:f8:63:4f:65:fc:74:47:3d:f8:d4:ff: b5:dc:b1:5d:a3:d4:2c:13:0f:54:44:4e:fe:50:95:62:b6:82: 4a:ee:26:bb:b8:2b:8a:a9:5e:81:00:24:9c:da:c9:84:9a:91: d0:d8:e4:57:3e:e4:44:8c:97:57:7c:11:0f:b3:8b:25:b6:04: e7:b5:17:45:21:77:d5:8f:18:c2:89:e7:a4:33:e3:ef:ce:52: af:bc:30:b2:dc:c6:62:eb:2f:7f:f0:94:75:81:d8:af:a5:a3: aa:51:36:6f:61:95:84:32:a9:57:db:29:90:99:2c:c0:58:5b: 2b:81:ea:12:0c:71:2d:20:5e:aa:92:07:f7:d1:be:72:3b:63: 76:37:4c:82:8e:8c:0e:4f:8c:1f:71:f6:4e:07:7a:5c:1d:3e: c9:12:b4:55:f1:b5:35:78:1b:f6:6e:eb:a3:f9:e5:49:73:84: cf:bf:78:9a:40:bd:0a:47:4b:52:ba:a0:6e:ef:36:9f:d2:ea: a9:d3:36:23:fc:eb:4c:0a:1a:8b:69:bc:2c:ca:e8:fe:de:4b: b8:3e:ad:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTZEQjQxMTAvBgNVBAUTKEYyRDEyNkYxNDIwODZBMjZFM0M1ODRBNzBBQjNFNTI3 QjMwMzgxODIwHhcNMjUwMzI5MDEwNzUxWhcNMjUwNDA1MDEwNzUxWjAYMRYwFAYD VQQDEw02N2U3NDdlNy0zOTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0LDjnN4fURr6zWKJFRQGSGqLyyP0cbrJaanu9hj2zsRvYZW1BF3QLQPbAFKt yOibsTUlv3ORwZpkC8Ux7ALKTiOBb4ERuzGL8TndCZGKG2rXksQwR40qcFlzzObg oK/g9vEcP3LMg38Ljukkcdx9xirCWFh2HLysK6aguTQ9YFXkYdB+JBIOZJCXvWu1 kzg4CjHLhYvdBwIKl8+UrQm96P/Q2X+uveE4qjl6jE3n9BsWhGkQgWL89duUYU/j J2CQ/rpi1HoiGRQgQgxy44Dc9yjlGYBlsGlS1t7nTK6Q4au6ToSbrAjqJRywv10j 6QEi5pebgOjN75ZiGXx6dqxgLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFJtr9iu Y6W/13Q0s2Sv5zVcsUViMB8GA1UdIwQYMBaAFPLRJvFCCGom48WEpwqz5SezA4GC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NkRCNC9FODREQjk4QTlE OUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFpYmp4WVNuQ3JQbEo3TURn WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh0RW04VUlJYWlianhZU25DclBsSjdNRGdZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NkRCNC9FODREQjk4QTlEOUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFp Ymp4WVNuQ3JQbEo3TURnWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcDwli/upIvlCIWS5B9iYzXaJfHtOO50HPi6Sj68p9vy2i3UA+O03Y 9CYn+GNPZfx0Rz341P+13LFdo9QsEw9URE7+UJVitoJK7ia7uCuKqV6BACSc2smE mpHQ2ORXPuREjJdXfBEPs4sltgTntRdFIXfVjxjCieekM+PvzlKvvDCy3MZi6y9/ 8JR1gdivpaOqUTZvYZWEMqlX2ymQmSzAWFsrgeoSDHEtIF6qkgf30b5yO2N2N0yC jowOT4wfcfZOB3pcHT7JErRV8bU1eBv2buuj+eVJc4TPv3iaQL0KR0tSuqBu7zaf 0uqp0zYj/OtMChqLabwsyuj+3ku4Pq13 -----END CERTIFICATE-----Generated at Fri Apr 4 22:22:13 2025 by rpki-client