$ rpki-client -vvf rpki.apnic.net/member_repository/A9175300/5EFAD764F18D11E9AD75B860C4F9AE02/8qiUEKVLBHj2ArcxIAUVHClcc3k.mft File: 8qiUEKVLBHj2ArcxIAUVHClcc3k.mft (raw, json) Hash identifier: 4pxM3Emg/Dsow9k4JYR8IY2RmAWVluKB0fRM3bOz2HM= Subject key identifier: 3B:FB:E6:33:CB:C8:F7:CD:9C:FB:26:77:29:44:5D:C7:89:C8:15:B4 Authority key identifier: F2:A8:94:10:A5:4B:04:78:F6:02:B7:31:20:05:15:1C:29:5C:73:79 Certificate issuer: /CN=A9175300/serialNumber=F2A89410A54B0478F602B7312005151C295C7379 Certificate serial: 0C97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8qiUEKVLBHj2ArcxIAUVHClcc3k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175300/5EFAD764F18D11E9AD75B860C4F9AE02/8qiUEKVLBHj2ArcxIAUVHClcc3k.mft Manifest number: 0C90 Signing time: Mon 14 Apr 2025 18:05:47 +0000 Manifest this update: Mon 14 Apr 2025 18:05:47 +0000 Manifest next update: Mon 21 Apr 2025 18:05:47 +0000 Files and hashes: 1: 8qiUEKVLBHj2ArcxIAUVHClcc3k.crl (hash: QtCp3yW9of3f1dYVOxnF7PFMpnVYbb504UmvhqNixes=) 2: 68EB3B00F18E11E997528762C4F9AE02.roa (hash: ag4btEEr8nwGBlqow86nAvtb1JX6B7t93yhnFSFUrc4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175300/5EFAD764F18D11E9AD75B860C4F9AE02/8qiUEKVLBHj2ArcxIAUVHClcc3k.crl rsync://rpki.apnic.net/member_repository/A9175300/5EFAD764F18D11E9AD75B860C4F9AE02/8qiUEKVLBHj2ArcxIAUVHClcc3k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8qiUEKVLBHj2ArcxIAUVHClcc3k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Apr 2025 18:05:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3223 (0xc97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175300, serialNumber=F2A89410A54B0478F602B7312005151C295C7379 Validity Not Before: Apr 14 18:05:47 2025 GMT Not After : Apr 21 18:05:47 2025 GMT Subject: CN=67fd4e7b-fcc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ff:3b:15:1e:69:da:fe:0d:64:15:3e:b5:8e: ad:6b:bb:1b:b2:a6:e9:29:96:b5:54:4d:d8:1f:1b: c6:26:11:60:82:63:a8:1d:3b:ec:d1:5d:de:c3:15: eb:8f:d9:9d:e7:10:4d:45:a4:4b:bf:51:bd:63:f4: 2f:85:7f:3a:0a:74:dc:99:fe:a6:df:0a:ec:73:cc: 05:72:de:ad:19:bd:ac:45:7f:d6:c0:b2:1d:a0:36: 62:09:d9:36:82:08:93:3e:bd:c3:1f:76:11:04:ce: f8:5c:b0:40:7d:b7:b6:23:6b:36:57:14:63:77:8f: 6e:4a:a4:e3:ac:dc:77:cf:ed:86:a4:b9:9e:98:a6: 7b:38:6b:c2:b8:fc:45:b5:d6:05:b3:c5:87:c1:7d: d0:ec:47:a1:33:93:86:b8:e2:e3:f4:a0:85:f7:b8: a5:e9:57:60:b5:39:12:49:c6:21:7b:d7:92:13:7f: dd:1e:7d:fd:d7:49:2b:ce:c7:28:46:fb:44:32:3a: 1b:ad:86:5d:b7:e5:e1:31:f0:76:6b:95:2f:28:08: 6c:32:d5:df:47:63:93:c3:60:1a:a4:ca:ec:32:5c: 30:f8:eb:f9:80:cf:04:8d:ae:ad:fa:e8:70:1d:8a: 2a:a1:39:d8:bb:ea:44:da:75:ff:8b:8a:d8:de:d9: 0d:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:FB:E6:33:CB:C8:F7:CD:9C:FB:26:77:29:44:5D:C7:89:C8:15:B4 X509v3 Authority Key Identifier: keyid:F2:A8:94:10:A5:4B:04:78:F6:02:B7:31:20:05:15:1C:29:5C:73:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175300/5EFAD764F18D11E9AD75B860C4F9AE02/8qiUEKVLBHj2ArcxIAUVHClcc3k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8qiUEKVLBHj2ArcxIAUVHClcc3k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175300/5EFAD764F18D11E9AD75B860C4F9AE02/8qiUEKVLBHj2ArcxIAUVHClcc3k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:8b:95:33:d0:82:63:b3:0a:f2:c7:58:af:9d:15:fe:94:d5: c5:e3:07:5f:1e:ab:d3:9b:70:f3:8f:36:ab:53:ec:8a:40:f6: 12:18:6b:fd:2d:b2:8f:d0:7d:e4:b2:30:ba:49:a2:7f:d3:be: 09:ea:84:95:d1:5c:99:e0:fb:a9:dc:94:6c:24:6d:9d:40:b6: 9f:06:c5:f1:67:d3:36:41:79:e2:d1:86:38:6c:78:14:e3:59: 2d:1b:ee:98:f6:30:22:a2:5c:b2:b4:3d:10:d2:b8:48:ea:1c: 81:13:40:f1:f8:60:4f:b3:d8:e7:67:c4:e1:45:df:ec:1e:4b: ad:fb:6a:1e:ae:77:7d:95:32:93:52:11:e5:50:20:2a:dc:2d: 13:69:5b:6a:f1:db:28:56:39:f2:58:50:e4:17:b0:e9:7a:27: 1c:f1:9e:48:39:e5:1c:31:72:91:3d:33:34:8d:8b:bf:8c:a4: 25:b6:ee:44:23:21:90:94:81:87:37:23:40:73:c9:19:c8:77: 18:a5:b5:86:ef:65:e4:02:5c:c6:00:d5:c4:1f:26:a1:87:07: 76:41:22:91:7b:97:c6:fe:0a:36:82:70:11:e1:0e:01:2d:aa: ab:7f:b0:2a:e1:2b:ed:e9:41:da:5c:84:4e:18:ca:54:48:fd: ad:de:5b:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUzMDAxMTAvBgNVBAUTKEYyQTg5NDEwQTU0QjA0NzhGNjAyQjczMTIwMDUxNTFD Mjk1QzczNzkwHhcNMjUwNDE0MTgwNTQ3WhcNMjUwNDIxMTgwNTQ3WjAYMRYwFAYD VQQDEw02N2ZkNGU3Yi1mY2MwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4P87FR5p2v4NZBU+tY6ta7sbsqbpKZa1VE3YHxvGJhFggmOoHTvs0V3ewxXr j9md5xBNRaRLv1G9Y/QvhX86CnTcmf6m3wrsc8wFct6tGb2sRX/WwLIdoDZiCdk2 ggiTPr3DH3YRBM74XLBAfbe2I2s2VxRjd49uSqTjrNx3z+2GpLmemKZ7OGvCuPxF tdYFs8WHwX3Q7EehM5OGuOLj9KCF97il6VdgtTkSScYhe9eSE3/dHn3910krzsco RvtEMjobrYZdt+XhMfB2a5UvKAhsMtXfR2OTw2AapMrsMlww+Ov5gM8Eja6t+uhw HYoqoTnYu+pE2nX/i4rY3tkNGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDv75jPL yPfNnPsmdylEXceJyBW0MB8GA1UdIwQYMBaAFPKolBClSwR49gK3MSAFFRwpXHN5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTMwMC81RUZBRDc2NEYx OEQxMUU5QUQ3NUI4NjBDNEY5QUUwMi84cWlVRUtWTEJIajJBcmN4SUFVVkhDbGNj M2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhxaVVFS1ZMQkhqMkFyY3hJQVVWSENsY2Mzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTMwMC81RUZBRDc2NEYxOEQxMUU5QUQ3NUI4NjBDNEY5QUUwMi84cWlVRUtWTEJI ajJBcmN4SUFVVkhDbGNjM2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1i5Uz0IJjswryx1ivnRX+lNXF4wdfHqvTm3DzjzarU+yKQPYSGGv9 LbKP0H3ksjC6SaJ/074J6oSV0VyZ4Pup3JRsJG2dQLafBsXxZ9M2QXni0YY4bHgU 41ktG+6Y9jAiolyytD0Q0rhI6hyBE0Dx+GBPs9jnZ8ThRd/sHkut+2oernd9lTKT UhHlUCAq3C0TaVtq8dsoVjnyWFDkF7Dpeicc8Z5IOeUcMXKRPTM0jYu/jKQltu5E IyGQlIGHNyNAc8kZyHcYpbWG72XkAlzGANXEHyahhwd2QSKRe5fG/go2gnAR4Q4B Laqrf7Aq4Svt6UHaXIROGMpUSP2t3lts -----END CERTIFICATE-----Generated at Tue Apr 15 12:01:57 2025 by rpki-client