$ rpki-client -vvf rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.mft File: Vj8ylI68GzkPMqCqPzYUeFr858I.mft (raw, json) Hash identifier: 74CkvVXMBQeJ04bO+T9GUvIsvwjQsxSGIQtxLO3H6f0= Subject key identifier: 8F:56:31:78:70:DB:26:46:EC:56:B5:8C:91:DE:73:0C:F1:79:AB:4D Authority key identifier: 56:3F:32:94:8E:BC:1B:39:0F:32:A0:AA:3F:36:14:78:5A:FC:E7:C2 Certificate issuer: /CN=A917AC8C/serialNumber=563F32948EBC1B390F32A0AA3F3614785AFCE7C2 Certificate serial: 02B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vj8ylI68GzkPMqCqPzYUeFr858I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.mft Manifest number: 02B2 Signing time: Sat 05 Apr 2025 01:36:11 +0000 Manifest this update: Sat 05 Apr 2025 01:36:11 +0000 Manifest next update: Sat 12 Apr 2025 01:36:11 +0000 Files and hashes: 1: Vj8ylI68GzkPMqCqPzYUeFr858I.crl (hash: RxmSuGf/GHQipeMHm1AaZogFzACfhx8zMd4AZRfx7nI=) 2: EA5EB99CEBBD11ECB3DAFE39C4F9AE02.roa (hash: +bhmDLl/B0RomjsU7MW7xevtY9GqNCpc/xDljwJVPAo=) 3: EB756434EBBD11ECB3DAFE39C4F9AE02.roa (hash: OqHjS/HS8e7S5i/skx8l2IsJyhS/M18aAyJkpcYv//Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.crl rsync://rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vj8ylI68GzkPMqCqPzYUeFr858I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:36:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 696 (0x2b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AC8C Validity Not Before: Apr 5 01:36:11 2025 GMT Not After : Apr 12 01:36:11 2025 GMT Subject: CN=67f0890b-095d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:93:19:bc:a6:64:e5:39:d3:af:9b:2d:03:9f: 0e:78:fa:6a:96:b2:cf:eb:ae:17:df:6d:9c:cb:63: 17:62:47:63:2b:52:4f:86:17:b4:f1:37:b9:c7:b4: 2b:c4:c2:9c:f4:a0:ef:5e:e6:7f:ea:19:63:31:b1: c8:f2:67:31:26:9a:bc:98:f5:c0:4f:4f:1f:34:a9: 89:05:62:22:59:d2:67:cc:b6:de:9c:6b:3a:cb:f6: 99:53:2a:fe:40:f9:37:d1:48:50:61:32:69:78:66: 4e:0a:9c:d5:6a:34:1a:22:4b:1c:7a:33:85:48:7f: 88:8a:e9:ec:ce:8e:0e:55:71:a8:a8:73:44:c2:2d: ae:2b:2c:0c:33:22:60:ea:c1:9e:20:d9:49:6f:ee: 80:66:76:53:d7:ac:93:74:8f:19:de:c7:cd:4a:ae: f1:9a:68:2d:66:3a:44:d9:ec:08:4d:36:f5:ce:30: b5:82:76:2c:2f:d1:58:80:4c:fe:06:d6:71:0f:62: 7c:19:87:1b:d0:29:69:b5:5d:fb:f9:9c:f0:c5:ac: 6c:fa:cc:39:f1:e5:4d:69:31:de:a6:56:f9:e6:16: 36:35:0e:14:f2:bc:0b:83:f2:ce:07:c7:ee:df:18: 9a:54:69:de:6f:30:ae:ba:67:4d:b5:21:73:12:f0: fe:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:56:31:78:70:DB:26:46:EC:56:B5:8C:91:DE:73:0C:F1:79:AB:4D X509v3 Authority Key Identifier: keyid:56:3F:32:94:8E:BC:1B:39:0F:32:A0:AA:3F:36:14:78:5A:FC:E7:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vj8ylI68GzkPMqCqPzYUeFr858I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:bc:02:b5:c7:b6:88:31:9f:5e:89:da:b4:b8:ba:2d:d3:dd: 2e:2e:05:bb:6b:5c:3f:e1:f1:26:ab:77:ce:59:a2:d6:24:41: 0e:f4:d9:d8:67:57:68:2c:46:0c:b2:cd:14:23:29:57:5e:97: bb:0b:f7:4a:ae:fe:dc:f6:9a:cb:15:7e:f5:21:1d:83:37:3e: f5:f5:ae:4a:89:67:1f:15:55:8a:5b:81:ed:f7:61:9e:64:ce: 59:ea:42:44:f9:29:57:2a:b3:fc:ca:6c:dc:c9:b3:c3:01:86: 4a:a9:b5:f1:97:29:db:33:0c:a5:bb:fb:85:c7:0e:25:cf:d4: cb:eb:ac:7e:0a:ec:00:ec:86:cf:ea:49:10:c2:2b:5c:68:dc: bc:57:c9:9c:00:af:1a:c6:1e:54:46:a6:2c:29:0e:e1:90:ac: 0c:60:0e:c0:09:85:32:a8:66:3f:cc:c2:30:cb:63:06:37:b4: bd:c5:13:fe:09:44:b0:9e:7a:3e:63:35:30:c1:ed:96:0b:fc: 7a:8d:df:09:3e:97:d8:bf:05:60:44:24:50:1e:ba:11:df:63: ec:a5:6d:4d:95:b6:0b:ca:23:c5:54:e0:28:2e:93:3a:a0:a2: 6a:e1:ca:7d:5a:28:c1:79:8e:bb:50:41:47:ad:65:44:3b:fe: 1a:3e:79:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FDOEMxMTAvBgNVBAUTKDU2M0YzMjk0OEVCQzFCMzkwRjMyQTBBQTNGMzYxNDc4 NUFGQ0U3QzIwHhcNMjUwNDA1MDEzNjExWhcNMjUwNDEyMDEzNjExWjAYMRYwFAYD VQQDEw02N2YwODkwYi0wOTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3JMZvKZk5TnTr5stA58OePpqlrLP664X322cy2MXYkdjK1JPhhe08Te5x7Qr xMKc9KDvXuZ/6hljMbHI8mcxJpq8mPXAT08fNKmJBWIiWdJnzLbenGs6y/aZUyr+ QPk30UhQYTJpeGZOCpzVajQaIkscejOFSH+Iiunszo4OVXGoqHNEwi2uKywMMyJg 6sGeINlJb+6AZnZT16yTdI8Z3sfNSq7xmmgtZjpE2ewITTb1zjC1gnYsL9FYgEz+ BtZxD2J8GYcb0ClptV37+Zzwxaxs+sw58eVNaTHeplb55hY2NQ4U8rwLg/LOB8fu 3xiaVGnebzCuumdNtSFzEvD+TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI9WMXhw 2yZG7Fa1jJHecwzxeatNMB8GA1UdIwQYMBaAFFY/MpSOvBs5DzKgqj82FHha/OfC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUM4Qy84OTk2NkRDQUVC QjkxMUVDOTlFNTYxMEVDNEY5QUUwMi9Wajh5bEk2OEd6a1BNcUNxUHpZVWVGcjg1 OEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZqOHlsSTY4R3prUE1xQ3FQellVZUZyODU4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUM4Qy84OTk2NkRDQUVCQjkxMUVDOTlFNTYxMEVDNEY5QUUwMi9Wajh5bEk2OEd6 a1BNcUNxUHpZVWVGcjg1OEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkvAK1x7aIMZ9eidq0uLot090uLgW7a1w/4fEmq3fOWaLWJEEO9NnY Z1doLEYMss0UIylXXpe7C/dKrv7c9prLFX71IR2DNz719a5KiWcfFVWKW4Ht92Ge ZM5Z6kJE+SlXKrP8ymzcybPDAYZKqbXxlynbMwylu/uFxw4lz9TL66x+CuwA7IbP 6kkQwitcaNy8V8mcAK8axh5URqYsKQ7hkKwMYA7ACYUyqGY/zMIwy2MGN7S9xRP+ CUSwnno+YzUwwe2WC/x6jd8JPpfYvwVgRCRQHroR32PspW1NlbYLyiPFVOAoLpM6 oKJq4cp9WijBeY67UEFHrWVEO/4aPnkK -----END CERTIFICATE-----Generated at Sat Apr 5 19:23:01 2025 by rpki-client