$ rpki-client -vvf rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.mft File: 8mkjRT8BcDCf1YvzsLXc5D_5tBw.mft (raw, json) Hash identifier: KcoWHFlrDcAnVFSlN+hmwj2BdzxK5GcmVz2yjgu1RfA= Subject key identifier: 3C:88:B1:6F:5E:D7:38:07:6B:52:82:0B:8A:CD:B8:74:B6:F1:F2:CD Authority key identifier: F2:69:23:45:3F:01:70:30:9F:D5:8B:F3:B0:B5:DC:E4:3F:F9:B4:1C Certificate issuer: /CN=A917B12B/serialNumber=F26923453F0170309FD58BF3B0B5DCE43FF9B41C Certificate serial: 2755 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8mkjRT8BcDCf1YvzsLXc5D_5tBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.mft Manifest number: 272D Signing time: Sun 06 Apr 2025 15:36:51 +0000 Manifest this update: Sun 06 Apr 2025 15:36:51 +0000 Manifest next update: Sun 13 Apr 2025 15:36:51 +0000 Files and hashes: 1: 8mkjRT8BcDCf1YvzsLXc5D_5tBw.crl (hash: b6zsypNDHYUhXs+MQQMN4gL4tAlM3SZQXGde8VfLfkU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.crl rsync://rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8mkjRT8BcDCf1YvzsLXc5D_5tBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10069 (0x2755) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B12B Validity Not Before: Apr 6 15:36:51 2025 GMT Not After : Apr 13 15:36:51 2025 GMT Subject: CN=67f29f93-7f80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:a9:4c:f7:38:67:e2:e1:08:68:40:e8:e1:4f: d2:d9:c6:9b:a3:ef:16:07:1c:68:92:63:4d:b0:9b: 02:44:53:ce:7f:b6:9a:7d:e1:b6:28:17:ce:27:1c: 3d:7d:39:9a:df:10:02:4e:c8:95:68:61:e4:c2:61: 2b:80:6f:95:04:ee:08:45:12:82:1e:8f:e9:19:29: 73:8f:f9:49:29:80:51:02:e6:b0:27:76:c2:9a:6a: 90:79:41:d3:f0:50:ca:80:40:9e:13:5e:07:54:93: df:f7:18:e7:ef:e3:35:a0:1f:d2:eb:ef:d8:be:cb: 9d:8d:60:8d:3f:45:91:1e:f7:83:9c:23:c8:6b:30: cb:1c:81:c8:a3:67:6e:da:3c:55:6e:75:21:61:d5: 1a:81:fc:1a:37:39:1c:cf:b0:c6:20:cb:85:80:59: 7f:80:df:1f:40:2d:fa:a8:85:9d:22:e1:6c:0f:86: ce:c0:4b:cb:43:9e:ce:b2:25:d0:24:be:81:7c:69: 50:5c:ed:a0:6c:62:02:9a:a1:2a:df:da:3d:6d:54: 6a:cd:8f:5a:17:4a:b1:a3:e2:2c:fc:be:0a:7a:13: f5:27:5c:c6:83:3a:ac:b0:91:62:46:0a:19:d5:0a: 81:be:68:39:50:a7:93:df:24:8e:f9:b3:a8:0f:bb: 09:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:88:B1:6F:5E:D7:38:07:6B:52:82:0B:8A:CD:B8:74:B6:F1:F2:CD X509v3 Authority Key Identifier: keyid:F2:69:23:45:3F:01:70:30:9F:D5:8B:F3:B0:B5:DC:E4:3F:F9:B4:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8mkjRT8BcDCf1YvzsLXc5D_5tBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:f8:b1:bd:50:e5:1d:be:8a:da:f1:26:2c:d4:f9:65:e8:09: 66:a3:52:7d:b1:f7:95:39:e3:06:c1:99:1b:3a:70:92:77:23: b4:a5:ca:ff:1f:59:e8:01:0b:97:ed:8c:62:c6:36:a7:49:84: f0:3d:ed:89:69:8a:c7:8b:f7:de:60:90:44:5c:b1:ef:e2:69: 7f:26:04:4a:b1:2c:83:47:26:58:ae:44:3c:89:c0:1a:73:b9: 37:87:81:d8:e2:c6:69:34:1a:a8:23:81:1a:ee:02:4a:e8:ce: 4d:96:ae:c0:b1:2e:ab:12:6c:7f:1c:cd:d4:6d:74:ee:7f:e7: be:77:26:3c:d8:3b:cb:2f:67:a5:32:6d:73:74:8d:b3:f4:14: 9c:3e:65:e7:65:69:77:c9:fa:e5:a8:57:fa:be:a4:0a:65:fe: 0e:a5:f3:f6:64:06:a9:de:20:16:bb:35:ff:eb:a3:8a:83:2c: 92:b6:ea:7b:e7:09:5e:f9:67:4f:aa:5e:bd:b0:8e:f9:d2:d2: 4d:41:58:89:25:57:2d:6d:b9:bc:52:88:1d:86:95:df:d9:06: 05:ed:83:0e:4b:74:b0:f3:93:7e:7d:05:62:60:63:26:53:22: 35:88:fb:33:31:c9:d5:a5:c7:23:4f:1a:4b:7f:85:c7:b2:d0: 0a:15:25:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJ1UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0IxMkIxMTAvBgNVBAUTKEYyNjkyMzQ1M0YwMTcwMzA5RkQ1OEJGM0IwQjVEQ0U0 M0ZGOUI0MUMwHhcNMjUwNDA2MTUzNjUxWhcNMjUwNDEzMTUzNjUxWjAYMRYwFAYD VQQDEw02N2YyOWY5My03ZjgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2qlM9zhn4uEIaEDo4U/S2cabo+8WBxxokmNNsJsCRFPOf7aafeG2KBfOJxw9 fTma3xACTsiVaGHkwmErgG+VBO4IRRKCHo/pGSlzj/lJKYBRAuawJ3bCmmqQeUHT 8FDKgECeE14HVJPf9xjn7+M1oB/S6+/YvsudjWCNP0WRHveDnCPIazDLHIHIo2du 2jxVbnUhYdUagfwaNzkcz7DGIMuFgFl/gN8fQC36qIWdIuFsD4bOwEvLQ57OsiXQ JL6BfGlQXO2gbGICmqEq39o9bVRqzY9aF0qxo+Is/L4KehP1J1zGgzqssJFiRgoZ 1QqBvmg5UKeT3ySO+bOoD7sJOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDyIsW9e 1zgHa1KCC4rNuHS28fLNMB8GA1UdIwQYMBaAFPJpI0U/AXAwn9WL87C13OQ/+bQc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjEyQi9BNTA5RUMxRUJE OUQxMUU0OTk5NjU1NENDNEY5QUUwMi84bWtqUlQ4QmNEQ2YxWXZ6c0xYYzVEXzV0 QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhta2pSVDhCY0RDZjFZdnpzTFhjNURfNXRCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjEyQi9BNTA5RUMxRUJEOUQxMUU0OTk5NjU1NENDNEY5QUUwMi84bWtqUlQ4QmNE Q2YxWXZ6c0xYYzVEXzV0QncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2+LG9UOUdvora8SYs1Pll6Almo1J9sfeVOeMGwZkbOnCSdyO0pcr/ H1noAQuX7YxixjanSYTwPe2JaYrHi/feYJBEXLHv4ml/JgRKsSyDRyZYrkQ8icAa c7k3h4HY4sZpNBqoI4Ea7gJK6M5Nlq7AsS6rEmx/HM3UbXTuf+e+dyY82DvLL2el Mm1zdI2z9BScPmXnZWl3yfrlqFf6vqQKZf4OpfP2ZAap3iAWuzX/66OKgyyStup7 5wle+WdPql69sI750tJNQViJJVctbbm8UogdhpXf2QYF7YMOS3Sw85N+fQViYGMm UyI1iPszMcnVpccjTxpLf4XHstAKFSVp -----END CERTIFICATE-----Generated at Sun Apr 6 21:57:35 2025 by rpki-client