$ rpki-client -vvf rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.mft File: u8x2Cv4-nwqbiMjsekntfN0Dlvc.mft (raw, json) Hash identifier: yYDiBV1dI9UKd9EnwKFQPf/5HX4B/725xwMZ1N3xfqg= Subject key identifier: 2B:CB:91:66:CD:8D:E2:63:EC:97:82:58:75:C8:32:70:84:4F:1E:D2 Authority key identifier: BB:CC:76:0A:FE:3E:9F:0A:9B:88:C8:EC:7A:49:ED:7C:DD:03:96:F7 Certificate issuer: /CN=A919E3E3/serialNumber=BBCC760AFE3E9F0A9B88C8EC7A49ED7CDD0396F7 Certificate serial: 0678 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u8x2Cv4-nwqbiMjsekntfN0Dlvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.mft Manifest number: 0673 Signing time: Wed 02 Apr 2025 22:18:23 +0000 Manifest this update: Wed 02 Apr 2025 22:18:22 +0000 Manifest next update: Wed 09 Apr 2025 22:18:22 +0000 Files and hashes: 1: u8x2Cv4-nwqbiMjsekntfN0Dlvc.crl (hash: lQZW7PC5OqbWWsBxNXkWuY8pmccA7j/BXPV2KNORzB0=) 2: 58B04DD46F3C11EB924C4E2AC4F9AE02.roa (hash: hT6PiTq4VuebMVKql1Edg2h7UOqDcrvg8gjAvmzNu5c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.crl rsync://rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u8x2Cv4-nwqbiMjsekntfN0Dlvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 22:18:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1656 (0x678) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E3E3 Validity Not Before: Apr 2 22:18:22 2025 GMT Not After : Apr 9 22:18:22 2025 GMT Subject: CN=67edb7af-5e32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:a9:8c:a3:7a:c4:c2:57:16:1c:1b:ab:5b:6d: d0:80:3e:ba:fd:9c:31:2e:da:63:d5:96:e8:06:81: 9e:ef:71:41:44:eb:c5:db:0b:93:95:a2:41:cd:02: e8:34:7b:22:61:d6:6f:25:81:a6:34:5f:f8:08:8c: 02:92:2a:ec:57:b6:51:8a:89:19:b9:63:21:0b:f7: 40:fe:a4:0e:be:16:24:56:8f:45:0d:85:89:1d:ae: fc:28:58:23:86:b0:1e:ea:48:0e:fc:45:95:a8:d7: 89:fb:0c:d6:5e:a8:73:f4:47:35:81:07:8c:31:aa: 32:f9:94:38:3d:5f:f0:89:5e:60:1c:2a:d7:33:ec: 9b:de:8d:6e:24:5c:3f:de:3c:bb:13:d1:43:bc:4d: 47:12:f0:22:50:45:5f:67:b2:22:42:c9:0e:8a:b0: 26:08:0f:ab:1f:25:11:87:3b:64:c4:0c:06:ed:10: 53:ba:bc:99:5a:b8:56:2f:45:b5:15:06:4d:d8:dd: 79:bc:52:a8:01:64:da:91:0a:fc:c8:25:d8:4e:d9: e4:84:66:37:a5:50:bf:3e:96:c0:dd:5b:91:31:98: 6a:1f:d2:27:e3:0a:95:63:5a:4c:8e:da:f8:e0:36: 55:99:19:c6:86:bd:4f:f1:a5:e9:90:1b:3f:8f:3d: 53:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:CB:91:66:CD:8D:E2:63:EC:97:82:58:75:C8:32:70:84:4F:1E:D2 X509v3 Authority Key Identifier: keyid:BB:CC:76:0A:FE:3E:9F:0A:9B:88:C8:EC:7A:49:ED:7C:DD:03:96:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u8x2Cv4-nwqbiMjsekntfN0Dlvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e6:10:d6:99:1a:6d:98:87:95:01:9a:51:e6:98:b3:94:48:28: 48:7c:d6:29:f8:8d:12:84:34:db:26:19:c0:5e:0b:6b:c1:95: 02:66:86:b2:c7:6a:7c:67:04:88:89:67:0e:22:67:44:d9:58: ab:91:a5:41:f8:35:ac:04:e3:11:29:9e:83:4d:32:77:69:60: 7a:48:8a:d9:0d:18:c7:55:cd:79:fb:d3:52:5d:3e:e4:c0:46: 11:f2:c6:93:e3:b8:0c:8e:a2:ce:4b:7e:61:80:3e:2b:1d:60: 09:4d:5c:77:24:ee:9f:0b:c8:be:90:0c:7a:c3:56:52:1d:81: ac:7e:f2:c9:6e:93:c1:13:6e:e1:17:aa:df:a9:c8:31:cd:c6: cf:5f:6f:50:a0:a1:8d:56:db:97:86:0f:ba:11:a6:a4:a1:73: 31:f3:0b:d4:1a:fe:de:23:88:b8:10:14:f0:10:0c:70:c6:0d: c1:67:ff:3d:42:53:ff:a0:33:0c:01:a2:bf:6f:80:30:d2:c8: a3:bf:94:53:87:ce:2c:d7:72:f3:0e:26:f5:f9:85:fe:05:fa: ac:84:3e:fe:3c:9f:91:22:6b:0e:a9:56:2b:91:e6:99:9d:58: 6a:24:7c:00:80:88:bb:d1:1a:03:45:3e:f0:cb:cd:19:2b:93: f6:db:b7:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBngwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUUzRTMxMTAvBgNVBAUTKEJCQ0M3NjBBRkUzRTlGMEE5Qjg4QzhFQzdBNDlFRDdD REQwMzk2RjcwHhcNMjUwNDAyMjIxODIyWhcNMjUwNDA5MjIxODIyWjAYMRYwFAYD VQQDEw02N2VkYjdhZi01ZTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5qmMo3rEwlcWHBurW23QgD66/ZwxLtpj1ZboBoGe73FBROvF2wuTlaJBzQLo NHsiYdZvJYGmNF/4CIwCkirsV7ZRiokZuWMhC/dA/qQOvhYkVo9FDYWJHa78KFgj hrAe6kgO/EWVqNeJ+wzWXqhz9Ec1gQeMMaoy+ZQ4PV/wiV5gHCrXM+yb3o1uJFw/ 3jy7E9FDvE1HEvAiUEVfZ7IiQskOirAmCA+rHyURhztkxAwG7RBTuryZWrhWL0W1 FQZN2N15vFKoAWTakQr8yCXYTtnkhGY3pVC/PpbA3VuRMZhqH9In4wqVY1pMjtr4 4DZVmRnGhr1P8aXpkBs/jz1TGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCvLkWbN jeJj7JeCWHXIMnCETx7SMB8GA1UdIwQYMBaAFLvMdgr+Pp8Km4jI7HpJ7XzdA5b3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTNFMy8wOEI4RDBEMjZG M0ExMUVCQjExMzM5N0VDNEY5QUUwMi91OHgyQ3Y0LW53cWJpTWpzZWtudGZOMERs dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U4eDJDdjQtbndxYmlNanNla250Zk4wRGx2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTNFMy8wOEI4RDBEMjZGM0ExMUVCQjExMzM5N0VDNEY5QUUwMi91OHgyQ3Y0LW53 cWJpTWpzZWtudGZOMERsdmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDmENaZGm2Yh5UBmlHmmLOUSChIfNYp+I0ShDTbJhnAXgtrwZUCZoay x2p8ZwSIiWcOImdE2VirkaVB+DWsBOMRKZ6DTTJ3aWB6SIrZDRjHVc15+9NSXT7k wEYR8saT47gMjqLOS35hgD4rHWAJTVx3JO6fC8i+kAx6w1ZSHYGsfvLJbpPBE27h F6rfqcgxzcbPX29QoKGNVtuXhg+6EaakoXMx8wvUGv7eI4i4EBTwEAxwxg3BZ/89 QlP/oDMMAaK/b4Aw0sijv5RTh84s13LzDib1+YX+BfqshD7+PJ+RImsOqVYrkeaZ nVhqJHwAgIi70RoDRT7wy80ZK5P227eI -----END CERTIFICATE-----Generated at Fri Apr 4 22:01:47 2025 by rpki-client