$ rpki-client -vvf rpki.apnic.net/member_repository/A91B43D7/E9F5D93E652411EB983F1B11C4F9AE02/8rcLSXMivuZoIO0_ziiqeW2wkVM.mft File: 8rcLSXMivuZoIO0_ziiqeW2wkVM.mft (raw, json) Hash identifier: byjaKuE3frqrtXDKGyP0TcEbXY68R1c+/svIZjuJRfo= Subject key identifier: 0C:98:47:79:A2:1E:ED:5C:CF:5F:86:D2:89:E0:6D:04:BE:A6:F6:E8 Authority key identifier: F2:B7:0B:49:73:22:BE:E6:68:20:ED:3F:CE:28:AA:79:6D:B0:91:53 Certificate issuer: /CN=A91B43D7/serialNumber=F2B70B497322BEE66820ED3FCE28AA796DB09153 Certificate serial: 0698 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8rcLSXMivuZoIO0_ziiqeW2wkVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B43D7/E9F5D93E652411EB983F1B11C4F9AE02/8rcLSXMivuZoIO0_ziiqeW2wkVM.mft Manifest number: 0693 Signing time: Thu 10 Apr 2025 22:11:08 +0000 Manifest this update: Thu 10 Apr 2025 22:11:07 +0000 Manifest next update: Thu 17 Apr 2025 22:11:07 +0000 Files and hashes: 1: 8rcLSXMivuZoIO0_ziiqeW2wkVM.crl (hash: FnPBw5Y8+IjqmGwGbSoLXRZR8wp0n5eneMQtOhs7ZT8=) 2: 643961CCB39811EBBD3F524CC4F9AE02.roa (hash: Zn98IKw1ORShKjYTsznVV3Nuz5otGr6pldJ4tgtNf00=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B43D7/E9F5D93E652411EB983F1B11C4F9AE02/8rcLSXMivuZoIO0_ziiqeW2wkVM.crl rsync://rpki.apnic.net/member_repository/A91B43D7/E9F5D93E652411EB983F1B11C4F9AE02/8rcLSXMivuZoIO0_ziiqeW2wkVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8rcLSXMivuZoIO0_ziiqeW2wkVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 22:11:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1688 (0x698) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B43D7, serialNumber=F2B70B497322BEE66820ED3FCE28AA796DB09153 Validity Not Before: Apr 10 22:11:07 2025 GMT Not After : Apr 17 22:11:07 2025 GMT Subject: CN=67f841fc-48b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:c1:f4:36:fb:b1:86:de:96:3b:18:59:2e:b6: e2:2b:a6:84:79:58:80:32:a1:ae:0c:e4:e5:69:c1: a7:15:8a:c7:d9:96:a8:4b:71:2d:e2:bf:8a:61:73: a2:75:15:0d:9b:c4:d7:4e:64:b9:c5:6d:79:d6:da: 0c:ae:1d:0f:77:00:89:4f:69:99:b5:bc:c1:ad:56: 58:c3:16:18:7d:b7:ed:5f:8c:0c:21:11:23:bd:47: 8d:e4:c6:8f:45:f2:31:1c:cd:df:7d:6d:bc:92:8c: de:b9:ce:30:e0:a5:5c:4c:8d:97:ca:cd:72:af:16: 64:b4:c9:79:06:b8:9c:81:24:63:af:8c:19:f1:66: 5f:cb:a5:56:7c:8f:95:95:27:a6:c1:2f:a5:1c:8d: 87:75:bf:28:a2:35:aa:b0:6a:1c:d7:65:d2:c5:51: c6:3c:5d:60:fd:a1:a9:00:c0:ba:02:9a:87:26:fb: eb:ae:de:01:d3:b9:ef:eb:a0:21:db:17:04:cc:ad: 8e:92:5b:52:8f:40:8c:fe:1b:92:20:76:e5:91:8f: a7:52:62:86:87:89:c5:a0:3d:50:0e:af:b8:99:84: 8c:9c:ba:e0:c0:00:6f:47:88:31:64:0f:c4:e3:26: 22:43:ea:e5:7b:f6:7e:27:6c:cc:c6:b7:55:1b:94: e1:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:98:47:79:A2:1E:ED:5C:CF:5F:86:D2:89:E0:6D:04:BE:A6:F6:E8 X509v3 Authority Key Identifier: keyid:F2:B7:0B:49:73:22:BE:E6:68:20:ED:3F:CE:28:AA:79:6D:B0:91:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B43D7/E9F5D93E652411EB983F1B11C4F9AE02/8rcLSXMivuZoIO0_ziiqeW2wkVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8rcLSXMivuZoIO0_ziiqeW2wkVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B43D7/E9F5D93E652411EB983F1B11C4F9AE02/8rcLSXMivuZoIO0_ziiqeW2wkVM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:ed:db:ef:9c:bc:14:37:ad:12:ef:04:89:fc:e4:b3:f7:40: 9e:ab:79:5c:70:32:61:ef:97:49:2a:96:74:7d:52:98:03:0d: 44:28:b1:90:84:6c:d0:f0:20:be:e5:15:3e:90:b6:26:ab:28: 19:67:59:a8:d2:c8:2f:ca:49:04:b8:45:fa:12:a7:b0:2d:6e: b3:85:66:7f:72:6b:0a:bf:a3:b2:0d:95:1e:d4:3b:f8:e8:30: 78:1a:19:22:75:ac:18:b4:a3:b3:3b:fb:48:26:fa:b0:63:29: 5d:8b:db:91:79:40:94:af:8b:d7:54:b9:b9:86:bf:c0:17:d0: 6d:d9:f8:c8:cc:ec:4c:b4:7c:58:58:ee:8c:26:3b:b5:83:44: 69:d2:3a:06:cb:f9:85:e4:17:4a:35:82:34:cb:0b:83:d9:53: 2d:16:e4:25:87:25:c3:1d:07:04:d8:96:f8:7c:ee:9f:6d:6f: bf:37:c0:df:d2:71:22:ee:40:b8:4f:7a:6a:d1:5a:f2:47:fd: 83:fb:54:7d:46:70:8b:88:19:e1:f5:a4:ea:2a:0f:6c:43:8c: 47:77:b2:87:6f:70:55:f3:c9:85:37:53:f7:bf:72:97:cb:45: 49:aa:05:53:a5:2c:7b:8d:06:52:9f:35:43:af:ff:7d:69:44: 2c:9a:c2:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQzRDcxMTAvBgNVBAUTKEYyQjcwQjQ5NzMyMkJFRTY2ODIwRUQzRkNFMjhBQTc5 NkRCMDkxNTMwHhcNMjUwNDEwMjIxMTA3WhcNMjUwNDE3MjIxMTA3WjAYMRYwFAYD VQQDEw02N2Y4NDFmYy00OGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5cH0Nvuxht6WOxhZLrbiK6aEeViAMqGuDOTlacGnFYrH2ZaoS3Et4r+KYXOi dRUNm8TXTmS5xW151toMrh0PdwCJT2mZtbzBrVZYwxYYfbftX4wMIREjvUeN5MaP RfIxHM3ffW28kozeuc4w4KVcTI2Xys1yrxZktMl5BricgSRjr4wZ8WZfy6VWfI+V lSemwS+lHI2Hdb8oojWqsGoc12XSxVHGPF1g/aGpAMC6ApqHJvvrrt4B07nv66Ah 2xcEzK2OkltSj0CM/huSIHblkY+nUmKGh4nFoD1QDq+4mYSMnLrgwABvR4gxZA/E 4yYiQ+rle/Z+J2zMxrdVG5ThJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAyYR3mi Hu1cz1+G0ongbQS+pvboMB8GA1UdIwQYMBaAFPK3C0lzIr7maCDtP84oqnltsJFT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDNENy9FOUY1RDkzRTY1 MjQxMUVCOTgzRjFCMTFDNEY5QUUwMi84cmNMU1hNaXZ1Wm9JTzBfemlpcWVXMndr Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhyY0xTWE1pdnVab0lPMF96aWlxZVcyd2tWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDNENy9FOUY1RDkzRTY1MjQxMUVCOTgzRjFCMTFDNEY5QUUwMi84cmNMU1hNaXZ1 Wm9JTzBfemlpcWVXMndrVk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBA7dvvnLwUN60S7wSJ/OSz90Ceq3lccDJh75dJKpZ0fVKYAw1EKLGQ hGzQ8CC+5RU+kLYmqygZZ1mo0sgvykkEuEX6EqewLW6zhWZ/cmsKv6OyDZUe1Dv4 6DB4GhkidawYtKOzO/tIJvqwYyldi9uReUCUr4vXVLm5hr/AF9Bt2fjIzOxMtHxY WO6MJju1g0Rp0joGy/mF5BdKNYI0ywuD2VMtFuQlhyXDHQcE2Jb4fO6fbW+/N8Df 0nEi7kC4T3pq0VryR/2D+1R9RnCLiBnh9aTqKg9sQ4xHd7KHb3BV88mFN1P3v3KX y0VJqgVTpSx7jQZSnzVDr/99aUQsmsJa -----END CERTIFICATE-----Generated at Sat Apr 12 17:45:26 2025 by rpki-client