$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCC23/925C80CE81E111EE8CF66B0AC4F9AE02/88hJQLK99AJViHBvWcHm7D0hR_A.mft File: 88hJQLK99AJViHBvWcHm7D0hR_A.mft (raw, json) Hash identifier: dmBvqYRSl/sj3wfq/dM8hkT4fROdQK88x7BUa8EiMiE= Subject key identifier: 9E:74:BE:6C:E1:9B:1D:0D:29:E4:1A:54:BA:8B:42:9F:23:58:1D:2C Authority key identifier: F3:C8:49:40:B2:BD:F4:02:55:88:70:6F:59:C1:E6:EC:3D:21:47:F0 Certificate issuer: /CN=A91BCC23/serialNumber=F3C84940B2BDF4025588706F59C1E6EC3D2147F0 Certificate serial: 010B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/88hJQLK99AJViHBvWcHm7D0hR_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCC23/925C80CE81E111EE8CF66B0AC4F9AE02/88hJQLK99AJViHBvWcHm7D0hR_A.mft Manifest number: 0108 Signing time: Fri 11 Apr 2025 04:13:46 +0000 Manifest this update: Fri 11 Apr 2025 04:13:45 +0000 Manifest next update: Fri 18 Apr 2025 04:13:45 +0000 Files and hashes: 1: 88hJQLK99AJViHBvWcHm7D0hR_A.crl (hash: GoP6zvyV6VzcZWs2t3a2ltI9Xlvnet+RnnsyIuenjC4=) 2: D36C048A81E211EEAF423C87C4F9AE02.roa (hash: AgEcJkKDpEPBaGjrS9V0jt2iST6E+qzc3K1SEhivhc4=) 3: FC3C8A6A81E211EE963BAB87C4F9AE02.roa (hash: 548P4XWsPS3JTWuhyip3nqsrffc51BRt/khZw2JCljI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCC23/925C80CE81E111EE8CF66B0AC4F9AE02/88hJQLK99AJViHBvWcHm7D0hR_A.crl rsync://rpki.apnic.net/member_repository/A91BCC23/925C80CE81E111EE8CF66B0AC4F9AE02/88hJQLK99AJViHBvWcHm7D0hR_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/88hJQLK99AJViHBvWcHm7D0hR_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 04:13:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 267 (0x10b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCC23, serialNumber=F3C84940B2BDF4025588706F59C1E6EC3D2147F0 Validity Not Before: Apr 11 04:13:45 2025 GMT Not After : Apr 18 04:13:45 2025 GMT Subject: CN=67f896f9-9409 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2b:64:38:79:6d:f3:3c:d5:3e:75:9a:9f:af: ea:58:4c:1f:60:97:e6:fd:64:77:4f:dc:34:18:b0: a3:5e:a2:4b:84:ca:ab:63:31:58:07:84:87:83:0e: 8c:5c:1d:d1:41:0d:9d:34:b6:eb:ac:d9:8a:7f:9f: dd:d5:cc:ef:3e:c8:94:5e:23:44:de:f9:56:37:ef: a1:6a:13:6b:0a:b1:c1:1f:0b:e7:ec:9b:be:4d:99: 50:02:76:5f:38:3d:19:13:dc:a3:b8:0d:95:36:e5: 77:01:6a:41:e1:72:b7:33:bf:18:81:f7:78:23:92: b6:e1:38:35:be:0d:d7:ea:ae:c3:69:56:ad:5a:20: 2a:70:4c:3d:b3:55:1b:8e:d5:1c:31:26:8c:e9:fc: 6f:bc:b2:9b:a6:6d:73:2b:4c:4f:e8:82:b3:af:66: ab:e1:a3:bd:7d:aa:2c:67:ff:f9:ef:f1:10:24:7e: 97:5f:b8:a5:d1:9e:b0:c1:16:80:f7:4d:26:3e:1e: c4:3b:ec:c4:dc:4e:41:bf:d9:ae:36:28:fe:ff:97: a9:a5:f2:ca:bb:f0:71:55:4c:c6:40:3a:c4:a4:68: 03:11:cc:a6:84:4b:a7:1b:1e:2e:11:68:4a:da:e2: 3d:60:aa:51:9f:b5:7c:c1:2b:6a:52:ec:da:13:73: 5a:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:74:BE:6C:E1:9B:1D:0D:29:E4:1A:54:BA:8B:42:9F:23:58:1D:2C X509v3 Authority Key Identifier: keyid:F3:C8:49:40:B2:BD:F4:02:55:88:70:6F:59:C1:E6:EC:3D:21:47:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCC23/925C80CE81E111EE8CF66B0AC4F9AE02/88hJQLK99AJViHBvWcHm7D0hR_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/88hJQLK99AJViHBvWcHm7D0hR_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCC23/925C80CE81E111EE8CF66B0AC4F9AE02/88hJQLK99AJViHBvWcHm7D0hR_A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:79:eb:1d:cf:55:d4:43:2b:8c:0c:a5:b1:3f:dd:b8:3e:a1: cc:a4:6e:4a:27:57:5e:ee:be:76:48:05:de:77:90:21:b5:74: 25:27:74:51:4b:af:f4:c7:55:fb:a7:83:17:ff:65:aa:b7:a4: ef:94:1a:83:85:e5:3b:d9:06:93:5e:ab:1e:aa:03:96:1f:c4: 00:c7:b5:60:58:ab:36:fd:e4:4b:25:76:f4:2c:ea:c4:c5:ad: b9:c8:af:cf:9c:f3:3f:69:62:d2:cf:06:c3:81:99:0a:0f:1c: a1:3d:36:68:f4:bd:6e:7e:4c:91:ce:64:54:6e:01:98:0a:04: 0a:45:bb:26:17:0b:1a:aa:32:52:36:4e:78:3f:5f:c1:a7:cb: 9e:c3:36:25:de:1c:17:d8:7f:76:e9:b8:ac:95:d1:bd:5c:be: d7:4b:32:8c:a9:d8:a0:35:c3:34:b1:e7:3b:ac:62:72:78:08: c3:97:2a:55:17:06:14:d2:11:1a:e7:e4:98:3c:11:ff:e6:af: 4c:cb:6c:3f:cd:c1:1c:e1:c4:44:36:22:83:b9:2a:40:4e:e8: 48:62:e2:3a:f2:89:d5:42:03:e8:12:30:b4:62:1c:c4:e0:a7: 97:7c:cb:16:1f:4f:49:8e:f5:0c:92:bf:5c:f2:85:72:cf:ee: fb:ff:de:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkNDMjMxMTAvBgNVBAUTKEYzQzg0OTQwQjJCREY0MDI1NTg4NzA2RjU5QzFFNkVD M0QyMTQ3RjAwHhcNMjUwNDExMDQxMzQ1WhcNMjUwNDE4MDQxMzQ1WjAYMRYwFAYD VQQDEw02N2Y4OTZmOS05NDA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuytkOHlt8zzVPnWan6/qWEwfYJfm/WR3T9w0GLCjXqJLhMqrYzFYB4SHgw6M XB3RQQ2dNLbrrNmKf5/d1czvPsiUXiNE3vlWN++hahNrCrHBHwvn7Ju+TZlQAnZf OD0ZE9yjuA2VNuV3AWpB4XK3M78Ygfd4I5K24Tg1vg3X6q7DaVatWiAqcEw9s1Ub jtUcMSaM6fxvvLKbpm1zK0xP6IKzr2ar4aO9faosZ//57/EQJH6XX7il0Z6wwRaA 900mPh7EO+zE3E5Bv9muNij+/5eppfLKu/BxVUzGQDrEpGgDEcymhEunGx4uEWhK 2uI9YKpRn7V8wStqUuzaE3NaUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ50vmzh mx0NKeQaVLqLQp8jWB0sMB8GA1UdIwQYMBaAFPPISUCyvfQCVYhwb1nB5uw9IUfw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQ0MyMy85MjVDODBDRTgx RTExMUVFOENGNjZCMEFDNEY5QUUwMi84OGhKUUxLOTlBSlZpSEJ2V2NIbTdEMGhS X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg4aEpRTEs5OUFKVmlIQnZXY0htN0QwaFJfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Q0MyMy85MjVDODBDRTgxRTExMUVFOENGNjZCMEFDNEY5QUUwMi84OGhKUUxLOTlB SlZpSEJ2V2NIbTdEMGhSX0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXeesdz1XUQyuMDKWxP924PqHMpG5KJ1de7r52SAXed5AhtXQlJ3RR S6/0x1X7p4MX/2Wqt6TvlBqDheU72QaTXqseqgOWH8QAx7VgWKs2/eRLJXb0LOrE xa25yK/PnPM/aWLSzwbDgZkKDxyhPTZo9L1ufkyRzmRUbgGYCgQKRbsmFwsaqjJS Nk54P1/Bp8uewzYl3hwX2H926bisldG9XL7XSzKMqdigNcM0sec7rGJyeAjDlypV FwYU0hEa5+SYPBH/5q9My2w/zcEc4cRENiKDuSpATuhIYuI68onVQgPoEjC0YhzE 4KeXfMsWH09JjvUMkr9c8oVyz+77/947 -----END CERTIFICATE-----Generated at Sun Apr 13 04:01:29 2025 by rpki-client