$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF039/25676DF045BB11EAA648771EC4F9AE02/S8VilW0H0G-q3JIziLmGYPcofJo.mft File: S8VilW0H0G-q3JIziLmGYPcofJo.mft (raw, json) Hash identifier: oZYbyjxP4iFvVxRqWfbHhgYRAuLv1/1Qo2RUrGQMNR8= Subject key identifier: E9:A9:93:40:0C:33:B9:3C:B2:E9:BD:51:A5:98:F2:91:32:CA:7C:73 Authority key identifier: 4B:C5:62:95:6D:07:D0:6F:AA:DC:92:33:88:B9:86:60:F7:28:7C:9A Certificate issuer: /CN=A91BF039/serialNumber=4BC562956D07D06FAADC923388B98660F7287C9A Certificate serial: 0AE2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S8VilW0H0G-q3JIziLmGYPcofJo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF039/25676DF045BB11EAA648771EC4F9AE02/S8VilW0H0G-q3JIziLmGYPcofJo.mft Manifest number: 0ADB Signing time: Fri 04 Apr 2025 19:32:33 +0000 Manifest this update: Fri 04 Apr 2025 19:32:32 +0000 Manifest next update: Fri 11 Apr 2025 19:32:32 +0000 Files and hashes: 1: S8VilW0H0G-q3JIziLmGYPcofJo.crl (hash: sb0CNhl2OjX5WFXL0W95dmEUqDoXFUXDsJewxqqmRW8=) 2: 6D49440845BC11EAB591BD20C4F9AE02.roa (hash: d1emA2UMoO8VznsV+Ait8FlVXTOyXdepIAgXYTBBJeI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF039/25676DF045BB11EAA648771EC4F9AE02/S8VilW0H0G-q3JIziLmGYPcofJo.crl rsync://rpki.apnic.net/member_repository/A91BF039/25676DF045BB11EAA648771EC4F9AE02/S8VilW0H0G-q3JIziLmGYPcofJo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S8VilW0H0G-q3JIziLmGYPcofJo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:32:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2786 (0xae2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF039 Validity Not Before: Apr 4 19:32:32 2025 GMT Not After : Apr 11 19:32:32 2025 GMT Subject: CN=67f033d0-3d1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b3:7e:0c:46:6e:07:da:91:00:a7:99:8c:fa: 7b:2b:95:99:6f:47:5d:e6:b0:7e:cf:be:fd:d5:c5: ba:40:f2:56:b3:5c:d4:7c:5d:41:0c:51:fe:7e:02: dd:e1:aa:47:1a:01:b5:2c:27:0f:65:e5:73:16:6a: 24:6f:f8:70:03:c4:b8:5f:54:e0:25:45:30:99:d9: 67:60:f0:5a:29:33:09:1c:3e:53:de:00:39:31:41: 0e:6b:0a:86:d6:92:ea:46:0b:b8:9d:f0:8d:64:f6: e0:7c:3e:a0:ef:ae:99:d6:d8:f3:65:9c:a3:50:71: d6:a7:7b:a9:92:93:5b:ab:09:3a:b7:d2:77:a6:d8: 6c:b6:88:a6:e0:94:3d:dc:7d:da:68:b0:7d:e4:57: c3:b6:de:74:d5:f9:ae:44:c3:03:5c:60:7e:22:bd: ed:51:0c:5f:7e:cc:d2:1c:54:78:51:a7:dd:19:70: b5:c9:8c:eb:ce:06:54:b4:84:e6:b6:84:16:af:c9: be:e6:dc:84:e6:ad:2e:2c:e6:18:12:73:d1:a1:1a: bd:18:e6:59:a0:e5:c6:b0:65:8d:56:95:77:f3:ed: 33:9d:a8:2c:df:ef:d9:9a:89:5b:37:ef:e9:cf:5f: b5:23:c5:9a:7c:c5:d3:5c:32:6e:01:8c:be:27:16: 72:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:A9:93:40:0C:33:B9:3C:B2:E9:BD:51:A5:98:F2:91:32:CA:7C:73 X509v3 Authority Key Identifier: keyid:4B:C5:62:95:6D:07:D0:6F:AA:DC:92:33:88:B9:86:60:F7:28:7C:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF039/25676DF045BB11EAA648771EC4F9AE02/S8VilW0H0G-q3JIziLmGYPcofJo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S8VilW0H0G-q3JIziLmGYPcofJo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF039/25676DF045BB11EAA648771EC4F9AE02/S8VilW0H0G-q3JIziLmGYPcofJo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:af:e7:c8:69:04:dd:71:52:ab:e8:5e:f6:03:1b:63:01:9a: 8b:60:bd:2b:f5:12:1a:92:5b:b9:3e:86:5c:93:29:91:77:f7: ac:83:4f:3e:11:98:9b:b7:61:fa:7f:50:7e:02:9a:95:8d:c2: 00:56:c6:8a:af:2f:80:be:5d:95:9a:04:31:cf:72:a8:d7:37: 47:72:aa:74:68:53:1e:63:cd:74:69:14:a5:4c:d8:28:21:b3: 48:c5:a8:e5:2e:c9:66:74:e0:05:c9:dd:9b:c8:ec:ad:1c:f2: 63:08:a0:e1:de:bb:15:4b:7e:4a:5b:94:71:4a:c8:b3:27:30: 78:b7:6f:61:0b:c7:d8:55:5e:56:38:d9:ff:e7:df:ee:69:8e: c7:b7:ec:c0:80:17:a9:b9:93:e9:ce:b0:58:f6:ee:1d:3a:b2: 33:9e:f1:5c:93:23:44:df:fa:4d:e2:ca:8e:2e:38:aa:83:ae: 9f:e4:4c:99:07:f4:ae:cc:b4:5f:64:4c:4e:82:7e:f2:9f:ac: e9:41:bc:9b:38:9b:53:c4:44:66:1c:28:27:df:e2:aa:cf:88: 62:ec:2e:2a:fc:ac:37:af:f1:97:0f:d7:14:c2:1d:b1:55:5b: 59:d8:40:c3:a7:5b:d5:81:c1:4f:d5:49:53:38:6a:71:f8:1e: 4d:45:a3:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCuIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYwMzkxMTAvBgNVBAUTKDRCQzU2Mjk1NkQwN0QwNkZBQURDOTIzMzg4Qjk4NjYw RjcyODdDOUEwHhcNMjUwNDA0MTkzMjMyWhcNMjUwNDExMTkzMjMyWjAYMRYwFAYD VQQDEw02N2YwMzNkMC0zZDFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1bN+DEZuB9qRAKeZjPp7K5WZb0dd5rB+z7791cW6QPJWs1zUfF1BDFH+fgLd 4apHGgG1LCcPZeVzFmokb/hwA8S4X1TgJUUwmdlnYPBaKTMJHD5T3gA5MUEOawqG 1pLqRgu4nfCNZPbgfD6g766Z1tjzZZyjUHHWp3upkpNbqwk6t9J3pthstoim4JQ9 3H3aaLB95FfDtt501fmuRMMDXGB+Ir3tUQxffszSHFR4UafdGXC1yYzrzgZUtITm toQWr8m+5tyE5q0uLOYYEnPRoRq9GOZZoOXGsGWNVpV38+0znags3+/ZmolbN+/p z1+1I8WafMXTXDJuAYy+JxZyowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOmpk0AM M7k8sum9UaWY8pEyynxzMB8GA1UdIwQYMBaAFEvFYpVtB9BvqtySM4i5hmD3KHya MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjAzOS8yNTY3NkRGMDQ1 QkIxMUVBQTY0ODc3MUVDNEY5QUUwMi9TOFZpbFcwSDBHLXEzSkl6aUxtR1lQY29m Sm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1M4VmlsVzBIMEctcTNKSXppTG1HWVBjb2ZKby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjAzOS8yNTY3NkRGMDQ1QkIxMUVBQTY0ODc3MUVDNEY5QUUwMi9TOFZpbFcwSDBH LXEzSkl6aUxtR1lQY29mSm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVr+fIaQTdcVKr6F72AxtjAZqLYL0r9RIaklu5PoZckymRd/esg08+ EZibt2H6f1B+ApqVjcIAVsaKry+Avl2VmgQxz3Ko1zdHcqp0aFMeY810aRSlTNgo IbNIxajlLslmdOAFyd2byOytHPJjCKDh3rsVS35KW5RxSsizJzB4t29hC8fYVV5W ONn/59/uaY7Ht+zAgBepuZPpzrBY9u4dOrIznvFckyNE3/pN4sqOLjiqg66f5EyZ B/SuzLRfZExOgn7yn6zpQbybOJtTxERmHCgn3+Kqz4hi7C4q/Kw3r/GXD9cUwh2x VVtZ2EDDp1vVgcFP1UlTOGpx+B5NRaNX -----END CERTIFICATE-----Generated at Fri Apr 4 22:22:16 2025 by rpki-client