$ rpki-client -vvf rpki.apnic.net/member_repository/A91D087E/B019F1CA04FC11EA8CAED415C4F9AE02/8H-xPvkeIhGw_ryFWt2vMBsGcaQ.mft File: 8H-xPvkeIhGw_ryFWt2vMBsGcaQ.mft (raw, json) Hash identifier: sbk3o4cJAWWZPPwBBslOLvz1G02MLeGcDwZg+ILJ/Is= Subject key identifier: 09:26:0D:2A:1A:A8:0C:72:AA:B4:9A:91:DB:DB:0C:5D:72:3B:7C:3D Authority key identifier: F0:7F:B1:3E:F9:1E:22:11:B0:FE:BC:85:5A:DD:AF:30:1B:06:71:A4 Certificate issuer: /CN=A91D087E/serialNumber=F07FB13EF91E2211B0FEBC855ADDAF301B0671A4 Certificate serial: 0C3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8H-xPvkeIhGw_ryFWt2vMBsGcaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D087E/B019F1CA04FC11EA8CAED415C4F9AE02/8H-xPvkeIhGw_ryFWt2vMBsGcaQ.mft Manifest number: 0C35 Signing time: Sat 12 Apr 2025 18:17:57 +0000 Manifest this update: Sat 12 Apr 2025 18:17:57 +0000 Manifest next update: Sat 19 Apr 2025 18:17:57 +0000 Files and hashes: 1: 8H-xPvkeIhGw_ryFWt2vMBsGcaQ.crl (hash: zzTmeAfDbRcoPgMDkxLqymZqfYKPzCiuZVHLYuBI448=) 2: 8A7C342604FE11EAB778E81CC4F9AE02.roa (hash: W5qhrk3NsiS79KgqelHi0v6nSmVUxngvNJSR/yTxWhg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D087E/B019F1CA04FC11EA8CAED415C4F9AE02/8H-xPvkeIhGw_ryFWt2vMBsGcaQ.crl rsync://rpki.apnic.net/member_repository/A91D087E/B019F1CA04FC11EA8CAED415C4F9AE02/8H-xPvkeIhGw_ryFWt2vMBsGcaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8H-xPvkeIhGw_ryFWt2vMBsGcaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 18:17:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3134 (0xc3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D087E, serialNumber=F07FB13EF91E2211B0FEBC855ADDAF301B0671A4 Validity Not Before: Apr 12 18:17:57 2025 GMT Not After : Apr 19 18:17:57 2025 GMT Subject: CN=67faae55-beb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:be:b7:18:7c:d3:49:60:56:7d:ac:1f:bc:eb: a7:0e:35:c9:77:72:21:bc:cf:26:b4:60:e6:71:32: 9f:04:6c:80:3f:13:fa:12:69:64:99:bb:e4:98:22: e7:d1:c6:88:ab:5a:48:40:1d:80:42:55:c2:06:7c: 92:bd:65:38:49:2b:cd:7f:28:37:a8:3c:07:a1:98: d1:23:2b:94:6f:c6:81:33:a4:22:57:c2:74:ce:bb: 88:3b:b7:ca:d9:d2:69:75:d9:99:6e:ca:22:41:7e: e5:5b:1e:6e:10:ae:35:76:94:12:22:75:52:94:9f: be:d5:a2:ba:a8:cc:ee:54:ca:35:3c:f8:9a:4f:87: 85:1b:2d:8c:8a:d3:94:52:d1:a7:8f:10:02:d9:c7: 3e:b8:eb:3d:63:77:db:78:1b:6b:52:a5:f1:bb:c1: dd:34:e6:37:ad:b1:02:91:1d:46:be:ef:c3:4e:d4: 8f:ce:11:fd:3e:2d:b3:85:90:3b:63:97:f4:4f:db: 29:cc:42:47:cc:0a:b6:cc:bb:c1:45:d7:71:a7:52: da:8f:61:d2:82:c4:47:4b:6f:45:70:ac:b4:4c:c1: a2:0c:f4:d1:08:0c:dd:1a:aa:f0:4b:4e:d6:fc:6a: 6a:a5:c3:44:f9:4f:35:d8:3c:a9:d6:84:ee:86:69: 3a:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:26:0D:2A:1A:A8:0C:72:AA:B4:9A:91:DB:DB:0C:5D:72:3B:7C:3D X509v3 Authority Key Identifier: keyid:F0:7F:B1:3E:F9:1E:22:11:B0:FE:BC:85:5A:DD:AF:30:1B:06:71:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D087E/B019F1CA04FC11EA8CAED415C4F9AE02/8H-xPvkeIhGw_ryFWt2vMBsGcaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8H-xPvkeIhGw_ryFWt2vMBsGcaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D087E/B019F1CA04FC11EA8CAED415C4F9AE02/8H-xPvkeIhGw_ryFWt2vMBsGcaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:87:1a:12:51:43:b6:55:5e:76:11:06:17:1d:c7:5e:9e:b5: af:b8:7d:c2:3c:3a:67:3c:9c:3d:20:fe:88:d6:f4:23:b8:ca: 8a:3f:9f:af:68:2c:b4:1b:27:54:c8:c1:29:77:6b:66:8c:00: 69:c0:40:68:2f:89:ad:b1:af:f8:67:4c:bf:f9:77:65:0a:c8: be:5c:39:72:12:8c:4f:5f:49:a2:8f:e4:43:8a:59:33:c2:51: 12:cf:a4:ef:ec:54:00:6e:1a:98:9f:0f:8a:d3:c0:32:91:88: 9a:88:bd:d6:f8:ef:8d:f8:2d:7e:75:ed:43:4d:fc:d5:fd:86: a5:d0:ee:38:1b:54:b3:00:ab:a4:b6:4c:c7:0e:94:3a:35:ae: 0c:b4:35:8e:85:78:fa:d8:d3:d9:2d:a3:b0:2d:07:40:f0:3a: 5f:87:f0:88:45:96:4e:47:25:bd:c3:4e:38:a2:bb:6e:3c:83: 00:98:fc:cf:f6:14:b5:fe:0f:10:57:8b:f3:70:f2:76:8c:e0: 1b:64:2b:c3:26:82:46:bc:2b:fd:ad:b5:ad:a4:74:25:87:dd: a4:68:62:0f:ba:5c:1e:04:7c:50:58:ca:f3:5d:1e:75:f5:19: 97:b2:df:8b:a5:68:78:64:c3:67:00:a1:56:1e:e4:63:4c:b0: d6:73:9c:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDD4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDA4N0UxMTAvBgNVBAUTKEYwN0ZCMTNFRjkxRTIyMTFCMEZFQkM4NTVBRERBRjMw MUIwNjcxQTQwHhcNMjUwNDEyMTgxNzU3WhcNMjUwNDE5MTgxNzU3WjAYMRYwFAYD VQQDEw02N2ZhYWU1NS1iZWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp763GHzTSWBWfawfvOunDjXJd3IhvM8mtGDmcTKfBGyAPxP6EmlkmbvkmCLn 0caIq1pIQB2AQlXCBnySvWU4SSvNfyg3qDwHoZjRIyuUb8aBM6QiV8J0zruIO7fK 2dJpddmZbsoiQX7lWx5uEK41dpQSInVSlJ++1aK6qMzuVMo1PPiaT4eFGy2MitOU UtGnjxAC2cc+uOs9Y3fbeBtrUqXxu8HdNOY3rbECkR1Gvu/DTtSPzhH9Pi2zhZA7 Y5f0T9spzEJHzAq2zLvBRddxp1Laj2HSgsRHS29FcKy0TMGiDPTRCAzdGqrwS07W /GpqpcNE+U812Dyp1oTuhmk6pQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAkmDSoa qAxyqrSakdvbDF1yO3w9MB8GA1UdIwQYMBaAFPB/sT75HiIRsP68hVrdrzAbBnGk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDg3RS9CMDE5RjFDQTA0 RkMxMUVBOENBRUQ0MTVDNEY5QUUwMi84SC14UHZrZUloR3dfcnlGV3Qydk1Cc0dj YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhILXhQdmtlSWhHd19yeUZXdDJ2TUJzR2NhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDg3RS9CMDE5RjFDQTA0RkMxMUVBOENBRUQ0MTVDNEY5QUUwMi84SC14UHZrZUlo R3dfcnlGV3Qydk1Cc0djYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmhxoSUUO2VV52EQYXHcdenrWvuH3CPDpnPJw9IP6I1vQjuMqKP5+v aCy0GydUyMEpd2tmjABpwEBoL4mtsa/4Z0y/+XdlCsi+XDlyEoxPX0mij+RDilkz wlESz6Tv7FQAbhqYnw+K08AykYiaiL3W+O+N+C1+de1DTfzV/Yal0O44G1SzAKuk tkzHDpQ6Na4MtDWOhXj62NPZLaOwLQdA8Dpfh/CIRZZORyW9w044ortuPIMAmPzP 9hS1/g8QV4vzcPJ2jOAbZCvDJoJGvCv9rbWtpHQlh92kaGIPulweBHxQWMrzXR51 9RmXst+LpWh4ZMNnAKFWHuRjTLDWc5xi -----END CERTIFICATE-----Generated at Sun Apr 13 04:38:15 2025 by rpki-client