$ rpki-client -vvf rpki.apnic.net/member_repository/A91D09BC/CB882E7EA70711EF99A57741C4F9AE02/8V0ReQsOdTV0BmEdxXBY9p3FeKA.mft File: 8V0ReQsOdTV0BmEdxXBY9p3FeKA.mft (raw, json) Hash identifier: HexlCCk/WYcA0OVMhxeB9NzyD/MYrgXpat3yc/rIe+w= Subject key identifier: 61:47:80:AB:DA:7A:16:33:51:5C:89:F6:20:56:37:3B:F4:4F:4F:92 Authority key identifier: F1:5D:11:79:0B:0E:75:35:74:06:61:1D:C5:70:58:F6:9D:C5:78:A0 Certificate issuer: /CN=A91D09BC/serialNumber=F15D11790B0E75357406611DC57058F69DC578A0 Certificate serial: 53 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8V0ReQsOdTV0BmEdxXBY9p3FeKA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D09BC/CB882E7EA70711EF99A57741C4F9AE02/8V0ReQsOdTV0BmEdxXBY9p3FeKA.mft Manifest number: 4E Signing time: Sat 05 Apr 2025 06:38:43 +0000 Manifest this update: Sat 05 Apr 2025 06:38:42 +0000 Manifest next update: Sat 12 Apr 2025 06:38:42 +0000 Files and hashes: 1: 8V0ReQsOdTV0BmEdxXBY9p3FeKA.crl (hash: hoW3Vsdyn7sjQJ7i3BQTY6iJZy3LTn7rIRY7GEotsck=) 2: D660AB1CD87D11EF9992CD41C4F9AE02.roa (hash: WnrI0aIYZih3vM/sW5dubGcnSTElOMwHaTB7siLqQR0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D09BC/CB882E7EA70711EF99A57741C4F9AE02/8V0ReQsOdTV0BmEdxXBY9p3FeKA.crl rsync://rpki.apnic.net/member_repository/A91D09BC/CB882E7EA70711EF99A57741C4F9AE02/8V0ReQsOdTV0BmEdxXBY9p3FeKA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8V0ReQsOdTV0BmEdxXBY9p3FeKA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 06:38:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D09BC Validity Not Before: Apr 5 06:38:42 2025 GMT Not After : Apr 12 06:38:42 2025 GMT Subject: CN=67f0cff3-4756 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:0b:4c:89:21:a2:bd:ea:29:7d:0a:1c:65:0d: f6:fb:66:8c:de:7c:d1:e2:60:17:b0:62:e4:9f:c3: 6c:df:37:44:1c:ea:fe:50:0f:e7:42:2a:90:6d:0a: 29:04:f2:8d:48:33:d2:27:08:d8:75:57:06:72:76: f5:39:1a:0c:ce:3b:e3:0a:f2:ee:89:ae:8d:c6:1a: 62:e0:a9:4c:d8:4a:17:ce:52:5d:4a:b9:7c:c0:30: 1e:6b:19:a1:42:9a:bc:3d:b3:33:4f:bb:0d:45:c1: 51:d6:64:7f:dc:6b:b2:aa:4c:6b:b3:83:f1:bf:9a: ae:64:9b:f7:b3:b9:d9:67:31:3d:18:2f:5d:03:97: b6:44:24:00:11:d2:d0:7e:9e:e8:4c:9a:25:5c:f4: c7:10:69:eb:52:b4:6a:fa:33:34:b5:aa:c3:6b:46: 56:a4:83:33:f7:3b:30:6c:14:1e:8a:9f:12:d5:f4: 93:fd:6f:e8:57:6c:00:11:2a:df:c0:18:61:db:1e: 58:48:88:72:84:8d:e1:04:f3:a3:6b:03:0e:af:d4: cd:ca:1c:00:8d:eb:b6:aa:b6:34:fb:40:3e:78:24: b2:3d:5d:43:37:67:50:21:05:ac:f0:d5:70:ba:79: d8:15:97:a2:af:64:33:dc:39:3c:a7:06:75:1a:f8: 9c:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:47:80:AB:DA:7A:16:33:51:5C:89:F6:20:56:37:3B:F4:4F:4F:92 X509v3 Authority Key Identifier: keyid:F1:5D:11:79:0B:0E:75:35:74:06:61:1D:C5:70:58:F6:9D:C5:78:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D09BC/CB882E7EA70711EF99A57741C4F9AE02/8V0ReQsOdTV0BmEdxXBY9p3FeKA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8V0ReQsOdTV0BmEdxXBY9p3FeKA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D09BC/CB882E7EA70711EF99A57741C4F9AE02/8V0ReQsOdTV0BmEdxXBY9p3FeKA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:79:4c:8e:4c:ae:64:7a:d1:e9:3d:af:41:db:96:d3:f7:fb: 46:e4:cf:f0:0b:05:de:7c:88:56:75:6f:f8:83:16:b3:9b:b9: 4e:37:50:74:f5:f2:7d:1b:a0:f6:3d:b9:45:8d:0a:08:84:cf: 4d:17:62:5e:5f:88:71:44:84:53:cb:9b:4f:44:d8:15:e2:2a: 2a:ab:8a:d3:d8:31:51:5d:19:a3:e2:e8:23:5c:b2:02:f6:6f: bb:0e:7e:16:31:33:b3:66:05:07:5a:86:a6:0f:e8:72:ce:09: af:cc:53:52:4e:88:5a:5e:e3:c0:df:9a:bd:bf:16:0d:af:b4: 28:9a:e7:93:65:0f:79:95:66:a2:e8:2d:1f:9f:1b:93:9e:41: cc:16:3d:53:d1:29:e6:fd:3b:27:22:5a:22:e6:f2:6e:94:fc: 40:ed:4c:19:85:1d:7d:84:5e:c3:b7:03:e3:c2:d2:82:8d:89: f8:8b:e5:40:96:bd:d7:b7:d9:99:3a:cf:32:16:0b:90:c2:1f: 22:63:b0:f4:27:53:cf:4d:67:21:c5:be:be:3f:a5:02:01:08: fd:f4:cb:7c:2a:35:85:42:55:1f:90:09:9a:23:4a:6d:c6:f8: 7e:e4:18:4a:72:e9:83:fa:9e:e5:d5:07:ef:68:de:0d:b4:83: 14:b2:da:b6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MDlCQzExMC8GA1UEBRMoRjE1RDExNzkwQjBFNzUzNTc0MDY2MTFEQzU3MDU4RjY5 REM1NzhBMDAeFw0yNTA0MDUwNjM4NDJaFw0yNTA0MTIwNjM4NDJaMBgxFjAUBgNV BAMTDTY3ZjBjZmYzLTQ3NTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8C0yJIaK96il9ChxlDfb7ZozefNHiYBewYuSfw2zfN0Qc6v5QD+dCKpBtCikE 8o1IM9InCNh1VwZydvU5GgzOO+MK8u6Jro3GGmLgqUzYShfOUl1KuXzAMB5rGaFC mrw9szNPuw1FwVHWZH/ca7KqTGuzg/G/mq5km/ezudlnMT0YL10Dl7ZEJAAR0tB+ nuhMmiVc9McQaetStGr6MzS1qsNrRlakgzP3OzBsFB6KnxLV9JP9b+hXbAARKt/A GGHbHlhIiHKEjeEE86NrAw6v1M3KHACN67aqtjT7QD54JLI9XUM3Z1AhBazw1XC6 edgVl6KvZDPcOTynBnUa+JyLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUYUeAq9p6 FjNRXIn2IFY3O/RPT5IwHwYDVR0jBBgwFoAU8V0ReQsOdTV0BmEdxXBY9p3FeKAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQwOUJDL0NCODgyRTdFQTcw NzExRUY5OUE1Nzc0MUM0RjlBRTAyLzhWMFJlUXNPZFRWMEJtRWR4WEJZOXAzRmVL QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvOFYwUmVRc09kVFYwQm1FZHhYQlk5cDNGZUtBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQw OUJDL0NCODgyRTdFQTcwNzExRUY5OUE1Nzc0MUM0RjlBRTAyLzhWMFJlUXNPZFRW MEJtRWR4WEJZOXAzRmVLQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAER5TI5MrmR60ek9r0HbltP3+0bkz/ALBd58iFZ1b/iDFrObuU43UHT1 8n0boPY9uUWNCgiEz00XYl5fiHFEhFPLm09E2BXiKiqritPYMVFdGaPi6CNcsgL2 b7sOfhYxM7NmBQdahqYP6HLOCa/MU1JOiFpe48Dfmr2/Fg2vtCia55NlD3mVZqLo LR+fG5OeQcwWPVPRKeb9OyciWiLm8m6U/EDtTBmFHX2EXsO3A+PC0oKNifiL5UCW vde32Zk6zzIWC5DCHyJjsPQnU89NZyHFvr4/pQIBCP30y3wqNYVCVR+QCZojSm3G +H7kGEpy6YP6nuXVB+9o3g20gxSy2rY= -----END CERTIFICATE-----Generated at Sun Apr 6 15:23:04 2025 by rpki-client