$ rpki-client -vvf rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft File: 8bZbeXYWOXNS7L1KLHdPz37G1HA.mft (raw, json) Hash identifier: 96GUOcxwPXn1WV1N9BFLIlrpA20KHAZwBh+g3AuAcNY= Subject key identifier: 52:B0:7D:E6:AF:50:EE:E6:B0:70:71:AD:42:E5:FE:70:6D:30:37:86 Authority key identifier: F1:B6:5B:79:76:16:39:73:52:EC:BD:4A:2C:77:4F:CF:7E:C6:D4:70 Certificate issuer: /CN=A91D14EF/serialNumber=F1B65B797616397352ECBD4A2C774FCF7EC6D470 Certificate serial: 063D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bZbeXYWOXNS7L1KLHdPz37G1HA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft Manifest number: 0638 Signing time: Fri 04 Apr 2025 22:42:39 +0000 Manifest this update: Fri 04 Apr 2025 22:42:39 +0000 Manifest next update: Fri 11 Apr 2025 22:42:39 +0000 Files and hashes: 1: 8bZbeXYWOXNS7L1KLHdPz37G1HA.crl (hash: 9I4ka4l1kqieQLX+jSyeShpznGRSNVx0lUMpjGQPULg=) 2: 226402B0860D11EB8F541B68C4F9AE02.roa (hash: y7fGqG2zMTlsWUgwcSbG/aCOa1G0W3pseNmyoJID29o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.crl rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bZbeXYWOXNS7L1KLHdPz37G1HA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 22:42:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1597 (0x63d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D14EF Validity Not Before: Apr 4 22:42:39 2025 GMT Not After : Apr 11 22:42:39 2025 GMT Subject: CN=67f0605f-994d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:f4:0b:8a:89:97:2b:eb:da:60:06:5a:ae:fb: ab:c1:75:17:03:48:f8:d1:d9:b5:30:64:f4:54:c5: 6c:29:e7:dc:f6:4e:09:86:2d:c9:cc:2f:11:77:d3: 4e:45:c4:88:5d:50:13:dd:7b:52:39:a9:90:2e:a7: be:7f:bc:8d:eb:f9:7e:04:62:76:68:c7:a7:52:a2: 21:38:fb:20:ac:e2:e5:c5:76:99:50:35:61:76:18: f4:31:d5:3e:c1:f0:75:7a:49:9e:bb:c9:4d:66:2f: b8:4f:06:10:ab:b9:d4:25:7b:fa:1f:a1:a9:4c:6c: 0b:28:4e:c8:e7:73:28:90:15:ff:d6:e1:1e:8d:52: 2f:b2:00:64:4d:70:fd:21:b0:cf:9b:60:5e:12:2d: d9:0f:f4:aa:17:ca:34:fe:3d:1e:54:e5:93:27:a2: a9:22:d7:47:b9:72:f0:13:e0:df:bb:66:9d:d5:e2: 7b:67:2a:b7:0e:52:c3:ad:ad:7b:83:22:5f:6b:4d: 2c:a9:26:83:15:c0:1b:6e:75:8c:91:75:a9:a6:f2: 54:99:97:86:1b:45:76:05:71:36:8d:76:54:9f:bf: 69:e0:0f:9a:d1:2d:63:a0:ba:9a:71:70:30:9f:a6: c7:d2:70:8a:33:e0:32:17:40:ff:20:49:8a:11:ac: 5f:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:B0:7D:E6:AF:50:EE:E6:B0:70:71:AD:42:E5:FE:70:6D:30:37:86 X509v3 Authority Key Identifier: keyid:F1:B6:5B:79:76:16:39:73:52:EC:BD:4A:2C:77:4F:CF:7E:C6:D4:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bZbeXYWOXNS7L1KLHdPz37G1HA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:b8:90:aa:23:39:28:98:29:61:93:0a:24:fd:17:ee:21:2b: 82:62:f1:7c:63:fb:92:74:b4:ac:5f:d6:70:30:97:ad:00:ba: 8a:31:33:e2:3f:e6:a5:c3:5b:dc:5f:3e:43:ba:53:4e:03:70: 91:e8:f6:4a:26:c9:bc:8f:d5:97:69:2d:c6:4e:dd:75:84:1b: cc:08:7c:4c:c7:be:d5:bf:84:25:4e:ac:e8:9c:9d:2c:cb:7a: 35:c1:a1:9f:4d:59:32:0e:e0:d9:db:9e:46:ee:b9:bf:5e:bf: ca:a8:44:b6:4d:8a:f7:23:0e:0d:4c:e4:a2:2c:26:2a:48:b2: 46:c0:d0:01:57:8a:8d:3e:88:c0:49:c5:f2:8e:a7:39:87:94: 35:5f:42:f4:42:c4:b9:e5:33:3e:09:8a:9b:fe:6d:cf:4d:2a: 59:a5:1f:0e:7d:e9:cd:70:9a:0b:b7:2f:84:56:2f:31:99:c8: 2f:85:09:17:38:72:d7:35:6b:51:84:0e:81:c4:6e:e0:9d:dd: 37:1d:1b:75:57:03:e2:a7:57:ec:18:7e:82:f6:11:60:03:25: e2:72:25:40:f7:20:e4:39:bc:93:fb:c3:79:39:ff:44:7d:d3: fb:05:d7:0e:03:61:80:13:88:d5:85:73:da:d5:f9:d8:6e:21: 8c:de:ea:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE0RUYxMTAvBgNVBAUTKEYxQjY1Qjc5NzYxNjM5NzM1MkVDQkQ0QTJDNzc0RkNG N0VDNkQ0NzAwHhcNMjUwNDA0MjI0MjM5WhcNMjUwNDExMjI0MjM5WjAYMRYwFAYD VQQDEw02N2YwNjA1Zi05OTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz/QLiomXK+vaYAZarvurwXUXA0j40dm1MGT0VMVsKefc9k4Jhi3JzC8Rd9NO RcSIXVAT3XtSOamQLqe+f7yN6/l+BGJ2aMenUqIhOPsgrOLlxXaZUDVhdhj0MdU+ wfB1ekmeu8lNZi+4TwYQq7nUJXv6H6GpTGwLKE7I53MokBX/1uEejVIvsgBkTXD9 IbDPm2BeEi3ZD/SqF8o0/j0eVOWTJ6KpItdHuXLwE+Dfu2ad1eJ7Zyq3DlLDra17 gyJfa00sqSaDFcAbbnWMkXWppvJUmZeGG0V2BXE2jXZUn79p4A+a0S1joLqacXAw n6bH0nCKM+AyF0D/IEmKEaxfwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFKwfeav UO7msHBxrULl/nBtMDeGMB8GA1UdIwQYMBaAFPG2W3l2FjlzUuy9Six3T89+xtRw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTRFRi8yNjQwMTAwNjg2 MEIxMUVCOTFDMTJENjNDNEY5QUUwMi84YlpiZVhZV09YTlM3TDFLTEhkUHozN0cx SEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhiWmJlWFlXT1hOUzdMMUtMSGRQejM3RzFIQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTRFRi8yNjQwMTAwNjg2MEIxMUVCOTFDMTJENjNDNEY5QUUwMi84YlpiZVhZV09Y TlM3TDFLTEhkUHozN0cxSEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhuJCqIzkomClhkwok/RfuISuCYvF8Y/uSdLSsX9ZwMJetALqKMTPi P+alw1vcXz5DulNOA3CR6PZKJsm8j9WXaS3GTt11hBvMCHxMx77Vv4QlTqzonJ0s y3o1waGfTVkyDuDZ255G7rm/Xr/KqES2TYr3Iw4NTOSiLCYqSLJGwNABV4qNPojA ScXyjqc5h5Q1X0L0QsS55TM+CYqb/m3PTSpZpR8OfenNcJoLty+EVi8xmcgvhQkX OHLXNWtRhA6BxG7gnd03HRt1VwPip1fsGH6C9hFgAyXiciVA9yDkObyT+8N5Of9E fdP7BdcOA2GAE4jVhXPa1fnYbiGM3uqY -----END CERTIFICATE-----Generated at Sat Apr 5 21:55:31 2025 by rpki-client