$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9CD7/ABEB876083D511EE988DB744C4F9AE02/8fFj2FT-czviVA83o0T_alpayfY.mft File: 8fFj2FT-czviVA83o0T_alpayfY.mft (raw, json) Hash identifier: jHHS2jrkWuDUCxXi0HLA55VL4iL/DYHWOabg6TkR6Jo= Subject key identifier: 80:35:B8:F8:16:58:D1:92:EF:BC:2B:0B:1D:C2:4F:AD:4C:0B:B3:D2 Authority key identifier: F1:F1:63:D8:54:FE:73:3B:E2:54:0F:37:A3:44:FF:6A:5A:5A:C9:F6 Certificate issuer: /CN=A91F9CD7/serialNumber=F1F163D854FE733BE2540F37A344FF6A5A5AC9F6 Certificate serial: 010C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8fFj2FT-czviVA83o0T_alpayfY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9CD7/ABEB876083D511EE988DB744C4F9AE02/8fFj2FT-czviVA83o0T_alpayfY.mft Manifest number: 0109 Signing time: Fri 11 Apr 2025 04:15:48 +0000 Manifest this update: Fri 11 Apr 2025 04:15:47 +0000 Manifest next update: Fri 18 Apr 2025 04:15:47 +0000 Files and hashes: 1: 8fFj2FT-czviVA83o0T_alpayfY.crl (hash: NrDSvvNglsE9xxU1AFLjrdqAuBIk5VOEMORRqlYeoKU=) 2: E84C2B9083D711EE871C4048C4F9AE02.roa (hash: rmSlyhnDPvPSFvbFMmRCs9JHSxTZmt3FdyC7wK+xTxQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9CD7/ABEB876083D511EE988DB744C4F9AE02/8fFj2FT-czviVA83o0T_alpayfY.crl rsync://rpki.apnic.net/member_repository/A91F9CD7/ABEB876083D511EE988DB744C4F9AE02/8fFj2FT-czviVA83o0T_alpayfY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8fFj2FT-czviVA83o0T_alpayfY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 04:15:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 268 (0x10c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9CD7, serialNumber=F1F163D854FE733BE2540F37A344FF6A5A5AC9F6 Validity Not Before: Apr 11 04:15:47 2025 GMT Not After : Apr 18 04:15:47 2025 GMT Subject: CN=67f89773-177a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:2e:a4:69:1d:44:a1:5e:6e:28:e4:dd:04:50: e1:18:46:cc:74:02:f8:28:26:8f:53:02:fe:f5:70: 0a:35:5f:b3:9b:e9:5b:b2:b7:ce:9b:31:75:bd:09: 8d:cb:c4:d1:ae:5d:35:d6:2c:7e:6b:d0:52:f6:2b: c7:be:29:13:d9:1c:60:ff:24:81:8f:b1:92:16:3a: fb:b0:59:d2:29:f0:a9:cb:40:28:a9:80:e6:68:53: ab:72:97:6d:33:f4:1f:d3:bc:7e:e2:0d:b0:c4:3c: 01:bf:c3:b5:26:49:42:fe:f5:21:32:1d:d9:50:ce: cc:c3:83:09:82:b7:ae:fa:d4:6d:22:a5:ff:8f:ba: a3:e0:cb:0a:52:63:87:76:b6:55:69:16:19:69:d7: 5d:21:05:78:2b:3f:45:f0:6b:8d:5c:02:23:0f:fe: 50:24:56:49:39:4a:cc:6b:31:57:0d:08:06:07:87: de:ef:74:24:6c:66:c6:d8:36:8d:a5:f9:83:7f:69: 6d:48:c5:e9:9a:dd:ec:a1:94:5c:21:82:e0:36:eb: 2d:10:ee:46:f9:35:1a:bb:91:91:e9:be:87:db:54: 98:ee:ac:63:dc:da:3f:ed:4e:d2:8b:90:12:3f:c1: f5:31:f4:6d:41:0a:51:49:49:09:c6:cd:66:30:c9: 60:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:35:B8:F8:16:58:D1:92:EF:BC:2B:0B:1D:C2:4F:AD:4C:0B:B3:D2 X509v3 Authority Key Identifier: keyid:F1:F1:63:D8:54:FE:73:3B:E2:54:0F:37:A3:44:FF:6A:5A:5A:C9:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9CD7/ABEB876083D511EE988DB744C4F9AE02/8fFj2FT-czviVA83o0T_alpayfY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8fFj2FT-czviVA83o0T_alpayfY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9CD7/ABEB876083D511EE988DB744C4F9AE02/8fFj2FT-czviVA83o0T_alpayfY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:96:5b:86:66:54:9d:b0:1e:13:d5:74:0e:2c:9c:3a:c0:ca: 30:d1:4f:3e:41:f5:13:df:29:c6:7c:08:c3:ba:38:10:7d:ff: 96:b6:8f:4f:6a:8b:53:b6:c9:f4:81:64:49:0b:d1:92:0d:6d: a5:64:3b:6b:61:dd:24:73:1f:fa:e7:36:1a:f8:b1:a5:eb:9d: b2:2d:5d:b5:bb:74:27:94:df:2e:bf:46:90:ca:3e:0e:56:ba: af:22:82:c4:be:a7:f2:93:f9:1c:0c:ec:ab:d4:35:2c:1d:d6: d9:71:13:93:3b:a5:15:81:79:32:72:65:dd:eb:56:57:a1:60: 99:fb:d2:46:4b:50:49:03:12:19:8b:b8:4f:a7:1c:d7:16:01: 2c:e3:5e:03:b6:e6:63:14:65:28:e2:9f:9f:c5:e0:54:dd:5b: 8f:8f:37:07:54:6f:bf:2d:80:7c:62:68:0e:af:7c:5a:53:9b: 94:87:67:72:35:db:9c:10:9b:69:6f:11:d9:84:9d:6d:66:a5: a7:67:88:32:23:9d:17:f8:a5:d1:0e:e2:a3:09:04:05:63:17: 40:65:a0:eb:34:4f:2d:7f:73:a1:9e:74:31:c4:df:0b:18:8e: d2:03:3a:91:3b:ee:7f:76:ac:93:8e:00:ca:6b:79:b6:4c:cc: b1:3f:30:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlDRDcxMTAvBgNVBAUTKEYxRjE2M0Q4NTRGRTczM0JFMjU0MEYzN0EzNDRGRjZB NUE1QUM5RjYwHhcNMjUwNDExMDQxNTQ3WhcNMjUwNDE4MDQxNTQ3WjAYMRYwFAYD VQQDEw02N2Y4OTc3My0xNzdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5C6kaR1EoV5uKOTdBFDhGEbMdAL4KCaPUwL+9XAKNV+zm+lbsrfOmzF1vQmN y8TRrl011ix+a9BS9ivHvikT2Rxg/ySBj7GSFjr7sFnSKfCpy0AoqYDmaFOrcpdt M/Qf07x+4g2wxDwBv8O1JklC/vUhMh3ZUM7Mw4MJgreu+tRtIqX/j7qj4MsKUmOH drZVaRYZadddIQV4Kz9F8GuNXAIjD/5QJFZJOUrMazFXDQgGB4fe73QkbGbG2DaN pfmDf2ltSMXpmt3soZRcIYLgNustEO5G+TUau5GR6b6H21SY7qxj3No/7U7Si5AS P8H1MfRtQQpRSUkJxs1mMMlgPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIA1uPgW WNGS77wrCx3CT61MC7PSMB8GA1UdIwQYMBaAFPHxY9hU/nM74lQPN6NE/2paWsn2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUNENy9BQkVCODc2MDgz RDUxMUVFOTg4REI3NDRDNEY5QUUwMi84ZkZqMkZULWN6dmlWQTgzbzBUX2FscGF5 ZlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhmRmoyRlQtY3p2aVZBODNvMFRfYWxwYXlmWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUNENy9BQkVCODc2MDgzRDUxMUVFOTg4REI3NDRDNEY5QUUwMi84ZkZqMkZULWN6 dmlWQTgzbzBUX2FscGF5ZlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0lluGZlSdsB4T1XQOLJw6wMow0U8+QfUT3ynGfAjDujgQff+Wto9P aotTtsn0gWRJC9GSDW2lZDtrYd0kcx/65zYa+LGl652yLV21u3QnlN8uv0aQyj4O VrqvIoLEvqfyk/kcDOyr1DUsHdbZcROTO6UVgXkycmXd61ZXoWCZ+9JGS1BJAxIZ i7hPpxzXFgEs414DtuZjFGUo4p+fxeBU3VuPjzcHVG+/LYB8YmgOr3xaU5uUh2dy NducEJtpbxHZhJ1tZqWnZ4gyI50X+KXRDuKjCQQFYxdAZaDrNE8tf3OhnnQxxN8L GI7SAzqRO+5/dqyTjgDKa3m2TMyxPzAo -----END CERTIFICATE-----Generated at Sat Apr 12 20:01:16 2025 by rpki-client