$ rpki-client -vvf rpki.apnic.net/member_repository/A9114CE7/5B2B131C60CD11ED84F75F4CC4F9AE02/8o1tEcPFVG5CQYGKc7Rw7sptcoM.mft File: 8o1tEcPFVG5CQYGKc7Rw7sptcoM.mft (raw, json) Hash identifier: BGyZmkQF6tWLCu4x6SR78WrQRuf/99s3vW/IAEg3unc= Subject key identifier: F2:CA:B2:D9:05:B7:ED:7A:50:97:96:51:CD:5D:BA:E1:58:3B:A3:94 Authority key identifier: F2:8D:6D:11:C3:C5:54:6E:42:41:81:8A:73:B4:70:EE:CA:6D:72:83 Certificate issuer: /CN=A9114CE7/serialNumber=F28D6D11C3C5546E4241818A73B470EECA6D7283 Certificate serial: 01E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8o1tEcPFVG5CQYGKc7Rw7sptcoM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9114CE7/5B2B131C60CD11ED84F75F4CC4F9AE02/8o1tEcPFVG5CQYGKc7Rw7sptcoM.mft Manifest number: 01DE Signing time: Sat 31 May 2025 02:24:58 +0000 Manifest this update: Sat 31 May 2025 02:24:57 +0000 Manifest next update: Sat 07 Jun 2025 02:24:57 +0000 Files and hashes: 1: 8o1tEcPFVG5CQYGKc7Rw7sptcoM.crl (hash: CM2Sbge5N21zu75pRQXIHk+cB3lwpaYmGssRg04i8vE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9114CE7/5B2B131C60CD11ED84F75F4CC4F9AE02/8o1tEcPFVG5CQYGKc7Rw7sptcoM.crl rsync://rpki.apnic.net/member_repository/A9114CE7/5B2B131C60CD11ED84F75F4CC4F9AE02/8o1tEcPFVG5CQYGKc7Rw7sptcoM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8o1tEcPFVG5CQYGKc7Rw7sptcoM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:24:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 482 (0x1e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9114CE7, serialNumber=F28D6D11C3C5546E4241818A73B470EECA6D7283 Validity Not Before: May 31 02:24:57 2025 GMT Not After : Jun 7 02:24:57 2025 GMT Subject: CN=683a687a-eb16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:03:23:61:f8:79:5b:4f:45:2d:01:14:a9:a5: d6:cf:60:04:5a:34:e7:49:68:95:b6:8a:85:85:71: 0b:d7:58:58:1a:33:c4:c5:5b:49:83:7c:5d:dc:43: c0:48:ba:c0:65:e9:c6:4b:e3:86:f2:66:3c:e5:37: bb:df:30:af:72:dc:a8:61:31:99:48:6c:13:4d:5d: 1b:bb:da:f2:8e:75:32:9a:d0:90:7f:89:b6:53:cb: 36:0e:70:df:2c:92:98:11:39:44:3b:37:11:a8:1e: 41:7e:52:7e:76:6f:43:bf:1e:b8:16:ef:da:c8:e1: 52:2b:f7:92:db:a2:35:a9:c1:5e:84:98:e7:97:16: b7:89:93:8f:23:ea:8c:13:2e:9d:d9:11:48:1d:9d: 94:41:c2:08:ad:b6:90:71:0c:93:ce:95:d1:c4:f2: 7f:a5:80:71:be:03:33:67:13:98:d4:22:e9:77:6d: 6a:9b:4e:19:c3:57:c3:26:14:4a:23:e7:5a:e7:89: df:03:cc:46:ec:bc:2a:8b:75:ab:d8:3f:51:77:1a: 7f:f5:c1:2d:38:68:f5:8f:56:42:98:59:43:04:6a: c3:4f:4a:29:4f:9b:d8:73:30:ad:8a:ad:7b:53:ac: 1d:e6:a8:52:81:16:e8:d8:a7:2f:98:28:a7:42:e0: 22:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:CA:B2:D9:05:B7:ED:7A:50:97:96:51:CD:5D:BA:E1:58:3B:A3:94 X509v3 Authority Key Identifier: keyid:F2:8D:6D:11:C3:C5:54:6E:42:41:81:8A:73:B4:70:EE:CA:6D:72:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9114CE7/5B2B131C60CD11ED84F75F4CC4F9AE02/8o1tEcPFVG5CQYGKc7Rw7sptcoM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8o1tEcPFVG5CQYGKc7Rw7sptcoM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114CE7/5B2B131C60CD11ED84F75F4CC4F9AE02/8o1tEcPFVG5CQYGKc7Rw7sptcoM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:29:82:68:6e:17:d6:da:43:16:a9:b6:70:56:0d:cd:22:6e: e0:53:d4:20:93:d9:c2:5d:49:de:b6:2e:db:99:f0:02:07:e7: 70:f9:91:1e:1d:8d:09:87:03:4c:89:e2:52:de:03:b2:38:4e: b7:ce:75:ef:dd:1d:be:f5:41:51:51:33:7b:ea:82:8a:f9:ed: 12:7c:e2:51:0e:93:f4:49:97:cf:45:9d:a1:39:56:68:8b:5e: 60:79:e0:37:92:b9:ba:7b:76:3f:89:99:f0:c8:9b:86:a0:fe: a2:2a:cd:76:21:35:60:6c:e9:6d:8c:7d:3a:db:1e:94:b4:e7: 33:4a:43:e1:05:f7:da:db:30:fc:dc:03:dd:da:ff:9f:49:f5: 8e:71:8d:e4:1f:42:7a:da:ed:90:ac:5e:92:51:12:df:13:a3: ce:31:38:45:44:83:cc:cb:50:e4:8e:f5:81:6e:67:94:d6:fd: 65:28:d9:a1:12:06:8f:e9:1e:43:54:b0:70:c8:dc:60:5f:a3: 2f:fc:a6:49:79:ad:ea:b1:04:cd:c5:0d:e3:2b:ea:06:e7:a8: 8b:2e:31:29:52:3b:b8:ec:93:d4:08:ff:5d:c5:0f:55:73:93: 1a:73:30:ae:6a:e2:ec:1b:66:77:26:51:42:55:cd:e4:79:b6: c1:4f:68:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTRDRTcxMTAvBgNVBAUTKEYyOEQ2RDExQzNDNTU0NkU0MjQxODE4QTczQjQ3MEVF Q0E2RDcyODMwHhcNMjUwNTMxMDIyNDU3WhcNMjUwNjA3MDIyNDU3WjAYMRYwFAYD VQQDEw02ODNhNjg3YS1lYjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2gMjYfh5W09FLQEUqaXWz2AEWjTnSWiVtoqFhXEL11hYGjPExVtJg3xd3EPA SLrAZenGS+OG8mY85Te73zCvctyoYTGZSGwTTV0bu9ryjnUymtCQf4m2U8s2DnDf LJKYETlEOzcRqB5BflJ+dm9Dvx64Fu/ayOFSK/eS26I1qcFehJjnlxa3iZOPI+qM Ey6d2RFIHZ2UQcIIrbaQcQyTzpXRxPJ/pYBxvgMzZxOY1CLpd21qm04Zw1fDJhRK I+da54nfA8xG7Lwqi3Wr2D9Rdxp/9cEtOGj1j1ZCmFlDBGrDT0opT5vYczCtiq17 U6wd5qhSgRbo2KcvmCinQuAivwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPLKstkF t+16UJeWUc1duuFYO6OUMB8GA1UdIwQYMBaAFPKNbRHDxVRuQkGBinO0cO7KbXKD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNENFNy81QjJCMTMxQzYw Q0QxMUVEODRGNzVGNENDNEY5QUUwMi84bzF0RWNQRlZHNUNRWUdLYzdSdzdzcHRj b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhvMXRFY1BGVkc1Q1FZR0tjN1J3N3NwdGNvTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NENFNy81QjJCMTMxQzYwQ0QxMUVEODRGNzVGNENDNEY5QUUwMi84bzF0RWNQRlZH NUNRWUdLYzdSdzdzcHRjb00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3KYJobhfW2kMWqbZwVg3NIm7gU9Qgk9nCXUneti7bmfACB+dw+ZEe HY0JhwNMieJS3gOyOE63znXv3R2+9UFRUTN76oKK+e0SfOJRDpP0SZfPRZ2hOVZo i15geeA3krm6e3Y/iZnwyJuGoP6iKs12ITVgbOltjH062x6UtOczSkPhBffa2zD8 3APd2v+fSfWOcY3kH0J62u2QrF6SURLfE6POMThFRIPMy1DkjvWBbmeU1v1lKNmh EgaP6R5DVLBwyNxgX6Mv/KZJea3qsQTNxQ3jK+oG56iLLjEpUju47JPUCP9dxQ9V c5MaczCuauLsG2Z3JlFCVc3kebbBT2jR -----END CERTIFICATE-----Generated at Sat May 31 17:22:12 2025 by rpki-client