$ rpki-client -vvf rpki.apnic.net/member_repository/A911606A/4F2588E4BB4511EE830C985DC4F9AE02/o8s5jsc5UXR2LZMDPnBgnWD03bI.mft File: o8s5jsc5UXR2LZMDPnBgnWD03bI.mft (raw, json) Hash identifier: iJP+OR2gZPHFZo1Kxju75LznTxFlEBL6O/i7b1qM3n8= Subject key identifier: DE:E7:70:A4:D5:57:DE:0E:B4:76:B9:36:F4:A4:79:E4:73:B4:27:55 Authority key identifier: A3:CB:39:8E:C7:39:51:74:76:2D:93:03:3E:70:60:9D:60:F4:DD:B2 Certificate issuer: /CN=A911606A/serialNumber=A3CB398EC7395174762D93033E70609D60F4DDB2 Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/o8s5jsc5UXR2LZMDPnBgnWD03bI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911606A/4F2588E4BB4511EE830C985DC4F9AE02/o8s5jsc5UXR2LZMDPnBgnWD03bI.mft Manifest number: D9 Signing time: Thu 13 Mar 2025 03:45:20 +0000 Manifest this update: Thu 13 Mar 2025 03:45:19 +0000 Manifest next update: Thu 20 Mar 2025 03:45:19 +0000 Files and hashes: 1: o8s5jsc5UXR2LZMDPnBgnWD03bI.crl (hash: fZamGSwMX01vKroAUpGx3r+cxE2HxM/04t8pyOkOu3s=) 2: EEEC4B6ABD9D11EE9839661CC4F9AE02.roa (hash: MV1F0Q4UL7J+dtgMeHTJ35pvzsiuBXHWMmcfd9HjqkQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911606A/4F2588E4BB4511EE830C985DC4F9AE02/o8s5jsc5UXR2LZMDPnBgnWD03bI.crl rsync://rpki.apnic.net/member_repository/A911606A/4F2588E4BB4511EE830C985DC4F9AE02/o8s5jsc5UXR2LZMDPnBgnWD03bI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/o8s5jsc5UXR2LZMDPnBgnWD03bI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 03:45:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911606A Validity Not Before: Mar 13 03:45:19 2025 GMT Not After : Mar 20 03:45:19 2025 GMT Subject: CN=67d254d0-ec0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:33:b0:f1:b1:a4:93:40:15:6b:22:a7:8e:ac: ad:7d:45:87:92:f7:e6:75:3f:dd:26:a5:46:25:26: 2b:25:50:bb:8b:69:78:40:c9:e8:82:6c:5d:31:8e: d9:a8:7f:fa:e2:ee:0c:a9:33:4b:b2:a7:fb:26:be: e2:a2:e0:a1:ad:3e:36:a1:56:56:c7:ae:bd:d2:e8: ab:1e:59:5e:ee:cc:08:0b:86:74:12:da:31:cb:f7: 9a:0a:e4:03:c9:4e:eb:df:ea:84:8d:4e:7a:0e:5a: 57:9c:15:5c:c0:c3:66:bb:b8:12:d6:81:05:ea:4f: 5d:9f:9e:f7:5d:d5:ca:aa:60:1a:a2:dc:87:3f:96: c1:f7:ff:e1:9b:2f:d8:67:86:f4:43:cf:ac:ef:12: 92:72:ee:6f:5f:5a:6f:b6:ad:0b:d6:23:82:ae:b1: cf:e9:ee:b9:e3:16:a4:39:cf:95:4f:e3:96:d5:d3: af:22:70:d3:2a:2f:a6:17:bc:e9:b5:3e:4a:32:9d: b4:07:2a:b9:63:13:2e:de:a1:51:40:de:ba:52:4f: 07:46:fd:28:a5:b5:f0:61:60:ed:33:4d:e6:0e:b8: ad:3e:5c:31:59:6f:0d:9c:eb:7c:f8:10:d0:8c:d7: 93:d4:84:f1:5d:81:29:07:05:d2:f7:13:8f:0c:9d: 6a:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:E7:70:A4:D5:57:DE:0E:B4:76:B9:36:F4:A4:79:E4:73:B4:27:55 X509v3 Authority Key Identifier: keyid:A3:CB:39:8E:C7:39:51:74:76:2D:93:03:3E:70:60:9D:60:F4:DD:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911606A/4F2588E4BB4511EE830C985DC4F9AE02/o8s5jsc5UXR2LZMDPnBgnWD03bI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/o8s5jsc5UXR2LZMDPnBgnWD03bI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911606A/4F2588E4BB4511EE830C985DC4F9AE02/o8s5jsc5UXR2LZMDPnBgnWD03bI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:4a:e3:dd:af:bb:cb:02:2c:93:bb:cd:c6:f5:b4:11:f7:47: 81:da:17:a7:9c:28:21:5f:1c:5e:ac:f0:55:ad:44:9f:0a:cc: 42:08:26:10:13:10:80:74:67:52:0e:47:ae:b8:33:8a:7c:84: 53:45:87:11:bc:18:ec:9b:db:12:4e:7b:92:54:1e:33:57:8a: 5e:53:8b:86:6a:68:4d:7d:ca:8c:ff:fa:20:8c:fd:01:86:49: 20:c0:e6:19:45:fb:99:ba:1a:b5:b2:bb:75:59:48:60:da:70: 98:b8:00:c6:88:de:b7:9d:e4:2d:43:1f:68:cd:bb:30:8c:e4: a4:cd:5c:cc:8f:c1:cc:28:7b:6c:8f:b8:de:0b:46:70:bb:ca: ab:c6:09:df:a0:9d:f8:24:4d:ad:60:d0:bd:f5:82:27:44:4d: 42:f6:75:36:99:81:d8:dd:e7:8c:af:72:67:25:e2:38:37:03: 3d:7b:1e:cc:e5:46:e0:26:a0:6e:e6:5a:eb:9f:cd:30:35:ab: 06:f4:2a:de:1b:a4:8d:a0:e4:2b:fe:8d:62:58:ae:a9:34:b1: cb:eb:1a:22:75:e9:87:bd:37:01:d3:df:d9:3e:77:d4:1f:31: 91:2e:8f:80:8f:e4:22:b4:8a:87:75:f3:79:2c:71:39:fb:11: 03:52:c0:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTYwNkExMTAvBgNVBAUTKEEzQ0IzOThFQzczOTUxNzQ3NjJEOTMwMzNFNzA2MDlE NjBGNEREQjIwHhcNMjUwMzEzMDM0NTE5WhcNMjUwMzIwMDM0NTE5WjAYMRYwFAYD VQQDEw02N2QyNTRkMC1lYzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtzOw8bGkk0AVayKnjqytfUWHkvfmdT/dJqVGJSYrJVC7i2l4QMnogmxdMY7Z qH/64u4MqTNLsqf7Jr7iouChrT42oVZWx6690uirHlle7swIC4Z0Etoxy/eaCuQD yU7r3+qEjU56DlpXnBVcwMNmu7gS1oEF6k9dn573XdXKqmAaotyHP5bB9//hmy/Y Z4b0Q8+s7xKScu5vX1pvtq0L1iOCrrHP6e654xakOc+VT+OW1dOvInDTKi+mF7zp tT5KMp20Byq5YxMu3qFRQN66Uk8HRv0opbXwYWDtM03mDritPlwxWW8NnOt8+BDQ jNeT1ITxXYEpBwXS9xOPDJ1q2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN7ncKTV V94OtHa5NvSkeeRztCdVMB8GA1UdIwQYMBaAFKPLOY7HOVF0di2TAz5wYJ1g9N2y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjA2QS80RjI1ODhFNEJC NDUxMUVFODMwQzk4NURDNEY5QUUwMi9vOHM1anNjNVVYUjJMWk1EUG5CZ25XRDAz YkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL284czVqc2M1VVhSMkxaTURQbkJnbldEMDNiSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjA2QS80RjI1ODhFNEJCNDUxMUVFODMwQzk4NURDNEY5QUUwMi9vOHM1anNjNVVY UjJMWk1EUG5CZ25XRDAzYkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWSuPdr7vLAiyTu83G9bQR90eB2hennCghXxxerPBVrUSfCsxCCCYQ ExCAdGdSDkeuuDOKfIRTRYcRvBjsm9sSTnuSVB4zV4peU4uGamhNfcqM//ogjP0B hkkgwOYZRfuZuhq1srt1WUhg2nCYuADGiN63neQtQx9ozbswjOSkzVzMj8HMKHts j7jeC0Zwu8qrxgnfoJ34JE2tYNC99YInRE1C9nU2mYHY3eeMr3JnJeI4NwM9ex7M 5UbgJqBu5lrrn80wNasG9CreG6SNoOQr/o1iWK6pNLHL6xoidemHvTcB09/ZPnfU HzGRLo+Aj+QitIqHdfN5LHE5+xEDUsDG -----END CERTIFICATE-----Generated at Thu Mar 13 21:30:59 2025 by rpki-client