$ rpki-client -vvf rpki.apnic.net/member_repository/A911606A/4F2588E4BB4511EE830C985DC4F9AE02/o8s5jsc5UXR2LZMDPnBgnWD03bI.mft File: o8s5jsc5UXR2LZMDPnBgnWD03bI.mft (raw, json) Hash identifier: f069jVR5J+N3kRzITTCtmrzSN25/yKJMSK2ji1E9tLY= Subject key identifier: 50:EE:C6:E1:25:CD:D2:B7:BC:AB:2F:1D:E2:8D:8B:2C:55:9D:11:84 Authority key identifier: A3:CB:39:8E:C7:39:51:74:76:2D:93:03:3E:70:60:9D:60:F4:DD:B2 Certificate issuer: /CN=A911606A/serialNumber=A3CB398EC7395174762D93033E70609D60F4DDB2 Certificate serial: 0105 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/o8s5jsc5UXR2LZMDPnBgnWD03bI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911606A/4F2588E4BB4511EE830C985DC4F9AE02/o8s5jsc5UXR2LZMDPnBgnWD03bI.mft Manifest number: 0101 Signing time: Sun 01 Jun 2025 04:49:43 +0000 Manifest this update: Sun 01 Jun 2025 04:49:42 +0000 Manifest next update: Sun 08 Jun 2025 04:49:42 +0000 Files and hashes: 1: o8s5jsc5UXR2LZMDPnBgnWD03bI.crl (hash: ndMixN5BIMvNNQx4Mx0XUXmV2a1q4gGbHcmsmFzxEAI=) 2: EEEC4B6ABD9D11EE9839661CC4F9AE02.roa (hash: MV1F0Q4UL7J+dtgMeHTJ35pvzsiuBXHWMmcfd9HjqkQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911606A/4F2588E4BB4511EE830C985DC4F9AE02/o8s5jsc5UXR2LZMDPnBgnWD03bI.crl rsync://rpki.apnic.net/member_repository/A911606A/4F2588E4BB4511EE830C985DC4F9AE02/o8s5jsc5UXR2LZMDPnBgnWD03bI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/o8s5jsc5UXR2LZMDPnBgnWD03bI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 04:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 261 (0x105) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911606A, serialNumber=A3CB398EC7395174762D93033E70609D60F4DDB2 Validity Not Before: Jun 1 04:49:42 2025 GMT Not After : Jun 8 04:49:42 2025 GMT Subject: CN=683bdbe7-b6ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:22:4d:ea:78:1e:a9:ab:99:36:04:2b:69:04: 13:a4:33:4b:61:ac:ac:0a:03:08:bc:b5:7c:68:6f: 50:93:e6:be:ce:a8:a1:7c:1f:99:db:c4:ce:60:5d: 63:ee:dc:4b:66:bc:f1:24:b8:f4:51:02:29:e2:9e: 4c:23:60:19:43:70:f8:41:67:75:18:cf:07:db:88: 8e:d5:db:fa:e9:ad:59:86:96:eb:98:72:e9:36:ec: 6c:69:f2:c5:3b:6b:25:a3:7e:b9:f1:26:b6:50:84: 7c:31:b3:93:3d:de:fe:63:ea:b1:fa:de:c7:92:ab: 6f:6a:50:28:aa:c4:6f:bc:d0:23:4d:9a:a5:d7:49: 0a:3e:d1:35:14:9e:f8:b8:02:10:a3:32:e4:7b:41: 61:61:b3:8f:29:59:9b:35:77:bd:77:97:ab:88:a5: ae:56:00:55:f0:ee:33:51:77:13:6a:9b:b2:3d:45: a8:1a:5b:be:60:5b:c8:17:74:51:24:98:08:81:65: 8c:96:8a:7a:22:a9:37:02:7b:8f:be:3d:f3:7c:28: 7d:eb:ef:1d:69:21:bc:41:4a:70:27:1c:f2:d2:dc: d3:52:6e:39:88:b4:a9:f8:f8:e1:1a:c3:54:a4:10: c0:82:9a:03:7d:f5:3c:59:88:99:8e:72:50:eb:bd: cb:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:EE:C6:E1:25:CD:D2:B7:BC:AB:2F:1D:E2:8D:8B:2C:55:9D:11:84 X509v3 Authority Key Identifier: keyid:A3:CB:39:8E:C7:39:51:74:76:2D:93:03:3E:70:60:9D:60:F4:DD:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911606A/4F2588E4BB4511EE830C985DC4F9AE02/o8s5jsc5UXR2LZMDPnBgnWD03bI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/o8s5jsc5UXR2LZMDPnBgnWD03bI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911606A/4F2588E4BB4511EE830C985DC4F9AE02/o8s5jsc5UXR2LZMDPnBgnWD03bI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:d8:86:fb:67:df:77:02:06:25:1d:15:f3:cc:92:9e:c7:74: ae:e8:7a:38:6b:26:96:c2:6b:48:e6:b2:17:7e:0e:6b:bb:64: cb:a3:e8:98:d3:f8:36:e5:16:ae:b3:26:c2:6c:de:99:a6:e9: 87:c0:f4:b4:1a:30:1d:f0:5f:35:a8:bf:83:b3:22:db:7a:68: 0c:33:b0:b9:58:70:81:99:79:76:8e:4c:c1:3e:1b:ad:a4:b9: 1d:c3:45:5f:f4:3c:18:32:57:14:7c:9e:f7:bc:72:bd:e5:46: 49:b6:54:9b:10:b9:4b:9f:79:30:f6:93:4d:e0:73:2a:07:fb: a0:c3:e8:3d:94:70:9c:48:e0:79:4e:75:b7:01:82:10:9d:4a: 3c:44:84:db:94:5c:29:f5:98:87:7f:15:36:c7:fe:e2:22:48: 46:61:66:13:39:ef:09:a2:fc:c9:c3:0a:d7:10:34:a2:2b:1e: d4:03:a2:17:06:bd:7f:05:48:df:65:af:a7:ef:36:db:c6:c6: f7:f2:df:37:7a:c9:19:f2:4b:5e:cd:13:60:b8:80:1e:7f:94: 51:e4:ef:f0:19:1c:cf:a1:a0:c7:51:02:20:ae:7d:27:bc:99: f7:46:69:91:06:d8:97:72:f7:79:1d:66:b3:0f:8f:c8:0e:18: 69:85:95:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTYwNkExMTAvBgNVBAUTKEEzQ0IzOThFQzczOTUxNzQ3NjJEOTMwMzNFNzA2MDlE NjBGNEREQjIwHhcNMjUwNjAxMDQ0OTQyWhcNMjUwNjA4MDQ0OTQyWjAYMRYwFAYD VQQDEw02ODNiZGJlNy1iNmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3iJN6ngeqauZNgQraQQTpDNLYaysCgMIvLV8aG9Qk+a+zqihfB+Z28TOYF1j 7txLZrzxJLj0UQIp4p5MI2AZQ3D4QWd1GM8H24iO1dv66a1ZhpbrmHLpNuxsafLF O2slo3658Sa2UIR8MbOTPd7+Y+qx+t7HkqtvalAoqsRvvNAjTZql10kKPtE1FJ74 uAIQozLke0FhYbOPKVmbNXe9d5eriKWuVgBV8O4zUXcTapuyPUWoGlu+YFvIF3RR JJgIgWWMlop6Iqk3AnuPvj3zfCh96+8daSG8QUpwJxzy0tzTUm45iLSp+PjhGsNU pBDAgpoDffU8WYiZjnJQ673LdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFDuxuEl zdK3vKsvHeKNiyxVnRGEMB8GA1UdIwQYMBaAFKPLOY7HOVF0di2TAz5wYJ1g9N2y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjA2QS80RjI1ODhFNEJC NDUxMUVFODMwQzk4NURDNEY5QUUwMi9vOHM1anNjNVVYUjJMWk1EUG5CZ25XRDAz YkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL284czVqc2M1VVhSMkxaTURQbkJnbldEMDNiSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjA2QS80RjI1ODhFNEJCNDUxMUVFODMwQzk4NURDNEY5QUUwMi9vOHM1anNjNVVY UjJMWk1EUG5CZ25XRDAzYkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAD2Ib7Z993AgYlHRXzzJKex3Su6Ho4ayaWwmtI5rIXfg5ru2TLo+iY 0/g25RausybCbN6ZpumHwPS0GjAd8F81qL+DsyLbemgMM7C5WHCBmXl2jkzBPhut pLkdw0Vf9DwYMlcUfJ73vHK95UZJtlSbELlLn3kw9pNN4HMqB/ugw+g9lHCcSOB5 TnW3AYIQnUo8RITblFwp9ZiHfxU2x/7iIkhGYWYTOe8JovzJwwrXEDSiKx7UA6IX Br1/BUjfZa+n7zbbxsb38t83eskZ8ktezRNguIAef5RR5O/wGRzPoaDHUQIgrn0n vJn3RmmRBtiXcvd5HWazD4/IDhhphZXG -----END CERTIFICATE-----Generated at Mon Jun 2 18:44:54 2025 by rpki-client