$ rpki-client -vvf rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.mft File: 8ItqFjLJysLoaI3qSIfZMC6VYBA.mft (raw, json) Hash identifier: +YA+7wM3c5qWfZfq6klE2nEFgUeRb7ULyq0UfE4c/gk= Subject key identifier: 2B:8A:35:37:E3:86:A1:B6:33:AE:2A:C1:3F:F5:CA:07:F0:FE:3E:F5 Authority key identifier: F0:8B:6A:16:32:C9:CA:C2:E8:68:8D:EA:48:87:D9:30:2E:95:60:10 Certificate issuer: /CN=A911FFAB/serialNumber=F08B6A1632C9CAC2E8688DEA4887D9302E956010 Certificate serial: 077F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ItqFjLJysLoaI3qSIfZMC6VYBA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.mft Manifest number: 0773 Signing time: Fri 30 May 2025 21:43:15 +0000 Manifest this update: Fri 30 May 2025 21:43:15 +0000 Manifest next update: Fri 06 Jun 2025 21:43:15 +0000 Files and hashes: 1: 8ItqFjLJysLoaI3qSIfZMC6VYBA.crl (hash: nGip4co3wjQQXwOHo1mBgQdpcexBE0QLYZna+ToPx1I=) 2: B5DC8802169411EBBEBD9A23C4F9AE02.roa (hash: 4ZdvboJ8mrbqq75dMjpcRNVXA0/Wmpp30CU0dXWt/yQ=) 3: B54C3DBA169411EBBEBD9A23C4F9AE02.roa (hash: nma4xkXXDMJG7QciaymwPc3dJsJxzYlJjEDf7RTo8RE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.crl rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ItqFjLJysLoaI3qSIfZMC6VYBA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:43:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1919 (0x77f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FFAB, serialNumber=F08B6A1632C9CAC2E8688DEA4887D9302E956010 Validity Not Before: May 30 21:43:15 2025 GMT Not After : Jun 6 21:43:15 2025 GMT Subject: CN=683a2673-5d48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:42:f4:2d:d8:32:36:a1:15:91:52:59:a8:a0: 16:a9:f6:87:d9:41:7a:89:d2:f8:2a:f2:50:7a:9b: 01:b3:0e:ef:7c:5e:b2:7f:23:0f:50:72:dd:12:01: 4b:b1:14:87:92:f1:6c:d5:dc:5e:51:cf:b9:3e:23: f0:99:10:43:3b:16:0b:d8:48:c7:2d:2a:c3:d8:88: e4:11:c2:9d:a5:e5:43:a8:3e:63:eb:f0:87:27:76: 33:8c:53:5b:82:4e:70:8d:c7:63:99:57:de:01:00: 57:ec:cc:be:2c:e0:e0:14:88:0e:c7:9a:1d:b7:d1: f9:ea:25:a9:34:25:61:21:89:c7:1b:58:65:4c:ef: 42:7f:7e:22:12:5b:ca:1d:dd:c0:46:e0:88:1c:c5: d9:72:60:a3:54:b6:df:1d:85:3d:fc:b9:27:ab:e8: 06:45:cd:e7:c0:cf:ef:de:4e:e4:25:a9:36:9c:e2: 8d:c1:03:bc:4a:ad:f7:e4:cd:d6:bb:6f:0e:b8:4b: e0:f7:a9:8a:ee:26:d3:3c:7d:6a:d3:e6:74:68:f1: af:0a:cd:c7:66:a2:f4:f9:cc:46:e7:03:5d:b2:0d: 78:b1:59:ff:70:71:e1:6e:f2:86:7f:7f:dc:02:8a: 3b:a7:fa:8b:fe:f5:c8:bb:0d:dd:b7:8a:aa:5c:11: dd:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:8A:35:37:E3:86:A1:B6:33:AE:2A:C1:3F:F5:CA:07:F0:FE:3E:F5 X509v3 Authority Key Identifier: keyid:F0:8B:6A:16:32:C9:CA:C2:E8:68:8D:EA:48:87:D9:30:2E:95:60:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ItqFjLJysLoaI3qSIfZMC6VYBA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:92:7e:2f:22:91:cb:28:68:17:66:37:0b:61:cf:50:28:18: f0:07:bf:a1:36:98:b2:68:d2:06:a0:25:24:8e:b7:4f:18:20: 92:84:55:95:82:4e:77:66:89:d0:2f:d1:39:41:11:e9:21:38: 88:08:1d:26:b7:be:fb:84:db:14:44:10:5d:47:cf:9c:2c:81: b9:4c:f9:15:7d:07:79:83:9f:df:03:25:cd:ac:d6:7b:04:16: 3c:25:5b:5e:2c:f5:88:4f:c2:69:7d:96:59:4b:32:59:86:15: 6a:32:32:4e:14:b6:a7:4e:ff:1c:98:fc:d3:2a:dc:35:e3:ab: 6d:76:38:ef:20:e9:c6:86:e7:93:db:0a:80:ae:2f:9d:70:f8: 80:83:47:64:be:6e:4f:05:56:b2:32:2b:b6:40:d9:62:36:8a: 38:7a:e6:ca:80:3c:d6:43:58:c8:cc:1e:93:3d:01:fe:30:e1: 41:50:d9:23:02:b6:b5:e1:3a:94:e6:09:03:ec:f6:db:5e:6a: 6c:af:05:63:ca:95:dc:bf:dc:96:3d:40:ad:3d:52:b6:6c:17: bb:b5:9a:3f:20:a1:72:5f:f5:68:1c:2e:9c:c1:e2:a2:dd:1d: 67:16:da:af:7b:40:b6:44:e5:74:a1:cb:3f:d1:e3:f4:5e:d1: c6:dd:aa:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB38wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZGQUIxMTAvBgNVBAUTKEYwOEI2QTE2MzJDOUNBQzJFODY4OERFQTQ4ODdEOTMw MkU5NTYwMTAwHhcNMjUwNTMwMjE0MzE1WhcNMjUwNjA2MjE0MzE1WjAYMRYwFAYD VQQDEw02ODNhMjY3My01ZDQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn0L0LdgyNqEVkVJZqKAWqfaH2UF6idL4KvJQepsBsw7vfF6yfyMPUHLdEgFL sRSHkvFs1dxeUc+5PiPwmRBDOxYL2EjHLSrD2IjkEcKdpeVDqD5j6/CHJ3YzjFNb gk5wjcdjmVfeAQBX7My+LODgFIgOx5odt9H56iWpNCVhIYnHG1hlTO9Cf34iElvK Hd3ARuCIHMXZcmCjVLbfHYU9/Lknq+gGRc3nwM/v3k7kJak2nOKNwQO8Sq335M3W u28OuEvg96mK7ibTPH1q0+Z0aPGvCs3HZqL0+cxG5wNdsg14sVn/cHHhbvKGf3/c Aoo7p/qL/vXIuw3dt4qqXBHdVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCuKNTfj hqG2M64qwT/1ygfw/j71MB8GA1UdIwQYMBaAFPCLahYyycrC6GiN6kiH2TAulWAQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkZBQi9BQTdGQTQwMDE2 OTIxMUVCQjQ1RDg5MURDNEY5QUUwMi84SXRxRmpMSnlzTG9hSTNxU0lmWk1DNlZZ QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhJdHFGakxKeXNMb2FJM3FTSWZaTUM2VllCQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RkZBQi9BQTdGQTQwMDE2OTIxMUVCQjQ1RDg5MURDNEY5QUUwMi84SXRxRmpMSnlz TG9hSTNxU0lmWk1DNlZZQkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdkn4vIpHLKGgXZjcLYc9QKBjwB7+hNpiyaNIGoCUkjrdPGCCShFWV gk53ZonQL9E5QRHpITiICB0mt777hNsURBBdR8+cLIG5TPkVfQd5g5/fAyXNrNZ7 BBY8JVteLPWIT8JpfZZZSzJZhhVqMjJOFLanTv8cmPzTKtw146ttdjjvIOnGhueT 2wqAri+dcPiAg0dkvm5PBVayMiu2QNliNoo4eubKgDzWQ1jIzB6TPQH+MOFBUNkj Ara14TqU5gkD7PbbXmpsrwVjypXcv9yWPUCtPVK2bBe7tZo/IKFyX/VoHC6cweKi 3R1nFtqve0C2ROV0ocs/0eP0XtHG3apR -----END CERTIFICATE-----Generated at Sat May 31 16:38:02 2025 by rpki-client