$ rpki-client -vvf rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.mft File: s8lXWbAmAWnVga-ERmxca89vwds.mft (raw, json) Hash identifier: 4gODCbl3Cxr7iBenoSycztvtMlQYxq6FS0kbWPSo6I8= Subject key identifier: 45:B8:16:F0:82:9B:22:7B:EA:0C:D1:AB:E9:BA:50:A0:A0:87:BD:0F Authority key identifier: B3:C9:57:59:B0:26:01:69:D5:81:AF:84:46:6C:5C:6B:CF:6F:C1:DB Certificate issuer: /CN=A913B090/serialNumber=B3C95759B0260169D581AF84466C5C6BCF6FC1DB Certificate serial: 01DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8lXWbAmAWnVga-ERmxca89vwds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.mft Manifest number: 01D7 Signing time: Sat 31 May 2025 02:28:21 +0000 Manifest this update: Sat 31 May 2025 02:28:21 +0000 Manifest next update: Sat 07 Jun 2025 02:28:21 +0000 Files and hashes: 1: s8lXWbAmAWnVga-ERmxca89vwds.crl (hash: 82SJh2g5xCuEtEX949u0B+1wiKq6/BwnihEP5cpNRzE=) 2: B57CACF267F511EDA884E65BC4F9AE02.roa (hash: JHSJOwqLi/FPFLEdwK3eukBTiOCCTjuJ4yCwWkwhShM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.crl rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8lXWbAmAWnVga-ERmxca89vwds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:28:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 474 (0x1da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B090, serialNumber=B3C95759B0260169D581AF84466C5C6BCF6FC1DB Validity Not Before: May 31 02:28:21 2025 GMT Not After : Jun 7 02:28:21 2025 GMT Subject: CN=683a6945-ddea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:33:32:36:05:31:3b:65:85:a2:87:7c:3e:0c: c4:37:2b:2b:67:0e:a2:f3:97:72:16:bb:d1:3b:9d: f6:9f:cb:44:f4:9a:65:3d:7c:2d:96:b3:71:54:3f: 8f:ad:cb:84:23:eb:20:10:b8:cf:ca:c6:f6:0a:23: 09:33:4b:b5:fc:2d:37:f2:54:bc:45:1c:2f:df:85: 26:fc:f6:2a:38:25:11:77:59:41:f9:89:75:03:a8: 9c:4f:6d:9f:4c:40:e8:c1:d3:d6:90:11:50:78:46: 51:eb:ab:af:73:0c:aa:c2:24:7b:ed:23:99:e8:34: 4d:1a:8d:ba:c3:85:b1:78:19:c8:89:29:ce:2e:7b: 1d:c0:fc:fe:ed:84:75:70:8a:04:5a:47:d8:d7:39: 75:98:09:cf:c0:c5:ac:f8:96:61:68:02:9a:7d:9f: 79:f2:70:f9:20:21:82:74:f0:6c:46:a2:3a:7e:c2: 56:9b:7f:ff:fa:e9:b1:3c:e5:e4:24:6d:88:15:07: b5:2e:00:f1:cd:b1:fa:db:cd:4a:ae:b5:8f:4c:a1: 96:15:96:b3:af:86:4c:23:d2:3c:97:b3:e3:31:41: 76:27:e8:1f:91:79:2e:e4:45:17:b5:99:5e:fd:c6: 6d:2f:e7:9b:1b:04:32:bd:67:e5:44:ca:a7:67:40: bc:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:B8:16:F0:82:9B:22:7B:EA:0C:D1:AB:E9:BA:50:A0:A0:87:BD:0F X509v3 Authority Key Identifier: keyid:B3:C9:57:59:B0:26:01:69:D5:81:AF:84:46:6C:5C:6B:CF:6F:C1:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8lXWbAmAWnVga-ERmxca89vwds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:3e:ae:58:77:02:b9:52:76:60:5c:59:77:2c:d9:bc:61:67: 1a:13:18:2e:ec:27:4f:7c:d6:78:a2:2d:bf:69:31:ba:27:37: 3f:f8:ef:95:57:c5:3a:ba:e8:36:e0:df:19:e5:82:c9:85:a6: 39:cb:56:e8:f4:37:b4:73:66:20:dc:68:fe:e8:62:2e:6c:a1: 47:5e:bf:3c:ed:9b:e8:31:7f:d0:d5:81:35:fe:5c:6d:71:b5: 56:f5:b8:cc:ed:38:34:0f:14:78:85:a3:9f:6d:53:88:59:84: 51:9a:1e:25:4f:8e:d8:53:d5:dc:75:a9:87:25:1c:8d:bc:ee: 44:c3:c6:d9:6a:31:73:b5:8d:d5:ef:08:7a:cc:eb:e0:2a:36: 90:2e:bb:4f:81:e4:80:93:7a:af:69:76:bb:21:09:73:2b:eb: 54:41:ce:b6:80:83:9d:88:74:ba:66:61:5b:87:82:c6:6f:1a: 98:dd:4f:b4:90:54:ff:c4:11:62:2d:6a:ed:3f:cc:ff:26:4d: d2:b0:0d:0b:9c:b9:e7:fd:c8:a0:e4:dd:9e:45:8c:df:8f:72: 1e:ea:e5:23:10:88:55:59:ac:3f:bf:8d:a8:79:2c:b2:5a:34: 23:39:21:22:62:c4:03:92:9b:49:d9:fa:51:e3:53:71:18:e1: bf:0e:0c:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IwOTAxMTAvBgNVBAUTKEIzQzk1NzU5QjAyNjAxNjlENTgxQUY4NDQ2NkM1QzZC Q0Y2RkMxREIwHhcNMjUwNTMxMDIyODIxWhcNMjUwNjA3MDIyODIxWjAYMRYwFAYD VQQDEw02ODNhNjk0NS1kZGVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxDMyNgUxO2WFood8PgzENysrZw6i85dyFrvRO532n8tE9JplPXwtlrNxVD+P rcuEI+sgELjPysb2CiMJM0u1/C038lS8RRwv34Um/PYqOCURd1lB+Yl1A6icT22f TEDowdPWkBFQeEZR66uvcwyqwiR77SOZ6DRNGo26w4WxeBnIiSnOLnsdwPz+7YR1 cIoEWkfY1zl1mAnPwMWs+JZhaAKafZ958nD5ICGCdPBsRqI6fsJWm3//+umxPOXk JG2IFQe1LgDxzbH6281KrrWPTKGWFZazr4ZMI9I8l7PjMUF2J+gfkXku5EUXtZle /cZtL+ebGwQyvWflRMqnZ0C8PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEW4FvCC myJ76gzRq+m6UKCgh70PMB8GA1UdIwQYMBaAFLPJV1mwJgFp1YGvhEZsXGvPb8Hb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjA5MC82QjY3MjQzNDY3 RjExMUVEQkRDNTg1MkNDNEY5QUUwMi9zOGxYV2JBbUFXblZnYS1FUm14Y2E4OXZ3 ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M4bFhXYkFtQVduVmdhLUVSbXhjYTg5dndkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjA5MC82QjY3MjQzNDY3RjExMUVEQkRDNTg1MkNDNEY5QUUwMi9zOGxYV2JBbUFX blZnYS1FUm14Y2E4OXZ3ZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHPq5YdwK5UnZgXFl3LNm8YWcaExgu7CdPfNZ4oi2/aTG6Jzc/+O+V V8U6uug24N8Z5YLJhaY5y1bo9De0c2Yg3Gj+6GIubKFHXr887ZvoMX/Q1YE1/lxt cbVW9bjM7Tg0DxR4haOfbVOIWYRRmh4lT47YU9XcdamHJRyNvO5Ew8bZajFztY3V 7wh6zOvgKjaQLrtPgeSAk3qvaXa7IQlzK+tUQc62gIOdiHS6ZmFbh4LGbxqY3U+0 kFT/xBFiLWrtP8z/Jk3SsA0LnLnn/cig5N2eRYzfj3Ie6uUjEIhVWaw/v42oeSyy WjQjOSEiYsQDkptJ2fpR41NxGOG/Dgwn -----END CERTIFICATE-----Generated at Sat May 31 16:36:55 2025 by rpki-client