$ rpki-client -vvf rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.mft File: 8gl4uKIsE6CwK586X8LUiKuovtU.mft (raw, json) Hash identifier: pElJo6D50fWK8USvB94EeybslUGcG28/Yn0omb5it3Y= Subject key identifier: 4D:79:1D:C3:C1:62:E3:7E:FD:77:3F:29:04:BC:BE:7D:0B:B5:7B:41 Authority key identifier: F2:09:78:B8:A2:2C:13:A0:B0:2B:9F:3A:5F:C2:D4:88:AB:A8:BE:D5 Certificate issuer: /CN=A914653C/serialNumber=F20978B8A22C13A0B02B9F3A5FC2D488ABA8BED5 Certificate serial: 09F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8gl4uKIsE6CwK586X8LUiKuovtU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.mft Manifest number: 09EA Signing time: Fri 30 May 2025 20:04:50 +0000 Manifest this update: Fri 30 May 2025 20:04:49 +0000 Manifest next update: Fri 06 Jun 2025 20:04:49 +0000 Files and hashes: 1: 8gl4uKIsE6CwK586X8LUiKuovtU.crl (hash: bu0msKPJGlqlw1Th7NyxSIeRVGhRQmoYocH70yKk9TU=) 2: BD7E578079E011EA8DD5907FC4F9AE02.roa (hash: iYxIY6VXdTf7gHnwepU+/VGZkh/V1c1cIjc+gsTh8TE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.crl rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8gl4uKIsE6CwK586X8LUiKuovtU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:04:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2544 (0x9f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914653C, serialNumber=F20978B8A22C13A0B02B9F3A5FC2D488ABA8BED5 Validity Not Before: May 30 20:04:49 2025 GMT Not After : Jun 6 20:04:49 2025 GMT Subject: CN=683a0f61-2b72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:32:26:b8:a1:d0:a7:27:67:86:f9:9e:a4:9a: c6:dd:bd:eb:f0:00:c4:41:54:e5:cd:47:b2:4c:75: ee:43:74:c4:6f:2d:c3:7c:83:34:87:ea:1e:f6:bf: a6:45:61:f8:e4:32:78:1f:5f:7f:05:05:70:2d:3c: 9f:9c:f3:9d:37:87:db:d0:af:3b:0c:85:72:97:de: 2e:d5:a1:54:99:04:5f:91:74:dc:f4:98:83:c2:a0: d0:cc:5e:0f:a1:a6:f1:b9:5e:32:ad:8c:5d:a6:92: 52:f4:11:b3:d9:66:1b:9c:85:c0:62:07:f5:cc:ff: cc:68:28:51:e7:0e:72:75:2c:2e:87:b8:8a:00:e6: 92:90:9b:f7:e3:98:78:54:6e:30:2f:22:20:9f:78: 1c:63:59:7c:3c:12:c3:d1:7a:b3:09:8d:d4:c1:5c: ac:63:7d:a1:e2:27:8f:4f:98:04:84:81:c2:94:ff: 2f:db:d7:64:92:7d:3b:14:d6:cb:b4:42:a5:2b:8a: 9a:c2:20:63:c4:71:c6:0f:fc:9b:57:d6:2b:bc:eb: 5c:be:a9:8a:d8:62:bf:aa:b6:39:07:1a:9d:92:72: cb:89:28:97:c6:82:45:ec:0d:92:44:12:5f:d4:94: 36:56:54:97:40:77:67:02:68:1b:da:be:56:d3:46: 07:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:79:1D:C3:C1:62:E3:7E:FD:77:3F:29:04:BC:BE:7D:0B:B5:7B:41 X509v3 Authority Key Identifier: keyid:F2:09:78:B8:A2:2C:13:A0:B0:2B:9F:3A:5F:C2:D4:88:AB:A8:BE:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8gl4uKIsE6CwK586X8LUiKuovtU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:73:93:af:ed:2a:fd:96:af:ec:81:31:4c:fa:ee:de:18:27: e4:3f:0f:a4:a1:36:9b:af:27:69:a2:aa:2a:d7:21:01:d6:03: 80:39:ca:7f:cd:9f:e8:d7:24:f6:9d:ba:69:1e:de:99:ea:4a: 9b:56:de:b6:3b:a6:dc:a8:f8:a4:11:d8:c1:70:9a:f1:e0:9b: 4b:e5:13:f7:23:ca:1d:37:69:e3:78:cd:15:b1:9f:38:55:4d: de:27:3e:a3:a2:98:9a:ed:e7:cf:e7:75:8e:19:cc:01:24:fa: 64:b9:1c:70:ec:b7:79:a1:87:fd:76:09:81:1f:25:7c:97:1b: d4:80:82:7e:ca:08:34:68:80:a9:fa:ec:90:78:3e:b3:09:d7: 95:70:3d:12:4e:ac:6d:b4:c7:04:5a:4f:9b:df:8c:9d:b5:5d: 68:65:2a:8c:dc:04:f0:1b:cd:3c:b1:d8:64:a4:9b:75:aa:97: 7a:6a:b4:ce:bd:ba:7a:d8:7c:3e:f9:60:85:fc:ce:e4:0d:7a: 93:e0:3a:f4:2c:40:fc:df:17:c4:ec:5b:d2:03:4a:47:c2:af: 94:07:75:ae:00:2f:c5:8f:b9:3d:fe:19:a8:ee:39:b4:03:56: a4:20:44:18:4c:2c:84:7e:93:31:7f:1b:5b:1e:b8:ae:12:d2: 6e:c8:57:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDY1M0MxMTAvBgNVBAUTKEYyMDk3OEI4QTIyQzEzQTBCMDJCOUYzQTVGQzJENDg4 QUJBOEJFRDUwHhcNMjUwNTMwMjAwNDQ5WhcNMjUwNjA2MjAwNDQ5WjAYMRYwFAYD VQQDEw02ODNhMGY2MS0yYjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzDImuKHQpydnhvmepJrG3b3r8ADEQVTlzUeyTHXuQ3TEby3DfIM0h+oe9r+m RWH45DJ4H19/BQVwLTyfnPOdN4fb0K87DIVyl94u1aFUmQRfkXTc9JiDwqDQzF4P oabxuV4yrYxdppJS9BGz2WYbnIXAYgf1zP/MaChR5w5ydSwuh7iKAOaSkJv345h4 VG4wLyIgn3gcY1l8PBLD0XqzCY3UwVysY32h4iePT5gEhIHClP8v29dkkn07FNbL tEKlK4qawiBjxHHGD/ybV9YrvOtcvqmK2GK/qrY5BxqdknLLiSiXxoJF7A2SRBJf 1JQ2VlSXQHdnAmgb2r5W00YHhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE15HcPB YuN+/Xc/KQS8vn0LtXtBMB8GA1UdIwQYMBaAFPIJeLiiLBOgsCufOl/C1IirqL7V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjUzQy81QkE4NzgyMDc5 REYxMUVBQkM5RDk3N0RDNEY5QUUwMi84Z2w0dUtJc0U2Q3dLNTg2WDhMVWlLdW92 dFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhnbDR1S0lzRTZDd0s1ODZYOExVaUt1b3Z0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NjUzQy81QkE4NzgyMDc5REYxMUVBQkM5RDk3N0RDNEY5QUUwMi84Z2w0dUtJc0U2 Q3dLNTg2WDhMVWlLdW92dFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7c5Ov7Sr9lq/sgTFM+u7eGCfkPw+koTabrydpoqoq1yEB1gOAOcp/ zZ/o1yT2nbppHt6Z6kqbVt62O6bcqPikEdjBcJrx4JtL5RP3I8odN2njeM0VsZ84 VU3eJz6jopia7efP53WOGcwBJPpkuRxw7Ld5oYf9dgmBHyV8lxvUgIJ+ygg0aICp +uyQeD6zCdeVcD0STqxttMcEWk+b34ydtV1oZSqM3ATwG808sdhkpJt1qpd6arTO vbp62Hw++WCF/M7kDXqT4Dr0LED83xfE7FvSA0pHwq+UB3WuAC/Fj7k9/hmo7jm0 A1akIEQYTCyEfpMxfxtbHriuEtJuyFc3 -----END CERTIFICATE-----Generated at Sat May 31 16:38:05 2025 by rpki-client