$ rpki-client -vvf rpki.apnic.net/member_repository/A9147CDA/49B27D8A054D11EE9DFC1624C4F9AE02/89pR_oC82pcIdSXiBGIeqfVXQZk.mft File: 89pR_oC82pcIdSXiBGIeqfVXQZk.mft (raw, json) Hash identifier: rV0QC6/KI4kdltfZ14t4NQFEmJY+gzd85uhbjK+O7L0= Subject key identifier: A8:7C:EA:70:28:23:44:A1:0D:B8:08:05:A8:A2:E6:FC:2B:F0:30:27 Authority key identifier: F3:DA:51:FE:80:BC:DA:97:08:75:25:E2:04:62:1E:A9:F5:57:41:99 Certificate issuer: /CN=A9147CDA/serialNumber=F3DA51FE80BCDA97087525E204621EA9F5574199 Certificate serial: 01BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89pR_oC82pcIdSXiBGIeqfVXQZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147CDA/49B27D8A054D11EE9DFC1624C4F9AE02/89pR_oC82pcIdSXiBGIeqfVXQZk.mft Manifest number: 019F Signing time: Sat 31 May 2025 03:27:33 +0000 Manifest this update: Sat 31 May 2025 03:27:33 +0000 Manifest next update: Sat 07 Jun 2025 03:27:33 +0000 Files and hashes: 1: 89pR_oC82pcIdSXiBGIeqfVXQZk.crl (hash: WtavuhgNSamy0UpRefBoCo2CRcynXSbKA0HaoC5Bwv0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147CDA/49B27D8A054D11EE9DFC1624C4F9AE02/89pR_oC82pcIdSXiBGIeqfVXQZk.crl rsync://rpki.apnic.net/member_repository/A9147CDA/49B27D8A054D11EE9DFC1624C4F9AE02/89pR_oC82pcIdSXiBGIeqfVXQZk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89pR_oC82pcIdSXiBGIeqfVXQZk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:27:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 443 (0x1bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147CDA, serialNumber=F3DA51FE80BCDA97087525E204621EA9F5574199 Validity Not Before: May 31 03:27:33 2025 GMT Not After : Jun 7 03:27:33 2025 GMT Subject: CN=683a7725-3cfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:02:cc:e5:8b:4f:08:5f:da:3e:5c:57:94:ce: de:82:e0:82:5e:14:0e:c1:a0:2e:56:ed:6e:fd:b7: f9:86:71:5d:c2:fb:99:07:9f:7a:4c:5f:fb:a9:8b: 7b:fc:2d:4d:6b:13:9d:97:70:06:2c:9a:7e:8e:04: 92:e9:89:45:0d:c1:24:f3:11:6f:d3:41:6b:58:0d: 7d:c3:09:ce:9b:73:81:6c:d6:9a:52:e3:6f:83:63: a9:bd:a2:5c:0a:da:fa:ec:d8:c6:90:13:9a:06:20: 0d:49:5e:4a:44:13:de:9f:ba:de:f5:4d:5b:60:0a: 09:06:66:ac:88:b5:cf:12:e4:33:2a:2d:78:00:a8: 85:a3:41:c0:66:05:46:a7:17:b3:c3:09:89:ef:29: 05:59:d2:34:f0:44:40:ed:48:6b:75:e7:61:56:00: 65:78:1b:7e:e7:ad:f0:37:9a:00:d8:2d:d9:7c:39: cb:4e:26:d5:6d:ac:76:76:30:bc:03:e4:4e:70:3c: ff:32:01:4a:b3:84:9e:9a:e6:34:ba:93:00:d0:0b: 21:aa:f4:9b:44:99:82:6e:a2:0f:3a:9d:88:00:e4: 65:c8:cc:53:a6:7c:82:9b:e5:73:af:ab:ab:01:d0: e0:8b:db:7b:36:d9:5b:a4:8a:e3:7f:0b:c3:bd:a7: cf:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:7C:EA:70:28:23:44:A1:0D:B8:08:05:A8:A2:E6:FC:2B:F0:30:27 X509v3 Authority Key Identifier: keyid:F3:DA:51:FE:80:BC:DA:97:08:75:25:E2:04:62:1E:A9:F5:57:41:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147CDA/49B27D8A054D11EE9DFC1624C4F9AE02/89pR_oC82pcIdSXiBGIeqfVXQZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89pR_oC82pcIdSXiBGIeqfVXQZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147CDA/49B27D8A054D11EE9DFC1624C4F9AE02/89pR_oC82pcIdSXiBGIeqfVXQZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:6d:5e:77:8c:82:89:27:60:8e:e7:65:c5:16:66:a1:99:14: 84:03:e9:06:12:5a:01:ae:02:e0:da:30:0f:1e:5d:76:09:6f: 74:e4:99:08:9d:d4:48:bb:9d:9d:9c:08:4d:ca:ea:3a:b7:79: 25:f6:48:65:9f:d1:03:00:f6:c5:59:fc:9f:b7:88:d5:3b:71: df:59:e5:36:94:75:7e:86:dd:60:06:21:4b:28:00:c9:a2:17: 4b:15:ed:fa:47:ec:90:ec:e1:dc:fa:c2:c2:ca:68:78:f7:d7: f2:ea:2c:03:78:38:18:a5:6f:32:e2:f0:6e:4a:01:06:a7:e8: e6:bb:c6:30:7a:bc:71:86:d6:61:3a:1e:ee:23:11:3d:a0:d7: a7:92:15:3a:b7:75:53:5c:5f:b9:d6:74:4f:a4:78:0c:45:91: 6e:00:88:0a:a7:48:c4:bd:35:48:77:b7:d2:8d:f9:25:68:b3: 48:d4:15:e4:1d:96:ce:61:97:5f:e6:ad:cc:17:01:9d:0a:21: fa:e1:91:6b:60:8b:a5:bc:88:b4:e4:63:9c:1a:96:3c:41:44: 78:9e:ef:89:35:92:dc:de:8d:09:da:e1:c9:3a:fa:ba:be:1e: cd:bb:ca:a3:7c:50:b4:6f:37:b9:fe:a8:b2:fa:c9:76:f8:ba: 04:fe:ad:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdDREExMTAvBgNVBAUTKEYzREE1MUZFODBCQ0RBOTcwODc1MjVFMjA0NjIxRUE5 RjU1NzQxOTkwHhcNMjUwNTMxMDMyNzMzWhcNMjUwNjA3MDMyNzMzWjAYMRYwFAYD VQQDEw02ODNhNzcyNS0zY2ZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtgLM5YtPCF/aPlxXlM7eguCCXhQOwaAuVu1u/bf5hnFdwvuZB596TF/7qYt7 /C1NaxOdl3AGLJp+jgSS6YlFDcEk8xFv00FrWA19wwnOm3OBbNaaUuNvg2OpvaJc Ctr67NjGkBOaBiANSV5KRBPen7re9U1bYAoJBmasiLXPEuQzKi14AKiFo0HAZgVG pxezwwmJ7ykFWdI08ERA7UhrdedhVgBleBt+563wN5oA2C3ZfDnLTibVbax2djC8 A+ROcDz/MgFKs4SemuY0upMA0AshqvSbRJmCbqIPOp2IAORlyMxTpnyCm+Vzr6ur AdDgi9t7NtlbpIrjfwvDvafPFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKh86nAo I0ShDbgIBaii5vwr8DAnMB8GA1UdIwQYMBaAFPPaUf6AvNqXCHUl4gRiHqn1V0GZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0NEQS80OUIyN0Q4QTA1 NEQxMUVFOURGQzE2MjRDNEY5QUUwMi84OXBSX29DODJwY0lkU1hpQkdJZXFmVlhR WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5cFJfb0M4MnBjSWRTWGlCR0llcWZWWFFaay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0NEQS80OUIyN0Q4QTA1NEQxMUVFOURGQzE2MjRDNEY5QUUwMi84OXBSX29DODJw Y0lkU1hpQkdJZXFmVlhRWmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAbV53jIKJJ2CO52XFFmahmRSEA+kGEloBrgLg2jAPHl12CW905JkI ndRIu52dnAhNyuo6t3kl9khln9EDAPbFWfyft4jVO3HfWeU2lHV+ht1gBiFLKADJ ohdLFe36R+yQ7OHc+sLCymh499fy6iwDeDgYpW8y4vBuSgEGp+jmu8YwerxxhtZh Oh7uIxE9oNenkhU6t3VTXF+51nRPpHgMRZFuAIgKp0jEvTVId7fSjfklaLNI1BXk HZbOYZdf5q3MFwGdCiH64ZFrYIulvIi05GOcGpY8QUR4nu+JNZLc3o0J2uHJOvq6 vh7Nu8qjfFC0bze5/qiy+sl2+LoE/q0S -----END CERTIFICATE-----Generated at Sat May 31 15:24:49 2025 by rpki-client