$ rpki-client -vvf rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft File: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft (raw, json) Hash identifier: djt8l5jIqlzt9FLaLds3mVVdqd774nWRcQ0r0b/DuME= Subject key identifier: F2:97:37:BA:D5:23:DB:88:05:63:2D:3F:CB:7C:B9:87:96:C8:FF:01 Authority key identifier: F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 Certificate issuer: /CN=A9156DB4/serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Certificate serial: 03A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft Manifest number: 0395 Signing time: Sat 31 May 2025 00:58:45 +0000 Manifest this update: Sat 31 May 2025 00:58:44 +0000 Manifest next update: Sat 07 Jun 2025 00:58:44 +0000 Files and hashes: 1: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl (hash: kXaX9QqDTB26MnC1El6miHkCksb4b2NyuClHdNayjzc=) 2: 688C6AC29D9D11EC958A216AC4F9AE02.roa (hash: rQCKwpVXSCN9Y75hhPwPDo9+AXfNNoLzfRi82A6bdSI=) 3: 854ACCD2DFEA11ECB7DF0A2EC4F9AE02.roa (hash: C6Z/IfRVQV8LxL1Oc2uDTt0509ENzUWPGHXpk7TwKNY=) 4: 695DB5289D9D11EC958A216AC4F9AE02.roa (hash: c9fr6KD/Ih6e5aCRy3Bruof+Va6iYKpCGv8u+/ETzK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:58:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 929 (0x3a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156DB4, serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Validity Not Before: May 31 00:58:44 2025 GMT Not After : Jun 7 00:58:44 2025 GMT Subject: CN=683a5445-d793 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:5f:de:6f:a6:3d:da:af:2f:37:43:bf:17:4e: 53:2f:87:62:1c:2f:30:41:c9:6d:20:0b:e3:6a:d8: 74:dc:79:c6:c0:e3:51:57:c4:5f:fd:b5:8e:0b:ac: a8:48:64:33:5a:64:1f:57:ab:d6:56:de:54:23:5c: c1:92:16:b1:29:a0:df:e2:ca:06:a4:7d:07:f4:4c: dd:f8:5b:10:9d:6c:0e:39:9e:d0:f7:6b:c5:5d:7a: 97:b8:67:41:22:31:56:28:d6:e0:34:10:36:35:fc: 2d:76:7e:b2:d4:68:63:4b:c5:09:23:e4:26:71:2c: 7f:a3:19:3f:79:b5:c3:bd:c5:70:37:d1:fa:96:dc: b3:d9:cf:67:8c:cc:fc:a2:60:30:07:5a:86:3b:44: 77:c9:69:14:a8:d8:6c:8c:0b:d0:a1:9e:c2:e5:b2: 66:f4:c2:11:34:a2:03:ad:cb:65:a4:12:e3:39:30: fc:71:2d:28:8d:3a:eb:13:fa:bd:9e:f8:c2:99:9c: 5a:5c:f6:01:52:54:11:9c:e6:94:29:b0:e3:5b:1a: 9d:73:e9:68:ec:40:c1:4e:7c:e4:e7:8b:08:c2:1d: 2a:4d:3f:a8:d1:e5:d7:34:cc:ce:bf:31:b2:1f:44: c0:28:d8:55:a7:06:0b:64:62:7c:c1:37:73:2a:94: 15:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:97:37:BA:D5:23:DB:88:05:63:2D:3F:CB:7C:B9:87:96:C8:FF:01 X509v3 Authority Key Identifier: keyid:F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:4b:02:43:b4:e2:68:05:f0:90:17:70:64:b6:79:bb:5e:1b: 89:9b:44:8d:85:39:09:0f:9e:5d:1e:e4:60:ea:80:da:6e:98: 7f:18:d2:05:83:4e:37:7e:f6:61:7c:4d:dc:a2:ee:03:e8:ef: b1:51:02:67:48:8c:2d:fd:4e:72:70:8a:5b:6b:f9:04:96:88: 3a:0a:01:4e:a3:22:b1:84:a4:5d:1a:d0:3b:69:d2:0d:79:bc: a5:00:7f:e0:54:76:83:b6:b7:22:10:20:6b:7f:36:cc:95:40: f6:09:18:32:23:20:46:6b:a2:70:38:ad:83:f3:77:2d:b4:99: b5:00:94:97:bd:c0:a7:fc:05:45:02:54:25:f1:0a:41:5c:ec: 5a:d1:d7:e7:73:3d:5b:b5:91:d9:52:66:58:6f:b3:7c:a3:2e: 18:9a:a9:cf:3f:1e:f2:d8:e1:b7:d7:a3:8d:5c:43:07:59:26: cd:36:e6:de:8b:3b:64:dc:80:a7:14:ef:91:82:a0:7d:05:08: 44:9a:a2:a4:be:a0:27:34:5c:96:45:d9:50:8d:ff:70:84:ba: cf:55:85:07:94:7b:56:d8:8c:bd:56:ee:a2:a9:5c:ec:d7:1f: 57:b2:cf:a0:05:c7:f9:58:2b:9f:68:d3:83:00:2c:80:0a:a1: 17:28:e3:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTZEQjQxMTAvBgNVBAUTKEYyRDEyNkYxNDIwODZBMjZFM0M1ODRBNzBBQjNFNTI3 QjMwMzgxODIwHhcNMjUwNTMxMDA1ODQ0WhcNMjUwNjA3MDA1ODQ0WjAYMRYwFAYD VQQDEw02ODNhNTQ0NS1kNzkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA31/eb6Y92q8vN0O/F05TL4diHC8wQcltIAvjath03HnGwONRV8Rf/bWOC6yo SGQzWmQfV6vWVt5UI1zBkhaxKaDf4soGpH0H9Ezd+FsQnWwOOZ7Q92vFXXqXuGdB IjFWKNbgNBA2Nfwtdn6y1GhjS8UJI+QmcSx/oxk/ebXDvcVwN9H6ltyz2c9njMz8 omAwB1qGO0R3yWkUqNhsjAvQoZ7C5bJm9MIRNKIDrctlpBLjOTD8cS0ojTrrE/q9 nvjCmZxaXPYBUlQRnOaUKbDjWxqdc+lo7EDBTnzk54sIwh0qTT+o0eXXNMzOvzGy H0TAKNhVpwYLZGJ8wTdzKpQVAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPKXN7rV I9uIBWMtP8t8uYeWyP8BMB8GA1UdIwQYMBaAFPLRJvFCCGom48WEpwqz5SezA4GC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NkRCNC9FODREQjk4QTlE OUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFpYmp4WVNuQ3JQbEo3TURn WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh0RW04VUlJYWlianhZU25DclBsSjdNRGdZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NkRCNC9FODREQjk4QTlEOUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFp Ymp4WVNuQ3JQbEo3TURnWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7SwJDtOJoBfCQF3Bktnm7XhuJm0SNhTkJD55dHuRg6oDabph/GNIF g043fvZhfE3cou4D6O+xUQJnSIwt/U5ycIpba/kElog6CgFOoyKxhKRdGtA7adIN ebylAH/gVHaDtrciECBrfzbMlUD2CRgyIyBGa6JwOK2D83cttJm1AJSXvcCn/AVF AlQl8QpBXOxa0dfncz1btZHZUmZYb7N8oy4YmqnPPx7y2OG316ONXEMHWSbNNube iztk3ICnFO+RgqB9BQhEmqKkvqAnNFyWRdlQjf9whLrPVYUHlHtW2Iy9Vu6iqVzs 1x9Xss+gBcf5WCufaNODACyACqEXKOO0 -----END CERTIFICATE-----Generated at Sat May 31 17:32:49 2025 by rpki-client