$ rpki-client -vvf rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.mft File: 08nS13n2aEMJcSuzDPoZkpDhuNY.mft (raw, json) Hash identifier: 19WuTLsrBkgBcL15nWHRJ52xazgNyghNoe7j8TbfVnc= Subject key identifier: FD:4B:02:78:48:B4:20:70:51:65:38:BB:2E:DD:A1:00:57:6C:DB:EA Authority key identifier: D3:C9:D2:D7:79:F6:68:43:09:71:2B:B3:0C:FA:19:92:90:E1:B8:D6 Certificate issuer: /CN=A915DE8F/serialNumber=D3C9D2D779F6684309712BB30CFA199290E1B8D6 Certificate serial: 6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08nS13n2aEMJcSuzDPoZkpDhuNY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.mft Manifest number: 68 Signing time: Sat 31 May 2025 06:32:19 +0000 Manifest this update: Sat 31 May 2025 06:32:19 +0000 Manifest next update: Sat 07 Jun 2025 06:32:19 +0000 Files and hashes: 1: 08nS13n2aEMJcSuzDPoZkpDhuNY.crl (hash: FrMNsJjcvX1Ia7c9BXUJu7+BsfoSRWm3gXG3ZuzVBIo=) 2: 6DEFE6D8A14611EF93AB8E21C4F9AE02.roa (hash: rRMGtINr2UhdhF+qj8NjJEBcNErv93/+Ql2sANUuRRs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.crl rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08nS13n2aEMJcSuzDPoZkpDhuNY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:32:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 106 (0x6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DE8F, serialNumber=D3C9D2D779F6684309712BB30CFA199290E1B8D6 Validity Not Before: May 31 06:32:19 2025 GMT Not After : Jun 7 06:32:19 2025 GMT Subject: CN=683aa273-e8b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:83:8e:e2:69:e1:c6:b8:ee:0e:e3:75:a4:03: b7:81:25:6d:e2:47:a8:2c:6b:cd:e7:ec:cf:f4:cd: d5:7d:0d:8c:4b:9d:88:e0:f2:8b:81:62:d5:76:1a: a3:36:21:6d:c9:dc:70:3b:8d:ce:56:27:fc:65:7d: a1:ef:9a:84:66:d0:d5:e3:f4:a9:0f:d6:0f:86:7d: b5:34:2b:ee:09:7c:b1:9f:e5:e1:32:0f:7f:3d:69: 7a:cd:c4:74:c3:a5:ad:28:89:65:ae:31:03:f8:e4: 16:a8:4a:ab:e2:da:a4:75:c6:f8:97:d6:47:c1:12: 0c:02:c6:6c:73:ed:97:44:eb:e5:12:98:83:fd:d2: b4:7d:4a:5a:d1:13:4f:a9:cb:dc:92:ec:e3:e6:7f: 62:3c:e3:92:2e:0b:40:6f:c4:d2:41:20:c0:ff:01: 57:d2:ed:8e:fc:dd:3c:f5:8f:dd:6d:59:5a:fd:3f: 11:f7:06:61:ba:83:9e:a8:4a:10:76:36:a8:1d:75: 42:84:ba:52:90:98:4e:73:10:96:49:c3:37:3e:90: e3:a3:d8:15:0d:0c:bb:b1:8f:1b:e2:a4:66:87:68: 7f:1d:86:93:c8:d3:ad:21:c4:cb:3e:b4:e6:2c:a0: 22:19:56:ec:cd:d1:09:0d:9b:f0:e6:29:c6:24:ab: f7:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:4B:02:78:48:B4:20:70:51:65:38:BB:2E:DD:A1:00:57:6C:DB:EA X509v3 Authority Key Identifier: keyid:D3:C9:D2:D7:79:F6:68:43:09:71:2B:B3:0C:FA:19:92:90:E1:B8:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08nS13n2aEMJcSuzDPoZkpDhuNY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:e6:b8:94:06:a8:f9:5e:84:2c:31:de:6c:f8:14:46:34:67: 80:cb:f8:0f:c9:8e:f9:44:61:16:64:f3:66:f4:83:d2:82:f1: 99:6e:10:59:22:93:c1:d1:54:57:70:a9:a3:7a:a1:96:f3:27: 0f:7c:67:3c:0d:9b:cc:6d:c2:7a:e3:75:22:d2:4c:ae:c1:be: 19:d4:c9:47:57:85:12:26:27:8b:45:19:b6:48:c9:16:36:fd: c3:5c:10:ba:f6:bc:95:65:f2:60:2a:89:08:7b:fb:84:ef:26: 21:41:07:71:dd:29:6d:44:04:c2:90:d0:20:eb:f2:88:df:b1: 13:6e:5f:65:76:70:c0:57:46:34:65:d3:8b:f2:e2:0c:97:01: b2:66:a0:44:eb:f3:87:ab:d0:2d:a6:4f:ab:d4:bf:28:59:cf: 82:b8:09:54:db:ec:83:4c:8d:20:37:54:8c:38:a2:6d:ad:0b: 14:dd:5f:09:6e:4c:7d:5b:ae:ec:57:50:15:ff:f6:d2:5f:fc: c3:7d:7b:8b:a6:6f:76:70:e6:58:be:df:4e:2a:89:69:42:3b: 8f:1e:87:e9:83:af:dc:57:bd:84:6f:de:06:b5:ab:7e:b3:81: 75:70:5c:21:52:c6:e1:63:07:c3:22:d1:7d:7e:12:95:ef:41: b0:bd:bf:1e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBajANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 REU4RjExMC8GA1UEBRMoRDNDOUQyRDc3OUY2Njg0MzA5NzEyQkIzMENGQTE5OTI5 MEUxQjhENjAeFw0yNTA1MzEwNjMyMTlaFw0yNTA2MDcwNjMyMTlaMBgxFjAUBgNV BAMTDTY4M2FhMjczLWU4YjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1g47iaeHGuO4O43WkA7eBJW3iR6gsa83n7M/0zdV9DYxLnYjg8ouBYtV2GqM2 IW3J3HA7jc5WJ/xlfaHvmoRm0NXj9KkP1g+GfbU0K+4JfLGf5eEyD389aXrNxHTD pa0oiWWuMQP45BaoSqvi2qR1xviX1kfBEgwCxmxz7ZdE6+USmIP90rR9SlrRE0+p y9yS7OPmf2I845IuC0BvxNJBIMD/AVfS7Y783Tz1j91tWVr9PxH3BmG6g56oShB2 NqgddUKEulKQmE5zEJZJwzc+kOOj2BUNDLuxjxvipGaHaH8dhpPI060hxMs+tOYs oCIZVuzN0QkNm/DmKcYkq/edAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/UsCeEi0 IHBRZTi7Lt2hAFds2+owHwYDVR0jBBgwFoAU08nS13n2aEMJcSuzDPoZkpDhuNYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVERThGLzBCNTQzQjBBQTE0 NjExRUZBMTJBNkUxRkM0RjlBRTAyLzA4blMxM24yYUVNSmNTdXpEUG9aa3BEaHVO WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMDhuUzEzbjJhRU1KY1N1ekRQb1prcERodU5ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVE RThGLzBCNTQzQjBBQTE0NjExRUZBMTJBNkUxRkM0RjlBRTAyLzA4blMxM24yYUVN SmNTdXpEUG9aa3BEaHVOWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIbmuJQGqPlehCwx3mz4FEY0Z4DL+A/JjvlEYRZk82b0g9KC8ZluEFki k8HRVFdwqaN6oZbzJw98ZzwNm8xtwnrjdSLSTK7BvhnUyUdXhRImJ4tFGbZIyRY2 /cNcELr2vJVl8mAqiQh7+4TvJiFBB3HdKW1EBMKQ0CDr8ojfsRNuX2V2cMBXRjRl 04vy4gyXAbJmoETr84er0C2mT6vUvyhZz4K4CVTb7INMjSA3VIw4om2tCxTdXwlu TH1bruxXUBX/9tJf/MN9e4umb3Zw5li+304qiWlCO48eh+mDr9xXvYRv3ga1q36z gXVwXCFSxuFjB8Mi0X1+EpXvQbC9vx4= -----END CERTIFICATE-----Generated at Sat May 31 17:01:13 2025 by rpki-client