$ rpki-client -vvf rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.mft File: 8CJFNT_B8ZSpAipKwBl33l_eNvk.mft (raw, json) Hash identifier: 5qADsrCcj4Y50GoE/Gjk3SnRfRG9Ka68WfD2zk9TISs= Subject key identifier: EF:09:3D:E4:C9:C6:E6:5B:A6:E6:C5:5A:A0:DF:97:26:65:EE:A0:D5 Authority key identifier: F0:22:45:35:3F:C1:F1:94:A9:02:2A:4A:C0:19:77:DE:5F:DE:36:F9 Certificate issuer: /CN=A918A96A/serialNumber=F02245353FC1F194A9022A4AC01977DE5FDE36F9 Certificate serial: 036C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.mft Manifest number: 035A Signing time: Sat 31 May 2025 01:14:22 +0000 Manifest this update: Sat 31 May 2025 01:14:21 +0000 Manifest next update: Sat 07 Jun 2025 01:14:21 +0000 Files and hashes: 1: 8CJFNT_B8ZSpAipKwBl33l_eNvk.crl (hash: ownIMWsavTRfxT0gQyen2PgJ5+o7Fx+iMqbGYtM58yw=) 2: 2DE4C8AA9B6111EF99A97B52C4F9AE02.roa (hash: VhDwcUHjhyil4F0v9hLHnTY4dEx10IiI44izoTq8eNs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.crl rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:14:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 876 (0x36c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A96A, serialNumber=F02245353FC1F194A9022A4AC01977DE5FDE36F9 Validity Not Before: May 31 01:14:21 2025 GMT Not After : Jun 7 01:14:21 2025 GMT Subject: CN=683a57ed-c146 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:30:0f:83:c9:72:50:bc:1f:2c:7d:03:7c:ef: 98:d5:06:3e:4f:9e:9a:03:2b:c8:d6:8c:47:d7:0a: 07:9b:ce:dd:98:2b:4a:cd:4c:59:5a:d8:ce:44:66: 9d:15:2e:19:11:bd:79:4a:5a:97:8d:7b:d7:31:e5: 0d:28:25:b5:66:c0:6d:6a:dc:56:7f:bb:e7:48:99: 63:f5:3b:16:49:a4:2c:a8:0a:d4:57:e1:6d:10:42: 28:03:11:7f:f8:d1:e6:7f:f2:4d:34:0b:9b:ee:ec: 3e:ad:6c:5f:cf:28:4c:9e:de:51:29:52:bf:45:7b: fc:aa:3f:a6:21:39:0b:3e:dd:a2:9c:e5:e0:08:8d: 8b:05:8c:f2:86:4f:75:1c:b5:00:6d:24:26:97:b6: 1e:8d:bb:3b:6c:e9:ac:45:84:76:72:fc:54:27:96: b8:75:f9:19:30:7d:59:bf:ec:50:1f:9a:d5:47:23: ed:12:00:b0:ee:30:df:f6:e3:35:e1:5c:37:5a:df: 60:5d:0b:da:ea:9b:b2:12:97:f7:9e:69:2a:00:18: fe:4b:01:c1:51:e1:da:ec:24:fe:3e:77:33:0a:3d: 3f:f3:cf:01:a3:8c:1e:96:df:0a:87:84:63:b2:28: de:8e:5a:88:22:44:d8:f6:6a:89:ad:78:b3:a1:27: 83:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:09:3D:E4:C9:C6:E6:5B:A6:E6:C5:5A:A0:DF:97:26:65:EE:A0:D5 X509v3 Authority Key Identifier: keyid:F0:22:45:35:3F:C1:F1:94:A9:02:2A:4A:C0:19:77:DE:5F:DE:36:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:7e:aa:85:68:60:49:b4:46:eb:62:91:0e:df:fd:a9:20:ab: 93:f3:19:6e:ce:13:cb:12:e2:2d:0e:ff:68:fb:51:6f:8a:60: e0:53:2a:92:38:7b:71:8e:cf:18:51:94:4f:f1:b7:f1:6a:f1: f6:9c:a7:d7:cd:49:d3:f2:0f:44:1b:88:cf:f6:5e:b5:07:83: b0:c1:2c:3b:79:ea:ea:e2:c4:a3:8d:4a:af:91:5e:d8:82:d9: f9:c3:92:3f:b3:e9:f1:ad:9b:68:fd:e1:f1:50:f5:9c:73:62: d2:8b:c3:22:0f:b4:60:f0:b0:05:23:c2:c0:2d:a3:63:79:32: 12:cf:09:e8:8f:be:2e:dd:3b:6e:6c:9f:45:cc:6d:bb:78:a2: 3a:bc:75:a8:76:0f:f3:9a:ce:0c:74:1d:2c:53:b6:58:1e:fb: 87:13:af:80:10:8a:f5:c9:92:9d:c5:4a:c6:99:4b:20:fa:78: 18:e1:d4:34:ce:f2:22:0b:80:a9:93:4a:a4:c2:b9:9f:33:c8: e5:bf:b0:2d:68:7b:8a:43:1e:38:30:b9:f5:1b:de:db:7e:a2: 87:d7:1c:1d:71:02:e6:a1:c2:0c:9f:31:f5:87:a4:c4:58:0b: da:9c:5f:4f:db:59:72:4f:d4:97:82:be:01:9b:56:e2:51:22: 06:6d:ee:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE5NkExMTAvBgNVBAUTKEYwMjI0NTM1M0ZDMUYxOTRBOTAyMkE0QUMwMTk3N0RF NUZERTM2RjkwHhcNMjUwNTMxMDExNDIxWhcNMjUwNjA3MDExNDIxWjAYMRYwFAYD VQQDEw02ODNhNTdlZC1jMTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArjAPg8lyULwfLH0DfO+Y1QY+T56aAyvI1oxH1woHm87dmCtKzUxZWtjORGad FS4ZEb15SlqXjXvXMeUNKCW1ZsBtatxWf7vnSJlj9TsWSaQsqArUV+FtEEIoAxF/ +NHmf/JNNAub7uw+rWxfzyhMnt5RKVK/RXv8qj+mITkLPt2inOXgCI2LBYzyhk91 HLUAbSQml7Yejbs7bOmsRYR2cvxUJ5a4dfkZMH1Zv+xQH5rVRyPtEgCw7jDf9uM1 4Vw3Wt9gXQva6puyEpf3nmkqABj+SwHBUeHa7CT+PnczCj0/888Bo4welt8Kh4Rj sijejlqIIkTY9mqJrXizoSeDewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO8JPeTJ xuZbpubFWqDflyZl7qDVMB8GA1UdIwQYMBaAFPAiRTU/wfGUqQIqSsAZd95f3jb5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTk2QS8yODc4NUY2MEJG QkYxMUVDQUVENDhDNzFDNEY5QUUwMi84Q0pGTlRfQjhaU3BBaXBLd0JsMzNsX2VO dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhDSkZOVF9COFpTcEFpcEt3QmwzM2xfZU52ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTk2QS8yODc4NUY2MEJGQkYxMUVDQUVENDhDNzFDNEY5QUUwMi84Q0pGTlRfQjha U3BBaXBLd0JsMzNsX2VOdmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvfqqFaGBJtEbrYpEO3/2pIKuT8xluzhPLEuItDv9o+1FvimDgUyqS OHtxjs8YUZRP8bfxavH2nKfXzUnT8g9EG4jP9l61B4OwwSw7eerq4sSjjUqvkV7Y gtn5w5I/s+nxrZto/eHxUPWcc2LSi8MiD7Rg8LAFI8LALaNjeTISzwnoj74u3Ttu bJ9FzG27eKI6vHWodg/zms4MdB0sU7ZYHvuHE6+AEIr1yZKdxUrGmUsg+ngY4dQ0 zvIiC4Cpk0qkwrmfM8jlv7AtaHuKQx44MLn1G97bfqKH1xwdcQLmocIMnzH1h6TE WAvanF9P21lyT9SXgr4Bm1biUSIGbe7o -----END CERTIFICATE-----Generated at Sat May 31 16:52:12 2025 by rpki-client