$ rpki-client -vvf rpki.apnic.net/member_repository/A91955D9/CD54D738A28511EFB66B1811C4F9AE02/8mqBAZFpUvsgvgHo_HyQ7cnun3g.mft File: 8mqBAZFpUvsgvgHo_HyQ7cnun3g.mft (raw, json) Hash identifier: TADNaoQ9BuCNNS8V2EIWVySVexlU8SWAg5QanHEKb5U= Subject key identifier: EA:5E:76:D0:6B:33:20:BB:3C:32:B0:B3:38:CB:A0:1B:48:53:BC:43 Authority key identifier: F2:6A:81:01:91:69:52:FB:20:BE:01:E8:FC:7C:90:ED:C9:EE:9F:78 Certificate issuer: /CN=A91955D9/serialNumber=F26A8101916952FB20BE01E8FC7C90EDC9EE9F78 Certificate serial: 67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8mqBAZFpUvsgvgHo_HyQ7cnun3g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91955D9/CD54D738A28511EFB66B1811C4F9AE02/8mqBAZFpUvsgvgHo_HyQ7cnun3g.mft Manifest number: 66 Signing time: Sat 31 May 2025 06:34:45 +0000 Manifest this update: Sat 31 May 2025 06:34:44 +0000 Manifest next update: Sat 07 Jun 2025 06:34:44 +0000 Files and hashes: 1: 8mqBAZFpUvsgvgHo_HyQ7cnun3g.crl (hash: DhVkJW8sB1BwXNA5Q79m7reynCsMWWlSw6QAwtRfFH0=) 2: 0D041790A28611EFBD5A8C11C4F9AE02.roa (hash: 97I65+Q066TDiRkq5FVajUp8ATxWSUAGmGMHS8ACfSY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91955D9/CD54D738A28511EFB66B1811C4F9AE02/8mqBAZFpUvsgvgHo_HyQ7cnun3g.crl rsync://rpki.apnic.net/member_repository/A91955D9/CD54D738A28511EFB66B1811C4F9AE02/8mqBAZFpUvsgvgHo_HyQ7cnun3g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8mqBAZFpUvsgvgHo_HyQ7cnun3g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:34:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 103 (0x67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91955D9, serialNumber=F26A8101916952FB20BE01E8FC7C90EDC9EE9F78 Validity Not Before: May 31 06:34:44 2025 GMT Not After : Jun 7 06:34:44 2025 GMT Subject: CN=683aa304-40bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:79:9e:56:16:8e:f2:e5:d6:1a:a7:d3:e0:9f: b6:c2:eb:11:72:0e:a4:66:6b:2c:3e:71:0a:f2:ab: 11:54:59:75:72:66:7b:fc:ba:e7:dc:cb:e2:a3:2c: 21:e0:ea:53:9a:1a:78:9a:bf:f4:0c:d9:aa:65:4c: 4b:d7:ac:ae:6e:6c:d5:68:24:99:5e:7b:e9:33:2a: c2:d2:86:92:5d:50:87:6f:27:ac:b0:64:54:50:7f: e3:f4:05:85:8b:26:2f:81:e8:88:2d:20:0a:a8:7a: 07:ac:31:47:fe:8d:32:78:3e:b4:73:2b:de:44:a1: 69:5f:0a:e9:9c:e1:17:d3:0f:49:d4:0d:8a:2d:36: 86:76:63:8c:04:e7:f4:29:db:4f:9f:d1:1d:42:3d: 81:5f:ba:3f:b5:19:3d:1f:30:32:49:3a:1a:ff:70: a7:d3:35:0f:f3:8a:9f:79:bc:1c:e3:85:9e:47:1c: ce:96:ca:1f:e5:66:48:4a:54:22:05:d5:f9:f2:0f: 2d:b4:21:ba:5f:23:64:8d:63:81:bd:31:83:61:82: e3:5e:40:a1:5c:c6:30:1c:b3:70:35:b3:21:6e:32: cf:3b:ee:bf:52:ad:f2:bd:d6:27:f2:0b:43:b9:4c: aa:00:34:68:97:51:e9:23:97:63:0b:63:55:fa:6c: 88:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:5E:76:D0:6B:33:20:BB:3C:32:B0:B3:38:CB:A0:1B:48:53:BC:43 X509v3 Authority Key Identifier: keyid:F2:6A:81:01:91:69:52:FB:20:BE:01:E8:FC:7C:90:ED:C9:EE:9F:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91955D9/CD54D738A28511EFB66B1811C4F9AE02/8mqBAZFpUvsgvgHo_HyQ7cnun3g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8mqBAZFpUvsgvgHo_HyQ7cnun3g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91955D9/CD54D738A28511EFB66B1811C4F9AE02/8mqBAZFpUvsgvgHo_HyQ7cnun3g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:56:4f:52:34:81:77:09:78:8e:0d:bb:f7:3c:0f:5f:62:40: f4:c7:25:cc:97:f2:de:cc:c8:b6:ac:21:03:85:83:0f:1b:f7: fa:9c:26:aa:5d:78:e1:c8:56:97:d8:0c:ce:c7:42:0a:15:23: 19:3a:dc:06:45:3a:87:cb:e8:43:ed:ac:95:65:3c:f7:45:84: d3:fd:4a:f9:ea:b1:44:78:11:e2:21:4a:0b:e9:be:29:f7:a4: be:af:44:94:28:ec:8e:41:6e:b6:9a:01:17:d6:29:ce:37:91: 82:e9:66:df:84:cd:50:c1:e0:a0:08:0c:c4:fb:e3:00:d2:70: 07:73:31:23:9d:19:ef:1b:37:33:11:95:f5:41:22:a7:4c:ee: a1:2a:1e:72:32:23:c5:70:4e:24:b0:56:fd:cc:55:ff:1e:2c: 5c:e8:27:5f:68:66:1e:b0:87:2c:bb:a3:53:e5:04:f9:f3:fe: c8:5e:fe:71:5d:e7:f6:bd:5c:c3:78:b6:15:a4:c9:97:d5:f7: d1:90:01:f1:88:98:7a:a9:a4:d7:60:25:37:28:99:5a:e3:ba: 60:32:d9:de:63:03:d7:c7:00:c6:cd:5e:86:88:29:07:1c:48: 81:4e:5a:52:67:4d:83:03:8c:3c:24:49:9e:51:eb:b5:99:d3: 90:9c:c1:36 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NTVEOTExMC8GA1UEBRMoRjI2QTgxMDE5MTY5NTJGQjIwQkUwMUU4RkM3QzkwRURD OUVFOUY3ODAeFw0yNTA1MzEwNjM0NDRaFw0yNTA2MDcwNjM0NDRaMBgxFjAUBgNV BAMTDTY4M2FhMzA0LTQwYmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8eZ5WFo7y5dYap9Pgn7bC6xFyDqRmayw+cQryqxFUWXVyZnv8uufcy+KjLCHg 6lOaGniav/QM2aplTEvXrK5ubNVoJJlee+kzKsLShpJdUIdvJ6ywZFRQf+P0BYWL Ji+B6IgtIAqoegesMUf+jTJ4PrRzK95EoWlfCumc4RfTD0nUDYotNoZ2Y4wE5/Qp 20+f0R1CPYFfuj+1GT0fMDJJOhr/cKfTNQ/zip95vBzjhZ5HHM6Wyh/lZkhKVCIF 1fnyDy20IbpfI2SNY4G9MYNhguNeQKFcxjAcs3A1syFuMs877r9SrfK91ifyC0O5 TKoANGiXUekjl2MLY1X6bIi1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6l520Gsz ILs8MrCzOMugG0hTvEMwHwYDVR0jBBgwFoAU8mqBAZFpUvsgvgHo/HyQ7cnun3gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1NUQ5L0NENTRENzM4QTI4 NTExRUZCNjZCMTgxMUM0RjlBRTAyLzhtcUJBWkZwVXZzZ3ZnSG9fSHlRN2NudW4z Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOG1xQkFaRnBVdnNndmdIb19IeVE3Y251bjNnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1 NUQ5L0NENTRENzM4QTI4NTExRUZCNjZCMTgxMUM0RjlBRTAyLzhtcUJBWkZwVXZz Z3ZnSG9fSHlRN2NudW4zZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADlWT1I0gXcJeI4Nu/c8D19iQPTHJcyX8t7MyLasIQOFgw8b9/qcJqpd eOHIVpfYDM7HQgoVIxk63AZFOofL6EPtrJVlPPdFhNP9SvnqsUR4EeIhSgvpvin3 pL6vRJQo7I5BbraaARfWKc43kYLpZt+EzVDB4KAIDMT74wDScAdzMSOdGe8bNzMR lfVBIqdM7qEqHnIyI8VwTiSwVv3MVf8eLFzoJ19oZh6whyy7o1PlBPnz/she/nFd 5/a9XMN4thWkyZfV99GQAfGImHqppNdgJTcomVrjumAy2d5jA9fHAMbNXoaIKQcc SIFOWlJnTYMDjDwkSZ5R67WZ05CcwTY= -----END CERTIFICATE-----Generated at Sat May 31 17:16:12 2025 by rpki-client