$ rpki-client -vvf rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft File: z8CATaxP_3oipAThDphkpxHeGck.mft (raw, json) Hash identifier: 6bfIU58Pzz5XAOcYjujfSarLK/wpxkMMhveN6+5R+OA= Subject key identifier: 5D:1D:A7:F7:7C:0B:42:37:2B:C3:04:37:D3:93:0C:19:D9:8A:2A:92 Authority key identifier: CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 Certificate issuer: /CN=A91A12C4/serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Certificate serial: 8D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft Manifest number: 8C Signing time: Thu 05 Jun 2025 05:52:23 +0000 Manifest this update: Thu 05 Jun 2025 05:52:22 +0000 Manifest next update: Thu 12 Jun 2025 05:52:22 +0000 Files and hashes: 1: z8CATaxP_3oipAThDphkpxHeGck.crl (hash: 9SnwdPxUOwK6ct5ubTJBaizbTGuNkBW+bOAxmB4nu6c=) 2: BCA395126C1811EFAFBE6B0FC4F9AE02.roa (hash: Mb/JnRkZoctaPV3WHu0XOAV8U5+c9ZbVehfTb/x4GMg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 05:52:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A12C4, serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Validity Not Before: Jun 5 05:52:22 2025 GMT Not After : Jun 12 05:52:22 2025 GMT Subject: CN=68413097-c251 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:35:bf:ef:b7:ca:79:51:62:ff:74:ec:5d:30: 64:38:5d:c6:74:4e:51:3d:2d:c4:03:3e:11:5b:00: 2d:96:7f:cd:06:09:bb:95:91:6b:40:38:02:8c:6a: eb:4f:03:30:2d:f3:49:fd:09:5c:49:8e:ef:37:2a: 7c:65:fe:8b:a2:e6:32:d7:a6:05:ff:3f:db:37:78: ee:3e:6e:59:5e:1a:f6:5a:b8:ac:fd:01:c6:52:40: 82:34:f1:bb:7a:f5:5a:49:e2:a2:a0:af:48:36:fb: 32:9d:2a:8b:1d:59:49:ca:a7:f8:1e:26:45:11:68: 52:3e:d8:71:be:e7:96:02:6e:5c:77:9e:a9:91:92: 69:e8:da:2b:46:38:b1:81:2b:1c:f3:d3:0f:25:58: f9:52:5b:6a:d8:e5:47:ad:08:1b:f4:fa:b2:f7:8b: a9:df:64:5f:01:9e:da:78:bd:d4:3b:77:c0:0f:f7: 34:f3:83:b2:2d:5d:6e:73:c3:1d:3f:22:2a:cf:0d: b7:8d:aa:c4:aa:dd:6b:1e:f5:4c:18:17:f6:64:40: 38:48:5a:eb:a9:e1:c5:c6:e0:e3:8f:29:d5:55:31: d4:e9:41:0c:b8:0e:ba:f2:69:b6:5c:bd:ef:b2:23: f1:51:05:ba:33:3a:10:0f:da:fb:7c:76:3d:c0:ae: 10:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:1D:A7:F7:7C:0B:42:37:2B:C3:04:37:D3:93:0C:19:D9:8A:2A:92 X509v3 Authority Key Identifier: keyid:CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:2e:8c:a1:e6:e6:e3:c5:a7:13:73:b8:3a:2a:02:e5:ed:7a: 47:da:f1:7e:bf:16:7b:96:97:e8:32:70:60:57:36:18:c6:f7: 8b:5c:8c:ed:70:73:ae:1d:f2:8c:6a:38:2f:76:53:1e:a9:71: 50:fa:b8:da:60:4a:ac:cd:ca:b1:66:09:8a:00:a2:72:48:9a: fb:21:71:78:40:cb:71:7f:2f:e2:1b:ec:97:fe:ca:c2:94:b1: 3f:44:c9:72:29:ed:ca:58:d0:b0:28:98:ce:b9:ea:49:06:b2: 9d:77:0e:b2:72:41:d6:6d:7f:d1:bc:ec:3b:d6:87:97:f5:47: ff:cb:21:e2:4c:e8:72:d4:19:63:8e:a6:0a:ab:d1:89:35:6f: 19:ca:7a:84:59:f9:22:da:3a:f5:ff:7f:19:91:ee:93:94:86: b7:c1:bd:9b:7a:43:d4:cc:84:7c:22:05:a0:45:64:b4:24:22: 3c:f1:95:62:2c:09:0a:3d:1c:fe:ca:9d:be:46:61:f0:3a:22: f3:2d:8c:d2:8c:a1:21:70:c1:10:6e:7c:d0:59:f6:77:3a:c2: 93:45:e3:14:1c:d5:f2:41:df:f1:ff:43:ab:27:49:a4:5a:9f: 67:63:25:45:3b:dd:57:27:86:2a:82:b3:ba:fa:1b:12:97:0e: c9:d0:58:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTEyQzQxMTAvBgNVBAUTKENGQzA4MDREQUM0RkZGN0EyMkE0MDRFMTBFOTg2NEE3 MTFERTE5QzkwHhcNMjUwNjA1MDU1MjIyWhcNMjUwNjEyMDU1MjIyWjAYMRYwFAYD VQQDEw02ODQxMzA5Ny1jMjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApDW/77fKeVFi/3TsXTBkOF3GdE5RPS3EAz4RWwAtln/NBgm7lZFrQDgCjGrr TwMwLfNJ/QlcSY7vNyp8Zf6LouYy16YF/z/bN3juPm5ZXhr2Wris/QHGUkCCNPG7 evVaSeKioK9INvsynSqLHVlJyqf4HiZFEWhSPthxvueWAm5cd56pkZJp6NorRjix gSsc89MPJVj5Ultq2OVHrQgb9Pqy94up32RfAZ7aeL3UO3fAD/c084OyLV1uc8Md PyIqzw23jarEqt1rHvVMGBf2ZEA4SFrrqeHFxuDjjynVVTHU6UEMuA668mm2XL3v siPxUQW6MzoQD9r7fHY9wK4Q/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF0dp/d8 C0I3K8MEN9OTDBnZiiqSMB8GA1UdIwQYMBaAFM/AgE2sT/96IqQE4Q6YZKcR3hnJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTJDNC9GMzE5RURDMjZD MTcxMUVGQkRCRkQ1MEJDNEY5QUUwMi96OENBVGF4UF8zb2lwQVRoRHBoa3B4SGVH Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3o4Q0FUYXhQXzNvaXBBVGhEcGhrcHhIZUdjay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTJDNC9GMzE5RURDMjZDMTcxMUVGQkRCRkQ1MEJDNEY5QUUwMi96OENBVGF4UF8z b2lwQVRoRHBoa3B4SGVHY2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCLoyh5ubjxacTc7g6KgLl7XpH2vF+vxZ7lpfoMnBgVzYYxveLXIzt cHOuHfKMajgvdlMeqXFQ+rjaYEqszcqxZgmKAKJySJr7IXF4QMtxfy/iG+yX/srC lLE/RMlyKe3KWNCwKJjOuepJBrKddw6yckHWbX/RvOw71oeX9Uf/yyHiTOhy1Blj jqYKq9GJNW8ZynqEWfki2jr1/38Zke6TlIa3wb2bekPUzIR8IgWgRWS0JCI88ZVi LAkKPRz+yp2+RmHwOiLzLYzSjKEhcMEQbnzQWfZ3OsKTReMUHNXyQd/x/0OrJ0mk Wp9nYyVFO91XJ4YqgrO6+hsSlw7J0Fic -----END CERTIFICATE-----Generated at Sat Jun 7 04:22:43 2025 by rpki-client