$ rpki-client -vvf rpki.apnic.net/member_repository/A91C064C/683C9D98672D11EE9C809F12C4F9AE02/r8MXR2fk6vxN7g9JJaHGXNxZ-io.mft File: r8MXR2fk6vxN7g9JJaHGXNxZ-io.mft (raw, json) Hash identifier: fNLzhMOq3dWCmAwz7LY0MNZsoiorojR+NR6hgob8vhw= Subject key identifier: 4C:D0:19:5F:6C:30:60:33:C8:D2:8E:2D:A7:21:5B:C4:AD:98:42:D3 Authority key identifier: AF:C3:17:47:67:E4:EA:FC:4D:EE:0F:49:25:A1:C6:5C:DC:59:FA:2A Certificate issuer: /CN=A91C064C/serialNumber=AFC3174767E4EAFC4DEE0F4925A1C65CDC59FA2A Certificate serial: 011C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r8MXR2fk6vxN7g9JJaHGXNxZ-io.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C064C/683C9D98672D11EE9C809F12C4F9AE02/r8MXR2fk6vxN7g9JJaHGXNxZ-io.mft Manifest number: 0118 Signing time: Thu 03 Apr 2025 04:03:57 +0000 Manifest this update: Thu 03 Apr 2025 04:03:56 +0000 Manifest next update: Thu 10 Apr 2025 04:03:56 +0000 Files and hashes: 1: r8MXR2fk6vxN7g9JJaHGXNxZ-io.crl (hash: vSgGmlYRMfn/r8T7fTCizXN4CpdhJw7SASsXxTff9T8=) 2: 583FA34E672E11EEB31AC02CC4F9AE02.roa (hash: UDY5XZZpboPOe4PuKIjoZcv8Z+maPhsL8V3N8OWNJu4=) 3: 810B798472CC11EEA1A5574DC4F9AE02.roa (hash: QxDb9utS5i/B8urK72tRRFJFcT0cVUwBUSamNqzNfT0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C064C/683C9D98672D11EE9C809F12C4F9AE02/r8MXR2fk6vxN7g9JJaHGXNxZ-io.crl rsync://rpki.apnic.net/member_repository/A91C064C/683C9D98672D11EE9C809F12C4F9AE02/r8MXR2fk6vxN7g9JJaHGXNxZ-io.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r8MXR2fk6vxN7g9JJaHGXNxZ-io.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 04:03:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 284 (0x11c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C064C Validity Not Before: Apr 3 04:03:56 2025 GMT Not After : Apr 10 04:03:56 2025 GMT Subject: CN=67ee08ad-f09e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:2d:b6:45:fe:56:bb:0b:dd:46:ed:f8:6d:5c: 5d:52:88:3d:fa:1a:a3:51:e6:11:84:89:ad:2a:d1: e6:a1:7b:f8:a4:14:4f:55:a6:f9:f0:73:c0:c4:89: 4e:79:98:19:a0:2c:6f:8a:55:de:bd:bb:ec:5b:ff: 8b:d1:a0:c2:be:0f:cb:6b:47:ca:62:ab:44:2c:ee: 3e:a0:70:a0:1a:10:b9:af:3b:ea:22:79:d5:59:93: a9:6b:72:bc:84:0f:19:62:d3:78:81:bd:60:20:da: 9a:21:93:d8:25:6d:63:18:c9:da:67:84:4b:44:a2: ba:ca:6b:16:3a:2a:5a:f2:22:a4:5d:08:b6:1a:7d: d4:2b:29:5f:66:86:41:4a:16:3c:f9:dd:2d:eb:6e: 7e:35:81:d7:39:65:d5:be:5e:93:2c:bb:b7:33:7b: e2:bb:b8:ae:97:52:28:74:64:f0:94:ec:a0:13:ef: 9f:63:59:1e:d7:4a:cb:0a:9e:45:a3:1f:68:e6:be: c7:47:9b:72:a5:7f:ad:05:6d:66:bd:fb:87:67:d4: 79:20:52:41:77:c3:c1:05:5b:2f:85:d3:88:f1:71: 68:61:df:78:0d:2d:f3:0f:87:08:56:5f:26:fc:fa: 5b:e2:2b:4b:e3:3d:85:a4:e6:f3:29:20:7b:cb:75: 42:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:D0:19:5F:6C:30:60:33:C8:D2:8E:2D:A7:21:5B:C4:AD:98:42:D3 X509v3 Authority Key Identifier: keyid:AF:C3:17:47:67:E4:EA:FC:4D:EE:0F:49:25:A1:C6:5C:DC:59:FA:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C064C/683C9D98672D11EE9C809F12C4F9AE02/r8MXR2fk6vxN7g9JJaHGXNxZ-io.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r8MXR2fk6vxN7g9JJaHGXNxZ-io.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C064C/683C9D98672D11EE9C809F12C4F9AE02/r8MXR2fk6vxN7g9JJaHGXNxZ-io.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:09:d5:87:1c:6c:7f:78:8c:b7:cf:69:3c:67:c2:e2:61:18: 67:da:a6:54:85:d8:0d:e3:f3:ed:1f:8c:59:07:01:ed:23:c5: 17:fb:13:13:95:87:79:f9:bf:88:21:ef:f1:9a:f2:a0:35:74: c6:d5:ef:7d:9b:1a:2c:be:e0:38:5f:35:46:50:15:d8:f6:00: d0:86:41:cc:b9:58:98:ca:c9:b1:b9:30:c9:ca:4f:9e:c0:a9: 5b:c2:00:af:b5:d5:1f:b5:24:54:66:76:10:97:bb:6a:d1:9a: d1:ee:39:4f:01:dc:9c:10:76:1f:31:cd:69:7c:a6:0a:72:1d: 7d:60:98:3d:82:32:c3:45:75:28:83:a6:26:9e:b6:94:4b:24: 36:29:c0:68:b8:f1:ef:6c:0f:7f:40:dd:e5:5d:42:cd:80:a0: d9:b5:95:a4:5f:af:ed:2e:d6:9d:06:99:9f:97:05:a8:5b:53: 14:f1:a7:1f:01:0b:e8:3c:26:1e:b2:a3:77:d7:2d:49:2a:e9: 13:83:b7:f6:d6:3d:11:d2:09:41:c5:7e:ee:22:02:d1:1e:71: 2b:02:c6:e9:3a:0f:b2:ce:97:0b:9e:38:f5:8f:3b:ac:e6:b5: a4:99:15:ae:ac:d9:6b:f9:13:5d:6f:bd:68:61:e4:bc:3f:50: 3b:76:a6:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzA2NEMxMTAvBgNVBAUTKEFGQzMxNzQ3NjdFNEVBRkM0REVFMEY0OTI1QTFDNjVD REM1OUZBMkEwHhcNMjUwNDAzMDQwMzU2WhcNMjUwNDEwMDQwMzU2WjAYMRYwFAYD VQQDEw02N2VlMDhhZC1mMDllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvi22Rf5WuwvdRu34bVxdUog9+hqjUeYRhImtKtHmoXv4pBRPVab58HPAxIlO eZgZoCxvilXevbvsW/+L0aDCvg/La0fKYqtELO4+oHCgGhC5rzvqInnVWZOpa3K8 hA8ZYtN4gb1gINqaIZPYJW1jGMnaZ4RLRKK6ymsWOipa8iKkXQi2Gn3UKylfZoZB ShY8+d0t625+NYHXOWXVvl6TLLu3M3viu7iul1IodGTwlOygE++fY1ke10rLCp5F ox9o5r7HR5typX+tBW1mvfuHZ9R5IFJBd8PBBVsvhdOI8XFoYd94DS3zD4cIVl8m /Ppb4itL4z2FpObzKSB7y3VCZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEzQGV9s MGAzyNKOLachW8StmELTMB8GA1UdIwQYMBaAFK/DF0dn5Or8Te4PSSWhxlzcWfoq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDY0Qy82ODNDOUQ5ODY3 MkQxMUVFOUM4MDlGMTJDNEY5QUUwMi9yOE1YUjJmazZ2eE43ZzlKSmFIR1hOeFot aW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I4TVhSMmZrNnZ4TjdnOUpKYUhHWE54Wi1pby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDY0Qy82ODNDOUQ5ODY3MkQxMUVFOUM4MDlGMTJDNEY5QUUwMi9yOE1YUjJmazZ2 eE43ZzlKSmFIR1hOeFotaW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8CdWHHGx/eIy3z2k8Z8LiYRhn2qZUhdgN4/PtH4xZBwHtI8UX+xMT lYd5+b+IIe/xmvKgNXTG1e99mxosvuA4XzVGUBXY9gDQhkHMuViYysmxuTDJyk+e wKlbwgCvtdUftSRUZnYQl7tq0ZrR7jlPAdycEHYfMc1pfKYKch19YJg9gjLDRXUo g6YmnraUSyQ2KcBouPHvbA9/QN3lXULNgKDZtZWkX6/tLtadBpmflwWoW1MU8acf AQvoPCYesqN31y1JKukTg7f21j0R0glBxX7uIgLRHnErAsbpOg+yzpcLnjj1jzus 5rWkmRWurNlr+RNdb71oYeS8P1A7dqbJ -----END CERTIFICATE-----Generated at Sat Apr 5 01:37:45 2025 by rpki-client