$ rpki-client -vvf rpki.apnic.net/member_repository/A91C85E9/082538ECF96511E8BC052411C4F9AE02/x8-UPjp2TzfAA81DWiuFQ7zkdgk.mft File: x8-UPjp2TzfAA81DWiuFQ7zkdgk.mft (raw, json) Hash identifier: i9Qrm7gXfZ7awSC9AI1vYzaoPSDvqDviWrVuzT3g6Dg= Subject key identifier: C1:28:EC:A7:16:7B:12:48:F4:B8:C4:C4:BB:F4:2C:EB:45:1C:F0:0F Authority key identifier: C7:CF:94:3E:3A:76:4F:37:C0:03:CD:43:5A:2B:85:43:BC:E4:76:09 Certificate issuer: /CN=A91C85E9/serialNumber=C7CF943E3A764F37C003CD435A2B8543BCE47609 Certificate serial: 119E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8-UPjp2TzfAA81DWiuFQ7zkdgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C85E9/082538ECF96511E8BC052411C4F9AE02/x8-UPjp2TzfAA81DWiuFQ7zkdgk.mft Manifest number: 1194 Signing time: Fri 30 May 2025 17:23:15 +0000 Manifest this update: Fri 30 May 2025 17:23:15 +0000 Manifest next update: Fri 06 Jun 2025 17:23:15 +0000 Files and hashes: 1: x8-UPjp2TzfAA81DWiuFQ7zkdgk.crl (hash: F5vzovT3RdlBdGdsUroidKbTA2kpvWvO/rVk0GzT0go=) 2: 8446564EF96611E8BE431B17C4F9AE02.roa (hash: S4PonvpkLuqmrbtgnv8T9QMFORQi4oK8GF7Qf1Ow3ok=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C85E9/082538ECF96511E8BC052411C4F9AE02/x8-UPjp2TzfAA81DWiuFQ7zkdgk.crl rsync://rpki.apnic.net/member_repository/A91C85E9/082538ECF96511E8BC052411C4F9AE02/x8-UPjp2TzfAA81DWiuFQ7zkdgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8-UPjp2TzfAA81DWiuFQ7zkdgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:23:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4510 (0x119e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C85E9, serialNumber=C7CF943E3A764F37C003CD435A2B8543BCE47609 Validity Not Before: May 30 17:23:15 2025 GMT Not After : Jun 6 17:23:15 2025 GMT Subject: CN=6839e983-627a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a9:8d:19:8b:1e:cd:88:60:af:3e:aa:50:25: 76:fb:9f:57:82:a3:64:22:b2:4c:d0:e9:af:33:f3: de:12:0f:47:21:76:e5:48:d6:c7:5e:ba:75:8b:5d: cc:05:be:c7:8a:8e:9c:c3:32:d5:9f:e2:b7:a6:2f: 30:56:ab:96:2e:7d:8e:c8:ff:f8:39:45:7a:2f:9a: ce:80:a1:ba:d9:7e:f6:aa:e1:f9:0f:fe:fa:7d:fd: 2d:7b:4b:72:af:41:a9:25:a8:3c:c0:d0:11:0c:d7: 2d:3b:fb:a0:9a:7e:eb:5c:99:33:45:63:45:e0:b3: 1d:45:ad:73:9a:f0:54:91:7c:41:65:81:bd:5b:1b: 0b:69:e8:2e:0f:45:6e:40:46:f6:e8:5b:50:02:b3: 7c:8b:12:31:96:5f:15:73:c9:fa:c6:b8:14:45:ea: 8d:d4:82:9b:82:a3:6a:e1:63:ce:0c:0a:c9:ac:12: 1f:21:a3:f6:be:00:7d:02:48:38:fd:a9:3a:85:aa: e5:11:32:0e:fb:6f:6c:ed:ed:58:ce:58:ab:99:d6: 8f:de:1c:6b:2a:ca:fb:0e:be:b4:1c:f3:03:99:75: a2:ce:8e:fb:d7:c9:8e:55:19:d7:5b:68:7f:62:c1: d6:28:dc:82:45:1c:e4:85:9f:6e:78:05:2f:e3:e2: e9:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:28:EC:A7:16:7B:12:48:F4:B8:C4:C4:BB:F4:2C:EB:45:1C:F0:0F X509v3 Authority Key Identifier: keyid:C7:CF:94:3E:3A:76:4F:37:C0:03:CD:43:5A:2B:85:43:BC:E4:76:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C85E9/082538ECF96511E8BC052411C4F9AE02/x8-UPjp2TzfAA81DWiuFQ7zkdgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8-UPjp2TzfAA81DWiuFQ7zkdgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C85E9/082538ECF96511E8BC052411C4F9AE02/x8-UPjp2TzfAA81DWiuFQ7zkdgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:d2:84:55:e8:8d:ce:94:d7:0b:31:22:9f:a7:03:38:2f:09: a5:f6:e2:cd:d3:90:00:78:a1:50:42:cb:a1:6b:95:3d:a2:21: 00:55:9a:6d:b9:00:cf:c0:dd:4b:64:3b:f5:ae:13:28:17:6a: 7f:dd:21:3f:51:ad:a9:ca:3f:67:68:23:00:b2:cb:fa:da:57: 79:a3:ac:11:62:e7:3e:40:a9:72:9a:39:1a:7a:da:ae:b6:4c: ce:14:8d:2e:5e:7a:f6:97:08:1d:32:ac:8f:c0:7c:bd:00:ea: 88:20:5d:61:ed:6d:6a:c2:62:ac:4a:c3:3c:5c:56:24:22:8a: bf:ce:c6:66:33:df:ba:d7:72:ef:24:02:27:4f:38:21:cd:94: 2e:d6:9f:02:9c:71:41:e3:db:a6:3a:25:eb:e8:e0:06:3f:b8: bf:e9:4f:12:69:d2:74:69:6b:23:87:a7:c6:86:6c:86:c4:d9: 69:0e:c3:b0:7c:10:39:e5:fd:61:f5:5e:35:3d:db:47:1a:b3: f7:9a:2e:75:75:a8:09:ff:4b:d8:60:66:73:91:e2:09:cf:ed: fa:8d:04:e2:6e:68:84:a2:e2:83:df:6c:92:15:e7:8f:c7:e6: 27:97:35:3d:cb:6f:78:b2:1a:4c:e4:a4:85:f0:02:e1:f8:b2: 9a:35:01:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEZ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzg1RTkxMTAvBgNVBAUTKEM3Q0Y5NDNFM0E3NjRGMzdDMDAzQ0Q0MzVBMkI4NTQz QkNFNDc2MDkwHhcNMjUwNTMwMTcyMzE1WhcNMjUwNjA2MTcyMzE1WjAYMRYwFAYD VQQDEw02ODM5ZTk4My02MjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyamNGYsezYhgrz6qUCV2+59XgqNkIrJM0OmvM/PeEg9HIXblSNbHXrp1i13M Bb7Hio6cwzLVn+K3pi8wVquWLn2OyP/4OUV6L5rOgKG62X72quH5D/76ff0te0ty r0GpJag8wNARDNctO/ugmn7rXJkzRWNF4LMdRa1zmvBUkXxBZYG9WxsLaeguD0Vu QEb26FtQArN8ixIxll8Vc8n6xrgUReqN1IKbgqNq4WPODArJrBIfIaP2vgB9Akg4 /ak6harlETIO+29s7e1YzlirmdaP3hxrKsr7Dr60HPMDmXWizo7718mOVRnXW2h/ YsHWKNyCRRzkhZ9ueAUv4+LpyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMEo7KcW exJI9LjExLv0LOtFHPAPMB8GA1UdIwQYMBaAFMfPlD46dk83wAPNQ1orhUO85HYJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODVFOS8wODI1MzhFQ0Y5 NjUxMUU4QkMwNTI0MTFDNEY5QUUwMi94OC1VUGpwMlR6ZkFBODFEV2l1RlE3emtk Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g4LVVQanAyVHpmQUE4MURXaXVGUTd6a2Rnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODVFOS8wODI1MzhFQ0Y5NjUxMUU4QkMwNTI0MTFDNEY5QUUwMi94OC1VUGpwMlR6 ZkFBODFEV2l1RlE3emtkZ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCo0oRV6I3OlNcLMSKfpwM4Lwml9uLN05AAeKFQQsuha5U9oiEAVZpt uQDPwN1LZDv1rhMoF2p/3SE/Ua2pyj9naCMAssv62ld5o6wRYuc+QKlymjkaetqu tkzOFI0uXnr2lwgdMqyPwHy9AOqIIF1h7W1qwmKsSsM8XFYkIoq/zsZmM9+613Lv JAInTzghzZQu1p8CnHFB49umOiXr6OAGP7i/6U8SadJ0aWsjh6fGhmyGxNlpDsOw fBA55f1h9V41PdtHGrP3mi51dagJ/0vYYGZzkeIJz+36jQTibmiEouKD32ySFeeP x+YnlzU9y294shpM5KSF8ALh+LKaNQFK -----END CERTIFICATE-----Generated at Sat May 31 17:00:26 2025 by rpki-client