$ rpki-client -vvf rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft File: 8bZbeXYWOXNS7L1KLHdPz37G1HA.mft (raw, json) Hash identifier: JCTh3pz54c0UHg77QqnB6Mi2hDrgSMFEBevoMW1QyEo= Subject key identifier: B6:63:27:96:28:2B:97:08:82:02:C8:23:44:7A:2F:7E:38:EC:10:14 Authority key identifier: F1:B6:5B:79:76:16:39:73:52:EC:BD:4A:2C:77:4F:CF:7E:C6:D4:70 Certificate issuer: /CN=A91D14EF/serialNumber=F1B65B797616397352ECBD4A2C774FCF7EC6D470 Certificate serial: 065B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bZbeXYWOXNS7L1KLHdPz37G1HA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft Manifest number: 0655 Signing time: Fri 30 May 2025 22:42:49 +0000 Manifest this update: Fri 30 May 2025 22:42:49 +0000 Manifest next update: Fri 06 Jun 2025 22:42:49 +0000 Files and hashes: 1: 8bZbeXYWOXNS7L1KLHdPz37G1HA.crl (hash: PPIP2uYnYnGImTDjtAexA/UsJZZ43/Clq69xkVktR8s=) 2: 226402B0860D11EB8F541B68C4F9AE02.roa (hash: oKHV5TBmq4GqrFfr2VIYxjHb/BXfTV1fp7LSb6WOO9s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.crl rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bZbeXYWOXNS7L1KLHdPz37G1HA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:42:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1627 (0x65b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D14EF, serialNumber=F1B65B797616397352ECBD4A2C774FCF7EC6D470 Validity Not Before: May 30 22:42:49 2025 GMT Not After : Jun 6 22:42:49 2025 GMT Subject: CN=683a3469-0b64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5d:49:ab:99:64:98:72:68:2b:d4:0b:ed:6e: 45:48:51:bf:bd:cb:aa:06:2e:6f:aa:8e:73:6c:bc: 60:7d:42:02:3f:31:ab:fc:f7:8c:59:af:fd:c4:a5: 9c:64:f0:33:6b:7b:b0:65:17:7c:ed:d2:b9:1c:02: 14:74:db:6f:50:3e:68:2d:d8:b3:51:b7:e0:87:d0: ad:43:fd:b5:49:10:68:3c:26:60:16:39:d5:24:06: d7:80:8e:f6:9b:a8:6c:27:dd:5d:00:4a:53:3f:77: 38:16:dc:83:d1:2e:43:bf:52:83:9d:09:64:d3:71: c2:da:0f:ac:1a:46:ee:63:95:47:f9:98:8b:05:65: 9b:ad:b5:cd:38:ed:44:32:5e:fb:fa:eb:bc:c7:db: 09:ed:8d:57:93:26:43:67:3e:d5:06:23:09:c1:2b: 54:37:f3:f9:3e:26:43:50:26:0d:5d:3f:81:39:e2: bd:ef:0c:71:b0:77:3f:ec:3c:d3:c1:44:cb:e7:a0: f4:48:31:a8:97:63:f6:d0:3e:b5:de:da:78:a1:b5: b0:68:5e:1b:e8:85:70:87:f5:82:e6:0e:40:fd:17: 37:ea:11:f8:47:d1:d4:51:cc:01:4e:36:d0:56:94: 62:db:db:74:31:7d:48:67:b8:82:81:b1:38:b0:fe: 5a:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:63:27:96:28:2B:97:08:82:02:C8:23:44:7A:2F:7E:38:EC:10:14 X509v3 Authority Key Identifier: keyid:F1:B6:5B:79:76:16:39:73:52:EC:BD:4A:2C:77:4F:CF:7E:C6:D4:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bZbeXYWOXNS7L1KLHdPz37G1HA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:d5:f4:22:4c:52:f5:d3:59:0e:66:03:f7:5e:9f:a3:98:e3: f7:08:6c:04:00:c2:74:76:cd:1c:09:7d:35:1e:a6:32:2f:1c: 29:c9:bf:a9:8b:be:e5:35:bb:f5:e6:5f:59:8d:ca:be:67:2b: 98:3e:c2:1b:b4:78:11:61:63:91:23:71:0a:06:f0:e7:ec:41: 6e:89:16:90:34:31:3e:9c:44:7d:b3:3e:93:34:1c:69:30:ca: b4:2a:ee:27:c6:61:db:12:a1:5d:ab:29:6e:6d:86:b4:51:19: 28:be:e0:9c:7b:61:4f:c3:ab:34:ed:63:d5:fe:2e:da:9e:f9: a3:af:72:c3:52:a5:92:69:de:ec:8b:8c:ba:5d:5b:4e:60:29: 15:dc:04:8d:5b:c9:f2:d1:f9:8c:fb:44:a5:7f:60:0c:3e:b2: 55:11:72:9c:b6:20:4d:32:de:d5:28:93:64:57:c8:b2:f3:ed: b0:07:1e:dc:91:2e:30:43:49:7a:52:83:c4:01:5f:71:4a:25: eb:ea:7f:72:1e:5b:51:7d:5f:1e:4f:dc:76:d5:24:eb:6f:68: cb:5d:9e:c6:a8:08:ca:cb:06:01:78:28:18:c1:bc:49:f8:d1: 44:b9:23:28:26:a9:7d:0b:2d:8a:c4:a6:5d:72:88:c2:5d:ae: 4d:1c:82:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE0RUYxMTAvBgNVBAUTKEYxQjY1Qjc5NzYxNjM5NzM1MkVDQkQ0QTJDNzc0RkNG N0VDNkQ0NzAwHhcNMjUwNTMwMjI0MjQ5WhcNMjUwNjA2MjI0MjQ5WjAYMRYwFAYD VQQDEw02ODNhMzQ2OS0wYjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuV1Jq5lkmHJoK9QL7W5FSFG/vcuqBi5vqo5zbLxgfUICPzGr/PeMWa/9xKWc ZPAza3uwZRd87dK5HAIUdNtvUD5oLdizUbfgh9CtQ/21SRBoPCZgFjnVJAbXgI72 m6hsJ91dAEpTP3c4FtyD0S5Dv1KDnQlk03HC2g+sGkbuY5VH+ZiLBWWbrbXNOO1E Ml77+uu8x9sJ7Y1XkyZDZz7VBiMJwStUN/P5PiZDUCYNXT+BOeK97wxxsHc/7DzT wUTL56D0SDGol2P20D613tp4obWwaF4b6IVwh/WC5g5A/Rc36hH4R9HUUcwBTjbQ VpRi29t0MX1IZ7iCgbE4sP5aQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLZjJ5Yo K5cIggLII0R6L3447BAUMB8GA1UdIwQYMBaAFPG2W3l2FjlzUuy9Six3T89+xtRw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTRFRi8yNjQwMTAwNjg2 MEIxMUVCOTFDMTJENjNDNEY5QUUwMi84YlpiZVhZV09YTlM3TDFLTEhkUHozN0cx SEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhiWmJlWFlXT1hOUzdMMUtMSGRQejM3RzFIQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTRFRi8yNjQwMTAwNjg2MEIxMUVCOTFDMTJENjNDNEY5QUUwMi84YlpiZVhZV09Y TlM3TDFLTEhkUHozN0cxSEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/1fQiTFL101kOZgP3Xp+jmOP3CGwEAMJ0ds0cCX01HqYyLxwpyb+p i77lNbv15l9Zjcq+ZyuYPsIbtHgRYWORI3EKBvDn7EFuiRaQNDE+nER9sz6TNBxp MMq0Ku4nxmHbEqFdqylubYa0URkovuCce2FPw6s07WPV/i7anvmjr3LDUqWSad7s i4y6XVtOYCkV3ASNW8ny0fmM+0Slf2AMPrJVEXKctiBNMt7VKJNkV8iy8+2wBx7c kS4wQ0l6UoPEAV9xSiXr6n9yHltRfV8eT9x21STrb2jLXZ7GqAjKywYBeCgYwbxJ +NFEuSMoJql9Cy2KxKZdcojCXa5NHILJ -----END CERTIFICATE-----Generated at Sat May 31 16:42:08 2025 by rpki-client