$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1604/09A112343CEB11EF94E24F59C4F9AE02/8iz473at_fLPnv7b7BITSIY1b00.mft File: 8iz473at_fLPnv7b7BITSIY1b00.mft (raw, json) Hash identifier: 9aBlhybZ6eSDqVNYnbNgxQAp6fma8IsTAaq/bipNPGk= Subject key identifier: 30:50:E3:20:3A:BE:0C:FF:63:E8:06:16:6B:AF:DA:DA:82:D1:CD:9E Authority key identifier: F2:2C:F8:EF:76:AD:FD:F2:CF:9E:FE:DB:EC:12:13:48:86:35:6F:4D Certificate issuer: /CN=A91E1604/serialNumber=F22CF8EF76ADFDF2CF9EFEDBEC12134886356F4D Certificate serial: AD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8iz473at_fLPnv7b7BITSIY1b00.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1604/09A112343CEB11EF94E24F59C4F9AE02/8iz473at_fLPnv7b7BITSIY1b00.mft Manifest number: AB Signing time: Sun 01 Jun 2025 05:49:20 +0000 Manifest this update: Sun 01 Jun 2025 05:49:19 +0000 Manifest next update: Sun 08 Jun 2025 05:49:19 +0000 Files and hashes: 1: 8iz473at_fLPnv7b7BITSIY1b00.crl (hash: xxicnapvqFGcMj9/BOW57IcJ2tYKV1J8edlVzkinsGc=) 2: E36214403D0011EFAD623342C4F9AE02.roa (hash: 420VAJueRLeEIyuOExcHcsg4aUQyw3PTMA6zp5xTQ8U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1604/09A112343CEB11EF94E24F59C4F9AE02/8iz473at_fLPnv7b7BITSIY1b00.crl rsync://rpki.apnic.net/member_repository/A91E1604/09A112343CEB11EF94E24F59C4F9AE02/8iz473at_fLPnv7b7BITSIY1b00.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8iz473at_fLPnv7b7BITSIY1b00.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 05:49:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1604, serialNumber=F22CF8EF76ADFDF2CF9EFEDBEC12134886356F4D Validity Not Before: Jun 1 05:49:19 2025 GMT Not After : Jun 8 05:49:19 2025 GMT Subject: CN=683be9e0-eb6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:d9:9c:b0:a7:41:7e:2b:1e:39:bc:0f:07:d1: f7:7c:e7:e4:7e:09:06:05:8c:28:d4:a5:c3:a4:1e: cc:9f:3e:e4:bc:27:72:f8:6d:57:ce:8c:4c:a6:8d: f0:27:c0:8d:db:44:1d:8e:79:08:cd:27:aa:d3:b6: a2:66:b1:d2:f4:2b:c0:6d:48:6a:88:b3:04:cb:d5: aa:4c:07:e4:d2:af:6f:c2:8c:c4:b4:a5:53:e3:64: 41:a7:ac:33:72:6f:9d:63:39:00:ab:1d:9b:65:42: 72:70:8a:72:b8:f4:77:d8:c8:bf:54:1e:17:90:d4: 6f:ff:4d:7a:b6:14:0a:21:c1:6b:29:16:d5:0e:50: d9:a6:27:6c:8e:29:b9:d4:a3:8e:64:17:83:86:66: e1:97:44:e9:fa:f0:a5:9d:e4:02:cd:be:60:20:31: bf:ae:38:50:7b:ad:82:e9:85:00:5b:b4:35:a8:1f: fd:99:58:be:a0:25:67:32:9b:89:be:b1:06:01:6a: 33:17:e4:4a:9b:19:7a:1a:cb:47:63:55:f2:e7:7e: 46:10:63:58:26:2c:44:cd:03:ed:30:fc:3f:b7:82: 27:63:a8:d7:a9:d3:45:74:dc:68:28:a5:77:51:ac: ee:f1:c3:88:fd:dd:21:d9:08:be:c8:8d:35:97:3f: e1:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:50:E3:20:3A:BE:0C:FF:63:E8:06:16:6B:AF:DA:DA:82:D1:CD:9E X509v3 Authority Key Identifier: keyid:F2:2C:F8:EF:76:AD:FD:F2:CF:9E:FE:DB:EC:12:13:48:86:35:6F:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1604/09A112343CEB11EF94E24F59C4F9AE02/8iz473at_fLPnv7b7BITSIY1b00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8iz473at_fLPnv7b7BITSIY1b00.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1604/09A112343CEB11EF94E24F59C4F9AE02/8iz473at_fLPnv7b7BITSIY1b00.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:17:3b:91:1a:35:a1:6b:eb:c3:91:f8:48:62:a5:1e:68:b7: b3:25:0b:83:9b:b7:9d:81:4d:ee:5a:13:0b:08:e5:5f:6a:a9: 25:86:6f:1a:7a:93:af:1b:82:cd:c4:c0:98:84:48:9e:85:9b: a3:69:7e:1f:23:20:02:88:17:5c:a5:7c:46:5d:1b:4a:eb:0f: d7:33:ae:06:af:9f:81:0d:e1:56:bb:8a:62:16:c5:fe:9a:a0: ab:9d:fd:a6:f9:da:cd:12:15:bf:f3:cd:47:b1:a5:9e:c3:50: 38:78:e8:7e:54:d6:37:da:1a:8c:72:c4:91:a6:31:a8:a6:08: 1c:26:dc:ed:0e:10:c5:8b:89:db:f9:a5:88:f8:58:02:b1:28: 14:0b:e6:49:0a:cd:15:bb:91:be:40:d1:5a:24:3c:cc:de:a2: 25:7d:84:c0:a6:9c:fb:a0:3e:3a:35:9f:2f:12:4c:02:f6:9c: ef:91:1c:85:cd:fa:3a:d4:97:3b:15:75:5e:3d:70:b6:7c:ac: e3:0a:27:a9:ee:c2:8f:22:34:4a:bc:ad:a1:db:0a:45:54:5c: b6:eb:c5:55:9d:ad:1f:92:8b:ca:ed:26:31:96:44:70:00:b9: 50:c2:15:de:b5:53:26:6a:fd:f0:31:79:64:dc:dc:bb:41:c1: 53:65:99:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE2MDQxMTAvBgNVBAUTKEYyMkNGOEVGNzZBREZERjJDRjlFRkVEQkVDMTIxMzQ4 ODYzNTZGNEQwHhcNMjUwNjAxMDU0OTE5WhcNMjUwNjA4MDU0OTE5WjAYMRYwFAYD VQQDEw02ODNiZTllMC1lYjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1NmcsKdBfiseObwPB9H3fOfkfgkGBYwo1KXDpB7Mnz7kvCdy+G1XzoxMpo3w J8CN20QdjnkIzSeq07aiZrHS9CvAbUhqiLMEy9WqTAfk0q9vwozEtKVT42RBp6wz cm+dYzkAqx2bZUJycIpyuPR32Mi/VB4XkNRv/016thQKIcFrKRbVDlDZpidsjim5 1KOOZBeDhmbhl0Tp+vClneQCzb5gIDG/rjhQe62C6YUAW7Q1qB/9mVi+oCVnMpuJ vrEGAWozF+RKmxl6GstHY1Xy535GEGNYJixEzQPtMPw/t4InY6jXqdNFdNxoKKV3 Uazu8cOI/d0h2Qi+yI01lz/hRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDBQ4yA6 vgz/Y+gGFmuv2tqC0c2eMB8GA1UdIwQYMBaAFPIs+O92rf3yz57+2+wSE0iGNW9N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTYwNC8wOUExMTIzNDND RUIxMUVGOTRFMjRGNTlDNEY5QUUwMi84aXo0NzNhdF9mTFBudjdiN0JJVFNJWTFi MDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzhpejQ3M2F0X2ZMUG52N2I3QklUU0lZMWIwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTYwNC8wOUExMTIzNDNDRUIxMUVGOTRFMjRGNTlDNEY5QUUwMi84aXo0NzNhdF9m TFBudjdiN0JJVFNJWTFiMDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1FzuRGjWha+vDkfhIYqUeaLezJQuDm7edgU3uWhMLCOVfaqklhm8a epOvG4LNxMCYhEiehZujaX4fIyACiBdcpXxGXRtK6w/XM64Gr5+BDeFWu4piFsX+ mqCrnf2m+drNEhW/881HsaWew1A4eOh+VNY32hqMcsSRpjGopggcJtztDhDFi4nb +aWI+FgCsSgUC+ZJCs0Vu5G+QNFaJDzM3qIlfYTAppz7oD46NZ8vEkwC9pzvkRyF zfo61Jc7FXVePXC2fKzjCiep7sKPIjRKvK2h2wpFVFy268VVna0fkovK7SYxlkRw ALlQwhXetVMmav3wMXlk3Ny7QcFTZZmG -----END CERTIFICATE-----Generated at Mon Jun 2 20:34:44 2025 by rpki-client