$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft File: hsI8F7xNIO4W8JLTWiz2VU_scRk.mft (raw, json) Hash identifier: EJarAKeTE5BE6aLCDWcvUcBKoCTNA/JwevDQn5Wd6kE= Subject key identifier: 8D:B7:02:00:85:9E:73:AF:1A:3D:29:39:F7:D6:52:9C:BF:DC:7D:3A Authority key identifier: 86:C2:3C:17:BC:4D:20:EE:16:F0:92:D3:5A:2C:F6:55:4F:EC:71:19 Certificate issuer: /CN=A91E1D77/serialNumber=86C23C17BC4D20EE16F092D35A2CF6554FEC7119 Certificate serial: 08F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsI8F7xNIO4W8JLTWiz2VU_scRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft Manifest number: 08F0 Signing time: Fri 06 Jun 2025 20:27:29 +0000 Manifest this update: Fri 06 Jun 2025 20:27:28 +0000 Manifest next update: Fri 13 Jun 2025 20:27:28 +0000 Files and hashes: 1: hsI8F7xNIO4W8JLTWiz2VU_scRk.crl (hash: QLBLwcmV+lD0fdMw21om0OcguBw6eHnIFniSp9RROo4=) 2: E6FD5EBCBA3A11EBA9482F5AC4F9AE02.roa (hash: WsyWU+GSKy4FFCUwRFHUtgnAnZ3p6nz3YhQIgRrWUrE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.crl rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsI8F7xNIO4W8JLTWiz2VU_scRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 20:27:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2296 (0x8f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1D77, serialNumber=86C23C17BC4D20EE16F092D35A2CF6554FEC7119 Validity Not Before: Jun 6 20:27:28 2025 GMT Not After : Jun 13 20:27:28 2025 GMT Subject: CN=68434f31-97fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:36:99:e4:68:e6:de:b6:2a:64:e5:e0:d9:9d: f2:e7:23:89:ea:ef:c7:4c:a5:0e:2b:78:3c:95:b2: 0b:d9:fe:42:c4:d2:2c:02:ae:c5:31:15:ce:e5:84: 3b:6b:74:2e:88:d7:ac:05:a6:85:be:3d:11:11:d4: 92:05:21:a9:72:0f:28:de:fb:26:5b:a1:5f:6c:e4: eb:44:e4:75:5e:d1:a1:ac:65:82:2e:e9:c1:24:52: f9:93:4b:3a:3f:e6:c3:14:72:fc:02:79:9b:09:d8: aa:d4:22:5d:14:39:f2:24:06:a2:d9:6e:b1:17:21: 3d:fe:2e:ec:e9:15:af:c6:31:98:ae:52:f3:52:d0: b1:d1:29:0d:bd:63:db:fe:73:e4:53:45:27:6a:80: 95:88:f6:e6:1f:38:7a:91:16:92:23:f3:1b:48:13: ff:7e:72:2d:69:89:27:e9:65:7d:3e:94:a8:e9:85: 88:4e:59:52:94:26:b1:56:cb:b3:f8:01:1f:c6:b1: 1f:0b:be:81:58:af:2b:52:01:b9:66:97:25:bc:ba: 7c:75:60:77:6d:18:67:1d:6a:d3:52:b8:66:95:8e: 91:27:f6:28:04:a0:8f:45:01:13:86:32:39:7e:2c: 43:c5:61:5d:1c:78:2d:cd:a3:4b:11:dc:5f:60:38: f7:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:B7:02:00:85:9E:73:AF:1A:3D:29:39:F7:D6:52:9C:BF:DC:7D:3A X509v3 Authority Key Identifier: keyid:86:C2:3C:17:BC:4D:20:EE:16:F0:92:D3:5A:2C:F6:55:4F:EC:71:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsI8F7xNIO4W8JLTWiz2VU_scRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:32:13:ae:7a:c4:f0:22:21:10:03:a1:00:b4:37:eb:a8:13: 22:f0:61:06:92:99:32:62:4c:3b:5b:0a:71:e2:07:7f:84:97: 6c:e0:35:df:d9:c8:82:b8:ab:76:ea:2e:7b:bb:fb:67:97:11: b2:1a:57:29:23:0c:4e:f1:c0:3e:98:03:e5:f9:c1:e2:f5:d3: 89:21:9a:68:51:df:99:92:15:6e:ea:13:70:2a:be:33:86:63: 26:db:13:ef:02:b2:58:4b:91:c8:48:33:c7:67:34:64:7a:f7: 64:74:cc:13:be:2e:c0:e9:c8:60:c8:9e:c8:52:f8:07:28:a6: c0:38:51:e1:30:fd:c9:72:8f:59:2e:11:67:e6:03:4d:99:90: 29:05:b1:94:ee:ad:98:78:a8:0b:7a:66:d5:84:c5:0b:ea:51: cb:65:8c:8b:75:2e:27:bd:69:ee:81:34:8e:ba:27:4d:d9:84: 88:f8:88:ed:09:ef:b8:7a:58:26:6c:02:5b:fe:1b:d6:ed:69: bd:5d:75:28:5f:be:84:79:72:83:c2:57:cc:60:f7:27:8a:5e: 11:05:6c:93:78:1a:b6:eb:f9:36:b1:7e:53:91:30:8e:ec:0a: 86:a5:03:7f:0e:15:30:c4:ae:f0:9f:fe:c3:1b:3b:58:82:14: 82:0d:ce:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTFENzcxMTAvBgNVBAUTKDg2QzIzQzE3QkM0RDIwRUUxNkYwOTJEMzVBMkNGNjU1 NEZFQzcxMTkwHhcNMjUwNjA2MjAyNzI4WhcNMjUwNjEzMjAyNzI4WjAYMRYwFAYD VQQDEw02ODQzNGYzMS05N2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApTaZ5Gjm3rYqZOXg2Z3y5yOJ6u/HTKUOK3g8lbIL2f5CxNIsAq7FMRXO5YQ7 a3QuiNesBaaFvj0REdSSBSGpcg8o3vsmW6FfbOTrROR1XtGhrGWCLunBJFL5k0s6 P+bDFHL8AnmbCdiq1CJdFDnyJAai2W6xFyE9/i7s6RWvxjGYrlLzUtCx0SkNvWPb /nPkU0UnaoCViPbmHzh6kRaSI/MbSBP/fnItaYkn6WV9PpSo6YWITllSlCaxVsuz +AEfxrEfC76BWK8rUgG5ZpclvLp8dWB3bRhnHWrTUrhmlY6RJ/YoBKCPRQEThjI5 fixDxWFdHHgtzaNLEdxfYDj3awIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI23AgCF nnOvGj0pOffWUpy/3H06MB8GA1UdIwQYMBaAFIbCPBe8TSDuFvCS01os9lVP7HEZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMUQ3Ny80QjY0MjdFMkFC RjkxMUVBODhBQUUzMkNDNEY5QUUwMi9oc0k4Rjd4TklPNFc4SkxUV2l6MlZVX3Nj UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzSThGN3hOSU80VzhKTFRXaXoyVlVfc2NSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MUQ3Ny80QjY0MjdFMkFCRjkxMUVBODhBQUUzMkNDNEY5QUUwMi9oc0k4Rjd4TklP NFc4SkxUV2l6MlZVX3NjUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2MhOuesTwIiEQA6EAtDfrqBMi8GEGkpkyYkw7Wwpx4gd/hJds4DXf 2ciCuKt26i57u/tnlxGyGlcpIwxO8cA+mAPl+cHi9dOJIZpoUd+ZkhVu6hNwKr4z hmMm2xPvArJYS5HISDPHZzRkevdkdMwTvi7A6chgyJ7IUvgHKKbAOFHhMP3Jco9Z LhFn5gNNmZApBbGU7q2YeKgLembVhMUL6lHLZYyLdS4nvWnugTSOuidN2YSI+Ijt Ce+4elgmbAJb/hvW7Wm9XXUoX76EeXKDwlfMYPcnil4RBWyTeBq26/k2sX5TkTCO 7AqGpQN/DhUwxK7wn/7DGztYghSCDc4m -----END CERTIFICATE-----Generated at Sat Jun 7 16:25:34 2025 by rpki-client