$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft File: 8ghPeg88CpH4Jf79nxA18zVBWEw.mft (raw, json) Hash identifier: 6+ps7IpVGlB1IdAWtb5RCtrRYP3oe2iffA/Qoe/V5Jw= Subject key identifier: 70:36:B5:33:98:37:7E:29:6D:9D:91:68:02:1E:DE:0A:00:2C:62:A9 Authority key identifier: F2:08:4F:7A:0F:3C:0A:91:F8:25:FE:FD:9F:10:35:F3:35:41:58:4C Certificate issuer: /CN=A91EAEAF/serialNumber=F2084F7A0F3C0A91F825FEFD9F1035F33541584C Certificate serial: 021C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft Manifest number: 0219 Signing time: Sat 07 Jun 2025 02:00:21 +0000 Manifest this update: Sat 07 Jun 2025 02:00:20 +0000 Manifest next update: Sat 14 Jun 2025 02:00:20 +0000 Files and hashes: 1: 8ghPeg88CpH4Jf79nxA18zVBWEw.crl (hash: H7czdA3fJPM9F617GLFj6n/fsdhtBw5UdRe28+83yoA=) 2: EF0EFF5833F511EDA5C4F37DC4F9AE02.roa (hash: LAWmMRc8daUtEB7NaiA0m2Tl41sqEulVfrA7do1Thps=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.crl rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 02:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 540 (0x21c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAEAF, serialNumber=F2084F7A0F3C0A91F825FEFD9F1035F33541584C Validity Not Before: Jun 7 02:00:20 2025 GMT Not After : Jun 14 02:00:20 2025 GMT Subject: CN=68439d35-1f2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c9:ec:36:20:d5:53:db:2b:79:5e:30:de:fc: 9d:b2:45:44:8e:e9:36:5a:c6:2f:0e:bf:fa:70:b1: 59:e9:1c:cf:3e:b6:71:d3:df:e2:66:81:f3:e3:80: a8:ca:eb:bf:ca:9c:19:10:84:40:9e:1f:eb:78:f6: 57:72:1b:0a:8a:e4:6f:60:01:fc:90:cc:85:05:a5: c2:2b:0e:62:a7:38:2b:c5:c2:d2:91:4f:2c:17:43: 76:d8:98:03:df:8f:a7:3a:41:c9:af:dd:11:ed:94: 89:b2:68:22:00:57:2a:29:03:c9:9c:e9:af:6c:f3: 84:5d:a5:20:12:6e:98:ae:3a:f5:33:94:7d:e9:13: 15:2c:2f:e8:84:30:9d:2a:f5:69:45:25:cb:bc:bd: e0:2a:8b:b3:e2:e7:35:41:fe:d8:24:61:d9:a2:6d: c9:3c:e0:c5:b3:3a:4f:2a:d7:35:7a:97:b7:b1:26: c1:b6:9f:6b:94:a5:90:28:25:87:15:45:2a:04:80: 5c:ee:8f:69:e4:8f:8a:97:58:2f:40:45:1f:07:13: 20:cd:27:d2:81:1f:a4:05:3b:5b:80:46:f4:3c:5d: 00:83:81:d3:02:82:86:89:e9:4f:b4:4f:2e:84:1c: b4:33:e0:66:8d:2f:f1:74:35:25:27:a1:d6:7f:19: 01:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:36:B5:33:98:37:7E:29:6D:9D:91:68:02:1E:DE:0A:00:2C:62:A9 X509v3 Authority Key Identifier: keyid:F2:08:4F:7A:0F:3C:0A:91:F8:25:FE:FD:9F:10:35:F3:35:41:58:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:e0:12:02:a3:36:50:e8:0e:1d:07:bb:d8:0e:55:9c:2d:89: eb:b6:2d:82:56:ac:81:80:5b:53:3e:f0:86:60:ec:88:17:e9: 71:47:08:a9:6b:01:8e:fd:29:b0:3c:52:76:da:5c:27:93:a3: 39:42:9f:fb:e5:be:4a:73:2b:f1:84:79:00:aa:7d:22:0d:60: f9:c3:62:ef:47:b0:2b:63:0c:3b:dc:f3:61:3b:cc:69:13:73: d5:58:03:04:fb:7f:bf:9d:85:2a:1f:36:13:34:f5:a3:3f:f3: 76:34:bc:c2:de:93:c9:d9:00:03:ca:0f:07:c4:6b:0c:34:a8: 23:34:0a:23:90:61:8c:94:85:ae:5c:e4:4e:e3:f8:a0:69:38: 5d:77:84:d8:21:9f:d3:2b:65:ea:2b:d7:c4:ae:d8:4b:11:b1: 86:27:ba:5f:31:86:13:9b:34:19:0c:f6:c7:6a:f9:89:8e:98: b8:62:ae:db:33:6d:a4:ce:41:bc:e9:1c:df:fd:3e:55:2b:f3: 85:00:ba:59:85:67:23:3f:a2:6a:cd:fa:9b:60:b2:84:b9:a7: e8:96:62:9a:4f:94:ce:6c:32:45:fe:b4:d7:26:c1:0e:5b:1e: 9d:3e:e4:91:a5:b3:9b:66:c7:7b:64:69:fb:20:1a:ff:81:0d: ed:38:da:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFQUYxMTAvBgNVBAUTKEYyMDg0RjdBMEYzQzBBOTFGODI1RkVGRDlGMTAzNUYz MzU0MTU4NEMwHhcNMjUwNjA3MDIwMDIwWhcNMjUwNjE0MDIwMDIwWjAYMRYwFAYD VQQDEw02ODQzOWQzNS0xZjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzcnsNiDVU9sreV4w3vydskVEjuk2WsYvDr/6cLFZ6RzPPrZx09/iZoHz44Co yuu/ypwZEIRAnh/rePZXchsKiuRvYAH8kMyFBaXCKw5ipzgrxcLSkU8sF0N22JgD 34+nOkHJr90R7ZSJsmgiAFcqKQPJnOmvbPOEXaUgEm6Yrjr1M5R96RMVLC/ohDCd KvVpRSXLvL3gKouz4uc1Qf7YJGHZom3JPODFszpPKtc1epe3sSbBtp9rlKWQKCWH FUUqBIBc7o9p5I+Kl1gvQEUfBxMgzSfSgR+kBTtbgEb0PF0Ag4HTAoKGielPtE8u hBy0M+BmjS/xdDUlJ6HWfxkBzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHA2tTOY N34pbZ2RaAIe3goALGKpMB8GA1UdIwQYMBaAFPIIT3oPPAqR+CX+/Z8QNfM1QVhM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUVBRi9CRTM1MjFCODMz RjExMUVEQjgzNjEwODZDNEY5QUUwMi84Z2hQZWc4OENwSDRKZjc5bnhBMTh6VkJX RXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhnaFBlZzg4Q3BINEpmNzlueEExOHpWQldFdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUVBRi9CRTM1MjFCODMzRjExMUVEQjgzNjEwODZDNEY5QUUwMi84Z2hQZWc4OENw SDRKZjc5bnhBMTh6VkJXRXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAI4BICozZQ6A4dB7vYDlWcLYnrti2CVqyBgFtTPvCGYOyIF+lxRwip awGO/SmwPFJ22lwnk6M5Qp/75b5KcyvxhHkAqn0iDWD5w2LvR7ArYww73PNhO8xp E3PVWAME+3+/nYUqHzYTNPWjP/N2NLzC3pPJ2QADyg8HxGsMNKgjNAojkGGMlIWu XORO4/igaThdd4TYIZ/TK2XqK9fErthLEbGGJ7pfMYYTmzQZDPbHavmJjpi4Yq7b M22kzkG86Rzf/T5VK/OFALpZhWcjP6JqzfqbYLKEuafolmKaT5TObDJF/rTXJsEO Wx6dPuSRpbObZsd7ZGn7IBr/gQ3tONqb -----END CERTIFICATE-----Generated at Sat Jun 7 19:51:17 2025 by rpki-client