$ rpki-client -vvf rpki.apnic.net/member_repository/A91122B3/5E4D47625B9F11EFA14BBB5CC4F9AE02/I8Cy16zhCdPf6Drr7y6jFJxcrBc.mft File: I8Cy16zhCdPf6Drr7y6jFJxcrBc.mft (raw, json) Hash identifier: 4pYDeJ7vNg05u9Js4UTitJclUVdQqPA4NsBOW0IkigI= Subject key identifier: C8:86:A5:2E:5A:32:6C:ED:AC:BD:94:0A:F0:20:67:C2:59:BA:56:FC Authority key identifier: 23:C0:B2:D7:AC:E1:09:D3:DF:E8:3A:EB:EF:2E:A3:14:9C:5C:AC:17 Certificate issuer: /CN=A91122B3/serialNumber=23C0B2D7ACE109D3DFE83AEBEF2EA3149C5CAC17 Certificate serial: 87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8Cy16zhCdPf6Drr7y6jFJxcrBc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91122B3/5E4D47625B9F11EFA14BBB5CC4F9AE02/I8Cy16zhCdPf6Drr7y6jFJxcrBc.mft Manifest number: 85 Signing time: Fri 25 Apr 2025 05:35:57 +0000 Manifest this update: Fri 25 Apr 2025 05:35:57 +0000 Manifest next update: Fri 02 May 2025 05:35:57 +0000 Files and hashes: 1: I8Cy16zhCdPf6Drr7y6jFJxcrBc.crl (hash: 1fKSudbsuajg2Q/9r8QeT5T+/A0gndNL9bWTur7dBco=) 2: AA5E96065B9F11EF9F1B175DC4F9AE02.roa (hash: 835GCMndjNXvDx8DWI9YwArs6Gdw+YBn2q/Ep2PzpX0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91122B3/5E4D47625B9F11EFA14BBB5CC4F9AE02/I8Cy16zhCdPf6Drr7y6jFJxcrBc.crl rsync://rpki.apnic.net/member_repository/A91122B3/5E4D47625B9F11EFA14BBB5CC4F9AE02/I8Cy16zhCdPf6Drr7y6jFJxcrBc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8Cy16zhCdPf6Drr7y6jFJxcrBc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:35:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91122B3, serialNumber=23C0B2D7ACE109D3DFE83AEBEF2EA3149C5CAC17 Validity Not Before: Apr 25 05:35:57 2025 GMT Not After : May 2 05:35:57 2025 GMT Subject: CN=680b1f3d-3b85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:db:6d:81:d3:11:f7:7c:fe:a9:c2:5b:bb:8f: 23:db:4c:42:ff:ca:c4:f4:1a:cd:89:92:94:59:54: ef:2f:1d:5f:86:c7:4a:04:f3:8b:e2:c0:14:c6:91: 2c:1a:4e:29:fa:0c:98:3e:f9:c6:d8:97:88:2b:2f: e7:83:0c:98:1b:b3:2a:69:a4:e1:e4:a4:10:fe:fc: 8c:c7:fb:55:bb:29:b4:4c:7b:e9:fe:8d:0f:1d:4a: e0:7e:ec:03:b5:7a:8b:87:08:16:f5:f9:09:98:de: bd:69:9b:d5:6c:5f:56:9c:f7:dc:b7:9b:d1:c1:fe: b7:75:a8:8a:10:48:2f:0c:89:14:17:21:af:3a:f7: af:87:00:a0:41:0b:f2:b3:cc:59:b8:c9:37:d4:46: 86:48:75:8c:7d:ea:0a:f0:6c:68:e1:f2:23:7d:d1: 4d:23:92:00:e8:3f:89:25:10:e8:46:f7:0b:d2:b5: 33:62:71:36:60:ae:fc:89:01:a3:a0:7c:50:e9:e9: 24:47:9a:3f:dd:ac:29:e2:5f:1a:c6:53:5f:e6:2c: 00:16:32:ae:80:33:5b:85:13:5f:74:c4:e6:df:04: 7f:cc:78:86:76:73:a3:95:36:e8:8a:14:9b:1d:63: 07:14:10:56:9d:a3:30:c7:42:00:17:0c:36:2b:ad: 52:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:86:A5:2E:5A:32:6C:ED:AC:BD:94:0A:F0:20:67:C2:59:BA:56:FC X509v3 Authority Key Identifier: keyid:23:C0:B2:D7:AC:E1:09:D3:DF:E8:3A:EB:EF:2E:A3:14:9C:5C:AC:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91122B3/5E4D47625B9F11EFA14BBB5CC4F9AE02/I8Cy16zhCdPf6Drr7y6jFJxcrBc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8Cy16zhCdPf6Drr7y6jFJxcrBc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91122B3/5E4D47625B9F11EFA14BBB5CC4F9AE02/I8Cy16zhCdPf6Drr7y6jFJxcrBc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:19:43:de:8a:05:74:fd:81:54:f4:c8:1d:69:28:b0:f7:a6: 51:6d:0d:e0:8a:09:13:3b:f9:1b:ec:66:4e:1c:be:e5:95:69: 78:37:7b:5a:1a:9c:73:70:f1:02:96:63:7a:30:04:b9:02:d3: e2:12:db:cf:e3:76:ae:07:39:2b:f1:bf:76:4d:f5:d9:6d:bb: d5:59:bc:cb:18:b9:1e:f9:7d:bd:9c:ce:f4:a7:ee:76:4c:ed: 57:c7:4f:c1:79:c5:23:7b:58:d7:73:03:60:a8:cc:ef:ff:f9: 08:b9:5d:41:aa:72:0e:0b:84:a0:c8:ad:c8:f1:00:0a:e8:78: 41:5c:10:16:e8:b6:01:36:c4:af:39:05:e7:d6:4b:05:d4:dd: de:ae:5e:e9:33:16:fb:ac:74:6e:05:a0:80:a6:ea:87:a5:5a: d8:c9:29:d8:ef:1b:7e:fc:91:da:2f:c8:79:f7:00:aa:cb:7e: 8f:2b:fc:99:04:7d:b9:b2:58:3d:0b:46:b0:35:14:e1:54:14: 89:7d:c0:1b:7e:a2:3b:87:8b:dd:0a:fa:e4:45:67:a8:1c:1b: 14:d1:24:83:37:89:bf:a3:a6:fa:1b:ae:66:dc:39:2e:51:4a: 26:0c:e7:87:23:8d:d3:33:11:77:1d:87:00:a0:d0:6d:1c:25: 31:7a:11:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTIyQjMxMTAvBgNVBAUTKDIzQzBCMkQ3QUNFMTA5RDNERkU4M0FFQkVGMkVBMzE0 OUM1Q0FDMTcwHhcNMjUwNDI1MDUzNTU3WhcNMjUwNTAyMDUzNTU3WjAYMRYwFAYD VQQDEw02ODBiMWYzZC0zYjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvtttgdMR93z+qcJbu48j20xC/8rE9BrNiZKUWVTvLx1fhsdKBPOL4sAUxpEs Gk4p+gyYPvnG2JeIKy/ngwyYG7MqaaTh5KQQ/vyMx/tVuym0THvp/o0PHUrgfuwD tXqLhwgW9fkJmN69aZvVbF9WnPfct5vRwf63daiKEEgvDIkUFyGvOvevhwCgQQvy s8xZuMk31EaGSHWMfeoK8Gxo4fIjfdFNI5IA6D+JJRDoRvcL0rUzYnE2YK78iQGj oHxQ6ekkR5o/3awp4l8axlNf5iwAFjKugDNbhRNfdMTm3wR/zHiGdnOjlTboihSb HWMHFBBWnaMwx0IAFww2K61SZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMiGpS5a MmztrL2UCvAgZ8JZulb8MB8GA1UdIwQYMBaAFCPAstes4QnT3+g66+8uoxScXKwX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjJCMy81RTRENDc2MjVC OUYxMUVGQTE0QkJCNUNDNEY5QUUwMi9JOEN5MTZ6aENkUGY2RHJyN3k2akZKeGNy QmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0k4Q3kxNnpoQ2RQZjZEcnI3eTZqRkp4Y3JCYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjJCMy81RTRENDc2MjVCOUYxMUVGQTE0QkJCNUNDNEY5QUUwMi9JOEN5MTZ6aENk UGY2RHJyN3k2akZKeGNyQmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbGUPeigV0/YFU9MgdaSiw96ZRbQ3gigkTO/kb7GZOHL7llWl4N3ta GpxzcPEClmN6MAS5AtPiEtvP43auBzkr8b92TfXZbbvVWbzLGLke+X29nM70p+52 TO1Xx0/BecUje1jXcwNgqMzv//kIuV1BqnIOC4SgyK3I8QAK6HhBXBAW6LYBNsSv OQXn1ksF1N3erl7pMxb7rHRuBaCApuqHpVrYySnY7xt+/JHaL8h59wCqy36PK/yZ BH25slg9C0awNRThVBSJfcAbfqI7h4vdCvrkRWeoHBsU0SSDN4m/o6b6G65m3Dku UUomDOeHI43TMxF3HYcAoNBtHCUxehFO -----END CERTIFICATE-----Generated at Sat Apr 26 04:21:52 2025 by rpki-client