$ rpki-client -vvf rpki.apnic.net/member_repository/A912FBD5/0D26D4A08E5411EB93308A75C4F9AE02/8Fu9JtTeCPZYjLf6_7GDD6vDcWc.mft File: 8Fu9JtTeCPZYjLf6_7GDD6vDcWc.mft (raw, json) Hash identifier: Daw5zrRZTVvQwJ9DsKbV4ovYU1mjW9zQ4Z8DQIImNUE= Subject key identifier: 31:14:74:B4:AB:20:E1:7E:FE:7E:2B:68:AD:E4:6D:1A:CB:2C:EA:F3 Authority key identifier: F0:5B:BD:26:D4:DE:08:F6:58:8C:B7:FA:FF:B1:83:0F:AB:C3:71:67 Certificate issuer: /CN=A912FBD5/serialNumber=F05BBD26D4DE08F6588CB7FAFFB1830FABC37167 Certificate serial: 0636 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Fu9JtTeCPZYjLf6_7GDD6vDcWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FBD5/0D26D4A08E5411EB93308A75C4F9AE02/8Fu9JtTeCPZYjLf6_7GDD6vDcWc.mft Manifest number: 0631 Signing time: Thu 24 Apr 2025 22:26:58 +0000 Manifest this update: Thu 24 Apr 2025 22:26:57 +0000 Manifest next update: Thu 01 May 2025 22:26:57 +0000 Files and hashes: 1: 8Fu9JtTeCPZYjLf6_7GDD6vDcWc.crl (hash: tiDBY8hJMOpMmdxDiujDPMx3x+BZYzkPdTLjnpaiq3w=) 2: C0D6C00E8E5511EBA9EA9977C4F9AE02.roa (hash: eq7ObcirvoR6TZzb3RsSpe6IDa+SDjtPX6j3VgoghJQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FBD5/0D26D4A08E5411EB93308A75C4F9AE02/8Fu9JtTeCPZYjLf6_7GDD6vDcWc.crl rsync://rpki.apnic.net/member_repository/A912FBD5/0D26D4A08E5411EB93308A75C4F9AE02/8Fu9JtTeCPZYjLf6_7GDD6vDcWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Fu9JtTeCPZYjLf6_7GDD6vDcWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:26:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1590 (0x636) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FBD5, serialNumber=F05BBD26D4DE08F6588CB7FAFFB1830FABC37167 Validity Not Before: Apr 24 22:26:57 2025 GMT Not After : May 1 22:26:57 2025 GMT Subject: CN=680abab1-5917 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:2c:1c:94:f1:b2:7f:7e:f1:fd:83:d1:9a:49: 4d:6e:4f:4e:4b:3d:dd:f9:be:a6:bc:f9:54:6e:ba: b4:a4:8b:4c:2b:12:60:e0:af:f3:8c:d6:49:47:60: 62:c0:b9:09:df:ce:6f:d2:bf:11:34:6f:92:99:c5: 3d:fa:47:6d:f6:f7:d3:cc:04:9f:ed:74:7c:9e:8e: eb:d4:13:2b:6e:e9:f7:fc:84:c8:26:a0:f4:8e:07: 1c:a9:ca:94:0d:df:9e:5e:ea:c7:51:2d:11:52:2d: ef:2b:d8:33:36:07:7f:fc:db:d1:7a:a5:64:4f:22: 21:e2:cb:ba:56:5f:c6:9e:ae:ec:09:7b:d8:ea:26: f8:19:24:d2:cd:b8:80:8e:df:07:f1:50:87:94:cf: 9b:84:c1:6e:8c:ae:3f:7e:e4:30:75:e4:d7:0c:2e: e9:4c:d4:3a:85:10:71:2c:c6:e4:ee:93:5c:cf:da: 61:92:af:48:e2:cc:be:10:7b:ed:21:09:10:04:90: 1c:7f:30:7f:34:17:64:14:9a:9e:c6:41:7a:1e:c0: f8:44:e3:bf:30:3b:74:53:e9:39:cf:f2:ef:19:d7: 13:8c:2d:c6:89:f2:1f:c9:21:ac:cf:43:22:6f:af: e4:96:a8:ec:c4:a1:75:3c:c4:fc:a4:d1:90:b6:a8: 61:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:14:74:B4:AB:20:E1:7E:FE:7E:2B:68:AD:E4:6D:1A:CB:2C:EA:F3 X509v3 Authority Key Identifier: keyid:F0:5B:BD:26:D4:DE:08:F6:58:8C:B7:FA:FF:B1:83:0F:AB:C3:71:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FBD5/0D26D4A08E5411EB93308A75C4F9AE02/8Fu9JtTeCPZYjLf6_7GDD6vDcWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Fu9JtTeCPZYjLf6_7GDD6vDcWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FBD5/0D26D4A08E5411EB93308A75C4F9AE02/8Fu9JtTeCPZYjLf6_7GDD6vDcWc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:2f:e2:27:4e:e3:05:1e:a3:20:26:e5:e3:69:89:72:5d:54: ba:07:a2:cc:f8:4c:62:97:02:c2:82:ff:80:09:cc:46:f3:61: 5c:02:d5:d0:98:7e:4d:bd:06:ba:1f:78:0d:05:de:3d:21:a2: 42:9c:b6:2f:28:19:46:2a:c9:75:5c:56:15:dc:9b:74:a7:cc: 70:00:71:62:da:af:4b:ec:88:3e:7a:fa:1c:09:17:c2:8d:8d: b7:e6:6f:93:da:30:92:c2:26:ba:cd:1c:e8:a2:29:08:d8:e9: fd:48:ad:e6:c4:e7:04:d5:fe:e6:38:d8:69:e1:af:b5:7d:1e: 53:78:a5:e3:9f:fa:58:cb:3a:9a:34:b1:00:30:00:6a:f1:52: 9b:62:d4:6a:ac:60:73:68:fc:6c:5d:bd:01:a2:d2:96:96:c0: 33:df:8b:f4:0b:a4:dc:07:b1:c9:a2:59:05:71:b2:60:cc:2f: 3d:15:14:c4:0d:c8:c5:bd:9e:a8:a2:30:a8:1c:a0:fb:63:7b: 04:77:f7:3d:8c:56:30:56:73:86:5d:4d:01:f1:47:cf:1c:46: 94:be:29:66:8b:e1:ca:c5:ba:dc:16:b2:1f:a5:f3:4e:ea:46: b7:0c:42:38:b5:dc:9a:3d:e1:46:94:a6:bf:50:41:6d:12:bc: b2:8e:9e:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZCRDUxMTAvBgNVBAUTKEYwNUJCRDI2RDRERTA4RjY1ODhDQjdGQUZGQjE4MzBG QUJDMzcxNjcwHhcNMjUwNDI0MjIyNjU3WhcNMjUwNTAxMjIyNjU3WjAYMRYwFAYD VQQDEw02ODBhYmFiMS01OTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvSwclPGyf37x/YPRmklNbk9OSz3d+b6mvPlUbrq0pItMKxJg4K/zjNZJR2Bi wLkJ385v0r8RNG+SmcU9+kdt9vfTzASf7XR8no7r1BMrbun3/ITIJqD0jgccqcqU Dd+eXurHUS0RUi3vK9gzNgd//NvReqVkTyIh4su6Vl/Gnq7sCXvY6ib4GSTSzbiA jt8H8VCHlM+bhMFujK4/fuQwdeTXDC7pTNQ6hRBxLMbk7pNcz9phkq9I4sy+EHvt IQkQBJAcfzB/NBdkFJqexkF6HsD4ROO/MDt0U+k5z/LvGdcTjC3GifIfySGsz0Mi b6/klqjsxKF1PMT8pNGQtqhhTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDEUdLSr IOF+/n4raK3kbRrLLOrzMB8GA1UdIwQYMBaAFPBbvSbU3gj2WIy3+v+xgw+rw3Fn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkJENS8wRDI2RDRBMDhF NTQxMUVCOTMzMDhBNzVDNEY5QUUwMi84RnU5SnRUZUNQWllqTGY2XzdHREQ2dkRj V2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhGdTlKdFRlQ1BaWWpMZjZfN0dERDZ2RGNXYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkJENS8wRDI2RDRBMDhFNTQxMUVCOTMzMDhBNzVDNEY5QUUwMi84RnU5SnRUZUNQ WllqTGY2XzdHREQ2dkRjV2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAL+InTuMFHqMgJuXjaYlyXVS6B6LM+ExilwLCgv+ACcxG82FcAtXQ mH5NvQa6H3gNBd49IaJCnLYvKBlGKsl1XFYV3Jt0p8xwAHFi2q9L7Ig+evocCRfC jY235m+T2jCSwia6zRzooikI2On9SK3mxOcE1f7mONhp4a+1fR5TeKXjn/pYyzqa NLEAMABq8VKbYtRqrGBzaPxsXb0BotKWlsAz34v0C6TcB7HJolkFcbJgzC89FRTE DcjFvZ6oojCoHKD7Y3sEd/c9jFYwVnOGXU0B8UfPHEaUvilmi+HKxbrcFrIfpfNO 6ka3DEI4tdyaPeFGlKa/UEFtEryyjp6n -----END CERTIFICATE-----Generated at Sat Apr 26 13:02:31 2025 by rpki-client