$ rpki-client -vvf rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft File: 8a29DnE5HfIQ3jRh52V4tHoBYko.mft (raw, json) Hash identifier: lrKk0QR7I/7/WgbB98b4aTggZlvP7k++kBT74Wffhe8= Subject key identifier: 36:D2:FF:18:F0:55:2A:91:16:AE:50:26:48:7B:C8:6C:68:84:55:BE Authority key identifier: F1:AD:BD:0E:71:39:1D:F2:10:DE:34:61:E7:65:78:B4:7A:01:62:4A Certificate issuer: /CN=A9131711/serialNumber=F1ADBD0E71391DF210DE3461E76578B47A01624A Certificate serial: E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8a29DnE5HfIQ3jRh52V4tHoBYko.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft Manifest number: E0 Signing time: Fri 25 Apr 2025 04:31:30 +0000 Manifest this update: Fri 25 Apr 2025 04:31:30 +0000 Manifest next update: Fri 02 May 2025 04:31:30 +0000 Files and hashes: 1: 8a29DnE5HfIQ3jRh52V4tHoBYko.crl (hash: bcctYD4t6ogemrQatkqcVxFDizP6NVGLh7snED+OKj8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.crl rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8a29DnE5HfIQ3jRh52V4tHoBYko.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:31:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 224 (0xe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131711, serialNumber=F1ADBD0E71391DF210DE3461E76578B47A01624A Validity Not Before: Apr 25 04:31:30 2025 GMT Not After : May 2 04:31:30 2025 GMT Subject: CN=680b1022-5ac9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:75:d0:f3:78:ee:6a:5f:36:b9:67:b3:bc:67: e4:c3:b9:9c:ff:96:f6:73:2e:90:ae:51:c6:db:e1: a7:f1:c2:67:fc:b0:e5:32:a6:30:22:f1:c0:74:0d: 4b:0d:c7:d8:05:af:58:d6:79:74:b8:de:a0:45:35: 6f:a5:38:e6:b8:3d:12:12:cf:b8:d0:81:6e:05:ba: 85:41:1b:2f:dc:c1:d3:48:f8:87:ca:b1:c1:bb:a6: c4:f1:bb:15:86:a2:f5:bc:26:a0:17:1f:05:79:ee: 6b:6f:4a:23:47:9f:d2:89:be:be:aa:f2:79:55:46: 6f:02:6b:74:38:e0:6f:db:8c:22:e4:f3:dd:7d:fa: 74:8d:31:8b:27:73:90:d9:ab:ee:a2:1f:1c:ee:42: 52:88:f4:03:fa:15:86:70:71:67:35:43:a2:47:30: 0d:d1:f7:9a:fa:08:6a:f5:4e:a9:27:d6:14:66:fe: a8:ef:75:a6:05:37:b4:96:9e:69:f6:a7:ae:2a:a6: b4:8f:9a:fc:5f:36:4b:3a:e4:cb:5c:f8:10:1a:9a: 1a:0f:ee:94:15:63:50:79:6e:2b:15:35:51:31:c1: 91:17:8c:f6:5f:8b:c6:8f:7b:a3:5b:8a:d4:03:88: 31:cd:db:70:2b:2e:8a:26:23:35:34:83:57:04:61: 68:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:D2:FF:18:F0:55:2A:91:16:AE:50:26:48:7B:C8:6C:68:84:55:BE X509v3 Authority Key Identifier: keyid:F1:AD:BD:0E:71:39:1D:F2:10:DE:34:61:E7:65:78:B4:7A:01:62:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8a29DnE5HfIQ3jRh52V4tHoBYko.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:83:ab:d4:b8:28:14:a1:7b:30:02:db:ec:21:99:02:42:6a: 53:71:89:ba:af:ae:38:78:b2:50:15:0e:17:20:76:33:26:fe: f3:43:b3:58:61:de:74:74:c6:f9:3e:43:66:f1:21:b6:72:0a: fa:9f:b7:da:8e:1b:88:df:e1:e4:0f:dd:91:7c:c9:10:09:c2: de:3d:51:e7:01:a6:03:bb:4b:6e:1b:de:64:26:86:44:7e:66: dd:f9:9f:1b:9a:ca:10:88:74:79:75:38:38:5f:af:fd:31:80: 9a:ed:e5:0c:d0:f5:12:81:20:c0:d3:0d:75:82:b5:96:3c:23: 2b:c1:33:39:1d:db:65:03:b0:12:25:41:69:1f:75:b4:c6:da: 42:01:0e:03:dd:6e:06:78:9e:ff:22:31:cc:56:5a:8b:be:b4: 88:96:05:11:21:23:ef:06:7f:51:38:c4:3f:57:c5:83:d5:b5: 6d:d8:7b:e0:8a:83:b1:7f:e8:2d:5d:63:2f:c0:84:08:a8:ce: f5:8c:eb:cb:bb:d6:c1:16:8d:12:d9:9d:d3:a3:13:58:dd:be: 57:7d:db:66:97:db:07:43:18:e3:ed:93:e3:84:d4:b6:95:94: 25:cb:36:d2:97:45:b9:84:5f:a9:a3:cd:1f:aa:a6:de:d6:f5: d4:e3:fc:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE3MTExMTAvBgNVBAUTKEYxQURCRDBFNzEzOTFERjIxMERFMzQ2MUU3NjU3OEI0 N0EwMTYyNEEwHhcNMjUwNDI1MDQzMTMwWhcNMjUwNTAyMDQzMTMwWjAYMRYwFAYD VQQDEw02ODBiMTAyMi01YWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3XQ83jual82uWezvGfkw7mc/5b2cy6QrlHG2+Gn8cJn/LDlMqYwIvHAdA1L DcfYBa9Y1nl0uN6gRTVvpTjmuD0SEs+40IFuBbqFQRsv3MHTSPiHyrHBu6bE8bsV hqL1vCagFx8Fee5rb0ojR5/Sib6+qvJ5VUZvAmt0OOBv24wi5PPdffp0jTGLJ3OQ 2avuoh8c7kJSiPQD+hWGcHFnNUOiRzAN0fea+ghq9U6pJ9YUZv6o73WmBTe0lp5p 9qeuKqa0j5r8XzZLOuTLXPgQGpoaD+6UFWNQeW4rFTVRMcGRF4z2X4vGj3ujW4rU A4gxzdtwKy6KJiM1NINXBGFoTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDbS/xjw VSqRFq5QJkh7yGxohFW+MB8GA1UdIwQYMBaAFPGtvQ5xOR3yEN40YedleLR6AWJK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTcxMS9BOTUwREZEQUM5 OTExMUVFODkxQkE0MTlDNEY5QUUwMi84YTI5RG5FNUhmSVEzalJoNTJWNHRIb0JZ a28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhhMjlEbkU1SGZJUTNqUmg1MlY0dEhvQllrby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTcxMS9BOTUwREZEQUM5OTExMUVFODkxQkE0MTlDNEY5QUUwMi84YTI5RG5FNUhm SVEzalJoNTJWNHRIb0JZa28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTg6vUuCgUoXswAtvsIZkCQmpTcYm6r644eLJQFQ4XIHYzJv7zQ7NY Yd50dMb5PkNm8SG2cgr6n7fajhuI3+HkD92RfMkQCcLePVHnAaYDu0tuG95kJoZE fmbd+Z8bmsoQiHR5dTg4X6/9MYCa7eUM0PUSgSDA0w11grWWPCMrwTM5HdtlA7AS JUFpH3W0xtpCAQ4D3W4GeJ7/IjHMVlqLvrSIlgURISPvBn9ROMQ/V8WD1bVt2Hvg ioOxf+gtXWMvwIQIqM71jOvLu9bBFo0S2Z3ToxNY3b5Xfdtml9sHQxjj7ZPjhNS2 lZQlyzbSl0W5hF+po80fqqbe1vXU4/zG -----END CERTIFICATE-----Generated at Sat Apr 26 12:24:32 2025 by rpki-client