$ rpki-client -vvf rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft File: 8HDB502tEidOj1dd_gu3wU69yZA.mft (raw, json) Hash identifier: yeuukCGqoWoA6MDezDMeLC2BldjWVv5NF7TfXrUHXLI= Subject key identifier: CB:C2:97:C8:02:47:FF:5F:B6:C5:8C:81:AC:AD:E2:EE:02:AE:C4:AA Authority key identifier: F0:70:C1:E7:4D:AD:12:27:4E:8F:57:5D:FE:0B:B7:C1:4E:BD:C9:90 Certificate issuer: /CN=A91348DF/serialNumber=F070C1E74DAD12274E8F575DFE0BB7C14EBDC990 Certificate serial: 032B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft Manifest number: 0327 Signing time: Fri 25 Apr 2025 00:53:12 +0000 Manifest this update: Fri 25 Apr 2025 00:53:12 +0000 Manifest next update: Fri 02 May 2025 00:53:12 +0000 Files and hashes: 1: 8HDB502tEidOj1dd_gu3wU69yZA.crl (hash: C8l+cjitTCsI5Ps+z0xqLgA1HslPnPcMvMt0s5uSmyQ=) 2: 06A2C3E2C1E211EC86C79687C4F9AE02.roa (hash: L9t+DRBbmPVBfDehx/WMt8l2VQJogVd/uUcSz4yUxtc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.crl rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:53:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 811 (0x32b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91348DF, serialNumber=F070C1E74DAD12274E8F575DFE0BB7C14EBDC990 Validity Not Before: Apr 25 00:53:12 2025 GMT Not After : May 2 00:53:12 2025 GMT Subject: CN=680adcf8-1592 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:67:a1:9d:d0:56:85:8c:9f:63:77:e4:8c:cd: 20:a8:05:fd:b1:01:69:69:1b:26:44:53:ff:36:51: 87:6d:4f:2d:45:c6:d2:21:25:36:6e:ad:89:83:c8: 67:c9:e6:73:06:5a:7f:4a:15:4e:bc:a3:ee:93:86: e8:ed:2d:98:fc:18:ce:d5:49:cb:5b:33:ff:73:a5: e3:1f:04:c5:f3:b1:11:1e:64:f9:9d:de:2b:c9:03: ce:b9:6d:2f:9f:a0:52:69:d3:2f:8c:cd:47:92:fb: a5:5d:a1:a4:93:e1:7a:72:96:a8:9c:af:74:45:03: 0c:de:58:65:1b:14:a6:a1:ef:f8:af:3f:1d:03:ac: be:b4:91:cc:61:9b:0d:38:9f:d4:4e:d1:4f:8a:6c: 19:92:78:86:49:e8:e8:a9:72:d3:b3:ea:8c:a4:b5: 39:ff:d6:10:ac:b2:84:bd:c9:d7:4d:59:4d:30:71: 51:1a:ad:be:bc:66:cf:ec:d6:48:21:4d:2d:c1:40: cc:2d:0a:38:6c:6e:96:2c:2a:b5:eb:8b:46:67:3d: 37:dc:6e:96:54:69:6e:3e:72:97:48:02:36:d2:4c: 3d:04:1d:b4:8b:51:38:db:b8:3b:ae:21:d5:f4:7f: 4e:66:ff:2b:ae:95:73:5c:26:01:37:b0:1a:9a:b1: ef:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:C2:97:C8:02:47:FF:5F:B6:C5:8C:81:AC:AD:E2:EE:02:AE:C4:AA X509v3 Authority Key Identifier: keyid:F0:70:C1:E7:4D:AD:12:27:4E:8F:57:5D:FE:0B:B7:C1:4E:BD:C9:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:8c:02:ee:f2:ca:fc:df:26:f5:fe:f9:3c:a0:e4:15:15:3e: f7:07:44:18:ea:34:fa:82:8a:80:c9:48:4d:27:92:e8:02:3c: 41:88:39:82:72:f7:51:0e:bf:76:63:7c:50:06:19:4f:c0:70: f2:a0:7f:0d:2a:05:35:8d:30:bd:2e:bd:6d:c7:ed:5d:22:81: a4:24:56:07:c0:86:72:c5:bc:a6:cb:86:b1:bb:7f:54:06:62: 4a:00:46:f0:c8:e0:68:02:74:68:6e:7b:6c:68:e6:bc:59:29: 12:fd:7c:72:89:6d:67:54:8a:18:f2:d0:b1:63:75:2b:82:a2: da:c5:83:a2:de:56:9a:a7:22:92:a6:79:67:40:a6:42:6b:1e: 55:9c:be:14:a4:4f:12:74:e1:8f:33:f0:f1:17:1f:f2:1f:1e: ed:b5:ea:76:b8:3a:9e:1f:1e:33:63:ce:87:6a:1e:f5:52:f1: cf:16:ac:88:07:2b:d0:9f:1f:3e:37:49:b1:9e:02:db:fe:b2: 13:dd:45:bf:da:c4:f4:83:5d:6d:21:69:c4:d8:95:98:2d:a6: c4:91:51:fb:64:e5:54:7f:2e:4b:fb:4a:4e:cf:fb:af:5d:e4: ca:67:68:be:9d:8f:32:35:98:a5:77:d5:fc:17:46:5b:7f:07: cc:9d:91:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAyswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQ4REYxMTAvBgNVBAUTKEYwNzBDMUU3NERBRDEyMjc0RThGNTc1REZFMEJCN0Mx NEVCREM5OTAwHhcNMjUwNDI1MDA1MzEyWhcNMjUwNTAyMDA1MzEyWjAYMRYwFAYD VQQDEw02ODBhZGNmOC0xNTkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz2ehndBWhYyfY3fkjM0gqAX9sQFpaRsmRFP/NlGHbU8tRcbSISU2bq2Jg8hn yeZzBlp/ShVOvKPuk4bo7S2Y/BjO1UnLWzP/c6XjHwTF87ERHmT5nd4ryQPOuW0v n6BSadMvjM1HkvulXaGkk+F6cpaonK90RQMM3lhlGxSmoe/4rz8dA6y+tJHMYZsN OJ/UTtFPimwZkniGSejoqXLTs+qMpLU5/9YQrLKEvcnXTVlNMHFRGq2+vGbP7NZI IU0twUDMLQo4bG6WLCq164tGZz033G6WVGluPnKXSAI20kw9BB20i1E427g7riHV 9H9OZv8rrpVzXCYBN7AamrHvUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMvCl8gC R/9ftsWMgayt4u4CrsSqMB8GA1UdIwQYMBaAFPBwwedNrRInTo9XXf4Lt8FOvcmQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDhERi9GMDJCNURCQ0Mx REQxMUVDQjk3QjlDN0ZDNEY5QUUwMi84SERCNTAydEVpZE9qMWRkX2d1M3dVNjl5 WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhIREI1MDJ0RWlkT2oxZGRfZ3Uzd1U2OXlaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDhERi9GMDJCNURCQ0MxREQxMUVDQjk3QjlDN0ZDNEY5QUUwMi84SERCNTAydEVp ZE9qMWRkX2d1M3dVNjl5WkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzjALu8sr83yb1/vk8oOQVFT73B0QY6jT6goqAyUhNJ5LoAjxBiDmC cvdRDr92Y3xQBhlPwHDyoH8NKgU1jTC9Lr1tx+1dIoGkJFYHwIZyxbymy4axu39U BmJKAEbwyOBoAnRobntsaOa8WSkS/XxyiW1nVIoY8tCxY3UrgqLaxYOi3laapyKS pnlnQKZCax5VnL4UpE8SdOGPM/DxFx/yHx7ttep2uDqeHx4zY86Hah71UvHPFqyI ByvQnx8+N0mxngLb/rIT3UW/2sT0g11tIWnE2JWYLabEkVH7ZOVUfy5L+0pOz/uv XeTKZ2i+nY8yNZild9X8F0ZbfwfMnZGj -----END CERTIFICATE-----Generated at Sat Apr 26 03:39:38 2025 by rpki-client