$ rpki-client -vvf rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft File: g8K1S2QeP_BuMaK0RQwVetrVm2g.mft (raw, json) Hash identifier: euJ7OB0PSzwhFresMIVvpXoO0VyfSXFuQdDCLg1/Ks8= Subject key identifier: 80:93:39:4E:55:CE:41:F3:F8:0B:8D:27:32:CD:48:03:35:FF:99:1D Authority key identifier: 83:C2:B5:4B:64:1E:3F:F0:6E:31:A2:B4:45:0C:15:7A:DA:D5:9B:68 Certificate issuer: /CN=A9137E5F/serialNumber=83C2B54B641E3FF06E31A2B4450C157ADAD59B68 Certificate serial: 97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g8K1S2QeP_BuMaK0RQwVetrVm2g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft Manifest number: 96 Signing time: Sun 15 Jun 2025 05:29:40 +0000 Manifest this update: Sun 15 Jun 2025 05:29:40 +0000 Manifest next update: Sun 22 Jun 2025 05:29:40 +0000 Files and hashes: 1: g8K1S2QeP_BuMaK0RQwVetrVm2g.crl (hash: xh0CXjPh87LLbtiCjgGsei1sKoMLgGupBzw6YXiUlC4=) 2: 7114716A653911EFB61F430DC4F9AE02.roa (hash: bO/gfY3HBbGIQDRrLWr0PVEzkY2zoAiDv4q0XXDREo8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.crl rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g8K1S2QeP_BuMaK0RQwVetrVm2g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 151 (0x97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137E5F, serialNumber=83C2B54B641E3FF06E31A2B4450C157ADAD59B68 Validity Not Before: Jun 15 05:29:40 2025 GMT Not After : Jun 22 05:29:40 2025 GMT Subject: CN=684e5a44-d484 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:db:ce:a9:0d:09:7f:1a:ca:05:e9:a0:97:5e: e4:27:bb:49:c9:e4:fc:86:fc:f1:a4:35:02:b1:25: 79:6d:67:93:97:b1:d4:fc:75:c7:67:61:b5:bd:ca: 11:2d:16:2a:e0:44:44:0f:3a:92:5c:a0:bf:3c:53: 13:70:7b:00:24:06:aa:92:40:ca:c9:9c:3c:80:a8: c4:0e:3b:57:c3:56:d9:c5:fe:06:8f:65:3e:75:bf: 60:9f:b0:b2:16:d9:34:82:60:13:c0:1f:41:9a:bf: 64:6a:d6:69:47:dc:02:87:60:e3:a6:a5:05:e2:aa: 88:20:67:d0:d5:33:3f:55:85:be:09:35:23:42:9e: 38:46:5e:a4:bd:92:d1:b6:c6:34:84:64:b3:dd:1b: 3d:4c:76:68:a8:96:73:21:c3:c1:25:1b:4a:89:9b: 21:34:c7:5e:56:b5:a7:e1:39:59:1e:88:49:4b:4a: cc:fc:ba:48:81:d2:ef:80:fb:1d:11:59:00:f0:c8: 08:81:ad:df:11:2e:1b:9a:53:52:51:5d:6f:21:ba: 87:06:18:94:8b:9d:35:04:c0:19:d7:ff:0a:38:eb: cc:7b:c6:60:84:91:7e:db:8a:0b:e7:bd:e4:c9:cc: cc:d1:d4:db:31:63:7e:ed:d8:33:d8:50:f2:39:f2: 78:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:93:39:4E:55:CE:41:F3:F8:0B:8D:27:32:CD:48:03:35:FF:99:1D X509v3 Authority Key Identifier: keyid:83:C2:B5:4B:64:1E:3F:F0:6E:31:A2:B4:45:0C:15:7A:DA:D5:9B:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g8K1S2QeP_BuMaK0RQwVetrVm2g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:f1:fd:bb:cc:5a:37:3d:ce:c9:89:6a:37:0c:b6:03:ca:94: 95:e5:1f:5c:d9:bc:20:d4:9f:09:c9:31:0a:fa:fc:83:a7:da: dd:de:0d:4f:d6:31:e2:cd:7d:59:fd:10:9c:7f:97:5c:da:b1: bd:cb:23:70:a3:6c:7c:37:01:d2:a8:6c:f4:b1:07:08:53:6d: ea:8b:54:e1:a6:0b:2f:ec:29:48:43:7b:db:16:2c:b7:d0:59: 2a:1e:0c:8e:1b:03:e3:4a:41:57:86:68:c8:44:9e:c3:be:60: c9:c4:e4:66:26:dc:9b:97:c8:79:c7:c9:49:b3:ab:68:c1:f0: aa:b4:21:4a:54:0b:03:18:fb:84:e0:5f:26:1e:90:c3:03:21: 16:0f:27:59:e6:2d:fc:40:64:42:a6:5a:e6:15:e0:57:55:11: 75:e5:52:e3:5a:d4:f6:ac:ed:b6:3c:27:57:5e:5f:dc:c6:82: 62:1b:c2:3f:35:35:5e:14:bd:25:fd:b3:00:3b:d9:d8:a1:b6: 84:4d:91:c3:f7:fc:cb:4e:cc:ad:62:db:06:7d:64:15:ad:51: 15:21:d9:71:71:2f:25:5e:78:08:f8:a1:93:26:5c:02:58:94: f7:d8:69:85:0d:1a:48:0a:2f:bb:58:56:28:26:be:70:95:53: 18:7a:9e:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdFNUYxMTAvBgNVBAUTKDgzQzJCNTRCNjQxRTNGRjA2RTMxQTJCNDQ1MEMxNTdB REFENTlCNjgwHhcNMjUwNjE1MDUyOTQwWhcNMjUwNjIyMDUyOTQwWjAYMRYwFAYD VQQDEw02ODRlNWE0NC1kNDg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw9vOqQ0JfxrKBemgl17kJ7tJyeT8hvzxpDUCsSV5bWeTl7HU/HXHZ2G1vcoR LRYq4EREDzqSXKC/PFMTcHsAJAaqkkDKyZw8gKjEDjtXw1bZxf4Gj2U+db9gn7Cy Ftk0gmATwB9Bmr9katZpR9wCh2DjpqUF4qqIIGfQ1TM/VYW+CTUjQp44Rl6kvZLR tsY0hGSz3Rs9THZoqJZzIcPBJRtKiZshNMdeVrWn4TlZHohJS0rM/LpIgdLvgPsd EVkA8MgIga3fES4bmlNSUV1vIbqHBhiUi501BMAZ1/8KOOvMe8ZghJF+24oL573k yczM0dTbMWN+7dgz2FDyOfJ4HQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFICTOU5V zkHz+AuNJzLNSAM1/5kdMB8GA1UdIwQYMBaAFIPCtUtkHj/wbjGitEUMFXra1Zto MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0U1Ri84MEM0QjMwMDY1 MzgxMUVGOEI0Njg5NkVDNEY5QUUwMi9nOEsxUzJRZVBfQnVNYUswUlF3VmV0clZt MmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c4SzFTMlFlUF9CdU1hSzBSUXdWZXRyVm0yZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz N0U1Ri84MEM0QjMwMDY1MzgxMUVGOEI0Njg5NkVDNEY5QUUwMi9nOEsxUzJRZVBf QnVNYUswUlF3VmV0clZtMmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBG8f27zFo3Pc7JiWo3DLYDypSV5R9c2bwg1J8JyTEK+vyDp9rd3g1P 1jHizX1Z/RCcf5dc2rG9yyNwo2x8NwHSqGz0sQcIU23qi1Thpgsv7ClIQ3vbFiy3 0FkqHgyOGwPjSkFXhmjIRJ7DvmDJxORmJtybl8h5x8lJs6towfCqtCFKVAsDGPuE 4F8mHpDDAyEWDydZ5i38QGRCplrmFeBXVRF15VLjWtT2rO22PCdXXl/cxoJiG8I/ NTVeFL0l/bMAO9nYobaETZHD9/zLTsytYtsGfWQVrVEVIdlxcS8lXngI+KGTJlwC WJT32GmFDRpICi+7WFYoJr5wlVMYep7P -----END CERTIFICATE-----Generated at Sun Jun 15 09:56:17 2025 by rpki-client