$ rpki-client -vvf rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.mft File: 8gl4uKIsE6CwK586X8LUiKuovtU.mft (raw, json) Hash identifier: QM5qOztFhbSBpPvmfimPBYJOUUPrfqzljeu82lY2YYs= Subject key identifier: 7C:4C:41:7D:EF:F9:1C:CF:2C:0A:04:67:41:A2:B0:D7:7F:F5:1D:AF Authority key identifier: F2:09:78:B8:A2:2C:13:A0:B0:2B:9F:3A:5F:C2:D4:88:AB:A8:BE:D5 Certificate issuer: /CN=A914653C/serialNumber=F20978B8A22C13A0B02B9F3A5FC2D488ABA8BED5 Certificate serial: 09DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8gl4uKIsE6CwK586X8LUiKuovtU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.mft Manifest number: 09D9 Signing time: Thu 24 Apr 2025 19:48:45 +0000 Manifest this update: Thu 24 Apr 2025 19:48:45 +0000 Manifest next update: Thu 01 May 2025 19:48:45 +0000 Files and hashes: 1: 8gl4uKIsE6CwK586X8LUiKuovtU.crl (hash: WcHBz6n60ZsPOu1XcL+d/znoeXx8PmtdeEwRldV5ykI=) 2: BD7E578079E011EA8DD5907FC4F9AE02.roa (hash: iYxIY6VXdTf7gHnwepU+/VGZkh/V1c1cIjc+gsTh8TE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.crl rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8gl4uKIsE6CwK586X8LUiKuovtU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:48:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2527 (0x9df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914653C, serialNumber=F20978B8A22C13A0B02B9F3A5FC2D488ABA8BED5 Validity Not Before: Apr 24 19:48:45 2025 GMT Not After : May 1 19:48:45 2025 GMT Subject: CN=680a959d-9720 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:7f:ec:52:c1:ba:08:66:24:68:b7:3b:8a:d4: 7b:3d:88:09:a6:f8:63:07:1b:4f:8b:c5:24:e8:c2: f9:75:8f:22:e2:d0:4f:80:ee:44:6a:a2:ed:39:56: 36:34:56:e8:26:ba:ef:0d:93:d4:3b:4c:35:77:84: b2:16:9b:80:96:73:ab:c3:8e:b0:51:37:8e:5a:d1: 56:f4:ed:e9:2f:0e:ec:64:12:56:4c:f1:c0:ce:51: 01:41:76:f8:ea:cd:b4:d9:39:07:17:4a:fa:92:25: 91:d6:63:30:da:b1:2d:4f:c9:61:a9:1e:25:73:ad: 0e:01:15:33:5c:e8:58:52:49:32:58:1c:11:25:5d: 0a:ee:8b:a2:1e:0e:82:31:4e:5d:01:f5:ad:d2:72: e1:c3:bd:96:1c:ab:a8:f4:63:56:15:69:ee:78:27: 2a:12:5e:73:04:7c:6e:46:f7:45:7a:da:92:ff:a1: fe:8b:86:39:06:f7:5f:93:42:cd:9e:71:81:95:a0: 87:4b:e9:ef:a3:81:dd:2e:cf:13:03:c7:f5:e1:68: c4:ec:51:ba:79:78:98:11:50:4e:44:6e:46:74:9a: 3a:14:62:4e:d3:46:94:11:02:d7:b5:e8:54:1c:8c: c4:df:cf:89:1e:e5:63:8f:8c:a7:36:6b:b9:c5:cb: a5:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:4C:41:7D:EF:F9:1C:CF:2C:0A:04:67:41:A2:B0:D7:7F:F5:1D:AF X509v3 Authority Key Identifier: keyid:F2:09:78:B8:A2:2C:13:A0:B0:2B:9F:3A:5F:C2:D4:88:AB:A8:BE:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8gl4uKIsE6CwK586X8LUiKuovtU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:fd:ec:a9:ed:eb:81:ca:ce:83:28:83:6e:b9:e1:ca:e0:16: ce:c9:7c:58:68:99:c6:b7:49:8d:f7:34:53:e0:f1:41:b4:41: bd:08:ce:02:90:5f:8d:7f:97:ee:a3:41:cc:a2:1d:d2:05:1f: 67:b2:8a:99:b3:1f:5d:3c:58:b1:48:bf:8c:1a:2e:1e:3d:59: a6:d3:15:54:0e:b2:b6:3c:24:c4:d3:65:68:82:1e:87:7d:10: b7:14:8d:ec:ea:cb:ac:a7:00:49:9d:02:78:1a:2c:e8:db:16: 34:4b:5a:32:1f:6e:23:1c:2c:92:83:8a:1a:0a:2c:ac:be:91: ec:fc:86:d5:07:90:70:32:1f:c2:1f:14:f8:82:e5:e4:22:19: f3:c4:c8:ad:e6:b8:a8:4c:37:92:2b:8c:d4:74:67:3d:17:4c: 42:be:58:9e:6a:ee:a1:3d:30:33:00:10:5c:48:48:41:28:18: 19:58:ec:89:8d:ee:ae:e1:5d:99:e2:e0:c1:ec:e5:2f:6d:37: 92:fd:9d:98:b1:e1:76:2d:b5:05:ad:98:80:ae:a3:59:c6:1f: 1c:3a:2b:8d:cf:fd:ba:38:79:20:4f:9a:49:42:d7:68:f5:17: ff:3a:4e:5a:b8:15:2f:9a:ab:15:68:da:91:a5:2a:01:dd:df: 95:73:ee:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDY1M0MxMTAvBgNVBAUTKEYyMDk3OEI4QTIyQzEzQTBCMDJCOUYzQTVGQzJENDg4 QUJBOEJFRDUwHhcNMjUwNDI0MTk0ODQ1WhcNMjUwNTAxMTk0ODQ1WjAYMRYwFAYD VQQDEw02ODBhOTU5ZC05NzIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA63/sUsG6CGYkaLc7itR7PYgJpvhjBxtPi8Uk6ML5dY8i4tBPgO5EaqLtOVY2 NFboJrrvDZPUO0w1d4SyFpuAlnOrw46wUTeOWtFW9O3pLw7sZBJWTPHAzlEBQXb4 6s202TkHF0r6kiWR1mMw2rEtT8lhqR4lc60OARUzXOhYUkkyWBwRJV0K7ouiHg6C MU5dAfWt0nLhw72WHKuo9GNWFWnueCcqEl5zBHxuRvdFetqS/6H+i4Y5Bvdfk0LN nnGBlaCHS+nvo4HdLs8TA8f14WjE7FG6eXiYEVBORG5GdJo6FGJO00aUEQLXtehU HIzE38+JHuVjj4ynNmu5xcul9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHxMQX3v +RzPLAoEZ0GisNd/9R2vMB8GA1UdIwQYMBaAFPIJeLiiLBOgsCufOl/C1IirqL7V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjUzQy81QkE4NzgyMDc5 REYxMUVBQkM5RDk3N0RDNEY5QUUwMi84Z2w0dUtJc0U2Q3dLNTg2WDhMVWlLdW92 dFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhnbDR1S0lzRTZDd0s1ODZYOExVaUt1b3Z0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NjUzQy81QkE4NzgyMDc5REYxMUVBQkM5RDk3N0RDNEY5QUUwMi84Z2w0dUtJc0U2 Q3dLNTg2WDhMVWlLdW92dFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAg/eyp7euBys6DKINuueHK4BbOyXxYaJnGt0mN9zRT4PFBtEG9CM4C kF+Nf5fuo0HMoh3SBR9nsoqZsx9dPFixSL+MGi4ePVmm0xVUDrK2PCTE02Vogh6H fRC3FI3s6suspwBJnQJ4Gizo2xY0S1oyH24jHCySg4oaCiysvpHs/IbVB5BwMh/C HxT4guXkIhnzxMit5rioTDeSK4zUdGc9F0xCvlieau6hPTAzABBcSEhBKBgZWOyJ je6u4V2Z4uDB7OUvbTeS/Z2YseF2LbUFrZiArqNZxh8cOiuNz/26OHkgT5pJQtdo 9Rf/Ok5auBUvmqsVaNqRpSoB3d+Vc+5j -----END CERTIFICATE-----Generated at Sat Apr 26 05:01:26 2025 by rpki-client