$ rpki-client -vvf rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft File: 8bck5A2FxU9R1iHHL4lskXXJsRk.mft (raw, json) Hash identifier: SgRgy5ptIQtzGpn3YTEMQvz+CHOr4Bnom2OiLRs4lMk= Subject key identifier: 1F:DD:55:B5:69:C8:15:72:CD:EE:9A:77:BB:07:CA:B5:93:11:D7:17 Authority key identifier: F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 Certificate issuer: /CN=A914E3F5/serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Certificate serial: 09F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft Manifest number: 09EF Signing time: Thu 24 Apr 2025 19:46:46 +0000 Manifest this update: Thu 24 Apr 2025 19:46:45 +0000 Manifest next update: Thu 01 May 2025 19:46:45 +0000 Files and hashes: 1: 8bck5A2FxU9R1iHHL4lskXXJsRk.crl (hash: qRIGph58FzvNuhZ8c3HQPXr3JGdSmc1zwEvSaAW8zwY=) 2: 354725E6763311EABAE64466C4F9AE02.roa (hash: Cq3lv6Zk0IbD7VRfp29jZdbfC7fvyWbXvi/cd+0Sx0c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:46:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2550 (0x9f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E3F5, serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Validity Not Before: Apr 24 19:46:45 2025 GMT Not After : May 1 19:46:45 2025 GMT Subject: CN=680a9525-d20d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b3:17:21:4d:55:37:42:10:9e:d7:7b:b8:16: 05:98:d7:f1:e6:8e:97:44:5f:90:83:58:62:35:4a: ac:d0:58:f8:74:ad:82:3c:a0:81:56:99:aa:07:1f: 27:00:19:8d:ce:57:24:00:d7:84:3b:40:00:30:72: 32:e2:64:92:95:b4:fd:1f:05:34:07:0a:5c:0e:7c: 18:34:00:6d:f1:db:6e:95:0c:6a:f1:54:f6:e6:83: 28:3a:53:bb:af:68:72:ae:61:a6:96:b8:03:6f:c4: 68:fb:80:63:5b:9d:22:2b:87:07:49:08:03:d6:ee: 6d:64:05:a9:77:0b:60:f2:ac:22:e2:cc:de:ba:5e: 8c:2c:1e:ae:43:f9:e1:f9:0c:81:f2:a5:35:3c:92: a9:f1:ab:a6:35:9b:0c:36:2e:e0:01:99:b1:d8:14: 4c:2f:72:c0:ee:f9:f6:7c:ef:a3:a3:cf:b1:7c:20: 42:5b:3f:c8:29:ee:ec:4c:0d:63:45:81:06:cd:7a: 6d:d7:de:bf:a5:e1:0b:4d:75:2b:39:f1:05:25:fe: a7:a3:58:e2:cd:00:52:4d:c0:ea:88:2d:73:e9:e9: 36:e7:1e:6b:7d:14:93:4e:40:35:8b:da:14:1d:34: cb:49:24:b7:78:fe:76:93:fd:de:d5:39:4f:90:8b: 0a:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:DD:55:B5:69:C8:15:72:CD:EE:9A:77:BB:07:CA:B5:93:11:D7:17 X509v3 Authority Key Identifier: keyid:F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:c8:1f:22:6d:7e:97:5a:c1:46:c7:dd:3b:86:48:1b:4e:ab: 04:c5:e2:0b:33:da:ec:ec:56:9b:77:6a:2a:e9:f1:e7:3b:8f: da:e9:33:77:8d:64:28:76:0f:ef:49:04:69:28:3b:59:f2:45: 74:23:6a:af:b2:88:2c:11:86:6b:a0:82:aa:c4:d4:8a:20:c9: e2:fb:cf:11:95:48:ec:9c:fe:df:ae:55:a8:46:30:f4:b3:92: 3b:53:ff:27:3f:d6:4d:af:11:18:49:fa:5c:10:7a:e9:87:03: a2:b6:e0:dc:f1:17:17:b8:21:3e:ba:f7:1a:20:94:6e:d2:64: 56:f8:64:8b:b0:2b:8a:0e:c8:43:63:a6:16:b8:90:19:49:dc: 13:7a:d8:b3:b0:f0:b8:57:81:05:46:78:42:bd:a6:7c:5c:4f: db:6e:42:d5:06:9f:28:b7:1a:d1:7f:6c:3c:3a:6f:72:f7:b4: ca:5f:85:7b:c9:d7:f0:cd:1f:f4:af:bb:28:cf:57:4c:00:89: 66:dc:15:bb:86:ee:b4:6d:72:48:8c:ba:03:68:ec:36:fb:ad: fa:e4:08:5d:a5:df:41:63:29:1d:c8:48:9c:5f:7e:d3:61:ff: db:ec:60:d4:75:17:05:46:bb:c8:fd:37:aa:a5:9a:63:23:8d: 43:9e:6a:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCfYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUzRjUxMTAvBgNVBAUTKEYxQjcyNEU0MEQ4NUM1NEY1MUQ2MjFDNzJGODk2Qzkx NzVDOUIxMTkwHhcNMjUwNDI0MTk0NjQ1WhcNMjUwNTAxMTk0NjQ1WjAYMRYwFAYD VQQDEw02ODBhOTUyNS1kMjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt7MXIU1VN0IQntd7uBYFmNfx5o6XRF+Qg1hiNUqs0Fj4dK2CPKCBVpmqBx8n ABmNzlckANeEO0AAMHIy4mSSlbT9HwU0BwpcDnwYNABt8dtulQxq8VT25oMoOlO7 r2hyrmGmlrgDb8Ro+4BjW50iK4cHSQgD1u5tZAWpdwtg8qwi4szeul6MLB6uQ/nh +QyB8qU1PJKp8aumNZsMNi7gAZmx2BRML3LA7vn2fO+jo8+xfCBCWz/IKe7sTA1j RYEGzXpt196/peELTXUrOfEFJf6no1jizQBSTcDqiC1z6ek25x5rfRSTTkA1i9oU HTTLSSS3eP52k/3e1TlPkIsK+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB/dVbVp yBVyze6ad7sHyrWTEdcXMB8GA1UdIwQYMBaAFPG3JOQNhcVPUdYhxy+JbJF1ybEZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTNGNS84MTFCNjA0Qzc2 MzExMUVBOTcxNUY4NjBDNEY5QUUwMi84YmNrNUEyRnhVOVIxaUhITDRsc2tYWEpz UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhiY2s1QTJGeFU5UjFpSEhMNGxza1hYSnNSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTNGNS84MTFCNjA0Qzc2MzExMUVBOTcxNUY4NjBDNEY5QUUwMi84YmNrNUEyRnhV OVIxaUhITDRsc2tYWEpzUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwyB8ibX6XWsFGx907hkgbTqsExeILM9rs7Fabd2oq6fHnO4/a6TN3 jWQodg/vSQRpKDtZ8kV0I2qvsogsEYZroIKqxNSKIMni+88RlUjsnP7frlWoRjD0 s5I7U/8nP9ZNrxEYSfpcEHrphwOituDc8RcXuCE+uvcaIJRu0mRW+GSLsCuKDshD Y6YWuJAZSdwTetizsPC4V4EFRnhCvaZ8XE/bbkLVBp8otxrRf2w8Om9y97TKX4V7 ydfwzR/0r7soz1dMAIlm3BW7hu60bXJIjLoDaOw2+6365Ahdpd9BYykdyEicX37T Yf/b7GDUdRcFRrvI/TeqpZpjI41Dnmq8 -----END CERTIFICATE-----Generated at Sat Apr 26 13:01:27 2025 by rpki-client