$ rpki-client -vvf rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft File: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft (raw, json) Hash identifier: LBKjNBop+n4lstOTMIeNTLVGNijUBrTdaLuCpTPWxOA= Subject key identifier: 15:85:90:E4:F5:0B:6B:26:1F:A3:8A:0F:C4:95:9E:A6:71:9D:45:6C Authority key identifier: F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 Certificate issuer: /CN=A9156DB4/serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Certificate serial: 0390 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft Manifest number: 0384 Signing time: Fri 25 Apr 2025 00:36:09 +0000 Manifest this update: Fri 25 Apr 2025 00:36:09 +0000 Manifest next update: Fri 02 May 2025 00:36:09 +0000 Files and hashes: 1: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl (hash: nCFiho3F4XTaj/a3dzhLu4FpVdJ6z7FWXZoafnYPIcE=) 2: 688C6AC29D9D11EC958A216AC4F9AE02.roa (hash: rQCKwpVXSCN9Y75hhPwPDo9+AXfNNoLzfRi82A6bdSI=) 3: 854ACCD2DFEA11ECB7DF0A2EC4F9AE02.roa (hash: C6Z/IfRVQV8LxL1Oc2uDTt0509ENzUWPGHXpk7TwKNY=) 4: 695DB5289D9D11EC958A216AC4F9AE02.roa (hash: c9fr6KD/Ih6e5aCRy3Bruof+Va6iYKpCGv8u+/ETzK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:36:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 912 (0x390) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156DB4, serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Validity Not Before: Apr 25 00:36:09 2025 GMT Not After : May 2 00:36:09 2025 GMT Subject: CN=680ad8f9-5ea7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a1:22:90:28:3a:44:6c:5a:a7:05:d0:6e:bf: ff:5d:e2:11:f6:f7:ca:84:2b:3c:6a:fe:14:98:9d: 47:a5:c6:da:0d:76:a7:ce:ce:03:bb:ff:e9:e3:eb: a4:a7:2d:f9:ce:fd:51:1c:95:75:ed:c9:6b:ce:40: e8:f6:66:9b:c6:e7:e8:18:f3:74:10:7c:e9:0c:12: 8f:70:40:33:d2:3a:64:60:8a:fb:67:8d:b7:2f:8c: 5c:ec:13:80:e8:57:30:e8:5c:51:98:34:b0:28:c5: 54:c7:a2:ab:63:20:d3:32:c9:6a:a9:fd:a1:1b:0a: d9:67:1e:4f:ca:b5:04:0a:c6:44:80:d4:ff:89:7a: e3:38:3a:2f:9c:3a:8a:59:de:ac:a4:e4:37:e9:f1: b8:da:bb:86:d6:80:97:2a:17:0f:92:85:52:e6:8e: 0d:e3:b1:a1:61:5e:65:08:1f:eb:d9:e8:a8:72:d8: 1e:ed:c0:30:fd:5c:a8:dd:2b:1f:02:5a:80:ea:ed: 36:16:e0:3f:f0:ba:ae:12:ff:63:fe:dd:ca:b5:81: bf:65:3a:26:91:a1:10:83:f1:41:38:25:10:83:f7: 6f:87:68:d8:7a:b1:cf:43:83:c4:2c:d1:64:0f:3b: 7f:d4:27:06:76:6c:e4:37:fe:2f:56:aa:2d:3e:a0: ab:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:85:90:E4:F5:0B:6B:26:1F:A3:8A:0F:C4:95:9E:A6:71:9D:45:6C X509v3 Authority Key Identifier: keyid:F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:72:b7:df:1b:71:90:47:a8:a6:f0:d7:32:0a:f2:be:96:9b: fe:35:af:cb:a5:be:f5:f8:5f:83:b1:2d:88:e0:d6:81:18:6f: b2:ed:81:0b:20:07:8a:9f:ea:e4:28:c6:21:0b:c1:22:91:fb: a6:5e:6a:60:13:0e:35:5c:07:33:b2:6b:f6:49:7b:22:bc:fe: bb:7c:03:8f:97:e3:23:c2:f7:6d:4a:f2:2d:cd:b7:ea:71:34: 06:30:bd:08:ce:3e:a9:eb:ac:3d:5f:bd:29:bc:70:84:7a:fa: fb:38:6c:39:55:e9:fd:ec:a5:55:e4:73:36:57:e2:6f:99:6b: c1:96:56:68:34:e3:7d:f4:b6:86:b8:d5:86:7c:b6:9c:92:6d: de:06:2b:ab:ad:16:aa:7e:dd:c4:eb:f8:7a:e0:08:8a:83:05: af:8d:ad:dd:02:d3:68:c2:05:e4:d1:63:21:1b:ae:d1:b9:2e: b2:0c:9c:89:15:f9:7e:6b:19:ac:e9:a9:ff:5b:67:31:40:36: c5:24:22:5e:e4:99:6c:43:81:61:fe:a3:52:88:f2:af:84:d7: 96:6d:d0:bd:f4:53:48:04:c0:54:ae:fb:ca:1d:59:d5:9f:66: f3:09:c8:4e:10:01:05:d4:76:19:38:77:01:29:02:fd:a3:71: da:63:f4:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTZEQjQxMTAvBgNVBAUTKEYyRDEyNkYxNDIwODZBMjZFM0M1ODRBNzBBQjNFNTI3 QjMwMzgxODIwHhcNMjUwNDI1MDAzNjA5WhcNMjUwNTAyMDAzNjA5WjAYMRYwFAYD VQQDEw02ODBhZDhmOS01ZWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr6EikCg6RGxapwXQbr//XeIR9vfKhCs8av4UmJ1HpcbaDXanzs4Du//p4+uk py35zv1RHJV17clrzkDo9mabxufoGPN0EHzpDBKPcEAz0jpkYIr7Z423L4xc7BOA 6Fcw6FxRmDSwKMVUx6KrYyDTMslqqf2hGwrZZx5PyrUECsZEgNT/iXrjODovnDqK Wd6spOQ36fG42ruG1oCXKhcPkoVS5o4N47GhYV5lCB/r2eioctge7cAw/Vyo3Ssf AlqA6u02FuA/8LquEv9j/t3KtYG/ZTomkaEQg/FBOCUQg/dvh2jYerHPQ4PELNFk Dzt/1CcGdmzkN/4vVqotPqCrRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBWFkOT1 C2smH6OKD8SVnqZxnUVsMB8GA1UdIwQYMBaAFPLRJvFCCGom48WEpwqz5SezA4GC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NkRCNC9FODREQjk4QTlE OUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFpYmp4WVNuQ3JQbEo3TURn WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh0RW04VUlJYWlianhZU25DclBsSjdNRGdZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NkRCNC9FODREQjk4QTlEOUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFp Ymp4WVNuQ3JQbEo3TURnWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9crffG3GQR6im8NcyCvK+lpv+Na/Lpb71+F+DsS2I4NaBGG+y7YEL IAeKn+rkKMYhC8EikfumXmpgEw41XAczsmv2SXsivP67fAOPl+MjwvdtSvItzbfq cTQGML0Izj6p66w9X70pvHCEevr7OGw5Ven97KVV5HM2V+JvmWvBllZoNON99LaG uNWGfLackm3eBiurrRaqft3E6/h64AiKgwWvja3dAtNowgXk0WMhG67RuS6yDJyJ Ffl+axms6an/W2cxQDbFJCJe5JlsQ4Fh/qNSiPKvhNeWbdC99FNIBMBUrvvKHVnV n2bzCchOEAEF1HYZOHcBKQL9o3HaY/TW -----END CERTIFICATE-----Generated at Sat Apr 26 15:07:25 2025 by rpki-client