$ rpki-client -vvf rpki.apnic.net/member_repository/A9159ECD/7AC5154C016A11ECB2B00C37C4F9AE02/8bqUPDA2xptEp1lwpE2SkFaJqQ8.mft File: 8bqUPDA2xptEp1lwpE2SkFaJqQ8.mft (raw, json) Hash identifier: NU99HDYiria1lRDoWfOh/K3+mWGDIxazhffLpXEwHyU= Subject key identifier: 11:70:17:4F:8B:40:7A:8E:63:6F:17:08:71:BC:27:7F:94:5B:5D:65 Authority key identifier: F1:BA:94:3C:30:36:C6:9B:44:A7:59:70:A4:4D:92:90:56:89:A9:0F Certificate issuer: /CN=A9159ECD/serialNumber=F1BA943C3036C69B44A75970A44D92905689A90F Certificate serial: 051D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bqUPDA2xptEp1lwpE2SkFaJqQ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159ECD/7AC5154C016A11ECB2B00C37C4F9AE02/8bqUPDA2xptEp1lwpE2SkFaJqQ8.mft Manifest number: 0515 Signing time: Thu 24 Apr 2025 23:24:47 +0000 Manifest this update: Thu 24 Apr 2025 23:24:47 +0000 Manifest next update: Thu 01 May 2025 23:24:47 +0000 Files and hashes: 1: 8bqUPDA2xptEp1lwpE2SkFaJqQ8.crl (hash: isKXfbPcKYDtRrwXwH1A0lbv+7U0dzZTrNneyQ/7/EE=) 2: C309F5BA017011ECB98B2F33C4F9AE02.roa (hash: aXSQnMlRqYHjlA+sWyHQ/h8SKDapqi9yLmH+QCm7j5U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159ECD/7AC5154C016A11ECB2B00C37C4F9AE02/8bqUPDA2xptEp1lwpE2SkFaJqQ8.crl rsync://rpki.apnic.net/member_repository/A9159ECD/7AC5154C016A11ECB2B00C37C4F9AE02/8bqUPDA2xptEp1lwpE2SkFaJqQ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bqUPDA2xptEp1lwpE2SkFaJqQ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:24:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1309 (0x51d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159ECD, serialNumber=F1BA943C3036C69B44A75970A44D92905689A90F Validity Not Before: Apr 24 23:24:47 2025 GMT Not After : May 1 23:24:47 2025 GMT Subject: CN=680ac83f-322b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:86:6a:23:f3:5b:29:6e:2d:e5:85:b9:d5:27: e2:6a:ce:3b:6f:99:ef:26:3c:0a:3d:0b:3d:08:49: a8:38:96:56:e0:63:25:75:4d:df:0c:82:ea:55:54: 98:43:d3:7a:86:70:80:61:3e:57:86:0b:c8:2d:ac: 60:da:2a:48:cc:e2:33:20:e3:4f:04:8e:a2:f8:21: f0:51:9b:3b:d5:33:3c:38:a3:4a:78:cd:29:57:9e: 0a:80:09:94:78:9c:f0:53:d6:87:7d:76:fc:28:b2: 2f:22:33:6f:1c:5c:8b:ac:03:89:3e:bf:76:ae:fc: 07:c4:29:6b:68:c6:d5:76:c7:6b:fe:94:07:6a:38: 14:87:03:0a:f5:6e:5b:81:df:c5:60:ea:98:ae:37: a1:85:e1:ed:5d:f1:f3:99:e8:20:06:ed:c7:70:27: 14:ad:03:af:6a:2a:f4:b2:d8:08:46:c1:76:8d:28: e7:f5:1e:de:91:fc:b7:7c:a8:a8:c3:44:e9:25:ae: 24:0f:84:84:ce:c4:f4:a2:61:5f:92:68:a6:bf:d0: 40:e8:ca:ce:5a:37:a6:9f:43:1a:2a:f7:5a:20:2c: 11:61:fc:6a:b3:69:28:99:1e:51:e0:5a:a2:7a:a6: c3:7b:a4:62:11:b7:e4:fd:9f:0c:d5:b9:55:10:e6: 31:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:70:17:4F:8B:40:7A:8E:63:6F:17:08:71:BC:27:7F:94:5B:5D:65 X509v3 Authority Key Identifier: keyid:F1:BA:94:3C:30:36:C6:9B:44:A7:59:70:A4:4D:92:90:56:89:A9:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159ECD/7AC5154C016A11ECB2B00C37C4F9AE02/8bqUPDA2xptEp1lwpE2SkFaJqQ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bqUPDA2xptEp1lwpE2SkFaJqQ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159ECD/7AC5154C016A11ECB2B00C37C4F9AE02/8bqUPDA2xptEp1lwpE2SkFaJqQ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:c5:20:e6:a8:ef:0a:72:e3:d9:f7:cd:32:9e:86:b6:cf:da: a7:0f:af:b3:41:f1:65:dd:06:08:af:3f:8d:c8:b3:1d:73:45: f5:c4:fd:e5:ee:25:57:02:03:09:de:c7:a9:39:7c:eb:f1:a2: 23:2a:ce:c7:08:d9:67:d0:4c:53:ad:90:a3:e4:84:59:25:2b: b5:77:7e:17:2e:6d:55:92:8d:7f:b5:f0:36:d4:2a:c2:c2:a5: fc:0f:3a:c6:d5:f9:dd:9d:99:21:8b:11:e2:da:b5:81:d6:cf: fd:59:1c:de:a8:05:bf:81:31:91:fa:86:3e:f9:ac:f7:42:ec: 09:ee:b9:3d:16:82:ce:85:ba:99:93:b0:93:3e:17:4c:e4:4e: 40:6f:46:4d:29:81:86:c6:5c:09:f4:dd:c6:b0:8c:dc:16:d9: 57:97:5a:50:fd:fc:aa:16:2c:39:99:e3:78:a7:0f:bf:35:2c: 57:27:0c:56:a0:25:62:9f:bd:87:70:9d:bd:5f:e7:9a:06:e5: 46:26:3e:f4:b3:8c:47:9b:b3:dd:08:9e:5a:ff:82:60:ff:ee: da:91:0d:59:62:69:dc:31:ea:d4:6f:fb:26:e4:d6:b7:e7:7f: 6f:df:79:1f:0d:f3:21:04:c5:73:f1:b9:fc:4d:08:a1:a2:12: 7e:9f:dc:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTlFQ0QxMTAvBgNVBAUTKEYxQkE5NDNDMzAzNkM2OUI0NEE3NTk3MEE0NEQ5Mjkw NTY4OUE5MEYwHhcNMjUwNDI0MjMyNDQ3WhcNMjUwNTAxMjMyNDQ3WjAYMRYwFAYD VQQDEw02ODBhYzgzZi0zMjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuIZqI/NbKW4t5YW51Sfias47b5nvJjwKPQs9CEmoOJZW4GMldU3fDILqVVSY Q9N6hnCAYT5XhgvILaxg2ipIzOIzIONPBI6i+CHwUZs71TM8OKNKeM0pV54KgAmU eJzwU9aHfXb8KLIvIjNvHFyLrAOJPr92rvwHxClraMbVdsdr/pQHajgUhwMK9W5b gd/FYOqYrjehheHtXfHzmeggBu3HcCcUrQOvair0stgIRsF2jSjn9R7ekfy3fKio w0TpJa4kD4SEzsT0omFfkmimv9BA6MrOWjemn0MaKvdaICwRYfxqs2komR5R4Fqi eqbDe6RiEbfk/Z8M1blVEOYxDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBFwF0+L QHqOY28XCHG8J3+UW11lMB8GA1UdIwQYMBaAFPG6lDwwNsabRKdZcKRNkpBWiakP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OUVDRC83QUM1MTU0QzAx NkExMUVDQjJCMDBDMzdDNEY5QUUwMi84YnFVUERBMnhwdEVwMWx3cEUyU2tGYUpx UTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhicVVQREEyeHB0RXAxbHdwRTJTa0ZhSnFROC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OUVDRC83QUM1MTU0QzAxNkExMUVDQjJCMDBDMzdDNEY5QUUwMi84YnFVUERBMnhw dEVwMWx3cEUyU2tGYUpxUTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLxSDmqO8KcuPZ980ynoa2z9qnD6+zQfFl3QYIrz+NyLMdc0X1xP3l 7iVXAgMJ3sepOXzr8aIjKs7HCNln0ExTrZCj5IRZJSu1d34XLm1Vko1/tfA21CrC wqX8DzrG1fndnZkhixHi2rWB1s/9WRzeqAW/gTGR+oY++az3QuwJ7rk9FoLOhbqZ k7CTPhdM5E5Ab0ZNKYGGxlwJ9N3GsIzcFtlXl1pQ/fyqFiw5meN4pw+/NSxXJwxW oCVin72HcJ29X+eaBuVGJj70s4xHm7PdCJ5a/4Jg/+7akQ1ZYmncMerUb/sm5Na3 539v33kfDfMhBMVz8bn8TQihohJ+n9y6 -----END CERTIFICATE-----Generated at Sat Apr 26 13:04:13 2025 by rpki-client