$ rpki-client -vvf rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.mft File: 08nS13n2aEMJcSuzDPoZkpDhuNY.mft (raw, json) Hash identifier: 7sjsjSVzrYB2oVKC6pJeEbXjuoqimdfTAR+wTCec+Bw= Subject key identifier: BC:58:66:A3:84:93:1F:26:8D:01:59:15:5E:F9:7E:AA:68:AF:F5:F7 Authority key identifier: D3:C9:D2:D7:79:F6:68:43:09:71:2B:B3:0C:FA:19:92:90:E1:B8:D6 Certificate issuer: /CN=A915DE8F/serialNumber=D3C9D2D779F6684309712BB30CFA199290E1B8D6 Certificate serial: 59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08nS13n2aEMJcSuzDPoZkpDhuNY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.mft Manifest number: 57 Signing time: Fri 25 Apr 2025 06:10:28 +0000 Manifest this update: Fri 25 Apr 2025 06:10:27 +0000 Manifest next update: Fri 02 May 2025 06:10:27 +0000 Files and hashes: 1: 08nS13n2aEMJcSuzDPoZkpDhuNY.crl (hash: IiCcRhT0VxmigDhcS04NuvGvBMkLkwS6xD5CF2m8J34=) 2: 6DEFE6D8A14611EF93AB8E21C4F9AE02.roa (hash: rRMGtINr2UhdhF+qj8NjJEBcNErv93/+Ql2sANUuRRs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.crl rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08nS13n2aEMJcSuzDPoZkpDhuNY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:10:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DE8F, serialNumber=D3C9D2D779F6684309712BB30CFA199290E1B8D6 Validity Not Before: Apr 25 06:10:27 2025 GMT Not After : May 2 06:10:27 2025 GMT Subject: CN=680b2753-14ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:d9:fa:af:62:fe:e5:6d:95:e4:28:16:2f:40: 6a:db:45:f9:81:fd:93:ac:df:11:00:df:a3:ac:b9: f1:3d:23:a7:37:36:41:5f:45:25:15:22:68:94:53: 5e:8d:d8:3c:7c:dc:c1:90:eb:55:2b:dd:fb:54:81: 10:d5:01:f5:e7:6f:27:19:e9:22:60:06:31:af:3f: 6e:81:73:12:f6:ce:d3:22:d5:44:65:24:52:f8:89: b5:0c:a8:86:2e:64:2d:57:d1:06:cd:e3:14:ce:11: 31:db:12:f1:d9:7a:88:54:1c:cf:8d:92:bf:94:5d: 39:24:8b:f6:74:81:2c:14:03:d8:19:bc:a7:7f:65: 1e:b4:70:d9:23:57:de:7f:63:09:38:08:b0:4b:c1: e3:c3:f4:fb:a3:21:38:5c:a7:c9:30:9c:13:3b:d0: 14:a8:ba:64:ec:61:4a:89:68:a8:f4:93:ff:a6:6d: c8:b1:b5:ad:84:3c:78:15:f5:2c:7a:09:02:c7:11: bb:c6:98:c2:e8:f1:5b:5e:d2:9c:7f:78:38:b6:a4: bc:32:77:7a:ce:26:c0:47:ae:b5:38:4b:44:4f:ee: 35:c8:5f:87:aa:c2:07:a0:e0:6d:cd:4a:b1:18:bd: 11:77:b2:78:86:45:c7:d2:67:fc:0d:8f:df:4d:9e: e4:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:58:66:A3:84:93:1F:26:8D:01:59:15:5E:F9:7E:AA:68:AF:F5:F7 X509v3 Authority Key Identifier: keyid:D3:C9:D2:D7:79:F6:68:43:09:71:2B:B3:0C:FA:19:92:90:E1:B8:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08nS13n2aEMJcSuzDPoZkpDhuNY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:74:9e:39:a2:c2:b6:83:7a:a3:e8:1c:5c:6c:9d:18:53:db: b0:f2:ec:33:ba:d0:6c:e7:05:e7:d7:5d:71:9e:18:12:e4:2d: 09:89:90:b8:d7:db:de:87:e5:70:2e:bf:6f:d8:f7:9f:21:f5: 45:72:dc:94:8e:7a:a8:db:dd:df:38:cb:df:8a:0b:21:78:52: 8a:00:95:6b:2d:45:ab:1b:bd:95:71:d3:0e:f6:a8:3c:f3:f8: 08:85:60:d4:d8:6d:ee:75:6e:20:46:64:5a:d9:19:f7:20:4b: 4c:22:77:ff:fd:17:5e:f2:1b:72:7d:94:8f:21:2c:ed:61:d2: 3b:41:53:bd:8e:29:30:cf:8a:ec:e0:67:43:97:fd:f5:d9:3f: af:4e:c6:3a:7c:e0:2a:df:81:68:a5:0d:f5:78:da:52:fd:f2: aa:4b:62:04:59:e4:35:03:01:e7:1d:dd:a9:e4:0b:36:02:b8: c9:2f:34:6b:3f:d3:a6:15:f7:9c:8f:19:39:4c:ff:9f:63:d2: 4f:b3:82:62:d1:ee:65:c0:35:53:b6:96:83:69:27:ff:1e:f6: 8f:cd:f6:bf:ac:46:f4:5e:d5:7e:d3:54:fb:5b:e3:76:4c:62: 32:1b:42:4d:8e:4e:2f:c9:7f:c9:85:d5:57:0d:59:a3:13:24: ee:2c:2b:1a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 REU4RjExMC8GA1UEBRMoRDNDOUQyRDc3OUY2Njg0MzA5NzEyQkIzMENGQTE5OTI5 MEUxQjhENjAeFw0yNTA0MjUwNjEwMjdaFw0yNTA1MDIwNjEwMjdaMBgxFjAUBgNV BAMTDTY4MGIyNzUzLTE0ZmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDf2fqvYv7lbZXkKBYvQGrbRfmB/ZOs3xEA36OsufE9I6c3NkFfRSUVImiUU16N 2Dx83MGQ61Ur3ftUgRDVAfXnbycZ6SJgBjGvP26BcxL2ztMi1URlJFL4ibUMqIYu ZC1X0QbN4xTOETHbEvHZeohUHM+Nkr+UXTkki/Z0gSwUA9gZvKd/ZR60cNkjV95/ Ywk4CLBLwePD9PujIThcp8kwnBM70BSoumTsYUqJaKj0k/+mbcixta2EPHgV9Sx6 CQLHEbvGmMLo8Vte0px/eDi2pLwyd3rOJsBHrrU4S0RP7jXIX4eqwgeg4G3NSrEY vRF3sniGRcfSZ/wNj99NnuRfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvFhmo4ST HyaNAVkVXvl+qmiv9fcwHwYDVR0jBBgwFoAU08nS13n2aEMJcSuzDPoZkpDhuNYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVERThGLzBCNTQzQjBBQTE0 NjExRUZBMTJBNkUxRkM0RjlBRTAyLzA4blMxM24yYUVNSmNTdXpEUG9aa3BEaHVO WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMDhuUzEzbjJhRU1KY1N1ekRQb1prcERodU5ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVE RThGLzBCNTQzQjBBQTE0NjExRUZBMTJBNkUxRkM0RjlBRTAyLzA4blMxM24yYUVN SmNTdXpEUG9aa3BEaHVOWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE90njmiwraDeqPoHFxsnRhT27Dy7DO60GznBefXXXGeGBLkLQmJkLjX 296H5XAuv2/Y958h9UVy3JSOeqjb3d84y9+KCyF4UooAlWstRasbvZVx0w72qDzz +AiFYNTYbe51biBGZFrZGfcgS0wid//9F17yG3J9lI8hLO1h0jtBU72OKTDPiuzg Z0OX/fXZP69Oxjp84CrfgWilDfV42lL98qpLYgRZ5DUDAecd3ankCzYCuMkvNGs/ 06YV95yPGTlM/59j0k+zgmLR7mXANVO2loNpJ/8e9o/N9r+sRvRe1X7TVPtb43ZM YjIbQk2OTi/Jf8mF1VcNWaMTJO4sKxo= -----END CERTIFICATE-----Generated at Sat Apr 26 15:02:53 2025 by rpki-client