$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0372/20A54FC89D8511EE9181C121C4F9AE02/8psj6k4RTNycptN_Xvee9MNccoI.mft File: 8psj6k4RTNycptN_Xvee9MNccoI.mft (raw, json) Hash identifier: H1tjlXCAcKhWAx+GBPFDILn1WSaeXF/MW2cqELx8km4= Subject key identifier: 52:75:D0:E4:5F:EB:FA:7C:83:00:F3:03:B5:86:86:6B:31:9D:29:4C Authority key identifier: F2:9B:23:EA:4E:11:4C:DC:9C:A6:D3:7F:5E:F7:9E:F4:C3:5C:72:82 Certificate issuer: /CN=A91C0372/serialNumber=F29B23EA4E114CDC9CA6D37F5EF79EF4C35C7282 Certificate serial: 0103 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8psj6k4RTNycptN_Xvee9MNccoI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0372/20A54FC89D8511EE9181C121C4F9AE02/8psj6k4RTNycptN_Xvee9MNccoI.mft Manifest number: 0100 Signing time: Fri 25 Apr 2025 04:12:54 +0000 Manifest this update: Fri 25 Apr 2025 04:12:53 +0000 Manifest next update: Fri 02 May 2025 04:12:53 +0000 Files and hashes: 1: 8psj6k4RTNycptN_Xvee9MNccoI.crl (hash: T+Jbf+VZjXfvSDoOcok1ttERwJDO88LZ82hB5pK60JI=) 2: 4B42335C9D8711EEAF2A6E25C4F9AE02.roa (hash: fBtaOlMCOFGQQtGdBagxQGnrYFNg/qX3d4dMpzhuZnA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0372/20A54FC89D8511EE9181C121C4F9AE02/8psj6k4RTNycptN_Xvee9MNccoI.crl rsync://rpki.apnic.net/member_repository/A91C0372/20A54FC89D8511EE9181C121C4F9AE02/8psj6k4RTNycptN_Xvee9MNccoI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8psj6k4RTNycptN_Xvee9MNccoI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:12:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 259 (0x103) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0372, serialNumber=F29B23EA4E114CDC9CA6D37F5EF79EF4C35C7282 Validity Not Before: Apr 25 04:12:53 2025 GMT Not After : May 2 04:12:53 2025 GMT Subject: CN=680b0bc5-84c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:b2:bb:5d:95:77:9f:c3:b6:74:f5:8f:65:c4: b5:3e:89:4c:40:d8:a6:74:0c:1c:0b:f7:85:35:65: cb:0b:97:8f:29:16:65:5b:85:bb:c5:df:cb:1a:b8: 81:c2:98:11:00:32:89:97:9c:f7:9c:ed:e8:bd:1f: 46:44:d5:3d:e1:a4:bf:5b:e8:90:d7:64:73:6f:02: b2:b0:55:84:70:df:44:69:9e:36:8c:4e:8b:d0:5f: f8:ca:16:66:34:fb:06:15:68:23:e5:5e:fe:8d:e9: 55:1b:d0:fe:e7:cc:92:35:15:4d:54:03:54:7c:71: 5e:64:ad:7b:73:fa:7c:57:ba:00:59:66:04:ea:16: 16:d9:3a:62:9e:3b:90:51:67:f7:e9:5f:99:9f:fd: 87:bf:f1:51:74:43:ee:b5:87:4c:cd:38:25:e4:92: f3:2a:4a:31:0c:cc:d2:88:e9:1e:89:ed:7f:8f:c3: b8:61:4d:df:6e:a8:e1:06:28:0b:1c:77:a9:4d:95: a7:7e:90:fa:57:d3:eb:fa:89:b1:f7:4a:93:a5:6b: 62:c4:cf:8b:af:9c:75:ad:8a:eb:e7:47:7e:7e:b7: 7f:58:5b:70:f1:72:48:ee:10:09:a5:45:7f:ea:e3: e9:81:df:03:10:4c:3c:a1:41:9b:d6:38:8e:24:94: f0:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:75:D0:E4:5F:EB:FA:7C:83:00:F3:03:B5:86:86:6B:31:9D:29:4C X509v3 Authority Key Identifier: keyid:F2:9B:23:EA:4E:11:4C:DC:9C:A6:D3:7F:5E:F7:9E:F4:C3:5C:72:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0372/20A54FC89D8511EE9181C121C4F9AE02/8psj6k4RTNycptN_Xvee9MNccoI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8psj6k4RTNycptN_Xvee9MNccoI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0372/20A54FC89D8511EE9181C121C4F9AE02/8psj6k4RTNycptN_Xvee9MNccoI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:6e:b7:38:6c:04:bc:97:05:9b:b5:f6:bb:35:8b:d3:f7:a8: af:08:b8:d3:32:9f:eb:cc:57:52:71:38:5c:33:8f:16:41:56: 8d:77:2c:e5:00:ba:a1:a7:26:61:9f:e5:14:40:c3:52:e0:43: f5:b2:33:32:f4:46:36:90:bf:6a:eb:6f:d4:20:34:2b:e3:8b: 5e:2f:3d:0e:47:f9:4a:4e:04:8e:2d:23:c8:c8:ee:f4:9d:3d: f9:60:9d:ed:10:b4:84:43:f6:04:69:62:25:cd:9e:18:4f:38: 33:77:ea:c2:69:12:08:11:13:f0:fc:ec:16:54:b5:13:b6:df: 65:7e:70:67:27:92:22:0d:fa:9d:a1:53:8a:76:64:4d:c1:63: b6:81:33:b7:41:26:30:a5:4f:ba:11:6a:77:83:e2:18:db:cf: 0e:c1:5d:87:5d:47:6f:bb:6b:8e:17:ec:46:bf:e6:5e:fd:0e: 96:c0:a2:43:a7:1e:7e:a3:85:27:91:02:6b:32:5f:9c:bc:10: 59:22:22:a1:c3:c0:78:22:3e:5f:05:43:e2:12:e8:ab:f2:d9: 8c:0f:e0:bd:47:fa:05:61:d6:b0:bf:51:fe:fd:50:1d:2c:cf: fd:4a:21:8d:0d:02:86:82:fb:49:c6:9d:b1:86:50:03:90:68: 5a:d4:4f:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzAzNzIxMTAvBgNVBAUTKEYyOUIyM0VBNEUxMTRDREM5Q0E2RDM3RjVFRjc5RUY0 QzM1QzcyODIwHhcNMjUwNDI1MDQxMjUzWhcNMjUwNTAyMDQxMjUzWjAYMRYwFAYD VQQDEw02ODBiMGJjNS04NGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApLK7XZV3n8O2dPWPZcS1PolMQNimdAwcC/eFNWXLC5ePKRZlW4W7xd/LGriB wpgRADKJl5z3nO3ovR9GRNU94aS/W+iQ12RzbwKysFWEcN9EaZ42jE6L0F/4yhZm NPsGFWgj5V7+jelVG9D+58ySNRVNVANUfHFeZK17c/p8V7oAWWYE6hYW2TpinjuQ UWf36V+Zn/2Hv/FRdEPutYdMzTgl5JLzKkoxDMzSiOkeie1/j8O4YU3fbqjhBigL HHepTZWnfpD6V9Pr+omx90qTpWtixM+Lr5x1rYrr50d+frd/WFtw8XJI7hAJpUV/ 6uPpgd8DEEw8oUGb1jiOJJTwBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFJ10ORf 6/p8gwDzA7WGhmsxnSlMMB8GA1UdIwQYMBaAFPKbI+pOEUzcnKbTf173nvTDXHKC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDM3Mi8yMEE1NEZDODlE ODUxMUVFOTE4MUMxMjFDNEY5QUUwMi84cHNqNms0UlROeWNwdE5fWHZlZTlNTmNj b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhwc2o2azRSVE55Y3B0Tl9YdmVlOU1OY2NvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDM3Mi8yMEE1NEZDODlEODUxMUVFOTE4MUMxMjFDNEY5QUUwMi84cHNqNms0UlRO eWNwdE5fWHZlZTlNTmNjb0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKbrc4bAS8lwWbtfa7NYvT96ivCLjTMp/rzFdScThcM48WQVaNdyzl ALqhpyZhn+UUQMNS4EP1sjMy9EY2kL9q62/UIDQr44teLz0OR/lKTgSOLSPIyO70 nT35YJ3tELSEQ/YEaWIlzZ4YTzgzd+rCaRIIERPw/OwWVLUTtt9lfnBnJ5IiDfqd oVOKdmRNwWO2gTO3QSYwpU+6EWp3g+IY288OwV2HXUdvu2uOF+xGv+Ze/Q6WwKJD px5+o4UnkQJrMl+cvBBZIiKhw8B4Ij5fBUPiEuir8tmMD+C9R/oFYdawv1H+/VAd LM/9SiGNDQKGgvtJxp2xhlADkGha1E9A -----END CERTIFICATE-----Generated at Sat Apr 26 04:24:47 2025 by rpki-client