$ rpki-client -vvf rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft File: 8bZbeXYWOXNS7L1KLHdPz37G1HA.mft (raw, json) Hash identifier: siCGWNzH9LsFTqR1/P8QkU7VaPntnFLe3FIUU1oHcys= Subject key identifier: 4F:B5:24:5A:37:58:DF:F8:49:07:46:CD:C9:AF:BA:5D:41:68:B8:F5 Authority key identifier: F1:B6:5B:79:76:16:39:73:52:EC:BD:4A:2C:77:4F:CF:7E:C6:D4:70 Certificate issuer: /CN=A91D14EF/serialNumber=F1B65B797616397352ECBD4A2C774FCF7EC6D470 Certificate serial: 0647 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bZbeXYWOXNS7L1KLHdPz37G1HA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft Manifest number: 0642 Signing time: Thu 24 Apr 2025 22:20:53 +0000 Manifest this update: Thu 24 Apr 2025 22:20:53 +0000 Manifest next update: Thu 01 May 2025 22:20:53 +0000 Files and hashes: 1: 8bZbeXYWOXNS7L1KLHdPz37G1HA.crl (hash: X2BN3qljjgNLDp51M4zSKkMyffO1x8lrp/3Em+zTk/s=) 2: 226402B0860D11EB8F541B68C4F9AE02.roa (hash: y7fGqG2zMTlsWUgwcSbG/aCOa1G0W3pseNmyoJID29o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.crl rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bZbeXYWOXNS7L1KLHdPz37G1HA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1607 (0x647) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D14EF, serialNumber=F1B65B797616397352ECBD4A2C774FCF7EC6D470 Validity Not Before: Apr 24 22:20:53 2025 GMT Not After : May 1 22:20:53 2025 GMT Subject: CN=680ab945-fe50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d8:ec:5b:6e:95:3c:21:a5:b1:3d:f0:41:da: 0e:18:0c:07:f3:80:9d:79:e5:8d:47:8e:4f:81:00: 2b:97:60:8a:02:7d:34:20:60:5a:d9:68:aa:d8:09: 43:23:c5:0f:d8:f7:e8:9f:ad:2d:66:33:ab:68:dc: 17:f8:f4:b4:8a:3f:b1:16:e1:50:24:72:b7:25:b4: e1:50:cf:5a:55:ab:cc:ff:2f:27:67:44:2a:5c:76: 1f:68:8d:88:96:6d:a3:10:d1:6b:ee:29:86:8a:1f: e1:c2:24:57:2f:ea:8d:6c:f3:75:cb:8b:9f:39:e8: e5:5b:bc:86:77:e5:e5:cb:16:ed:26:62:20:09:a0: 6b:82:11:22:88:bb:5c:fe:9b:5b:35:93:3a:f9:6d: 64:3e:61:00:65:45:9c:91:4e:19:15:90:a0:54:08: d1:5c:69:f1:b7:23:3e:27:38:ae:22:1b:14:81:c7: c8:8d:72:36:c6:c1:03:4f:4f:76:d4:9a:4b:b5:da: 60:69:1d:27:81:2a:49:5c:9f:7f:4e:4e:5a:88:88: 7c:f8:33:3d:d8:3c:8c:bc:32:d5:03:63:b3:1b:75: 7c:91:6a:41:04:43:b1:c0:5c:87:dd:7c:f3:7a:c9: 7f:88:d8:bf:08:58:f8:f7:fb:a9:e5:0e:74:08:80: df:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:B5:24:5A:37:58:DF:F8:49:07:46:CD:C9:AF:BA:5D:41:68:B8:F5 X509v3 Authority Key Identifier: keyid:F1:B6:5B:79:76:16:39:73:52:EC:BD:4A:2C:77:4F:CF:7E:C6:D4:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bZbeXYWOXNS7L1KLHdPz37G1HA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:8c:2b:27:93:0b:a5:be:9d:06:a6:93:59:04:a9:80:14:d3: 68:1a:0a:13:22:ca:cf:b7:22:02:ed:3d:a6:77:97:3b:6e:1c: 3e:14:18:71:6f:ab:56:43:df:40:84:c0:c9:37:19:e8:52:03: 96:3c:27:08:87:7d:4a:73:75:b6:29:27:c0:eb:e6:38:61:5f: 88:74:07:ae:90:f2:ff:d4:ae:40:9a:9d:c3:4b:56:c9:7a:1c: a7:3a:6a:ae:83:7d:1c:61:97:be:af:35:02:69:78:9f:30:27: dc:ca:c8:0a:09:d8:38:2a:fe:cf:9f:1b:b4:f4:9a:2a:ed:6e: e3:47:7f:08:c0:3e:51:34:82:49:8b:c9:55:a0:0e:9a:4b:d7: c9:3c:65:21:ea:71:26:fc:9e:8c:cb:82:67:9a:f3:b2:e7:49: 05:da:5d:fd:45:0a:2c:7c:d3:14:23:80:dd:af:b8:1d:87:ce: c7:e8:d6:a0:6b:26:64:25:c0:83:9e:47:45:a9:6f:45:c6:d6: ec:d9:3c:fa:2b:2f:fc:56:aa:ed:9c:40:df:12:94:71:53:1f: 1d:41:6e:9d:fc:c6:27:89:25:02:4a:2d:dd:70:2f:6f:cf:2a: 8b:c7:00:3c:f8:4b:18:60:29:79:73:87:3f:94:75:e0:54:21: 7c:db:b3:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE0RUYxMTAvBgNVBAUTKEYxQjY1Qjc5NzYxNjM5NzM1MkVDQkQ0QTJDNzc0RkNG N0VDNkQ0NzAwHhcNMjUwNDI0MjIyMDUzWhcNMjUwNTAxMjIyMDUzWjAYMRYwFAYD VQQDEw02ODBhYjk0NS1mZTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNjsW26VPCGlsT3wQdoOGAwH84CdeeWNR45PgQArl2CKAn00IGBa2Wiq2AlD I8UP2Pfon60tZjOraNwX+PS0ij+xFuFQJHK3JbThUM9aVavM/y8nZ0QqXHYfaI2I lm2jENFr7imGih/hwiRXL+qNbPN1y4ufOejlW7yGd+XlyxbtJmIgCaBrghEiiLtc /ptbNZM6+W1kPmEAZUWckU4ZFZCgVAjRXGnxtyM+JziuIhsUgcfIjXI2xsEDT092 1JpLtdpgaR0ngSpJXJ9/Tk5aiIh8+DM92DyMvDLVA2OzG3V8kWpBBEOxwFyH3Xzz esl/iNi/CFj49/up5Q50CIDfmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE+1JFo3 WN/4SQdGzcmvul1BaLj1MB8GA1UdIwQYMBaAFPG2W3l2FjlzUuy9Six3T89+xtRw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTRFRi8yNjQwMTAwNjg2 MEIxMUVCOTFDMTJENjNDNEY5QUUwMi84YlpiZVhZV09YTlM3TDFLTEhkUHozN0cx SEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhiWmJlWFlXT1hOUzdMMUtMSGRQejM3RzFIQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTRFRi8yNjQwMTAwNjg2MEIxMUVCOTFDMTJENjNDNEY5QUUwMi84YlpiZVhZV09Y TlM3TDFLTEhkUHozN0cxSEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1jCsnkwulvp0GppNZBKmAFNNoGgoTIsrPtyIC7T2md5c7bhw+FBhx b6tWQ99AhMDJNxnoUgOWPCcIh31Kc3W2KSfA6+Y4YV+IdAeukPL/1K5Amp3DS1bJ ehynOmqug30cYZe+rzUCaXifMCfcysgKCdg4Kv7Pnxu09Joq7W7jR38IwD5RNIJJ i8lVoA6aS9fJPGUh6nEm/J6My4JnmvOy50kF2l39RQosfNMUI4Ddr7gdh87H6Nag ayZkJcCDnkdFqW9Fxtbs2Tz6Ky/8VqrtnEDfEpRxUx8dQW6d/MYniSUCSi3dcC9v zyqLxwA8+EsYYCl5c4c/lHXgVCF827OQ -----END CERTIFICATE-----Generated at Sat Apr 26 16:41:10 2025 by rpki-client