$ rpki-client -vvf rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft File: s8j34GTam1qm6nlgF-xg0okDeCo.mft (raw, json) Hash identifier: wmv5URgAG4wpvSnP5JocMmydPQ+wbCnpztp1e73mdiQ= Subject key identifier: E5:F9:3F:7D:2B:3D:E2:23:AD:7E:18:F8:12:22:B0:AC:52:45:CA:50 Authority key identifier: B3:C8:F7:E0:64:DA:9B:5A:A6:EA:79:60:17:EC:60:D2:89:03:78:2A Certificate issuer: /CN=A91D671F/serialNumber=B3C8F7E064DA9B5AA6EA796017EC60D28903782A Certificate serial: 1607 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft Manifest number: 15F4 Signing time: Thu 24 Apr 2025 16:46:06 +0000 Manifest this update: Thu 24 Apr 2025 16:46:06 +0000 Manifest next update: Thu 01 May 2025 16:46:06 +0000 Files and hashes: 1: s8j34GTam1qm6nlgF-xg0okDeCo.crl (hash: ski4AQ/tPvSZtf51LwlFghwKUu8U/scoPLtoFVYHrws=) 2: A135DDD4162211EC9B4B6F77C4F9AE02.roa (hash: PQQbRL+FceR911s2DnKbA76SOWcCu+81xyQa/8CkP7k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.crl rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5639 (0x1607) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D671F, serialNumber=B3C8F7E064DA9B5AA6EA796017EC60D28903782A Validity Not Before: Apr 24 16:46:06 2025 GMT Not After : May 1 16:46:06 2025 GMT Subject: CN=680a6ace-d476 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:df:2f:59:e4:59:eb:69:80:df:d9:71:d1:c8: dc:99:51:1d:a0:aa:45:15:85:a6:a4:72:af:15:aa: bd:f5:df:f8:f1:f8:68:d7:32:72:e6:6c:ad:19:e0: 40:1a:d5:13:ba:ec:da:97:4b:ce:a6:ff:bb:9f:d0: 1a:90:fc:26:56:b7:f2:fe:d0:e2:42:ab:6f:ee:88: 5d:f7:f5:2d:39:e0:1d:8b:9d:6b:5b:81:5d:a7:0d: 2d:99:4f:b5:b2:c3:d2:22:ce:7a:aa:ac:1a:42:ee: f2:eb:73:d9:50:97:fb:aa:72:29:f2:7a:16:cd:91: d8:9b:15:12:7a:dc:e8:f9:f9:8c:c1:61:9c:3c:88: ab:7e:c9:a8:49:80:c4:49:b6:0d:7f:bf:38:7d:49: 36:11:44:13:9a:6a:fc:14:b5:2f:d3:79:cc:ab:01: 56:6a:d4:69:b8:02:6e:3d:ac:bf:20:1e:08:fc:b2: b5:12:fc:c4:3c:a7:a2:2d:9f:06:c6:7f:1d:a8:ca: c6:78:6f:90:26:7d:fa:20:f1:7e:7a:fe:62:84:75: c9:7c:a5:c7:94:9c:f1:c0:60:e4:e8:a7:5a:d6:b5: a6:13:c9:55:f1:12:51:8f:ba:05:7f:2a:e8:d4:d0: 0d:26:85:04:1c:fe:40:ec:84:26:05:88:cd:c0:6e: ce:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:F9:3F:7D:2B:3D:E2:23:AD:7E:18:F8:12:22:B0:AC:52:45:CA:50 X509v3 Authority Key Identifier: keyid:B3:C8:F7:E0:64:DA:9B:5A:A6:EA:79:60:17:EC:60:D2:89:03:78:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:4e:4e:7c:8a:fa:bf:e4:81:2c:3b:e5:37:18:ea:49:ea:95: ab:3f:9c:12:e1:2e:8a:7c:0a:b2:09:7f:4c:06:a5:25:8f:a8: 43:09:6d:b3:28:12:98:76:47:39:08:fa:97:ce:8e:d2:bf:29: 74:a5:09:f5:dc:aa:ba:0b:93:8e:7c:3e:39:34:81:05:88:75: 4a:6d:00:92:b4:b3:57:de:9d:c4:50:44:8d:c5:aa:29:1d:01: 08:e1:cc:1b:ef:71:72:13:cd:44:e7:da:69:35:8a:80:e0:5d: 18:66:2a:2c:54:6e:15:f1:a1:65:17:02:4b:b3:06:4b:94:94: b1:21:93:84:6c:35:28:92:de:ce:7b:33:33:ce:99:29:f2:82: 6e:2a:36:07:2f:cc:17:dd:cd:18:5d:58:cf:54:26:91:67:a8: 43:31:24:88:61:30:de:e2:1d:52:ea:b3:d3:28:77:1c:3f:1c: d3:43:c4:3d:03:c5:37:86:e5:da:f6:ac:b2:29:6c:64:de:29: d5:0e:07:52:7c:30:03:56:3d:92:92:62:5c:a9:73:f0:13:43: e1:ac:68:be:74:fa:b8:9e:2e:48:3e:79:2b:13:c5:f4:5d:2b: ad:6f:9b:75:00:21:4f:e5:b1:80:63:df:9d:fe:14:3e:dd:6d: e8:a6:e6:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY3MUYxMTAvBgNVBAUTKEIzQzhGN0UwNjREQTlCNUFBNkVBNzk2MDE3RUM2MEQy ODkwMzc4MkEwHhcNMjUwNDI0MTY0NjA2WhcNMjUwNTAxMTY0NjA2WjAYMRYwFAYD VQQDEw02ODBhNmFjZS1kNDc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAst8vWeRZ62mA39lx0cjcmVEdoKpFFYWmpHKvFaq99d/48fho1zJy5mytGeBA GtUTuuzal0vOpv+7n9AakPwmVrfy/tDiQqtv7ohd9/UtOeAdi51rW4Fdpw0tmU+1 ssPSIs56qqwaQu7y63PZUJf7qnIp8noWzZHYmxUSetzo+fmMwWGcPIirfsmoSYDE SbYNf784fUk2EUQTmmr8FLUv03nMqwFWatRpuAJuPay/IB4I/LK1EvzEPKeiLZ8G xn8dqMrGeG+QJn36IPF+ev5ihHXJfKXHlJzxwGDk6Kda1rWmE8lV8RJRj7oFfyro 1NANJoUEHP5A7IQmBYjNwG7OfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOX5P30r PeIjrX4Y+BIisKxSRcpQMB8GA1UdIwQYMBaAFLPI9+Bk2ptapup5YBfsYNKJA3gq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjcxRi8xRURDMTBCQzE3 MUUxMUU4ODU2QkM0NDNDNEY5QUUwMi9zOGozNEdUYW0xcW02bmxnRi14ZzBva0Rl Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M4ajM0R1RhbTFxbTZubGdGLXhnMG9rRGVDby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjcxRi8xRURDMTBCQzE3MUUxMUU4ODU2QkM0NDNDNEY5QUUwMi9zOGozNEdUYW0x cW02bmxnRi14ZzBva0RlQ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqTk58ivq/5IEsO+U3GOpJ6pWrP5wS4S6KfAqyCX9MBqUlj6hDCW2z KBKYdkc5CPqXzo7Svyl0pQn13Kq6C5OOfD45NIEFiHVKbQCStLNX3p3EUESNxaop HQEI4cwb73FyE81E59ppNYqA4F0YZiosVG4V8aFlFwJLswZLlJSxIZOEbDUokt7O ezMzzpkp8oJuKjYHL8wX3c0YXVjPVCaRZ6hDMSSIYTDe4h1S6rPTKHccPxzTQ8Q9 A8U3huXa9qyyKWxk3inVDgdSfDADVj2SkmJcqXPwE0PhrGi+dPq4ni5IPnkrE8X0 XSutb5t1ACFP5bGAY9+d/hQ+3W3opuZw -----END CERTIFICATE-----Generated at Sat Apr 26 14:53:19 2025 by rpki-client