$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.mft File: 8XiofFRzBDe6WfqpzhhP-HkP5PE.mft (raw, json) Hash identifier: PoDd/Y8eu8IWjG/hV5kZcOGEVt+VYN8DtZ3MP47TrIg= Subject key identifier: 55:06:51:9A:62:99:2D:4A:AB:6B:A0:06:FB:FE:09:7D:7D:AA:AA:39 Authority key identifier: F1:78:A8:7C:54:73:04:37:BA:59:FA:A9:CE:18:4F:F8:79:0F:E4:F1 Certificate issuer: /CN=A91D6792/serialNumber=F178A87C54730437BA59FAA9CE184FF8790FE4F1 Certificate serial: 04C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8XiofFRzBDe6WfqpzhhP-HkP5PE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.mft Manifest number: 04C2 Signing time: Tue 29 Apr 2025 00:23:48 +0000 Manifest this update: Tue 29 Apr 2025 00:23:48 +0000 Manifest next update: Tue 06 May 2025 00:23:48 +0000 Files and hashes: 1: 8XiofFRzBDe6WfqpzhhP-HkP5PE.crl (hash: i39VPQGAJQvJjl5E9v1sDXQZ5Ko9dnYR91FW4/69OtM=) 2: CB89040A73EA11EC8A823312C4F9AE02.roa (hash: 6pWGQwdhpFKj5uyRVvtM8M7iiAHBMFerXsGqI0l0KTo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.crl rsync://rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8XiofFRzBDe6WfqpzhhP-HkP5PE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 06 May 2025 00:23:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1223 (0x4c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6792, serialNumber=F178A87C54730437BA59FAA9CE184FF8790FE4F1 Validity Not Before: Apr 29 00:23:48 2025 GMT Not After : May 6 00:23:48 2025 GMT Subject: CN=68101c14-d3ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e0:02:ec:8b:de:c1:95:db:69:b8:db:29:0d: 92:98:33:ce:82:c7:38:e6:3e:84:d5:51:5e:f4:f3: 7b:e4:9f:4f:dc:99:2d:15:5f:3a:ec:30:3b:68:92: 8a:9b:71:23:16:5e:83:51:b0:0d:6d:0f:bf:aa:6e: 4e:cf:2d:af:88:4a:47:ff:6b:d4:c4:91:3f:7a:b4: ae:38:23:84:ea:e6:07:cf:b6:58:4c:fe:32:a6:24: 46:99:21:ca:2e:02:71:a4:1f:96:9a:62:eb:aa:33: 82:b1:37:47:7e:2b:f9:aa:8c:fe:38:f7:bd:07:e7: 86:b7:24:14:23:ae:3c:3b:1e:96:9d:3b:32:fc:d2: e5:2e:51:68:d0:b6:90:c6:77:2c:5a:82:a9:54:8b: 5b:38:0f:55:0a:63:76:5b:44:fe:59:0c:57:c2:4b: 6e:18:39:70:20:0c:99:df:0e:77:49:38:25:e3:64: ff:a4:27:ef:1a:c8:af:25:9f:e3:28:12:01:d7:b7: 15:e0:13:ae:90:34:f5:43:4c:b4:b4:75:2a:c8:a9: 59:9c:dd:97:7d:bb:50:95:ea:47:7f:81:1c:bf:3f: 36:7b:8b:a4:32:a9:f7:0d:54:1f:db:1e:45:55:65: 9c:25:e8:ec:30:ca:7c:d5:df:7a:13:86:08:00:3c: 71:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:06:51:9A:62:99:2D:4A:AB:6B:A0:06:FB:FE:09:7D:7D:AA:AA:39 X509v3 Authority Key Identifier: keyid:F1:78:A8:7C:54:73:04:37:BA:59:FA:A9:CE:18:4F:F8:79:0F:E4:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8XiofFRzBDe6WfqpzhhP-HkP5PE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:4a:4b:7e:89:4f:79:05:f4:3d:9a:9f:58:97:19:36:36:d1: 6b:ae:57:d7:2b:76:61:2d:24:d6:61:85:b0:94:07:52:59:d9: 77:b3:76:7e:2e:1c:ce:bf:99:8e:59:8a:c5:55:83:69:ed:fa: 8a:7e:46:03:9d:9d:56:b9:40:e1:76:01:e3:37:66:2b:b8:1b: a8:3c:71:70:c5:82:3b:be:68:d3:c6:02:08:db:7a:f6:7f:d3: 7b:04:c5:9e:07:4a:6e:70:5e:6f:6b:fc:00:78:94:59:d5:92: 12:3c:6d:99:18:7b:08:fe:95:28:2d:e3:db:ea:b2:68:61:1a: 61:c2:30:d9:7c:b9:f8:84:26:19:0d:2d:c8:c5:58:72:0b:4a: be:11:32:46:04:75:1d:c4:3c:17:4d:b5:aa:0f:53:db:3d:ea: 17:60:ae:dc:f7:06:e9:71:d7:cc:77:21:50:4a:9e:1f:da:73: 9f:d7:8f:5b:30:4a:10:c9:45:50:67:64:b3:e6:d9:59:dc:d3: 92:b7:e9:f4:62:75:0b:2d:fa:68:93:e3:6b:7b:a1:a9:fc:eb: 80:5b:c8:99:4d:eb:9e:d4:c4:39:5d:34:52:72:96:d3:da:8e: 11:a0:ad:53:67:a2:c1:ec:d2:6b:41:db:cb:22:6f:63:09:6f: 0e:e9:4e:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY3OTIxMTAvBgNVBAUTKEYxNzhBODdDNTQ3MzA0MzdCQTU5RkFBOUNFMTg0RkY4 NzkwRkU0RjEwHhcNMjUwNDI5MDAyMzQ4WhcNMjUwNTA2MDAyMzQ4WjAYMRYwFAYD VQQDEw02ODEwMWMxNC1kM2VmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzOAC7IvewZXbabjbKQ2SmDPOgsc45j6E1VFe9PN75J9P3JktFV867DA7aJKK m3EjFl6DUbANbQ+/qm5Ozy2viEpH/2vUxJE/erSuOCOE6uYHz7ZYTP4ypiRGmSHK LgJxpB+WmmLrqjOCsTdHfiv5qoz+OPe9B+eGtyQUI648Ox6WnTsy/NLlLlFo0LaQ xncsWoKpVItbOA9VCmN2W0T+WQxXwktuGDlwIAyZ3w53STgl42T/pCfvGsivJZ/j KBIB17cV4BOukDT1Q0y0tHUqyKlZnN2XfbtQlepHf4Ecvz82e4ukMqn3DVQf2x5F VWWcJejsMMp81d96E4YIADxxsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFUGUZpi mS1Kq2ugBvv+CX19qqo5MB8GA1UdIwQYMBaAFPF4qHxUcwQ3uln6qc4YT/h5D+Tx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjc5Mi9EQkYxQzc3MjIx RUQxMUVDQkU5QzlBMUNDNEY5QUUwMi84WGlvZkZSekJEZTZXZnFwemhoUC1Ia1A1 UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhYaW9mRlJ6QkRlNldmcXB6aGhQLUhrUDVQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Njc5Mi9EQkYxQzc3MjIxRUQxMUVDQkU5QzlBMUNDNEY5QUUwMi84WGlvZkZSekJE ZTZXZnFwemhoUC1Ia1A1UEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiSkt+iU95BfQ9mp9Ylxk2NtFrrlfXK3ZhLSTWYYWwlAdSWdl3s3Z+ LhzOv5mOWYrFVYNp7fqKfkYDnZ1WuUDhdgHjN2YruBuoPHFwxYI7vmjTxgII23r2 f9N7BMWeB0pucF5va/wAeJRZ1ZISPG2ZGHsI/pUoLePb6rJoYRphwjDZfLn4hCYZ DS3IxVhyC0q+ETJGBHUdxDwXTbWqD1PbPeoXYK7c9wbpcdfMdyFQSp4f2nOf149b MEoQyUVQZ2Sz5tlZ3NOSt+n0YnULLfpok+Nre6Gp/OuAW8iZTeue1MQ5XTRScpbT 2o4RoK1TZ6LB7NJrQdvLIm9jCW8O6U48 -----END CERTIFICATE-----Generated at Tue Apr 29 20:04:22 2025 by rpki-client