$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft File: 8ghPeg88CpH4Jf79nxA18zVBWEw.mft (raw, json) Hash identifier: 5g9MOvroZz+8ad+A2nJQW4oynvAVGnqBvZS7xexz/Ak= Subject key identifier: 2B:14:B7:84:A5:23:5B:BA:41:90:71:4B:F1:D8:B7:D6:A3:33:4D:E6 Authority key identifier: F2:08:4F:7A:0F:3C:0A:91:F8:25:FE:FD:9F:10:35:F3:35:41:58:4C Certificate issuer: /CN=A91EAEAF/serialNumber=F2084F7A0F3C0A91F825FEFD9F1035F33541584C Certificate serial: 021F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft Manifest number: 021C Signing time: Fri 13 Jun 2025 01:27:07 +0000 Manifest this update: Fri 13 Jun 2025 01:27:07 +0000 Manifest next update: Fri 20 Jun 2025 01:27:07 +0000 Files and hashes: 1: 8ghPeg88CpH4Jf79nxA18zVBWEw.crl (hash: 6X4mMMj2rDNceRy9RVEDyWFfusETn4IIPNf9K9SOses=) 2: EF0EFF5833F511EDA5C4F37DC4F9AE02.roa (hash: LAWmMRc8daUtEB7NaiA0m2Tl41sqEulVfrA7do1Thps=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.crl rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 01:27:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 543 (0x21f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAEAF, serialNumber=F2084F7A0F3C0A91F825FEFD9F1035F33541584C Validity Not Before: Jun 13 01:27:07 2025 GMT Not After : Jun 20 01:27:07 2025 GMT Subject: CN=684b7e6b-7464 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:34:81:07:db:4e:16:dc:cc:ce:d7:89:61:24: ad:e1:a4:c0:f1:b0:2e:4e:b7:ae:38:a1:f3:97:6a: 32:a3:3d:24:ce:08:d1:24:c8:d4:4b:93:9c:f0:3e: ba:3f:b4:13:53:da:ff:68:23:6a:07:14:0a:90:e1: c6:89:7e:93:4b:e7:df:e7:3c:a0:8a:45:64:16:9a: 97:7e:b8:af:5d:5e:15:7f:c9:78:9e:4c:8c:53:b6: c8:5c:92:f1:36:10:a5:92:df:1c:cb:8f:12:30:3d: 04:38:a4:2b:66:f0:5b:77:ce:1a:be:26:2c:ca:ab: 81:76:4c:9a:bf:fa:ea:17:0e:b2:49:4a:dc:17:49: 50:35:e4:e3:5c:8a:eb:2a:7d:2c:6d:53:a7:f9:f2: fd:0b:61:2a:86:ae:2d:9d:d1:9b:e9:76:28:d6:2f: 35:82:e3:6f:32:a4:b1:5f:41:4f:df:ce:97:16:64: fc:4f:94:2e:dd:5f:84:63:22:01:b7:0e:57:bc:ba: c2:76:d8:f5:98:60:c2:92:a2:8b:9f:e0:27:22:18: 06:b3:ad:90:67:f8:73:0d:26:e3:fd:c3:1f:15:ea: bd:af:dd:45:b5:c1:ed:0c:ff:9e:70:7d:65:50:84: 48:1c:1b:d1:f3:fb:89:12:5c:86:1d:17:a4:a9:90: d6:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:14:B7:84:A5:23:5B:BA:41:90:71:4B:F1:D8:B7:D6:A3:33:4D:E6 X509v3 Authority Key Identifier: keyid:F2:08:4F:7A:0F:3C:0A:91:F8:25:FE:FD:9F:10:35:F3:35:41:58:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:b8:2b:e8:e2:d4:9e:39:c9:76:d5:ae:79:47:ec:84:ea:45: 1b:bd:9c:63:62:cc:d2:02:b6:7b:61:f5:14:05:2d:7b:84:d9: a5:e6:30:dd:ff:64:06:d1:cc:75:d2:5d:05:28:0e:eb:44:2a: 1a:82:37:f3:5a:7b:ab:58:ef:67:b2:fe:e4:2e:06:38:8a:f1: a6:f7:63:41:43:aa:fc:b7:01:f5:0b:ce:f9:90:fb:56:a6:77: ee:40:77:05:e1:e3:da:15:2a:e7:83:9c:b4:b0:81:5d:18:16: 9c:8f:1a:f8:d9:0a:66:4b:8f:a9:7b:70:27:72:1b:db:b2:50: 14:2d:a7:c7:e9:4e:a6:9b:18:1f:03:00:a0:44:a4:56:a5:2f: 37:ca:43:fc:ee:a3:04:90:b3:c3:1d:37:40:9f:3c:ec:e4:91: 65:4c:45:af:08:32:34:66:9b:9d:8b:9c:84:7b:67:b7:b9:8f: 4d:0a:ca:90:d0:5f:5c:28:8c:0f:0b:e1:40:b4:98:8d:cf:05: c9:d5:f3:16:95:40:46:be:c7:4f:96:b4:da:c5:f6:5b:88:65: 9f:2c:db:1b:84:1e:ed:61:90:dd:5a:ca:1c:ef:90:7c:49:15: a5:29:84:55:ab:4e:cd:e7:f8:2a:75:00:a0:2f:54:ab:e2:f9: 96:e0:99:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFQUYxMTAvBgNVBAUTKEYyMDg0RjdBMEYzQzBBOTFGODI1RkVGRDlGMTAzNUYz MzU0MTU4NEMwHhcNMjUwNjEzMDEyNzA3WhcNMjUwNjIwMDEyNzA3WjAYMRYwFAYD VQQDEw02ODRiN2U2Yi03NDY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0DSBB9tOFtzMzteJYSSt4aTA8bAuTreuOKHzl2oyoz0kzgjRJMjUS5Oc8D66 P7QTU9r/aCNqBxQKkOHGiX6TS+ff5zygikVkFpqXfrivXV4Vf8l4nkyMU7bIXJLx NhClkt8cy48SMD0EOKQrZvBbd84aviYsyquBdkyav/rqFw6ySUrcF0lQNeTjXIrr Kn0sbVOn+fL9C2Eqhq4tndGb6XYo1i81guNvMqSxX0FP386XFmT8T5Qu3V+EYyIB tw5XvLrCdtj1mGDCkqKLn+AnIhgGs62QZ/hzDSbj/cMfFeq9r91FtcHtDP+ecH1l UIRIHBvR8/uJElyGHRekqZDWnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCsUt4Sl I1u6QZBxS/HYt9ajM03mMB8GA1UdIwQYMBaAFPIIT3oPPAqR+CX+/Z8QNfM1QVhM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUVBRi9CRTM1MjFCODMz RjExMUVEQjgzNjEwODZDNEY5QUUwMi84Z2hQZWc4OENwSDRKZjc5bnhBMTh6VkJX RXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhnaFBlZzg4Q3BINEpmNzlueEExOHpWQldFdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUVBRi9CRTM1MjFCODMzRjExMUVEQjgzNjEwODZDNEY5QUUwMi84Z2hQZWc4OENw SDRKZjc5bnhBMTh6VkJXRXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbuCvo4tSeOcl21a55R+yE6kUbvZxjYszSArZ7YfUUBS17hNml5jDd /2QG0cx10l0FKA7rRCoagjfzWnurWO9nsv7kLgY4ivGm92NBQ6r8twH1C875kPtW pnfuQHcF4ePaFSrng5y0sIFdGBacjxr42QpmS4+pe3AnchvbslAULafH6U6mmxgf AwCgRKRWpS83ykP87qMEkLPDHTdAnzzs5JFlTEWvCDI0Zpudi5yEe2e3uY9NCsqQ 0F9cKIwPC+FAtJiNzwXJ1fMWlUBGvsdPlrTaxfZbiGWfLNsbhB7tYZDdWsoc75B8 SRWlKYRVq07N5/gqdQCgL1Sr4vmW4JmG -----END CERTIFICATE-----Generated at Sat Jun 14 18:54:00 2025 by rpki-client