$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft File: 8ghPeg88CpH4Jf79nxA18zVBWEw.mft (raw, json) Hash identifier: XRMmuvA02ihyrSmRHGcRvCRS1qvW+g6lrt1W4seN5Xk= Subject key identifier: 6B:4B:62:9A:FF:8E:E3:B7:A0:3E:16:9F:B1:F7:35:89:0C:16:C7:F1 Authority key identifier: F2:08:4F:7A:0F:3C:0A:91:F8:25:FE:FD:9F:10:35:F3:35:41:58:4C Certificate issuer: /CN=A91EAEAF/serialNumber=F2084F7A0F3C0A91F825FEFD9F1035F33541584C Certificate serial: 0207 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft Manifest number: 0204 Signing time: Fri 25 Apr 2025 01:47:52 +0000 Manifest this update: Fri 25 Apr 2025 01:47:51 +0000 Manifest next update: Fri 02 May 2025 01:47:51 +0000 Files and hashes: 1: 8ghPeg88CpH4Jf79nxA18zVBWEw.crl (hash: E80VQI3oD7TB2/7Q4CeochN/SatNjAbTdYx3I4IMAGc=) 2: EF0EFF5833F511EDA5C4F37DC4F9AE02.roa (hash: LAWmMRc8daUtEB7NaiA0m2Tl41sqEulVfrA7do1Thps=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.crl rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:47:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 519 (0x207) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAEAF, serialNumber=F2084F7A0F3C0A91F825FEFD9F1035F33541584C Validity Not Before: Apr 25 01:47:51 2025 GMT Not After : May 2 01:47:51 2025 GMT Subject: CN=680ae9c7-ceec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:eb:cc:18:71:8f:af:1a:25:4d:9a:3b:9c:81: b9:15:d4:c6:da:a5:46:97:ed:8b:5a:84:4f:49:ac: b3:b3:9a:f2:d6:da:14:f2:68:6e:82:96:2b:12:bc: f4:a4:a2:db:dc:af:4d:31:5a:ce:b3:c2:f3:cb:40: 40:c8:c6:c9:12:b8:07:50:c6:28:51:e3:dc:d3:e1: 8b:af:5e:42:61:d0:c8:01:71:f0:d9:23:0a:94:be: 94:30:ce:4e:fc:ec:8b:f6:68:37:c1:83:50:9b:41: df:dc:bc:5b:5c:44:66:3c:47:27:1f:77:da:c8:11: 71:f5:a2:52:10:b0:70:d1:9c:bf:7f:10:3e:eb:f2: 11:2e:b7:95:62:03:16:54:31:c4:ca:65:3a:f5:8c: 03:00:19:d0:0f:91:2b:09:89:31:d9:b6:28:2c:95: d1:a2:3d:a5:53:8a:1e:50:3c:1f:8a:5f:f9:d6:4f: 7c:81:89:16:cb:53:de:4e:d3:3d:1c:f1:9b:8f:c6: 28:5d:35:c5:37:f4:67:29:36:70:e8:58:7b:b3:36: 8e:8c:6b:b0:5c:f0:a9:ab:92:19:32:a5:81:4e:a5: 87:56:86:d9:72:20:6d:40:0d:97:1a:01:7e:cd:c5: 1e:23:f2:44:fb:98:61:5b:fb:3a:b0:b6:3d:da:bc: b9:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:4B:62:9A:FF:8E:E3:B7:A0:3E:16:9F:B1:F7:35:89:0C:16:C7:F1 X509v3 Authority Key Identifier: keyid:F2:08:4F:7A:0F:3C:0A:91:F8:25:FE:FD:9F:10:35:F3:35:41:58:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:59:02:2e:aa:78:e9:f1:84:f9:32:9b:83:6e:33:75:05:0a: 16:86:ea:59:51:4c:cb:a0:4f:3d:59:ba:9a:9b:62:f2:15:22: f6:52:6d:b5:e7:f6:f1:67:b1:db:d1:b7:74:b7:a3:b8:9d:97: a2:fa:35:a2:94:d1:68:85:1d:dc:cd:e6:48:3d:3d:3d:7d:e6: 3d:87:da:85:ae:57:22:45:a6:62:b5:b6:70:ab:d5:7c:ae:9f: 0d:5a:23:99:a8:b3:26:15:d0:c4:44:f0:95:a9:c6:49:2b:e0: 85:0f:12:cb:f4:a4:f1:4e:30:23:9b:72:69:c1:fc:a0:50:01: 2b:5c:12:49:22:1d:3b:39:57:49:e0:84:96:00:f8:5a:83:6d: 5c:a9:51:cb:16:e1:9b:a7:09:9b:b6:a6:ba:ac:2c:db:ae:b8: eb:1b:f2:1b:39:82:ab:44:a2:13:07:83:ee:a5:0f:e8:9b:7d: ac:3c:8c:a5:d9:d4:14:ff:2a:cf:25:74:03:02:f5:c2:08:80: 07:91:30:46:33:b7:af:6f:f7:ff:09:38:d6:f5:00:f6:e7:7b: 2d:98:69:cb:9d:4c:be:12:7b:de:ab:70:cd:fd:fa:4f:ce:4d: e9:8f:43:2e:e3:cc:65:7e:01:fa:44:75:67:69:6b:1a:ac:dd: e1:a8:4c:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFQUYxMTAvBgNVBAUTKEYyMDg0RjdBMEYzQzBBOTFGODI1RkVGRDlGMTAzNUYz MzU0MTU4NEMwHhcNMjUwNDI1MDE0NzUxWhcNMjUwNTAyMDE0NzUxWjAYMRYwFAYD VQQDEw02ODBhZTljNy1jZWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0+vMGHGPrxolTZo7nIG5FdTG2qVGl+2LWoRPSayzs5ry1toU8mhugpYrErz0 pKLb3K9NMVrOs8Lzy0BAyMbJErgHUMYoUePc0+GLr15CYdDIAXHw2SMKlL6UMM5O /OyL9mg3wYNQm0Hf3LxbXERmPEcnH3fayBFx9aJSELBw0Zy/fxA+6/IRLreVYgMW VDHEymU69YwDABnQD5ErCYkx2bYoLJXRoj2lU4oeUDwfil/51k98gYkWy1PeTtM9 HPGbj8YoXTXFN/RnKTZw6Fh7szaOjGuwXPCpq5IZMqWBTqWHVobZciBtQA2XGgF+ zcUeI/JE+5hhW/s6sLY92ry5RQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGtLYpr/ juO3oD4Wn7H3NYkMFsfxMB8GA1UdIwQYMBaAFPIIT3oPPAqR+CX+/Z8QNfM1QVhM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUVBRi9CRTM1MjFCODMz RjExMUVEQjgzNjEwODZDNEY5QUUwMi84Z2hQZWc4OENwSDRKZjc5bnhBMTh6VkJX RXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhnaFBlZzg4Q3BINEpmNzlueEExOHpWQldFdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUVBRi9CRTM1MjFCODMzRjExMUVEQjgzNjEwODZDNEY5QUUwMi84Z2hQZWc4OENw SDRKZjc5bnhBMTh6VkJXRXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIWQIuqnjp8YT5MpuDbjN1BQoWhupZUUzLoE89Wbqam2LyFSL2Um21 5/bxZ7Hb0bd0t6O4nZei+jWilNFohR3czeZIPT09feY9h9qFrlciRaZitbZwq9V8 rp8NWiOZqLMmFdDERPCVqcZJK+CFDxLL9KTxTjAjm3JpwfygUAErXBJJIh07OVdJ 4ISWAPhag21cqVHLFuGbpwmbtqa6rCzbrrjrG/IbOYKrRKITB4PupQ/om32sPIyl 2dQU/yrPJXQDAvXCCIAHkTBGM7evb/f/CTjW9QD253stmGnLnUy+Enveq3DN/fpP zk3pj0Mu48xlfgH6RHVnaWsarN3hqEzi -----END CERTIFICATE-----Generated at Sat Apr 26 15:00:33 2025 by rpki-client