$ rpki-client -vvf rpki.apnic.net/member_repository/A911AB93/8D303946818B11E6BF1CB657C4F9AE02/j8P43lI68p2yShWQ_UCgRHWuCiU.mft File: j8P43lI68p2yShWQ_UCgRHWuCiU.mft (raw, json) Hash identifier: /hfI633Nw1RXdaC6hXgEd80sZC2QI+qE+7Q66byFkCg= Subject key identifier: 01:85:B0:F3:2A:93:6C:04:65:A5:CA:98:30:40:48:70:10:05:C3:F0 Authority key identifier: 8F:C3:F8:DE:52:3A:F2:9D:B2:4A:15:90:FD:40:A0:44:75:AE:0A:25 Certificate issuer: /CN=A911AB93/serialNumber=8FC3F8DE523AF29DB24A1590FD40A04475AE0A25 Certificate serial: 1E3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j8P43lI68p2yShWQ_UCgRHWuCiU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AB93/8D303946818B11E6BF1CB657C4F9AE02/j8P43lI68p2yShWQ_UCgRHWuCiU.mft Manifest number: 1F25 Signing time: Mon 12 May 2025 16:02:11 +0000 Manifest this update: Mon 12 May 2025 16:02:10 +0000 Manifest next update: Mon 19 May 2025 16:02:10 +0000 Files and hashes: 1: j8P43lI68p2yShWQ_UCgRHWuCiU.crl (hash: /eds8M7r23k95xutZSFP+Mm1xdgrq0CUhYoQ9Rf9Evw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AB93/8D303946818B11E6BF1CB657C4F9AE02/j8P43lI68p2yShWQ_UCgRHWuCiU.crl rsync://rpki.apnic.net/member_repository/A911AB93/8D303946818B11E6BF1CB657C4F9AE02/j8P43lI68p2yShWQ_UCgRHWuCiU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j8P43lI68p2yShWQ_UCgRHWuCiU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 16:02:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7741 (0x1e3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AB93, serialNumber=8FC3F8DE523AF29DB24A1590FD40A04475AE0A25 Validity Not Before: May 12 16:02:10 2025 GMT Not After : May 19 16:02:10 2025 GMT Subject: CN=68221b83-69d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:05:e8:17:14:3c:3d:c8:1c:b4:ce:6e:a5:51: 72:cc:95:5f:ca:05:20:2f:0b:59:fc:c9:21:55:6b: 45:1b:a0:6f:8f:e4:8f:32:46:49:6f:d2:1e:5b:bf: 3f:38:26:ff:74:9e:39:0a:7a:a6:aa:91:ba:57:8c: 0b:1d:f8:16:36:0e:21:d7:b7:0e:ee:f9:af:32:ec: 3a:3e:36:8d:43:27:ae:e1:f3:6e:e2:95:25:be:89: b9:29:2b:12:f0:3d:15:19:2a:4f:05:0d:8a:27:c4: 6c:38:f0:e1:0f:5b:86:21:f7:81:3e:11:08:ea:01: 02:db:8c:41:a2:ee:07:9d:0b:ab:58:6d:a3:3d:99: 77:40:d0:fb:4f:ab:03:c7:95:25:0b:cd:29:a4:70: 34:0f:3b:17:a6:5b:e0:17:5f:d8:84:02:fe:16:fe: 7f:8c:a9:e6:ad:6d:41:22:c4:58:68:e0:fb:b0:16: b3:b5:0b:c7:09:36:43:b4:bf:fd:6c:e5:d0:93:37: 32:0f:56:0a:0d:d0:1c:31:b4:26:e9:1a:aa:3a:d6: 50:dc:8a:0f:4d:08:58:7a:46:b3:c0:e4:b8:ba:ce: 9e:80:19:0c:5c:40:16:d6:46:d3:c9:dc:4c:7e:c6: 53:40:9a:b6:95:54:0e:c4:cc:6a:8d:82:b4:64:03: 9a:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:85:B0:F3:2A:93:6C:04:65:A5:CA:98:30:40:48:70:10:05:C3:F0 X509v3 Authority Key Identifier: keyid:8F:C3:F8:DE:52:3A:F2:9D:B2:4A:15:90:FD:40:A0:44:75:AE:0A:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AB93/8D303946818B11E6BF1CB657C4F9AE02/j8P43lI68p2yShWQ_UCgRHWuCiU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j8P43lI68p2yShWQ_UCgRHWuCiU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AB93/8D303946818B11E6BF1CB657C4F9AE02/j8P43lI68p2yShWQ_UCgRHWuCiU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:31:7b:9d:d2:88:b6:5c:0b:50:3b:9c:89:c9:d1:66:4e:47: 6b:2d:bc:f1:2f:ee:5b:a7:cb:4a:3b:f7:2f:d1:bb:0e:5a:6b: df:4c:d8:d6:33:52:b5:f5:78:a1:bb:06:98:3f:8d:7f:cc:91: c1:06:35:1a:f8:42:5a:5f:e4:e4:6c:21:fa:12:0d:73:e6:62: 20:4b:2b:7b:90:67:f5:33:3d:3d:a7:c6:1e:02:06:cd:4b:a7: 9b:b3:31:5e:b0:2c:ba:0b:74:be:25:d4:6d:b0:41:f0:2b:8a: 38:93:4b:ba:9e:ea:55:56:14:1e:8d:12:7c:a1:2a:02:e9:0a: c6:f0:3c:a3:da:4f:95:56:eb:79:2f:5a:8f:39:6a:8d:9d:17: 97:9f:6b:9c:1b:6e:ea:07:2d:ba:2b:fa:d3:9c:df:18:df:fb: b0:b5:0d:b0:f0:c0:6c:0d:bd:9a:68:db:68:31:93:08:d7:0d: 11:72:19:a7:9f:8e:5e:4c:5a:a8:85:26:e5:02:a7:89:a4:b5: 71:3d:b4:98:2f:9a:be:37:68:08:64:06:ff:17:31:de:db:1d: e5:61:ed:56:0f:fb:fa:d6:8f:52:88:d9:ec:c8:cc:af:1a:80: 3d:67:03:f7:31:71:2d:5b:70:14:f5:91:6d:15:ff:61:ce:07: 57:a9:36:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFCOTMxMTAvBgNVBAUTKDhGQzNGOERFNTIzQUYyOURCMjRBMTU5MEZENDBBMDQ0 NzVBRTBBMjUwHhcNMjUwNTEyMTYwMjEwWhcNMjUwNTE5MTYwMjEwWjAYMRYwFAYD VQQDEw02ODIyMWI4My02OWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqgXoFxQ8PcgctM5upVFyzJVfygUgLwtZ/MkhVWtFG6Bvj+SPMkZJb9IeW78/ OCb/dJ45CnqmqpG6V4wLHfgWNg4h17cO7vmvMuw6PjaNQyeu4fNu4pUlvom5KSsS 8D0VGSpPBQ2KJ8RsOPDhD1uGIfeBPhEI6gEC24xBou4HnQurWG2jPZl3QND7T6sD x5UlC80ppHA0DzsXplvgF1/YhAL+Fv5/jKnmrW1BIsRYaOD7sBaztQvHCTZDtL/9 bOXQkzcyD1YKDdAcMbQm6RqqOtZQ3IoPTQhYekazwOS4us6egBkMXEAW1kbTydxM fsZTQJq2lVQOxMxqjYK0ZAOavwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAGFsPMq k2wEZaXKmDBASHAQBcPwMB8GA1UdIwQYMBaAFI/D+N5SOvKdskoVkP1AoER1rgol MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUI5My84RDMwMzk0Njgx OEIxMUU2QkYxQ0I2NTdDNEY5QUUwMi9qOFA0M2xJNjhwMnlTaFdRX1VDZ1JIV3VD aVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2o4UDQzbEk2OHAyeVNoV1FfVUNnUkhXdUNpVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUI5My84RDMwMzk0NjgxOEIxMUU2QkYxQ0I2NTdDNEY5QUUwMi9qOFA0M2xJNjhw MnlTaFdRX1VDZ1JIV3VDaVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaMXud0oi2XAtQO5yJydFmTkdrLbzxL+5bp8tKO/cv0bsOWmvfTNjW M1K19XihuwaYP41/zJHBBjUa+EJaX+TkbCH6Eg1z5mIgSyt7kGf1Mz09p8YeAgbN S6ebszFesCy6C3S+JdRtsEHwK4o4k0u6nupVVhQejRJ8oSoC6QrG8Dyj2k+VVut5 L1qPOWqNnReXn2ucG27qBy26K/rTnN8Y3/uwtQ2w8MBsDb2aaNtoMZMI1w0Rchmn n45eTFqohSblAqeJpLVxPbSYL5q+N2gIZAb/FzHe2x3lYe1WD/v61o9SiNnsyMyv GoA9ZwP3MXEtW3AU9ZFtFf9hzgdXqTY1 -----END CERTIFICATE-----Generated at Tue May 13 11:23:38 2025 by rpki-client