$ rpki-client -vvf rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.mft File: 8ItqFjLJysLoaI3qSIfZMC6VYBA.mft (raw, json) Hash identifier: 7kLQlt0v0DrGCo2IBytIAAqX9V8SlSp1X1BNwUMOoLE= Subject key identifier: 62:BE:27:50:E3:61:CA:19:17:DC:85:27:26:CF:4F:17:69:1A:49:B9 Authority key identifier: F0:8B:6A:16:32:C9:CA:C2:E8:68:8D:EA:48:87:D9:30:2E:95:60:10 Certificate issuer: /CN=A911FFAB/serialNumber=F08B6A1632C9CAC2E8688DEA4887D9302E956010 Certificate serial: 0777 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ItqFjLJysLoaI3qSIfZMC6VYBA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.mft Manifest number: 076B Signing time: Mon 12 May 2025 21:19:01 +0000 Manifest this update: Mon 12 May 2025 21:19:01 +0000 Manifest next update: Mon 19 May 2025 21:19:01 +0000 Files and hashes: 1: 8ItqFjLJysLoaI3qSIfZMC6VYBA.crl (hash: G1o8lNFgEEyXzz/ejJBKxlb7nKGyfQshkKIMu3pJX1o=) 2: B5DC8802169411EBBEBD9A23C4F9AE02.roa (hash: 4ZdvboJ8mrbqq75dMjpcRNVXA0/Wmpp30CU0dXWt/yQ=) 3: B54C3DBA169411EBBEBD9A23C4F9AE02.roa (hash: nma4xkXXDMJG7QciaymwPc3dJsJxzYlJjEDf7RTo8RE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.crl rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ItqFjLJysLoaI3qSIfZMC6VYBA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 21:19:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1911 (0x777) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FFAB, serialNumber=F08B6A1632C9CAC2E8688DEA4887D9302E956010 Validity Not Before: May 12 21:19:01 2025 GMT Not After : May 19 21:19:01 2025 GMT Subject: CN=682265c5-805a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:85:d2:bd:cd:3d:4e:db:6c:bc:cc:57:93:0d: da:58:49:15:ef:b8:71:ae:93:67:ed:32:6b:bc:46: 39:da:a6:45:6d:86:8a:28:82:cc:fd:9b:a5:e6:a4: 17:a8:36:94:1f:00:e8:7b:e3:dc:dd:14:e9:99:50: 16:6e:ae:0a:23:82:47:2f:6c:2d:52:12:e7:01:d5: 66:d1:be:c3:92:2d:76:08:21:b1:f8:41:15:0e:5d: 2b:f2:47:43:0f:56:f5:36:64:17:51:52:1a:03:e5: 93:82:d7:63:4b:f7:ff:22:4b:7d:9b:d6:e6:45:15: f5:6f:9a:45:ea:37:6e:e3:ed:60:5e:14:06:e1:14: 00:ee:87:3c:82:97:ad:81:04:e5:78:0c:b7:e6:25: df:d9:61:2b:13:a0:9e:13:48:26:02:c9:75:80:ba: fa:e2:2c:b4:ce:e1:af:5a:ce:7d:04:0a:af:aa:e4: a3:90:5f:22:12:ba:fa:af:aa:5d:e4:89:fa:8b:fa: f2:31:3b:77:d7:c0:31:ae:8a:01:7c:e5:b2:ed:b2: a7:ee:06:f6:20:de:2d:7c:8b:a7:53:7e:2e:85:8f: 0c:1e:b3:cf:95:16:62:8a:ed:7e:ab:86:3f:80:d3: 91:9e:9d:31:58:ec:e1:8a:a1:ac:97:9d:70:31:6a: 23:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:BE:27:50:E3:61:CA:19:17:DC:85:27:26:CF:4F:17:69:1A:49:B9 X509v3 Authority Key Identifier: keyid:F0:8B:6A:16:32:C9:CA:C2:E8:68:8D:EA:48:87:D9:30:2E:95:60:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ItqFjLJysLoaI3qSIfZMC6VYBA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:2d:36:69:cc:9d:c8:88:5e:d2:16:c2:b5:0b:da:37:ac:c9: 44:12:58:2f:86:46:0b:43:46:a9:8a:38:c6:a9:2a:83:71:29: 2c:59:60:9a:ef:2a:ba:b2:87:1e:5f:fb:e7:cb:7b:ab:e2:0a: d0:ed:99:48:74:54:6c:44:f1:fd:7d:dc:b4:7b:e8:48:bf:22: 93:a0:ba:f9:68:84:aa:85:5d:b3:d6:36:40:1f:e4:b3:57:11: e9:d6:85:78:4e:55:a0:33:5a:cc:75:7d:69:4c:53:8b:0d:a0: 9e:b3:63:bb:ce:a2:ae:24:c3:7b:86:46:f2:65:41:34:64:86: c5:5c:2e:04:a3:cb:3b:39:ed:43:b0:45:1f:25:1c:68:99:52: 86:ff:fc:e2:86:b0:e5:99:95:db:9a:20:25:91:81:c7:8b:3f: 82:89:ab:1e:ec:74:ff:48:d0:cb:fc:08:12:5c:5e:fd:92:2b: 54:98:70:31:10:29:18:1b:6b:f3:ef:79:54:be:f4:a3:53:99: 3f:b3:88:55:66:b2:38:0f:59:47:f7:88:97:d7:c3:e7:ae:28: f7:99:7f:2d:ce:13:f5:23:bc:28:0b:5d:d9:d9:ad:f9:ac:b1: 29:18:9d:0d:91:de:c6:54:75:86:2d:cb:66:9d:9d:8d:4a:d6: 22:eb:8a:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZGQUIxMTAvBgNVBAUTKEYwOEI2QTE2MzJDOUNBQzJFODY4OERFQTQ4ODdEOTMw MkU5NTYwMTAwHhcNMjUwNTEyMjExOTAxWhcNMjUwNTE5MjExOTAxWjAYMRYwFAYD VQQDEw02ODIyNjVjNS04MDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqoXSvc09TttsvMxXkw3aWEkV77hxrpNn7TJrvEY52qZFbYaKKILM/Zul5qQX qDaUHwDoe+Pc3RTpmVAWbq4KI4JHL2wtUhLnAdVm0b7Dki12CCGx+EEVDl0r8kdD D1b1NmQXUVIaA+WTgtdjS/f/Ikt9m9bmRRX1b5pF6jdu4+1gXhQG4RQA7oc8gpet gQTleAy35iXf2WErE6CeE0gmAsl1gLr64iy0zuGvWs59BAqvquSjkF8iErr6r6pd 5In6i/ryMTt318AxrooBfOWy7bKn7gb2IN4tfIunU34uhY8MHrPPlRZiiu1+q4Y/ gNORnp0xWOzhiqGsl51wMWojjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGK+J1Dj YcoZF9yFJybPTxdpGkm5MB8GA1UdIwQYMBaAFPCLahYyycrC6GiN6kiH2TAulWAQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkZBQi9BQTdGQTQwMDE2 OTIxMUVCQjQ1RDg5MURDNEY5QUUwMi84SXRxRmpMSnlzTG9hSTNxU0lmWk1DNlZZ QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhJdHFGakxKeXNMb2FJM3FTSWZaTUM2VllCQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RkZBQi9BQTdGQTQwMDE2OTIxMUVCQjQ1RDg5MURDNEY5QUUwMi84SXRxRmpMSnlz TG9hSTNxU0lmWk1DNlZZQkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVLTZpzJ3IiF7SFsK1C9o3rMlEElgvhkYLQ0apijjGqSqDcSksWWCa 7yq6soceX/vny3ur4grQ7ZlIdFRsRPH9fdy0e+hIvyKToLr5aISqhV2z1jZAH+Sz VxHp1oV4TlWgM1rMdX1pTFOLDaCes2O7zqKuJMN7hkbyZUE0ZIbFXC4Eo8s7Oe1D sEUfJRxomVKG//zihrDlmZXbmiAlkYHHiz+Ciase7HT/SNDL/AgSXF79kitUmHAx ECkYG2vz73lUvvSjU5k/s4hVZrI4D1lH94iX18Pnrij3mX8tzhP1I7woC13Z2a35 rLEpGJ0Nkd7GVHWGLctmnZ2NStYi64rR -----END CERTIFICATE-----Generated at Tue May 13 20:49:27 2025 by rpki-client