$ rpki-client -vvf rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft File: g8K1S2QeP_BuMaK0RQwVetrVm2g.mft (raw, json) Hash identifier: fadvxGIFTRwbGX37xZcNA8NlhcpHorxxf70nowROk2k= Subject key identifier: 06:4B:6E:1F:1A:A9:3C:B2:0F:F2:63:13:BF:A0:17:FB:10:6E:0B:0E Authority key identifier: 83:C2:B5:4B:64:1E:3F:F0:6E:31:A2:B4:45:0C:15:7A:DA:D5:9B:68 Certificate issuer: /CN=A9137E5F/serialNumber=83C2B54B641E3FF06E31A2B4450C157ADAD59B68 Certificate serial: 88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g8K1S2QeP_BuMaK0RQwVetrVm2g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft Manifest number: 87 Signing time: Thu 15 May 2025 05:51:40 +0000 Manifest this update: Thu 15 May 2025 05:51:40 +0000 Manifest next update: Thu 22 May 2025 05:51:40 +0000 Files and hashes: 1: g8K1S2QeP_BuMaK0RQwVetrVm2g.crl (hash: rZcRFdEp8Nq75XBbnE1HH0ppUyk35+gSfHgyOb8FNiQ=) 2: 7114716A653911EFB61F430DC4F9AE02.roa (hash: bO/gfY3HBbGIQDRrLWr0PVEzkY2zoAiDv4q0XXDREo8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.crl rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g8K1S2QeP_BuMaK0RQwVetrVm2g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:51:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137E5F, serialNumber=83C2B54B641E3FF06E31A2B4450C157ADAD59B68 Validity Not Before: May 15 05:51:40 2025 GMT Not After : May 22 05:51:40 2025 GMT Subject: CN=682580ec-fdd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:87:8c:aa:ef:33:38:38:e9:dc:2e:2c:d8:f5: 20:7a:6a:b0:c1:b5:f1:1a:6b:d0:93:f0:78:8b:07: 3a:6f:49:a9:f6:a1:4c:b2:f5:20:54:b2:96:93:ae: 32:6e:be:89:49:aa:e9:85:6e:11:8d:e3:87:9d:99: 85:44:6b:b0:69:85:71:2b:6d:5b:fc:0f:1f:7e:bb: d8:d0:89:11:01:9c:e6:05:35:c8:3c:ea:e9:d0:09: 17:92:ee:4a:07:d3:bd:26:5b:95:d8:fd:cb:73:83: 4d:68:d4:79:18:7f:24:6c:d9:5c:45:7d:8f:87:de: 3b:fb:6e:bd:f8:68:a2:db:50:6e:a9:45:24:ab:bd: a8:c5:e3:1d:12:11:63:db:54:cd:6b:0d:07:d9:b1: ef:98:6a:26:18:d1:24:3d:97:79:58:04:dc:1e:68: d4:48:24:53:24:9b:e6:02:f0:18:f2:5a:66:db:cf: ed:9c:a7:99:e7:23:a5:21:24:12:a8:6a:cd:bf:1e: 48:97:94:2c:60:25:d4:fb:92:2c:7c:cb:0f:fc:1e: 48:50:8a:08:26:5c:5b:45:4b:48:48:2c:c0:6d:20: 3a:04:cf:03:b6:08:5c:4e:62:52:4c:64:33:3f:3b: f4:56:bf:ec:f0:92:f7:a6:96:70:1e:68:19:43:98: b5:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:4B:6E:1F:1A:A9:3C:B2:0F:F2:63:13:BF:A0:17:FB:10:6E:0B:0E X509v3 Authority Key Identifier: keyid:83:C2:B5:4B:64:1E:3F:F0:6E:31:A2:B4:45:0C:15:7A:DA:D5:9B:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g8K1S2QeP_BuMaK0RQwVetrVm2g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:4e:2a:67:3f:cc:8d:20:87:63:85:9b:06:72:4f:9f:a4:e7: 58:cd:d1:02:e1:a6:44:76:d3:95:ce:62:57:05:74:61:f4:ee: f9:61:01:11:71:a7:78:44:ca:57:c3:da:bb:9c:22:a9:57:72: a3:43:5f:3e:fc:b2:a1:52:ed:d7:44:72:32:93:63:e8:4e:cb: d2:79:de:7f:eb:68:6a:7b:ad:1d:30:dd:9e:a0:bb:3a:d3:fa: f4:b1:b8:08:e3:e9:03:c3:f9:13:c2:e4:e5:27:de:a6:8a:c1: 9a:40:cf:cd:4f:05:2e:1c:d4:7d:e7:aa:9c:69:cc:c8:5d:ee: 32:20:aa:8b:20:6d:92:a2:82:e8:00:3a:f0:d3:33:8d:16:d0: 89:7e:54:3c:49:44:f4:c0:bd:3e:51:bf:63:a2:a8:f7:f5:bb: ff:ac:df:af:96:da:9e:42:fd:07:bd:ba:02:7d:06:2c:f7:82: 47:40:14:65:f7:d1:ed:f2:e7:2c:45:b9:9c:57:7b:40:5a:ab: 12:74:06:81:57:93:fd:c8:ac:e2:92:63:3d:3d:e7:37:e3:fb: 9f:36:4f:b3:37:a3:42:be:3e:2e:33:85:4e:05:b1:98:a2:b2: 3d:c3:52:9a:f0:68:93:7a:74:4b:2d:30:76:72:85:78:11:77: e2:4d:20:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdFNUYxMTAvBgNVBAUTKDgzQzJCNTRCNjQxRTNGRjA2RTMxQTJCNDQ1MEMxNTdB REFENTlCNjgwHhcNMjUwNTE1MDU1MTQwWhcNMjUwNTIyMDU1MTQwWjAYMRYwFAYD VQQDEw02ODI1ODBlYy1mZGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy4eMqu8zODjp3C4s2PUgemqwwbXxGmvQk/B4iwc6b0mp9qFMsvUgVLKWk64y br6JSarphW4RjeOHnZmFRGuwaYVxK21b/A8ffrvY0IkRAZzmBTXIPOrp0AkXku5K B9O9JluV2P3Lc4NNaNR5GH8kbNlcRX2Ph947+269+Gii21BuqUUkq72oxeMdEhFj 21TNaw0H2bHvmGomGNEkPZd5WATcHmjUSCRTJJvmAvAY8lpm28/tnKeZ5yOlISQS qGrNvx5Il5QsYCXU+5IsfMsP/B5IUIoIJlxbRUtISCzAbSA6BM8DtghcTmJSTGQz Pzv0Vr/s8JL3ppZwHmgZQ5i1ZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAZLbh8a qTyyD/JjE7+gF/sQbgsOMB8GA1UdIwQYMBaAFIPCtUtkHj/wbjGitEUMFXra1Zto MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0U1Ri84MEM0QjMwMDY1 MzgxMUVGOEI0Njg5NkVDNEY5QUUwMi9nOEsxUzJRZVBfQnVNYUswUlF3VmV0clZt MmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c4SzFTMlFlUF9CdU1hSzBSUXdWZXRyVm0yZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz N0U1Ri84MEM0QjMwMDY1MzgxMUVGOEI0Njg5NkVDNEY5QUUwMi9nOEsxUzJRZVBf QnVNYUswUlF3VmV0clZtMmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBITipnP8yNIIdjhZsGck+fpOdYzdEC4aZEdtOVzmJXBXRh9O75YQER cad4RMpXw9q7nCKpV3KjQ18+/LKhUu3XRHIyk2PoTsvSed5/62hqe60dMN2eoLs6 0/r0sbgI4+kDw/kTwuTlJ96misGaQM/NTwUuHNR956qcaczIXe4yIKqLIG2SooLo ADrw0zONFtCJflQ8SUT0wL0+Ub9joqj39bv/rN+vltqeQv0HvboCfQYs94JHQBRl 99Ht8ucsRbmcV3tAWqsSdAaBV5P9yKzikmM9Pec34/ufNk+zN6NCvj4uM4VOBbGY orI9w1Ka8GiTenRLLTB2coV4EXfiTSDC -----END CERTIFICATE-----Generated at Thu May 15 19:13:42 2025 by rpki-client