$ rpki-client -vvf rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.mft File: s8lXWbAmAWnVga-ERmxca89vwds.mft (raw, json) Hash identifier: CDB77FsSPjIIzKPa43+4yIERp693gtlzQCVBJGSwxGQ= Subject key identifier: 48:AE:7A:EE:92:2C:D0:93:0C:9D:29:02:AA:5C:D4:63:1A:52:EA:74 Authority key identifier: B3:C9:57:59:B0:26:01:69:D5:81:AF:84:46:6C:5C:6B:CF:6F:C1:DB Certificate issuer: /CN=A913B090/serialNumber=B3C95759B0260169D581AF84466C5C6BCF6FC1DB Certificate serial: 01ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8lXWbAmAWnVga-ERmxca89vwds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.mft Manifest number: 01E9 Signing time: Tue 01 Jul 2025 02:57:27 +0000 Manifest this update: Tue 01 Jul 2025 02:57:27 +0000 Manifest next update: Tue 08 Jul 2025 02:57:27 +0000 Files and hashes: 1: s8lXWbAmAWnVga-ERmxca89vwds.crl (hash: E0zDHaMX4w3HEKN2tDkTArS9vrR3VeZzdZVruPsQ4xo=) 2: B57CACF267F511EDA884E65BC4F9AE02.roa (hash: uqE+ryUYHNLBPS1jaiyQ/Fm+6Bg+NYwJQStwm0tzSfw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.crl rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8lXWbAmAWnVga-ERmxca89vwds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 02:57:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 493 (0x1ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B090, serialNumber=B3C95759B0260169D581AF84466C5C6BCF6FC1DB Validity Not Before: Jul 1 02:57:27 2025 GMT Not After : Jul 8 02:57:27 2025 GMT Subject: CN=68634e97-3359 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:2a:bd:d2:d1:da:28:68:e8:fe:7c:f9:54:56: 19:8a:10:dc:6c:f2:4f:6f:62:e2:ef:db:f6:38:29: 07:29:4e:c0:53:45:bb:35:ca:c3:95:56:7b:1e:ff: b7:46:1b:ed:3c:59:69:fa:aa:5c:cc:71:f0:97:d7: 0d:7d:b5:18:6f:14:b0:60:a3:7d:e8:01:9e:c7:b7: 44:47:55:22:8f:28:a7:1c:2a:13:a9:ca:51:3f:2d: c1:7c:2b:78:ed:4f:6a:90:0f:f2:8a:07:09:b9:b4: 53:fd:ac:03:c5:c9:c1:9a:70:e6:66:d1:a3:9d:71: 8b:61:9f:03:3a:c2:49:bc:92:bf:cc:19:b3:e4:fe: 88:dd:4d:20:b0:fb:ee:7e:d1:ec:b0:13:04:4f:73: e7:f5:03:3b:5f:37:c5:9d:1c:05:f2:05:84:06:ab: 16:a1:14:f4:6d:c6:b1:4e:8d:3d:5f:da:ad:9b:ef: 5c:07:d3:1c:76:be:d1:64:02:2f:ac:4f:8b:21:3f: a4:46:e4:d5:fb:b4:51:c3:e9:af:db:21:06:4d:09: 29:9e:e5:c2:60:8d:1d:1f:db:d5:01:78:22:6e:36: 81:1b:43:82:d7:a0:25:a0:e7:26:23:83:49:ad:94: e5:1a:cc:cd:53:1f:c2:17:09:9c:03:e9:80:1c:67: a7:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:AE:7A:EE:92:2C:D0:93:0C:9D:29:02:AA:5C:D4:63:1A:52:EA:74 X509v3 Authority Key Identifier: keyid:B3:C9:57:59:B0:26:01:69:D5:81:AF:84:46:6C:5C:6B:CF:6F:C1:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8lXWbAmAWnVga-ERmxca89vwds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:5c:80:28:04:92:b5:fb:48:95:0b:ff:32:7d:c9:96:4f:27: 49:4f:59:4d:35:f9:d8:b8:3b:22:77:10:fe:1f:6e:f3:6a:7c: 05:59:b5:45:13:84:ba:5d:28:82:9c:99:14:ab:62:ec:69:d1: 74:10:59:ff:e6:d7:d8:46:f4:b0:7e:3b:6a:e3:78:dd:1c:68: 19:fd:c8:0c:d2:e3:5d:23:46:8b:d1:35:e2:7a:b2:51:9a:22: f5:75:77:80:c1:89:20:00:66:6d:73:df:ab:2d:42:52:f5:13: 75:83:fe:c7:37:6b:82:b7:f1:c1:d2:e5:e4:41:f8:89:1b:66: 7e:5c:0d:a6:39:89:28:68:9d:f9:b8:61:f4:d9:87:f3:f4:b0: e1:f4:1d:b7:af:99:dc:ec:92:74:8d:6c:c0:d3:11:96:d6:1f: 36:96:f0:b0:3a:00:85:21:6e:07:03:0c:71:ab:18:84:3f:56: 52:be:fc:d1:60:02:a3:94:72:76:c8:6c:59:17:c8:8b:37:7f: 69:dc:73:f1:dc:2b:7f:b6:3f:6a:c8:94:9e:d0:78:e3:aa:0f: 5d:7b:99:40:84:8a:fe:9f:07:0f:c0:43:3d:a4:0e:c2:57:c8: d5:98:4c:bf:db:d7:47:f9:44:c0:e5:64:77:9d:30:be:24:f7: 83:ed:b6:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IwOTAxMTAvBgNVBAUTKEIzQzk1NzU5QjAyNjAxNjlENTgxQUY4NDQ2NkM1QzZC Q0Y2RkMxREIwHhcNMjUwNzAxMDI1NzI3WhcNMjUwNzA4MDI1NzI3WjAYMRYwFAYD VQQDEw02ODYzNGU5Ny0zMzU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1iq90tHaKGjo/nz5VFYZihDcbPJPb2Li79v2OCkHKU7AU0W7NcrDlVZ7Hv+3 RhvtPFlp+qpczHHwl9cNfbUYbxSwYKN96AGex7dER1UijyinHCoTqcpRPy3BfCt4 7U9qkA/yigcJubRT/awDxcnBmnDmZtGjnXGLYZ8DOsJJvJK/zBmz5P6I3U0gsPvu ftHssBMET3Pn9QM7XzfFnRwF8gWEBqsWoRT0bcaxTo09X9qtm+9cB9Mcdr7RZAIv rE+LIT+kRuTV+7RRw+mv2yEGTQkpnuXCYI0dH9vVAXgibjaBG0OC16AloOcmI4NJ rZTlGszNUx/CFwmcA+mAHGencwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEiueu6S LNCTDJ0pAqpc1GMaUup0MB8GA1UdIwQYMBaAFLPJV1mwJgFp1YGvhEZsXGvPb8Hb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjA5MC82QjY3MjQzNDY3 RjExMUVEQkRDNTg1MkNDNEY5QUUwMi9zOGxYV2JBbUFXblZnYS1FUm14Y2E4OXZ3 ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M4bFhXYkFtQVduVmdhLUVSbXhjYTg5dndkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjA5MC82QjY3MjQzNDY3RjExMUVEQkRDNTg1MkNDNEY5QUUwMi9zOGxYV2JBbUFX blZnYS1FUm14Y2E4OXZ3ZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+XIAoBJK1+0iVC/8yfcmWTydJT1lNNfnYuDsidxD+H27zanwFWbVF E4S6XSiCnJkUq2LsadF0EFn/5tfYRvSwfjtq43jdHGgZ/cgM0uNdI0aL0TXierJR miL1dXeAwYkgAGZtc9+rLUJS9RN1g/7HN2uCt/HB0uXkQfiJG2Z+XA2mOYkoaJ35 uGH02Yfz9LDh9B23r5nc7JJ0jWzA0xGW1h82lvCwOgCFIW4HAwxxqxiEP1ZSvvzR YAKjlHJ2yGxZF8iLN39p3HPx3Ct/tj9qyJSe0Hjjqg9de5lAhIr+nwcPwEM9pA7C V8jVmEy/29dH+UTA5WR3nTC+JPeD7bYf -----END CERTIFICATE-----Generated at Tue Jul 1 16:54:08 2025 by rpki-client