$ rpki-client -vvf rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.mft File: s8lXWbAmAWnVga-ERmxca89vwds.mft (raw, json) Hash identifier: /NdcYc4NBLaqIejdZYKS2VsNEFKa1w+T1lslY+3jxaY= Subject key identifier: 2D:AA:90:28:61:35:C2:51:44:E8:5E:39:E8:D7:46:D9:3A:17:2D:B7 Authority key identifier: B3:C9:57:59:B0:26:01:69:D5:81:AF:84:46:6C:5C:6B:CF:6F:C1:DB Certificate issuer: /CN=A913B090/serialNumber=B3C95759B0260169D581AF84466C5C6BCF6FC1DB Certificate serial: 01D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8lXWbAmAWnVga-ERmxca89vwds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.mft Manifest number: 01CD Signing time: Fri 09 May 2025 02:03:31 +0000 Manifest this update: Fri 09 May 2025 02:03:31 +0000 Manifest next update: Fri 16 May 2025 02:03:31 +0000 Files and hashes: 1: s8lXWbAmAWnVga-ERmxca89vwds.crl (hash: VURJs1sevoW+zBXZ2bRu3ksBWPxqYsojiJ2YfPR0mmo=) 2: B57CACF267F511EDA884E65BC4F9AE02.roa (hash: JHSJOwqLi/FPFLEdwK3eukBTiOCCTjuJ4yCwWkwhShM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.crl rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8lXWbAmAWnVga-ERmxca89vwds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 02:03:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 464 (0x1d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B090, serialNumber=B3C95759B0260169D581AF84466C5C6BCF6FC1DB Validity Not Before: May 9 02:03:31 2025 GMT Not After : May 16 02:03:31 2025 GMT Subject: CN=681d6273-8f30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:c7:24:7e:d3:56:56:83:f4:15:5e:03:ed:36: fb:1e:78:c6:59:bc:09:27:bd:c2:c7:0f:ce:73:ef: d9:17:02:7d:89:fe:ff:57:9e:79:c4:65:cd:45:1d: 4e:40:0a:e7:c7:ac:25:2d:d4:91:c5:f4:95:e8:1b: 3a:55:00:39:98:eb:b3:ca:3f:79:e0:0e:cc:e8:93: bb:09:a3:db:dc:f5:0a:e9:86:ae:e2:b9:8b:b7:b7: da:89:51:f8:51:74:35:81:ee:97:da:1f:9b:8f:16: 60:03:3f:dc:7f:50:bb:b7:a5:77:d7:0f:4b:84:25: ee:d3:45:bc:44:e5:38:ee:1a:66:ab:77:6c:13:cb: 8d:04:e0:8e:20:e9:5b:00:4c:89:7b:7e:5a:56:78: b8:86:a4:7a:c2:fa:69:d3:72:34:bb:31:e7:82:19: de:b6:88:7c:a0:9b:01:5f:d6:07:10:b2:25:af:dd: 2d:af:c3:85:b8:3b:07:d2:b4:cc:e4:d0:a0:49:2e: e5:09:42:39:9d:18:a3:30:c3:ae:23:77:e7:a7:d1: e9:ef:4e:c2:c8:e5:eb:33:66:ae:1b:10:ec:c0:ba: c2:fb:78:d6:86:26:12:52:47:03:bb:02:9e:cf:f8: 45:d0:08:03:02:78:b5:cc:e6:d7:d2:ac:d5:9e:c2: 6b:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:AA:90:28:61:35:C2:51:44:E8:5E:39:E8:D7:46:D9:3A:17:2D:B7 X509v3 Authority Key Identifier: keyid:B3:C9:57:59:B0:26:01:69:D5:81:AF:84:46:6C:5C:6B:CF:6F:C1:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8lXWbAmAWnVga-ERmxca89vwds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:eb:ab:81:4c:96:69:78:85:dd:e0:f7:51:08:e7:b1:a2:8e: ba:72:1f:c0:2c:77:be:3b:6d:4e:8d:7a:5e:e8:78:57:ce:32: 33:0b:ef:23:0a:4a:62:40:b9:d7:f1:a9:1a:c7:8f:8f:68:15: 76:b0:e4:9f:a3:1b:06:d5:30:65:36:95:c9:ee:6b:79:4a:01: 82:3e:90:ce:8c:9f:fe:82:51:a1:a0:8f:57:14:e7:62:e9:b2: 9d:63:95:c7:c0:f2:05:42:d1:94:6e:16:d7:cb:a5:28:c2:25: 06:66:5e:16:74:32:4f:e2:f2:c0:cb:87:57:1e:7d:88:73:16: 7f:ce:c2:a4:1b:b4:dc:7f:c6:72:60:e0:ef:15:db:9f:00:9b: 41:64:10:dc:ff:9f:60:bc:22:b4:92:a6:73:e7:66:8b:80:9f: 1e:e7:8f:0b:2f:4a:e7:6e:6f:ca:27:4d:0f:02:7d:55:6f:43: be:d0:0c:b6:7e:76:07:60:8a:8f:bb:e5:91:52:fa:61:49:f0: b7:d8:2d:e3:36:da:df:5f:20:c1:38:e5:35:75:3d:4d:e7:70: 61:b5:2a:84:de:79:27:fa:f4:3e:4e:db:de:c9:7b:7e:8e:23: 63:01:03:61:88:4e:89:d6:e9:30:19:40:87:3c:b9:f4:9a:bd: c1:3e:32:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IwOTAxMTAvBgNVBAUTKEIzQzk1NzU5QjAyNjAxNjlENTgxQUY4NDQ2NkM1QzZC Q0Y2RkMxREIwHhcNMjUwNTA5MDIwMzMxWhcNMjUwNTE2MDIwMzMxWjAYMRYwFAYD VQQDEw02ODFkNjI3My04ZjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA38ckftNWVoP0FV4D7Tb7HnjGWbwJJ73Cxw/Oc+/ZFwJ9if7/V555xGXNRR1O QArnx6wlLdSRxfSV6Bs6VQA5mOuzyj954A7M6JO7CaPb3PUK6Yau4rmLt7faiVH4 UXQ1ge6X2h+bjxZgAz/cf1C7t6V31w9LhCXu00W8ROU47hpmq3dsE8uNBOCOIOlb AEyJe35aVni4hqR6wvpp03I0uzHnghnetoh8oJsBX9YHELIlr90tr8OFuDsH0rTM 5NCgSS7lCUI5nRijMMOuI3fnp9Hp707CyOXrM2auGxDswLrC+3jWhiYSUkcDuwKe z/hF0AgDAni1zObX0qzVnsJrzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC2qkChh NcJRROheOejXRtk6Fy23MB8GA1UdIwQYMBaAFLPJV1mwJgFp1YGvhEZsXGvPb8Hb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjA5MC82QjY3MjQzNDY3 RjExMUVEQkRDNTg1MkNDNEY5QUUwMi9zOGxYV2JBbUFXblZnYS1FUm14Y2E4OXZ3 ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M4bFhXYkFtQVduVmdhLUVSbXhjYTg5dndkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjA5MC82QjY3MjQzNDY3RjExMUVEQkRDNTg1MkNDNEY5QUUwMi9zOGxYV2JBbUFX blZnYS1FUm14Y2E4OXZ3ZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCU66uBTJZpeIXd4PdRCOexoo66ch/ALHe+O21OjXpe6HhXzjIzC+8j CkpiQLnX8akax4+PaBV2sOSfoxsG1TBlNpXJ7mt5SgGCPpDOjJ/+glGhoI9XFOdi 6bKdY5XHwPIFQtGUbhbXy6UowiUGZl4WdDJP4vLAy4dXHn2IcxZ/zsKkG7Tcf8Zy YODvFdufAJtBZBDc/59gvCK0kqZz52aLgJ8e548LL0rnbm/KJ00PAn1Vb0O+0Ay2 fnYHYIqPu+WRUvphSfC32C3jNtrfXyDBOOU1dT1N53BhtSqE3nkn+vQ+TtveyXt+ jiNjAQNhiE6J1ukwGUCHPLn0mr3BPjIU -----END CERTIFICATE-----Generated at Sun May 11 01:56:27 2025 by rpki-client