$ rpki-client -vvf rpki.apnic.net/member_repository/A9146A02/8DCEE9FC045E11EAADB7DF3AC4F9AE02/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.mft File: 8HKO7S1Pj_2M_l-H9hvsBDRRQSk.mft (raw, json) Hash identifier: aSUPfZgpLKFhAAGNNvLGir7eBAAkZKBJba6jdKQ3i7Y= Subject key identifier: 13:E0:D5:7E:42:56:77:32:0D:99:26:C2:1E:35:56:5B:22:EB:C6:94 Authority key identifier: F0:72:8E:ED:2D:4F:8F:FD:8C:FE:5F:87:F6:1B:EC:04:34:51:41:29 Certificate issuer: /CN=A9146A02/serialNumber=F0728EED2D4F8FFD8CFE5F87F61BEC0434514129 Certificate serial: 0C40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146A02/8DCEE9FC045E11EAADB7DF3AC4F9AE02/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.mft Manifest number: 0C3A Signing time: Sat 10 May 2025 18:13:22 +0000 Manifest this update: Sat 10 May 2025 18:13:22 +0000 Manifest next update: Sat 17 May 2025 18:13:22 +0000 Files and hashes: 1: 8HKO7S1Pj_2M_l-H9hvsBDRRQSk.crl (hash: g5TpFkMqfEIk6rAHt8mg9lBOPxz3RjjverDMWC3UAXk=) 2: 3F1B0EF2045F11EA87A3BD3BC4F9AE02.roa (hash: ++efN2YnvlpaiN/cGnRcdVoz/L09sx0IMn5rgvBIJi8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146A02/8DCEE9FC045E11EAADB7DF3AC4F9AE02/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.crl rsync://rpki.apnic.net/member_repository/A9146A02/8DCEE9FC045E11EAADB7DF3AC4F9AE02/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 18:13:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3136 (0xc40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146A02, serialNumber=F0728EED2D4F8FFD8CFE5F87F61BEC0434514129 Validity Not Before: May 10 18:13:22 2025 GMT Not After : May 17 18:13:22 2025 GMT Subject: CN=681f9742-fd64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b5:64:83:fd:d0:70:e2:07:0f:c9:7d:fc:d4: f0:74:8e:63:fc:14:8e:b1:85:5f:cc:13:5f:80:78: 4d:52:71:bf:cb:08:75:85:93:db:e0:ed:c3:81:3b: f3:6c:9b:11:1c:00:f1:96:54:aa:c0:75:7f:b7:d2: a4:16:be:90:b4:32:29:77:e1:d3:66:39:8d:74:9c: 8e:0e:54:0c:b3:97:29:45:7a:ed:24:c4:74:fd:d2: d8:39:34:b7:d1:93:00:1d:11:6c:8e:93:59:e3:e2: f3:0f:43:51:93:68:3d:4d:17:c8:b7:13:48:68:56: ab:4d:4d:8b:5c:ff:59:9c:53:58:16:a1:fd:f1:fa: 5d:88:d5:b9:57:af:d1:c4:17:50:e2:39:06:58:eb: e1:e4:fb:46:0f:35:03:a9:05:07:43:c1:af:c7:bf: c4:96:5c:80:18:ed:e5:76:8b:34:85:8a:ae:7e:7f: dc:da:42:b9:eb:e4:6d:d7:7a:2f:03:8d:ae:4c:10: 7c:61:b2:25:c2:0f:1e:f9:6b:70:e3:5f:cc:06:12: 24:bb:0c:4b:ac:54:8b:43:b2:aa:5b:a8:02:86:c2: 13:4c:e0:7b:a5:77:b1:bb:84:54:0a:88:42:d5:5c: 23:cd:e9:3c:ef:45:b7:9e:60:b9:b7:77:a1:c4:e7: b6:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:E0:D5:7E:42:56:77:32:0D:99:26:C2:1E:35:56:5B:22:EB:C6:94 X509v3 Authority Key Identifier: keyid:F0:72:8E:ED:2D:4F:8F:FD:8C:FE:5F:87:F6:1B:EC:04:34:51:41:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146A02/8DCEE9FC045E11EAADB7DF3AC4F9AE02/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146A02/8DCEE9FC045E11EAADB7DF3AC4F9AE02/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:ed:f3:86:7a:7c:c6:b8:a1:51:0a:88:9a:11:1a:03:87:01: 94:b2:8e:83:68:20:f7:47:55:cf:08:14:1b:f0:af:be:41:cb: c2:13:68:dc:65:de:a4:f7:63:50:3c:ad:49:ec:5e:27:fc:c3: 30:b3:00:cb:83:ab:8b:64:3c:2a:93:a3:5b:14:87:9b:74:27: 28:93:b8:72:ab:fa:fc:f8:d7:26:a0:30:4c:b8:d2:c3:68:c7: 42:9f:be:6f:bd:dd:2a:92:d1:bf:47:2f:19:aa:fd:1d:35:21: 81:7d:31:b3:41:69:1d:5e:c4:ae:23:8c:a7:65:64:28:79:ce: af:cd:68:ac:e0:6d:c6:78:a2:f7:33:b5:27:50:0d:ff:36:11: 81:c6:22:4a:87:ff:11:90:8e:d3:e8:c8:33:46:61:0a:77:7e: b3:17:b4:ac:65:15:04:17:ae:30:23:25:af:96:9a:86:8b:56: 6e:1d:5e:a7:a3:bd:42:98:f4:43:6a:ac:cf:dc:92:1a:f0:b5: f4:4b:34:1f:33:f8:b9:f7:d5:88:8d:f6:78:a5:c1:d7:6c:ac: e8:89:33:fc:d7:d9:d1:b3:b0:b1:37:6c:cf:a4:64:05:76:bb: 3d:8f:a5:f8:80:e6:2b:5c:24:e6:5d:e1:53:e0:21:81:fe:37: e4:28:9a:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBMDIxMTAvBgNVBAUTKEYwNzI4RUVEMkQ0RjhGRkQ4Q0ZFNUY4N0Y2MUJFQzA0 MzQ1MTQxMjkwHhcNMjUwNTEwMTgxMzIyWhcNMjUwNTE3MTgxMzIyWjAYMRYwFAYD VQQDEw02ODFmOTc0Mi1mZDY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA07Vkg/3QcOIHD8l9/NTwdI5j/BSOsYVfzBNfgHhNUnG/ywh1hZPb4O3DgTvz bJsRHADxllSqwHV/t9KkFr6QtDIpd+HTZjmNdJyODlQMs5cpRXrtJMR0/dLYOTS3 0ZMAHRFsjpNZ4+LzD0NRk2g9TRfItxNIaFarTU2LXP9ZnFNYFqH98fpdiNW5V6/R xBdQ4jkGWOvh5PtGDzUDqQUHQ8Gvx7/EllyAGO3ldos0hYqufn/c2kK56+Rt13ov A42uTBB8YbIlwg8e+Wtw41/MBhIkuwxLrFSLQ7KqW6gChsITTOB7pXexu4RUCohC 1Vwjzek870W3nmC5t3ehxOe23wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBPg1X5C VncyDZkmwh41Vlsi68aUMB8GA1UdIwQYMBaAFPByju0tT4/9jP5fh/Yb7AQ0UUEp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkEwMi84RENFRTlGQzA0 NUUxMUVBQURCN0RGM0FDNEY5QUUwMi84SEtPN1MxUGpfMk1fbC1IOWh2c0JEUlJR U2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhIS083UzFQal8yTV9sLUg5aHZzQkRSUlFTay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkEwMi84RENFRTlGQzA0NUUxMUVBQURCN0RGM0FDNEY5QUUwMi84SEtPN1MxUGpf Mk1fbC1IOWh2c0JEUlJRU2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCq7fOGenzGuKFRCoiaERoDhwGUso6DaCD3R1XPCBQb8K++QcvCE2jc Zd6k92NQPK1J7F4n/MMwswDLg6uLZDwqk6NbFIebdCcok7hyq/r8+NcmoDBMuNLD aMdCn75vvd0qktG/Ry8Zqv0dNSGBfTGzQWkdXsSuI4ynZWQoec6vzWis4G3GeKL3 M7UnUA3/NhGBxiJKh/8RkI7T6MgzRmEKd36zF7SsZRUEF64wIyWvlpqGi1ZuHV6n o71CmPRDaqzP3JIa8LX0SzQfM/i599WIjfZ4pcHXbKzoiTP819nRs7CxN2zPpGQF drs9j6X4gOYrXCTmXeFT4CGB/jfkKJqr -----END CERTIFICATE-----Generated at Sun May 11 09:13:29 2025 by rpki-client