$ rpki-client -vvf rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft File: 8bck5A2FxU9R1iHHL4lskXXJsRk.mft (raw, json) Hash identifier: xK6acNSpX1m59EVkLr8+fusOX5aS/YtfCLMcjt/NICo= Subject key identifier: D0:4E:57:95:62:D4:B7:69:68:6C:F3:BA:D2:61:B9:99:41:D9:07:4B Authority key identifier: F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 Certificate issuer: /CN=A914E3F5/serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Certificate serial: 09FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft Manifest number: 09F7 Signing time: Sat 10 May 2025 19:36:31 +0000 Manifest this update: Sat 10 May 2025 19:36:30 +0000 Manifest next update: Sat 17 May 2025 19:36:30 +0000 Files and hashes: 1: 8bck5A2FxU9R1iHHL4lskXXJsRk.crl (hash: rpR8pDcsXvMT0pmcyNUpE+yiw6/owHyIJX6bCL09wSE=) 2: 354725E6763311EABAE64466C4F9AE02.roa (hash: Cq3lv6Zk0IbD7VRfp29jZdbfC7fvyWbXvi/cd+0Sx0c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 19:36:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2558 (0x9fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E3F5, serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Validity Not Before: May 10 19:36:30 2025 GMT Not After : May 17 19:36:30 2025 GMT Subject: CN=681faabf-e890 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:57:8b:fe:be:07:63:dd:d8:aa:33:14:64:f8: 86:b9:2e:f1:a1:68:83:18:f6:65:8c:6d:4c:c1:44: 10:a9:ea:a1:26:a2:18:d9:3c:81:5d:84:f5:8d:ac: 37:81:33:7b:c1:15:39:58:68:d8:c9:81:6b:9e:bd: fe:2f:33:34:e9:b4:9b:1b:b2:d9:1c:e2:6c:01:e3: 18:63:95:65:0c:ac:f8:25:ad:00:c6:68:bb:53:5f: 7b:29:76:ce:0b:7d:9b:14:85:ab:f3:3d:3c:cc:67: ef:49:53:28:39:e1:41:6c:c0:73:65:96:24:31:05: 50:3b:32:de:5c:ff:3d:bc:89:6c:f8:00:a3:a7:e1: 81:19:3d:cc:6f:cc:e8:ed:59:a0:34:f8:f7:ae:90: e7:9c:5c:74:d9:8a:94:f3:cf:54:e2:23:ea:5e:c2: e7:59:d8:4a:14:fa:70:1b:c0:a1:57:46:a8:56:a1: 90:68:b7:fc:ea:36:00:c3:6f:8a:c1:78:ec:70:e0: cf:5f:d8:42:00:1e:7b:12:d4:18:e4:9a:d7:f9:2f: c3:c7:e5:ea:d6:d6:fd:67:9f:0f:4c:cc:52:f3:13: d7:45:a4:c0:18:eb:34:25:f6:8b:67:8c:45:1e:fa: 6b:3c:83:03:a4:1a:e7:6e:3f:8a:f7:40:a2:46:cc: f3:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:4E:57:95:62:D4:B7:69:68:6C:F3:BA:D2:61:B9:99:41:D9:07:4B X509v3 Authority Key Identifier: keyid:F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:96:63:e0:5e:92:b7:12:d6:26:d4:99:23:1e:e0:70:b0:6c: f1:89:e9:1c:96:cc:ed:b9:63:0a:fc:a7:d2:1c:b1:b7:66:10: a8:f8:ed:24:d1:bd:0e:e4:53:c4:f9:c8:4b:8f:73:13:63:83: 67:17:ba:f2:5e:4e:2f:29:be:4a:f9:e2:01:e4:7f:f0:8d:27: 61:c0:cc:2d:19:ef:f9:5e:1b:88:40:98:9c:2b:2b:15:72:e3: 50:bd:98:06:43:99:5e:cb:d8:eb:85:8e:7a:37:91:a2:2f:0b: 46:d6:f9:2b:ce:75:7a:eb:e4:3f:c9:ba:8d:42:84:f2:32:be: 24:09:4e:68:26:d2:77:b5:b6:1a:c7:c8:f2:d8:b8:71:3c:9c: 49:c4:b2:88:be:98:bd:c7:f8:29:63:32:e6:6a:4d:54:db:42: ff:92:01:81:45:10:15:53:a9:e2:20:81:5d:64:db:d5:c6:e7: 6f:4d:a2:17:10:96:79:4e:fd:ba:53:3e:e6:8e:e5:71:06:a6: 98:a4:a4:65:dd:7d:49:e1:71:42:2c:07:55:b3:00:b4:6a:29: 98:25:de:02:6e:c4:0e:24:24:c1:92:28:56:2e:a9:5c:3b:ea: d0:c7:de:2c:80:51:93:56:ca:f0:87:4a:66:5e:ee:eb:5d:b3: b7:8b:fc:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCf4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUzRjUxMTAvBgNVBAUTKEYxQjcyNEU0MEQ4NUM1NEY1MUQ2MjFDNzJGODk2Qzkx NzVDOUIxMTkwHhcNMjUwNTEwMTkzNjMwWhcNMjUwNTE3MTkzNjMwWjAYMRYwFAYD VQQDEw02ODFmYWFiZi1lODkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnVeL/r4HY93YqjMUZPiGuS7xoWiDGPZljG1MwUQQqeqhJqIY2TyBXYT1jaw3 gTN7wRU5WGjYyYFrnr3+LzM06bSbG7LZHOJsAeMYY5VlDKz4Ja0Axmi7U197KXbO C32bFIWr8z08zGfvSVMoOeFBbMBzZZYkMQVQOzLeXP89vIls+ACjp+GBGT3Mb8zo 7VmgNPj3rpDnnFx02YqU889U4iPqXsLnWdhKFPpwG8ChV0aoVqGQaLf86jYAw2+K wXjscODPX9hCAB57EtQY5JrX+S/Dx+Xq1tb9Z58PTMxS8xPXRaTAGOs0JfaLZ4xF HvprPIMDpBrnbj+K90CiRszzmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNBOV5Vi 1LdpaGzzutJhuZlB2QdLMB8GA1UdIwQYMBaAFPG3JOQNhcVPUdYhxy+JbJF1ybEZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTNGNS84MTFCNjA0Qzc2 MzExMUVBOTcxNUY4NjBDNEY5QUUwMi84YmNrNUEyRnhVOVIxaUhITDRsc2tYWEpz UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhiY2s1QTJGeFU5UjFpSEhMNGxza1hYSnNSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTNGNS84MTFCNjA0Qzc2MzExMUVBOTcxNUY4NjBDNEY5QUUwMi84YmNrNUEyRnhV OVIxaUhITDRsc2tYWEpzUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIlmPgXpK3EtYm1JkjHuBwsGzxiekclsztuWMK/KfSHLG3ZhCo+O0k 0b0O5FPE+chLj3MTY4NnF7ryXk4vKb5K+eIB5H/wjSdhwMwtGe/5XhuIQJicKysV cuNQvZgGQ5ley9jrhY56N5GiLwtG1vkrznV66+Q/ybqNQoTyMr4kCU5oJtJ3tbYa x8jy2LhxPJxJxLKIvpi9x/gpYzLmak1U20L/kgGBRRAVU6niIIFdZNvVxudvTaIX EJZ5Tv26Uz7mjuVxBqaYpKRl3X1J4XFCLAdVswC0aimYJd4CbsQOJCTBkihWLqlc O+rQx94sgFGTVsrwh0pmXu7rXbO3i/yD -----END CERTIFICATE-----Generated at Sun May 11 22:28:08 2025 by rpki-client