$ rpki-client -vvf rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft File: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft (raw, json) Hash identifier: cP3WA1IHPXATS9jY0r9U4ceObRfOX1v30tNlBZ7f0ZA= Subject key identifier: 2E:F1:00:B7:0E:83:7A:18:CA:3A:23:1D:7B:AF:6C:02:3C:F9:46:33 Authority key identifier: F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 Certificate issuer: /CN=A9156DB4/serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Certificate serial: 039A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft Manifest number: 038E Signing time: Thu 15 May 2025 00:50:02 +0000 Manifest this update: Thu 15 May 2025 00:50:01 +0000 Manifest next update: Thu 22 May 2025 00:50:01 +0000 Files and hashes: 1: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl (hash: nphtVlroQG4e0bLK0vGaflMORiRWa4U1P0AilzNv+3o=) 2: 688C6AC29D9D11EC958A216AC4F9AE02.roa (hash: rQCKwpVXSCN9Y75hhPwPDo9+AXfNNoLzfRi82A6bdSI=) 3: 854ACCD2DFEA11ECB7DF0A2EC4F9AE02.roa (hash: C6Z/IfRVQV8LxL1Oc2uDTt0509ENzUWPGHXpk7TwKNY=) 4: 695DB5289D9D11EC958A216AC4F9AE02.roa (hash: c9fr6KD/Ih6e5aCRy3Bruof+Va6iYKpCGv8u+/ETzK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 00:50:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 922 (0x39a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156DB4, serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Validity Not Before: May 15 00:50:01 2025 GMT Not After : May 22 00:50:01 2025 GMT Subject: CN=68253a3a-9313 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:cc:41:27:63:b0:e8:c0:3c:44:a2:1f:ce:72: 96:2e:75:b6:3b:8d:0b:d9:5f:50:96:c5:00:5f:3c: e2:57:89:c6:92:37:81:1e:5e:f0:c2:52:f7:ed:7c: c9:90:f8:e7:66:74:83:f3:99:37:52:d9:d1:a6:0b: 79:6f:94:2f:32:6c:52:0a:1b:5b:38:cc:59:19:43: 09:8c:28:9c:64:d3:11:c9:dc:0c:57:fa:ee:3c:0b: c0:f6:75:a7:c2:2e:d7:94:b9:6b:ce:a6:b6:0c:2f: 3b:ab:2e:6a:94:a5:90:39:69:80:7a:34:2a:5e:00: d1:e1:16:90:7b:da:79:4b:24:4f:fb:8e:c5:6b:b0: 36:0c:09:38:48:73:0f:79:26:eb:c7:8b:30:8a:81: ba:5d:b3:44:3e:2e:33:da:86:88:77:ad:45:00:70: fd:0a:2e:cd:0e:fd:7a:7e:33:c3:e1:63:1f:54:49: bc:df:7e:a0:65:5d:16:d6:76:f1:4b:71:f5:56:81: 51:af:c2:7e:bf:bb:a9:f8:d5:55:39:d6:a2:12:e6: a2:72:d5:cd:73:56:39:6d:6f:56:f9:d6:bc:f9:91: 38:52:9b:38:5c:2b:70:a8:a9:31:bb:01:90:16:9e: ca:64:14:a9:50:d4:10:38:d9:c0:dd:fc:ed:a1:b2: da:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:F1:00:B7:0E:83:7A:18:CA:3A:23:1D:7B:AF:6C:02:3C:F9:46:33 X509v3 Authority Key Identifier: keyid:F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:d6:8b:c2:11:06:81:7d:ab:c6:10:2a:be:ac:05:e2:7e:97: 57:06:bd:0c:14:7c:83:ad:1d:e0:13:fc:dc:14:0c:f8:17:17: e7:c1:5e:71:12:08:23:40:57:b5:09:dc:cf:2b:2a:96:11:cc: 89:4c:46:9a:2c:6a:ff:51:06:de:6d:84:f8:aa:91:aa:b8:9b: 76:f8:79:7e:f2:21:19:59:a1:37:a5:7a:f4:61:c1:2a:8a:97: f5:47:75:7f:79:d7:d3:71:ee:f0:1d:49:e5:e8:ea:b7:32:14: d6:47:2e:11:5e:c3:f4:2a:26:7d:d3:9a:0a:7b:9a:00:85:88: b0:ed:72:30:1e:43:8e:4b:65:87:13:7a:9b:e9:ee:c4:89:6d: 2d:4a:d4:b7:c0:6b:ff:98:16:4e:15:d8:27:af:9c:8f:d4:2b: 21:11:31:5f:f7:8b:c3:94:65:62:4d:f9:6e:9b:85:c7:a5:2a: aa:56:32:4e:6e:a4:53:d6:43:e1:3a:82:7d:0e:06:09:75:e8: 02:df:26:45:56:b1:75:9c:e8:91:a4:ad:62:db:cb:63:75:8e: 0d:ef:20:58:5d:17:5e:76:78:10:13:e8:a3:01:0b:bd:2e:2d: f0:55:ba:1c:bf:93:a8:0c:a1:a5:3b:95:76:f2:f2:07:b1:29: 07:74:ce:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTZEQjQxMTAvBgNVBAUTKEYyRDEyNkYxNDIwODZBMjZFM0M1ODRBNzBBQjNFNTI3 QjMwMzgxODIwHhcNMjUwNTE1MDA1MDAxWhcNMjUwNTIyMDA1MDAxWjAYMRYwFAYD VQQDEw02ODI1M2EzYS05MzEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0cxBJ2Ow6MA8RKIfznKWLnW2O40L2V9QlsUAXzziV4nGkjeBHl7wwlL37XzJ kPjnZnSD85k3UtnRpgt5b5QvMmxSChtbOMxZGUMJjCicZNMRydwMV/ruPAvA9nWn wi7XlLlrzqa2DC87qy5qlKWQOWmAejQqXgDR4RaQe9p5SyRP+47Fa7A2DAk4SHMP eSbrx4swioG6XbNEPi4z2oaId61FAHD9Ci7NDv16fjPD4WMfVEm8336gZV0W1nbx S3H1VoFRr8J+v7up+NVVOdaiEuaictXNc1Y5bW9W+da8+ZE4Ups4XCtwqKkxuwGQ Fp7KZBSpUNQQONnA3fztobLaIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC7xALcO g3oYyjojHXuvbAI8+UYzMB8GA1UdIwQYMBaAFPLRJvFCCGom48WEpwqz5SezA4GC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NkRCNC9FODREQjk4QTlE OUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFpYmp4WVNuQ3JQbEo3TURn WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh0RW04VUlJYWlianhZU25DclBsSjdNRGdZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NkRCNC9FODREQjk4QTlEOUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFp Ymp4WVNuQ3JQbEo3TURnWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCr1ovCEQaBfavGECq+rAXifpdXBr0MFHyDrR3gE/zcFAz4FxfnwV5x EggjQFe1CdzPKyqWEcyJTEaaLGr/UQbebYT4qpGquJt2+Hl+8iEZWaE3pXr0YcEq ipf1R3V/edfTce7wHUnl6Oq3MhTWRy4RXsP0KiZ905oKe5oAhYiw7XIwHkOOS2WH E3qb6e7EiW0tStS3wGv/mBZOFdgnr5yP1CshETFf94vDlGViTflum4XHpSqqVjJO bqRT1kPhOoJ9DgYJdegC3yZFVrF1nOiRpK1i28tjdY4N7yBYXRdedngQE+ijAQu9 Li3wVbocv5OoDKGlO5V28vIHsSkHdM4k -----END CERTIFICATE-----Generated at Fri May 16 05:06:40 2025 by rpki-client