$ rpki-client -vvf rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.mft File: 08nS13n2aEMJcSuzDPoZkpDhuNY.mft (raw, json) Hash identifier: w43BY3J8nHUJ4iGnPk4vec1l3i6hkB5Lq7tLkXHTAJk= Subject key identifier: DB:F8:CE:0E:1D:76:1C:E7:E2:CB:06:D5:14:7D:F9:78:01:4B:48:95 Authority key identifier: D3:C9:D2:D7:79:F6:68:43:09:71:2B:B3:0C:FA:19:92:90:E1:B8:D6 Certificate issuer: /CN=A915DE8F/serialNumber=D3C9D2D779F6684309712BB30CFA199290E1B8D6 Certificate serial: 62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08nS13n2aEMJcSuzDPoZkpDhuNY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.mft Manifest number: 60 Signing time: Tue 13 May 2025 06:16:12 +0000 Manifest this update: Tue 13 May 2025 06:16:12 +0000 Manifest next update: Tue 20 May 2025 06:16:12 +0000 Files and hashes: 1: 08nS13n2aEMJcSuzDPoZkpDhuNY.crl (hash: POM2QFzk7Bt0GfJivdi6gWvR/ELCstdCREdGXsiZaL4=) 2: 6DEFE6D8A14611EF93AB8E21C4F9AE02.roa (hash: rRMGtINr2UhdhF+qj8NjJEBcNErv93/+Ql2sANUuRRs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.crl rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08nS13n2aEMJcSuzDPoZkpDhuNY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:16:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 98 (0x62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DE8F, serialNumber=D3C9D2D779F6684309712BB30CFA199290E1B8D6 Validity Not Before: May 13 06:16:12 2025 GMT Not After : May 20 06:16:12 2025 GMT Subject: CN=6822e3ac-ebfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:a4:98:00:21:90:96:a5:9f:fb:5e:50:97:91: a3:68:b3:b3:0f:95:88:df:c5:e0:ec:18:43:41:56: 7a:2a:dd:b9:53:ac:11:c1:a5:be:0c:11:f9:07:ef: 5c:07:a3:e5:e8:40:72:4d:a9:f8:cf:cd:6a:7d:ce: 69:a7:34:84:5c:e3:52:03:64:44:4d:90:36:e7:6f: 2e:75:ef:b3:dc:9d:8f:fe:a5:4f:0e:ea:64:1c:b1: 9e:04:28:90:f6:c5:32:0e:81:13:5b:4c:06:ad:09: 4e:82:82:83:b7:75:b6:3e:18:09:57:b9:77:2e:dd: de:d0:3e:e2:c1:bb:b6:18:31:bb:c4:3e:75:8a:67: 8e:f9:84:99:c6:5c:64:9d:97:d8:37:d8:95:f0:e0: 7c:86:b1:92:c3:cf:5f:4a:40:39:c4:99:a8:1a:44: 37:09:06:ff:7e:67:4a:6b:91:f5:9f:54:ee:05:89: d1:04:a2:d3:11:42:66:dc:34:98:46:48:aa:a4:40: 95:9f:91:2e:86:eb:78:ef:93:ff:fd:ae:eb:a3:9b: 55:d0:43:2d:04:a1:33:9b:ab:7a:04:ec:36:84:4d: 6b:f4:85:a4:b0:15:96:ba:c4:2e:7a:24:d5:b3:a6: 18:2e:1e:8c:b2:a3:41:95:05:4c:b8:1d:91:37:79: fb:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:F8:CE:0E:1D:76:1C:E7:E2:CB:06:D5:14:7D:F9:78:01:4B:48:95 X509v3 Authority Key Identifier: keyid:D3:C9:D2:D7:79:F6:68:43:09:71:2B:B3:0C:FA:19:92:90:E1:B8:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08nS13n2aEMJcSuzDPoZkpDhuNY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:d3:17:34:57:6e:f3:c1:e7:08:5c:46:84:31:08:e6:f4:64: 45:31:dc:90:dd:ef:13:88:4c:f6:f3:e4:d5:f0:15:dd:35:d6: e7:85:10:77:40:e2:26:86:14:e8:d6:88:11:5d:da:c8:81:7a: 28:76:8f:a2:90:08:60:cf:09:c4:de:ce:43:9b:ac:c0:1b:60: b3:67:16:cd:5c:5e:30:00:5b:45:ae:70:f5:81:d1:4a:3c:f6: d0:b5:d7:fa:a7:34:8a:89:30:29:31:5b:94:d8:ce:92:af:89: c6:2c:a1:ff:8e:c3:fc:31:b5:43:2b:79:16:de:e7:ef:b0:37: 29:3a:c4:02:b9:07:93:03:7a:3d:2e:44:8e:59:1e:f0:e4:c7: 7b:5b:f4:df:c8:74:6c:b7:77:91:ff:ef:04:f2:8a:a6:ab:75: 7a:d7:fc:4d:8f:50:95:87:62:19:7a:58:aa:59:45:a8:29:6a: 04:ca:6d:e1:df:e8:9b:c0:8c:d2:7c:c5:a5:94:7a:07:27:7d: 26:db:12:01:f6:88:33:05:fb:53:11:07:50:d1:53:50:4b:f3: fc:56:2d:30:ed:f9:02:ce:c8:69:fd:c9:4d:49:1d:ad:13:8b: df:93:a3:b8:cc:e3:73:5a:81:f0:ab:8d:6b:07:25:30:fb:7b: dd:ec:03:61 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 REU4RjExMC8GA1UEBRMoRDNDOUQyRDc3OUY2Njg0MzA5NzEyQkIzMENGQTE5OTI5 MEUxQjhENjAeFw0yNTA1MTMwNjE2MTJaFw0yNTA1MjAwNjE2MTJaMBgxFjAUBgNV BAMTDTY4MjJlM2FjLWViZmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDjpJgAIZCWpZ/7XlCXkaNos7MPlYjfxeDsGENBVnoq3blTrBHBpb4MEfkH71wH o+XoQHJNqfjPzWp9zmmnNIRc41IDZERNkDbnby5177PcnY/+pU8O6mQcsZ4EKJD2 xTIOgRNbTAatCU6CgoO3dbY+GAlXuXcu3d7QPuLBu7YYMbvEPnWKZ475hJnGXGSd l9g32JXw4HyGsZLDz19KQDnEmagaRDcJBv9+Z0prkfWfVO4FidEEotMRQmbcNJhG SKqkQJWfkS6G63jvk//9ruujm1XQQy0EoTObq3oE7DaETWv0haSwFZa6xC56JNWz phguHoyyo0GVBUy4HZE3efs9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2/jODh12 HOfiywbVFH35eAFLSJUwHwYDVR0jBBgwFoAU08nS13n2aEMJcSuzDPoZkpDhuNYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVERThGLzBCNTQzQjBBQTE0 NjExRUZBMTJBNkUxRkM0RjlBRTAyLzA4blMxM24yYUVNSmNTdXpEUG9aa3BEaHVO WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMDhuUzEzbjJhRU1KY1N1ekRQb1prcERodU5ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVE RThGLzBCNTQzQjBBQTE0NjExRUZBMTJBNkUxRkM0RjlBRTAyLzA4blMxM24yYUVN SmNTdXpEUG9aa3BEaHVOWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC7TFzRXbvPB5whcRoQxCOb0ZEUx3JDd7xOITPbz5NXwFd011ueFEHdA 4iaGFOjWiBFd2siBeih2j6KQCGDPCcTezkObrMAbYLNnFs1cXjAAW0WucPWB0Uo8 9tC11/qnNIqJMCkxW5TYzpKvicYsof+Ow/wxtUMreRbe5++wNyk6xAK5B5MDej0u RI5ZHvDkx3tb9N/IdGy3d5H/7wTyiqardXrX/E2PUJWHYhl6WKpZRagpagTKbeHf 6JvAjNJ8xaWUegcnfSbbEgH2iDMF+1MRB1DRU1BL8/xWLTDt+QLOyGn9yU1JHa0T i9+To7jM43NagfCrjWsHJTD7e93sA2E= -----END CERTIFICATE-----Generated at Tue May 13 09:17:23 2025 by rpki-client