$ rpki-client -vvf rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.mft File: 8kxEMhD3QcvlnQFOum7pcrXN2uc.mft (raw, json) Hash identifier: 8berr67PTE+nvQvcjrQ6+qYrt+jEKkasKtOtu7KO87A= Subject key identifier: A4:43:AC:1A:6A:BD:EF:8C:31:D8:7D:20:29:93:EA:7B:6D:E5:16:78 Authority key identifier: F2:4C:44:32:10:F7:41:CB:E5:9D:01:4E:BA:6E:E9:72:B5:CD:DA:E7 Certificate issuer: /CN=A916B95A/serialNumber=F24C443210F741CBE59D014EBA6EE972B5CDDAE7 Certificate serial: A6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8kxEMhD3QcvlnQFOum7pcrXN2uc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.mft Manifest number: A4 Signing time: Sat 17 May 2025 05:39:58 +0000 Manifest this update: Sat 17 May 2025 05:39:57 +0000 Manifest next update: Sat 24 May 2025 05:39:57 +0000 Files and hashes: 1: 8kxEMhD3QcvlnQFOum7pcrXN2uc.crl (hash: dWQB9alWspaFydYGNajoYNAmDNfiNx4KJ4iuAW4+2Lw=) 2: 20A6C35C37AF11EF844EC638C4F9AE02.roa (hash: SBjUcQwgq8eYibunzuM6B0MYbh92vDqaJjZbumGPIz4=) 3: 2117AE6E37AF11EF844EC638C4F9AE02.roa (hash: rxylyIaFWofGp8fi7f1ysoxvtfFGdtzKVIc05XTsdvY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.crl rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8kxEMhD3QcvlnQFOum7pcrXN2uc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 05:39:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B95A, serialNumber=F24C443210F741CBE59D014EBA6EE972B5CDDAE7 Validity Not Before: May 17 05:39:57 2025 GMT Not After : May 24 05:39:57 2025 GMT Subject: CN=6828212e-12f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:08:15:15:4e:48:aa:24:ea:82:dd:68:69:5f: 1d:65:09:4a:d1:39:4d:bc:6f:69:90:7e:a4:e8:f5: 1d:df:27:4e:79:f9:83:a8:8e:17:12:e1:5e:2e:a7: c1:e0:37:ff:d8:7f:d4:09:81:1c:4c:a6:6a:2e:58: 2a:26:b6:46:12:42:9e:d9:d1:d2:76:ba:bf:de:cf: 13:02:8a:95:35:ab:d5:f7:84:b2:e5:3a:e5:95:b5: e5:72:ea:a5:e5:3e:e2:78:02:26:fb:50:d5:cc:91: 8d:48:a0:a9:c1:73:44:c1:49:2e:9c:86:8c:c3:0d: 12:97:41:00:6e:ba:4a:43:81:e8:db:6f:73:b4:ca: d1:d9:b6:66:e6:b6:67:0e:7b:a7:3b:f9:1b:40:85: f3:a2:e4:98:82:27:0e:e9:4a:8e:10:73:4b:76:24: 25:19:03:df:e5:c5:1b:d6:43:08:8b:48:cb:9f:67: c8:0b:1e:55:b3:1f:01:44:e0:2b:0d:7d:9e:e4:a9: 00:a7:62:3a:9b:b4:57:81:23:1a:a1:bd:57:2f:f1: 02:8d:7e:fe:cf:0c:e7:12:4d:7c:7a:cf:32:42:68: 3d:25:c2:b8:7a:91:b9:ae:89:ed:71:42:dc:0c:ae: b7:f0:6a:40:89:f1:64:13:a5:6e:19:52:59:10:ef: cb:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:43:AC:1A:6A:BD:EF:8C:31:D8:7D:20:29:93:EA:7B:6D:E5:16:78 X509v3 Authority Key Identifier: keyid:F2:4C:44:32:10:F7:41:CB:E5:9D:01:4E:BA:6E:E9:72:B5:CD:DA:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8kxEMhD3QcvlnQFOum7pcrXN2uc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:d2:a0:b6:26:8d:db:0c:1d:e7:be:73:3b:0f:ad:e3:5f:86: 02:1c:9d:c4:bb:f9:42:72:c4:59:a9:18:35:23:9c:29:28:6c: e7:42:ce:44:9e:f7:96:19:5f:c7:48:65:55:47:a0:22:ba:0c: bb:0e:f6:20:86:97:46:13:56:05:38:f7:79:1c:3f:a3:b7:f5: f0:84:6e:e9:99:cd:d7:ff:d7:39:63:5f:4d:9a:63:86:2f:07: 7e:9f:c6:76:d4:e6:1c:b1:3b:81:f7:f9:1b:9b:cc:74:71:d5: ba:d4:de:28:bf:38:a7:59:6a:73:18:45:37:6c:e0:9c:f9:16: 0c:dd:65:63:01:69:8c:7c:b6:95:55:9f:d4:4b:bd:b1:3b:96: 91:36:67:ae:6a:c5:a6:3a:37:a2:85:d4:14:d5:08:00:b0:8f: c5:08:77:eb:03:6e:34:54:9d:27:cc:5f:c8:57:3e:00:9f:61: 1a:b0:4d:83:ff:5e:bf:21:ac:dd:2f:a8:be:4e:10:94:f3:a8: df:c7:6e:f5:f9:a9:d2:e7:a9:61:37:95:53:af:a5:f2:3d:51: e2:b3:7f:b2:6f:85:16:62:31:f7:c6:30:ab:7e:ff:15:e0:3a: 1d:02:8f:70:bd:fa:71:70:91:dd:8e:dc:e0:ad:3e:55:70:67: aa:8a:f7:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI5NUExMTAvBgNVBAUTKEYyNEM0NDMyMTBGNzQxQ0JFNTlEMDE0RUJBNkVFOTcy QjVDRERBRTcwHhcNMjUwNTE3MDUzOTU3WhcNMjUwNTI0MDUzOTU3WjAYMRYwFAYD VQQDEw02ODI4MjEyZS0xMmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlQgVFU5IqiTqgt1oaV8dZQlK0TlNvG9pkH6k6PUd3ydOefmDqI4XEuFeLqfB 4Df/2H/UCYEcTKZqLlgqJrZGEkKe2dHSdrq/3s8TAoqVNavV94Sy5TrllbXlcuql 5T7ieAIm+1DVzJGNSKCpwXNEwUkunIaMww0Sl0EAbrpKQ4Ho229ztMrR2bZm5rZn DnunO/kbQIXzouSYgicO6UqOEHNLdiQlGQPf5cUb1kMIi0jLn2fICx5Vsx8BROAr DX2e5KkAp2I6m7RXgSMaob1XL/ECjX7+zwznEk18es8yQmg9JcK4epG5rontcULc DK638GpAifFkE6VuGVJZEO/LVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKRDrBpq ve+MMdh9ICmT6ntt5RZ4MB8GA1UdIwQYMBaAFPJMRDIQ90HL5Z0BTrpu6XK1zdrn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Qjk1QS81MTJDNzA1RTM3 QUUxMUVGOEE0NThFMzdDNEY5QUUwMi84a3hFTWhEM1FjdmxuUUZPdW03cGNyWE4y dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzhreEVNaEQzUWN2bG5RRk91bTdwY3JYTjJ1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Qjk1QS81MTJDNzA1RTM3QUUxMUVGOEE0NThFMzdDNEY5QUUwMi84a3hFTWhEM1Fj dmxuUUZPdW03cGNyWE4ydWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB30qC2Jo3bDB3nvnM7D63jX4YCHJ3Eu/lCcsRZqRg1I5wpKGznQs5E nveWGV/HSGVVR6Aiugy7DvYghpdGE1YFOPd5HD+jt/XwhG7pmc3X/9c5Y19NmmOG Lwd+n8Z21OYcsTuB9/kbm8x0cdW61N4ovzinWWpzGEU3bOCc+RYM3WVjAWmMfLaV VZ/US72xO5aRNmeuasWmOjeihdQU1QgAsI/FCHfrA240VJ0nzF/IVz4An2EasE2D /16/IazdL6i+ThCU86jfx271+anS56lhN5VTr6XyPVHis3+yb4UWYjH3xjCrfv8V 4DodAo9wvfpxcJHdjtzgrT5VcGeqivdM -----END CERTIFICATE-----Generated at Sat May 17 17:15:31 2025 by rpki-client