$ rpki-client -vvf rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft File: CKtUearwyEilFC1v5NyZFitFwzc.mft (raw, json) Hash identifier: ZQ79mnVzq/XLRGaRTw56SsFLKx9OO3DtmdV3aeCyRik= Subject key identifier: CA:18:03:58:D9:D5:E7:28:F4:F2:73:96:A3:A0:4F:EE:4D:09:99:63 Authority key identifier: 08:AB:54:79:AA:F0:C8:48:A5:14:2D:6F:E4:DC:99:16:2B:45:C3:37 Certificate issuer: /CN=A916DC7C/serialNumber=08AB5479AAF0C848A5142D6FE4DC99162B45C337 Certificate serial: 91 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft Manifest number: 8F Signing time: Mon 05 May 2025 00:32:55 +0000 Manifest this update: Mon 05 May 2025 00:32:54 +0000 Manifest next update: Mon 12 May 2025 00:32:54 +0000 Files and hashes: 1: CKtUearwyEilFC1v5NyZFitFwzc.crl (hash: RSd51MkhGYpEYgpE9fFU+6CQHCkOfddfQP3uurTL5H8=) 2: 710957A8559411EFA07E1C5AC4F9AE02.roa (hash: kCmrnMtq0oO23W6srUkZmhxFZ7143rIIMei/dep36jM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.crl rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 00:32:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 145 (0x91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DC7C, serialNumber=08AB5479AAF0C848A5142D6FE4DC99162B45C337 Validity Not Before: May 5 00:32:54 2025 GMT Not After : May 12 00:32:54 2025 GMT Subject: CN=68180737-eb53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d2:49:e2:f0:2c:bc:8d:6b:36:cb:16:19:c2: 2f:6c:e7:2e:9b:09:4f:18:a4:e7:2b:3a:b0:88:f1: ab:2f:de:e3:0c:ad:a4:da:f6:b6:6a:fc:97:cb:66: fc:6a:46:0d:40:5f:5f:b7:f0:8f:07:85:b1:07:f9: b9:8d:da:65:49:01:07:04:9a:ee:19:91:fc:c5:f3: fa:b9:16:45:29:08:7b:02:66:a3:3e:fe:4d:49:d0: 3d:00:a9:38:1a:1a:d2:7c:da:c5:79:c8:7b:6a:64: 57:ff:c9:10:62:7a:96:90:cb:05:49:e1:a1:2b:e7: 7d:1a:0f:67:5f:6b:12:46:49:a9:b9:8b:0d:91:ff: 7a:74:67:5c:45:0a:b3:02:71:21:60:34:e5:68:5a: fc:de:9f:d6:f2:d1:b7:fa:4e:75:48:b3:d9:62:28: 92:fe:4e:12:2f:2c:69:33:08:1d:b1:63:a6:7e:d4: 96:b0:7e:8d:e3:93:14:50:65:de:67:b9:e3:73:c0: ac:06:9c:0f:f9:31:b4:fe:5a:bc:e1:da:80:c8:55: 06:17:e4:78:b2:0c:6c:d6:82:29:e3:8b:be:e2:f1: 31:da:d6:d2:d1:ab:13:bf:29:9c:8d:8c:cf:96:c5: 8c:cd:ff:7d:b3:6c:99:64:22:2c:fe:8c:7b:3d:cd: e0:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:18:03:58:D9:D5:E7:28:F4:F2:73:96:A3:A0:4F:EE:4D:09:99:63 X509v3 Authority Key Identifier: keyid:08:AB:54:79:AA:F0:C8:48:A5:14:2D:6F:E4:DC:99:16:2B:45:C3:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:7d:bc:f7:88:ed:1d:47:a9:f3:37:31:5d:91:2a:cd:2e:04: 1f:77:54:e8:a6:fb:48:eb:00:f4:8f:50:35:94:cd:08:4e:56: ba:db:93:61:86:3e:b4:1a:26:f3:25:a3:13:df:ac:73:51:2d: 11:8f:3d:28:b3:be:74:55:eb:e8:27:1d:0e:74:65:61:03:48: 9e:c2:31:b1:76:d0:8a:f8:d6:50:45:cd:94:92:e4:26:0e:46: 7f:cf:53:25:3c:49:c0:ad:16:18:36:d3:45:03:54:42:92:97: 95:9e:95:95:88:ec:c3:e8:80:e3:62:6e:58:d0:e1:7b:96:36: d7:33:f8:16:4e:78:4c:21:dd:b7:0b:2c:dc:88:50:85:6e:b3: 18:c7:1b:ef:7d:16:ae:66:99:e2:dc:a6:0b:5c:aa:0e:c4:c7: ee:05:2d:e9:7b:65:10:08:43:40:c8:d3:52:ec:1c:2c:62:09: 5b:2a:1d:e9:ed:ff:31:19:10:34:13:c5:59:f0:fd:4e:7e:71: d5:21:17:85:e5:f0:20:a3:a2:b1:94:fc:e5:94:52:f6:3b:3f: f1:d4:39:58:58:b2:76:78:ec:c2:8b:3e:c0:ab:7d:1e:ad:ce: 48:6a:c6:44:10:bc:5b:41:ec:d3:9d:4f:e5:89:2a:78:86:3f: f8:08:97:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkRDN0MxMTAvBgNVBAUTKDA4QUI1NDc5QUFGMEM4NDhBNTE0MkQ2RkU0REM5OTE2 MkI0NUMzMzcwHhcNMjUwNTA1MDAzMjU0WhcNMjUwNTEyMDAzMjU0WjAYMRYwFAYD VQQDEw02ODE4MDczNy1lYjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArNJJ4vAsvI1rNssWGcIvbOcumwlPGKTnKzqwiPGrL97jDK2k2va2avyXy2b8 akYNQF9ft/CPB4WxB/m5jdplSQEHBJruGZH8xfP6uRZFKQh7AmajPv5NSdA9AKk4 GhrSfNrFech7amRX/8kQYnqWkMsFSeGhK+d9Gg9nX2sSRkmpuYsNkf96dGdcRQqz AnEhYDTlaFr83p/W8tG3+k51SLPZYiiS/k4SLyxpMwgdsWOmftSWsH6N45MUUGXe Z7njc8CsBpwP+TG0/lq84dqAyFUGF+R4sgxs1oIp44u+4vEx2tbS0asTvymcjYzP lsWMzf99s2yZZCIs/ox7Pc3g8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMoYA1jZ 1eco9PJzlqOgT+5NCZljMB8GA1UdIwQYMBaAFAirVHmq8MhIpRQtb+TcmRYrRcM3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2REM3Qy9BNEMxNDYyODU1 NDkxMUVGODJCNUQzNkZDNEY5QUUwMi9DS3RVZWFyd3lFaWxGQzF2NU55WkZpdEZ3 emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0NLdFVlYXJ3eUVpbEZDMXY1TnlaRml0Rnd6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 REM3Qy9BNEMxNDYyODU1NDkxMUVGODJCNUQzNkZDNEY5QUUwMi9DS3RVZWFyd3lF aWxGQzF2NU55WkZpdEZ3emMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWfbz3iO0dR6nzNzFdkSrNLgQfd1TopvtI6wD0j1A1lM0ITla625Nh hj60GibzJaMT36xzUS0Rjz0os750VevoJx0OdGVhA0iewjGxdtCK+NZQRc2UkuQm DkZ/z1MlPEnArRYYNtNFA1RCkpeVnpWViOzD6IDjYm5Y0OF7ljbXM/gWTnhMId23 CyzciFCFbrMYxxvvfRauZpni3KYLXKoOxMfuBS3pe2UQCENAyNNS7BwsYglbKh3p 7f8xGRA0E8VZ8P1OfnHVIReF5fAgo6KxlPzllFL2Oz/x1DlYWLJ2eOzCiz7Aq30e rc5IasZEELxbQezTnU/liSp4hj/4CJc8 -----END CERTIFICATE-----Generated at Mon May 5 11:28:00 2025 by rpki-client