$ rpki-client -vvf rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft File: 8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft (raw, json) Hash identifier: Bt1P601RxcvkQMmbt8SoXw0RO/JiNgwWHPVhhAgdyo8= Subject key identifier: 15:DC:3E:C4:C0:2E:A3:BA:53:EF:76:2C:44:35:2C:FD:0E:BE:C4:06 Authority key identifier: F1:28:95:79:21:17:E9:07:03:A0:02:0F:4F:35:98:31:DB:2F:93:7A Certificate issuer: /CN=A91709F5/serialNumber=F12895792117E90703A0020F4F359831DB2F937A Certificate serial: 37 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8SiVeSEX6QcDoAIPTzWYMdsvk3o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft Manifest number: 36 Signing time: Tue 13 May 2025 06:48:13 +0000 Manifest this update: Tue 13 May 2025 06:48:12 +0000 Manifest next update: Tue 20 May 2025 06:48:12 +0000 Files and hashes: 1: 8SiVeSEX6QcDoAIPTzWYMdsvk3o.crl (hash: 4a2xihswEQuUyitj3dcNSSZYVAByGp8E1BziN03jeWo=) 2: A42925E8DFDA11EFB5E94125C4F9AE02.roa (hash: mx4Ct5Tnd5YkFq5qkT60Yq1dgh6KZfYC5nrKRxnyy28=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.crl rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8SiVeSEX6QcDoAIPTzWYMdsvk3o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:48:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91709F5, serialNumber=F12895792117E90703A0020F4F359831DB2F937A Validity Not Before: May 13 06:48:12 2025 GMT Not After : May 20 06:48:12 2025 GMT Subject: CN=6822eb2d-8d5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:5d:d8:6f:ab:bd:cf:ac:f6:b0:42:c3:54:16: 5f:82:a2:3f:6b:5c:02:95:6f:30:38:a1:da:17:25: c6:56:8a:49:5b:4e:d1:2d:58:72:87:4a:0b:46:68: b2:c7:28:43:0f:03:0a:ec:41:ef:fd:fa:83:6f:cf: 76:07:9f:97:4d:b4:71:7c:4c:c6:6f:b4:37:a9:18: cc:d7:9b:f2:d1:81:f0:73:4e:06:fa:86:c9:9b:35: 3c:ac:09:02:e1:f4:ea:58:b9:64:b5:db:39:ae:22: 2f:9f:ed:d4:b0:f7:1a:cf:f2:65:73:0e:0b:a1:79: 81:c3:0e:a9:da:54:ec:a8:bf:fd:44:11:7a:c5:4f: 80:88:93:7f:7b:03:7a:b3:a6:8a:95:32:7e:a3:ef: eb:46:05:9a:7b:32:1d:b4:28:e9:b7:87:a9:10:24: 01:ae:65:9e:24:84:43:3f:d9:db:54:40:ba:45:6e: 5d:c7:03:ba:15:35:29:b4:21:67:47:b7:c5:3b:89: 77:74:07:29:c9:94:17:2c:be:7d:84:09:78:af:f1: 71:b4:d8:29:d9:1b:f4:1e:be:ad:33:09:68:13:0e: e9:bc:fe:45:52:fc:ce:ab:cf:d7:c4:55:d8:b6:49: dc:dc:6b:99:1e:bc:ff:92:51:e9:17:aa:07:61:35: c8:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:DC:3E:C4:C0:2E:A3:BA:53:EF:76:2C:44:35:2C:FD:0E:BE:C4:06 X509v3 Authority Key Identifier: keyid:F1:28:95:79:21:17:E9:07:03:A0:02:0F:4F:35:98:31:DB:2F:93:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8SiVeSEX6QcDoAIPTzWYMdsvk3o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:5e:e5:58:8c:82:4c:94:01:b4:40:b9:e9:6b:2e:8c:ae:cb: 41:76:9d:e5:bc:c3:bb:89:42:bb:7a:82:3b:3e:a5:03:ca:53: a2:d7:63:71:b8:33:d1:e1:c3:fe:16:9a:b7:8d:bf:6a:50:31: 5e:40:f2:c8:9b:43:81:e6:45:a4:31:bc:a2:6a:0e:c7:44:24: 0f:ad:9a:c0:d8:b0:b0:d2:9e:59:0d:3e:ed:9e:cd:40:b7:f0: 71:db:c1:b6:d5:f1:aa:4d:f2:74:fb:38:11:7b:8c:97:3b:ce: 27:8c:5f:44:92:2f:25:f4:1d:dc:bf:d3:ee:6f:a2:4f:58:36: 31:22:f8:06:72:67:22:ba:81:d1:ea:80:bb:5a:e1:bf:e6:b0: ba:05:27:63:53:03:c3:d6:81:54:c0:c3:13:5a:76:82:78:b9: d7:d4:12:53:52:ad:38:0b:21:bb:d2:e1:56:26:8d:62:e4:ec: 00:c6:47:82:d9:85:9b:46:1f:d9:dc:32:30:21:d6:f2:f9:17: 6f:91:4a:2c:72:d5:5d:76:28:ef:9b:5a:a3:1d:3c:1e:0e:9e: d0:c9:8b:1c:cb:e5:9d:b1:99:c6:e8:df:78:83:19:e3:d0:56: db:96:18:b7:d5:e3:ff:81:91:36:4d:32:c1:ed:04:82:47:75: 7c:bb:f5:bd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MDlGNTExMC8GA1UEBRMoRjEyODk1NzkyMTE3RTkwNzAzQTAwMjBGNEYzNTk4MzFE QjJGOTM3QTAeFw0yNTA1MTMwNjQ4MTJaFw0yNTA1MjAwNjQ4MTJaMBgxFjAUBgNV BAMTDTY4MjJlYjJkLThkNWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCkXdhvq73PrPawQsNUFl+Coj9rXAKVbzA4odoXJcZWiklbTtEtWHKHSgtGaLLH KEMPAwrsQe/9+oNvz3YHn5dNtHF8TMZvtDepGMzXm/LRgfBzTgb6hsmbNTysCQLh 9OpYuWS12zmuIi+f7dSw9xrP8mVzDguheYHDDqnaVOyov/1EEXrFT4CIk397A3qz poqVMn6j7+tGBZp7Mh20KOm3h6kQJAGuZZ4khEM/2dtUQLpFbl3HA7oVNSm0IWdH t8U7iXd0BynJlBcsvn2ECXiv8XG02CnZG/Qevq0zCWgTDum8/kVS/M6rz9fEVdi2 Sdzca5kevP+SUekXqgdhNcjPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUFdw+xMAu o7pT73YsRDUs/Q6+xAYwHwYDVR0jBBgwFoAU8SiVeSEX6QcDoAIPTzWYMdsvk3ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwOUY1LzMyODNFN0Q0REZE QTExRUY4QjQ3ODYyNEM0RjlBRTAyLzhTaVZlU0VYNlFjRG9BSVBUeldZTWRzdmsz by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvOFNpVmVTRVg2UWNEb0FJUFR6V1lNZHN2azNvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw OUY1LzMyODNFN0Q0REZEQTExRUY4QjQ3ODYyNEM0RjlBRTAyLzhTaVZlU0VYNlFj RG9BSVBUeldZTWRzdmszby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADNe5ViMgkyUAbRAuelrLoyuy0F2neW8w7uJQrt6gjs+pQPKU6LXY3G4 M9Hhw/4WmreNv2pQMV5A8sibQ4HmRaQxvKJqDsdEJA+tmsDYsLDSnlkNPu2ezUC3 8HHbwbbV8apN8nT7OBF7jJc7zieMX0SSLyX0Hdy/0+5vok9YNjEi+AZyZyK6gdHq gLta4b/msLoFJ2NTA8PWgVTAwxNadoJ4udfUElNSrTgLIbvS4VYmjWLk7ADGR4LZ hZtGH9ncMjAh1vL5F2+RSixy1V12KO+bWqMdPB4OntDJixzL5Z2xmcbo33iDGePQ VtuWGLfV4/+BkTZNMsHtBIJHdXy79b0= -----END CERTIFICATE-----Generated at Wed May 14 14:14:31 2025 by rpki-client