$ rpki-client -vvf rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.mft File: 8mkjRT8BcDCf1YvzsLXc5D_5tBw.mft (raw, json) Hash identifier: Bcz00anN2SUisKVLuzqf1g3VLBLS3W2D0Xk2k+AuIoU= Subject key identifier: 2E:AF:D1:7E:79:E8:33:C4:DA:73:45:E7:45:E7:76:E1:EA:5F:70:8C Authority key identifier: F2:69:23:45:3F:01:70:30:9F:D5:8B:F3:B0:B5:DC:E4:3F:F9:B4:1C Certificate issuer: /CN=A917B12B/serialNumber=F26923453F0170309FD58BF3B0B5DCE43FF9B41C Certificate serial: 2767 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8mkjRT8BcDCf1YvzsLXc5D_5tBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.mft Manifest number: 273F Signing time: Mon 12 May 2025 15:37:56 +0000 Manifest this update: Mon 12 May 2025 15:37:55 +0000 Manifest next update: Mon 19 May 2025 15:37:55 +0000 Files and hashes: 1: 8mkjRT8BcDCf1YvzsLXc5D_5tBw.crl (hash: iwwGYBN1Q5XQZ922miKGA1iWdkPDOLY6dkE4OA6GhaA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.crl rsync://rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8mkjRT8BcDCf1YvzsLXc5D_5tBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 15:37:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10087 (0x2767) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B12B, serialNumber=F26923453F0170309FD58BF3B0B5DCE43FF9B41C Validity Not Before: May 12 15:37:55 2025 GMT Not After : May 19 15:37:55 2025 GMT Subject: CN=682215d4-b75d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:63:28:e4:57:14:7f:81:57:81:07:25:24:09: 0b:ad:07:2e:b6:e2:f9:04:5e:28:71:44:28:f9:85: e0:54:0e:f2:de:a5:75:89:62:a5:e4:99:83:2f:2a: 7d:a2:e1:49:53:96:3d:1b:73:09:9a:81:f9:34:5b: 27:6f:e2:b5:a3:38:96:54:f7:42:68:a4:61:fa:4b: 35:67:8d:10:29:a7:02:d7:ee:73:96:cf:a1:28:0b: 61:12:5a:fb:f3:fe:7c:b4:dc:6b:82:c1:31:c8:2a: fd:cc:be:7a:68:ac:a1:8f:3d:89:5e:de:d1:4f:48: 8d:5f:71:86:79:cc:06:14:1d:a0:35:b1:7c:df:d2: 7b:11:46:39:25:46:99:84:b9:0b:1f:52:bb:63:80: 10:ab:e2:45:a1:c2:3d:9f:c2:7e:75:5c:1e:5b:58: 56:2b:86:cc:86:b8:19:84:d4:9b:74:24:9c:ac:f0: 9d:b7:cf:97:41:a0:9d:d2:7c:1c:23:ca:2e:36:8f: 0e:28:ff:a0:d0:8c:2c:e6:96:b8:71:b1:aa:bd:4c: 7e:d5:81:1b:17:29:40:06:b4:03:d5:9e:9f:86:7b: b5:cd:7a:1d:98:94:f5:41:be:d6:f1:33:7e:a6:64: 4e:11:e9:bf:41:72:e3:61:ce:af:79:56:0d:c9:55: 43:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:AF:D1:7E:79:E8:33:C4:DA:73:45:E7:45:E7:76:E1:EA:5F:70:8C X509v3 Authority Key Identifier: keyid:F2:69:23:45:3F:01:70:30:9F:D5:8B:F3:B0:B5:DC:E4:3F:F9:B4:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8mkjRT8BcDCf1YvzsLXc5D_5tBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:cc:fb:23:50:81:ae:df:d3:82:f5:81:1d:37:e1:f6:d9:68: f3:d6:35:f1:be:5d:35:36:31:4f:84:93:44:bb:ba:d0:1d:28: c6:24:5c:19:2a:1e:33:21:61:ce:09:9e:dc:9b:b3:04:ec:f9: 7a:d8:a6:b4:3a:09:ac:8a:b1:b4:af:0a:e6:c6:2b:0a:2f:30: 31:a6:e6:80:a1:14:94:0e:39:ca:c9:e3:a8:59:14:bb:6a:0b: ca:e2:26:7c:f6:11:f0:6b:e2:33:8e:76:e2:bb:36:41:1d:15: 1f:50:93:e4:0f:2c:c3:a6:c8:ac:f6:3e:ed:1d:a2:f4:d4:23: 56:83:82:58:d1:01:1b:6f:15:61:43:2e:e8:7b:7e:bb:34:8a: cb:f2:9f:fe:d5:ef:f4:bc:32:62:da:91:f6:58:c2:c2:bc:2d: c5:08:b4:7c:6f:c8:e8:94:bc:91:be:87:a0:40:9a:5a:38:57: b6:a9:fa:b8:47:07:82:eb:97:c2:ec:88:93:83:00:10:ac:8f: 79:6e:9b:9d:ea:32:bb:c6:a0:42:a1:65:4d:93:c1:cb:22:f5: 6b:c0:36:5b:67:12:5e:38:45:1c:df:2b:21:3b:94:c3:62:14: 92:20:be:c6:e8:f7:2b:f4:fd:e8:b5:96:45:3b:dd:a5:a5:c7: 1c:8e:e9:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJ2cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0IxMkIxMTAvBgNVBAUTKEYyNjkyMzQ1M0YwMTcwMzA5RkQ1OEJGM0IwQjVEQ0U0 M0ZGOUI0MUMwHhcNMjUwNTEyMTUzNzU1WhcNMjUwNTE5MTUzNzU1WjAYMRYwFAYD VQQDEw02ODIyMTVkNC1iNzVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv2Mo5FcUf4FXgQclJAkLrQcutuL5BF4ocUQo+YXgVA7y3qV1iWKl5JmDLyp9 ouFJU5Y9G3MJmoH5NFsnb+K1oziWVPdCaKRh+ks1Z40QKacC1+5zls+hKAthElr7 8/58tNxrgsExyCr9zL56aKyhjz2JXt7RT0iNX3GGecwGFB2gNbF839J7EUY5JUaZ hLkLH1K7Y4AQq+JFocI9n8J+dVweW1hWK4bMhrgZhNSbdCScrPCdt8+XQaCd0nwc I8ouNo8OKP+g0Iws5pa4cbGqvUx+1YEbFylABrQD1Z6fhnu1zXodmJT1Qb7W8TN+ pmROEem/QXLjYc6veVYNyVVDnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC6v0X55 6DPE2nNF50XnduHqX3CMMB8GA1UdIwQYMBaAFPJpI0U/AXAwn9WL87C13OQ/+bQc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjEyQi9BNTA5RUMxRUJE OUQxMUU0OTk5NjU1NENDNEY5QUUwMi84bWtqUlQ4QmNEQ2YxWXZ6c0xYYzVEXzV0 QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhta2pSVDhCY0RDZjFZdnpzTFhjNURfNXRCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjEyQi9BNTA5RUMxRUJEOUQxMUU0OTk5NjU1NENDNEY5QUUwMi84bWtqUlQ4QmNE Q2YxWXZ6c0xYYzVEXzV0QncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjzPsjUIGu39OC9YEdN+H22Wjz1jXxvl01NjFPhJNEu7rQHSjGJFwZ Kh4zIWHOCZ7cm7ME7Pl62Ka0OgmsirG0rwrmxisKLzAxpuaAoRSUDjnKyeOoWRS7 agvK4iZ89hHwa+IzjnbiuzZBHRUfUJPkDyzDpsis9j7tHaL01CNWg4JY0QEbbxVh Qy7oe367NIrL8p/+1e/0vDJi2pH2WMLCvC3FCLR8b8jolLyRvoegQJpaOFe2qfq4 RweC65fC7IiTgwAQrI95bpud6jK7xqBCoWVNk8HLIvVrwDZbZxJeOEUc3yshO5TD YhSSIL7G6Pcr9P3otZZFO92lpcccjukM -----END CERTIFICATE-----Generated at Wed May 14 09:33:23 2025 by rpki-client