$ rpki-client -vvf rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.mft File: 8CJFNT_B8ZSpAipKwBl33l_eNvk.mft (raw, json) Hash identifier: W2Sytv8hq9p6KEPZE3hLnRX09mRxzZUNPihmpp08xTY= Subject key identifier: 1C:44:00:F1:EC:F2:23:A7:C6:D0:21:67:38:70:1A:49:6C:EF:5F:0D Authority key identifier: F0:22:45:35:3F:C1:F1:94:A9:02:2A:4A:C0:19:77:DE:5F:DE:36:F9 Certificate issuer: /CN=A918A96A/serialNumber=F02245353FC1F194A9022A4AC01977DE5FDE36F9 Certificate serial: 0363 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.mft Manifest number: 0351 Signing time: Sun 11 May 2025 00:37:48 +0000 Manifest this update: Sun 11 May 2025 00:37:47 +0000 Manifest next update: Sun 18 May 2025 00:37:47 +0000 Files and hashes: 1: 8CJFNT_B8ZSpAipKwBl33l_eNvk.crl (hash: ZMd0fepZ8sXyG8yFv0/Rrsqzn5NTUGDl+Wf+lMVVSo8=) 2: 2DE4C8AA9B6111EF99A97B52C4F9AE02.roa (hash: VhDwcUHjhyil4F0v9hLHnTY4dEx10IiI44izoTq8eNs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.crl rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 00:37:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 867 (0x363) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A96A, serialNumber=F02245353FC1F194A9022A4AC01977DE5FDE36F9 Validity Not Before: May 11 00:37:47 2025 GMT Not After : May 18 00:37:47 2025 GMT Subject: CN=681ff15b-0f8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a2:89:08:35:d2:3a:e7:bc:40:5b:f4:2c:67: 66:80:71:4f:ba:13:4f:2a:68:5f:10:31:57:0e:0f: da:58:b7:0d:72:67:a0:89:00:66:f8:de:e0:2e:da: 09:0f:08:0f:1f:13:c5:9e:a5:46:13:fb:53:03:08: 50:20:a1:f4:68:2c:be:16:f7:8a:da:7b:93:10:f1: f1:83:87:cc:c4:4f:02:5d:8d:6f:df:5a:2d:0e:37: 9d:66:db:cd:00:fd:18:0c:28:3c:e2:2b:cd:c7:a6: d1:d8:d2:98:7e:86:b7:7b:67:2c:66:11:6e:b7:55: 54:14:31:27:07:44:31:b4:33:98:e3:8d:a8:52:7e: 8e:97:75:45:7e:6c:43:9d:93:29:e0:f4:75:9a:75: 83:7a:89:11:e8:bf:e3:aa:54:bd:46:44:8a:06:ca: 00:84:cc:34:f3:66:3c:ab:ed:d7:8d:43:24:f7:68: 51:8b:91:b1:fe:e3:56:db:20:cc:9d:33:be:8b:a1: 51:23:53:c3:2a:e4:9a:2f:28:e8:e2:b2:3a:66:57: 08:98:40:e6:15:c3:c7:65:d9:33:5c:24:24:76:80: 17:03:07:e1:50:cf:33:f2:22:78:dc:00:99:04:1a: 02:33:f6:55:fa:d2:e3:3f:72:6f:27:eb:8a:5e:0d: bb:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:44:00:F1:EC:F2:23:A7:C6:D0:21:67:38:70:1A:49:6C:EF:5F:0D X509v3 Authority Key Identifier: keyid:F0:22:45:35:3F:C1:F1:94:A9:02:2A:4A:C0:19:77:DE:5F:DE:36:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:c9:53:64:ac:2d:e1:be:c7:f4:5d:99:25:49:d9:31:5c:34: 6b:cd:9c:65:88:10:63:d6:d0:45:e9:18:d0:15:eb:23:5d:de: 6d:c8:04:0c:4e:b7:5d:09:74:91:55:51:30:ad:cc:bd:b4:d8: 6c:51:a1:d9:01:a9:ce:b8:44:9f:be:02:ef:d5:26:2d:f7:8a: 1c:0c:79:9b:52:36:32:97:e1:69:38:61:00:d9:06:ff:28:e3: e2:a4:5c:ab:f1:64:38:60:cd:89:09:da:83:28:0f:a6:bf:1e: ca:38:21:fd:f0:ec:9e:d8:91:f1:52:d4:bc:b0:80:b3:3f:84: d2:52:fb:5c:cf:16:b5:d2:7e:4d:3f:b1:f8:03:4b:b7:c6:27: 2d:98:b1:f7:04:a2:8b:ab:ed:2a:4f:04:b4:02:22:24:e7:2c: b2:93:59:6d:d7:e0:9a:a7:0a:6b:20:7d:7d:14:82:d2:60:63: 3e:ff:26:83:7c:14:68:17:e7:af:09:bc:2f:27:fe:e6:f5:2b: fd:fd:8f:ac:ee:ca:c1:72:f1:45:96:d0:ee:15:67:b4:5e:49: 16:ae:33:2d:d3:e9:ab:25:44:96:48:2d:d9:c7:77:2a:32:27: d2:98:7a:3d:cf:99:31:a1:de:8a:d0:fa:8d:c9:a2:b1:86:f6: 5a:46:5c:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE5NkExMTAvBgNVBAUTKEYwMjI0NTM1M0ZDMUYxOTRBOTAyMkE0QUMwMTk3N0RF NUZERTM2RjkwHhcNMjUwNTExMDAzNzQ3WhcNMjUwNTE4MDAzNzQ3WjAYMRYwFAYD VQQDEw02ODFmZjE1Yi0wZjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsaKJCDXSOue8QFv0LGdmgHFPuhNPKmhfEDFXDg/aWLcNcmegiQBm+N7gLtoJ DwgPHxPFnqVGE/tTAwhQIKH0aCy+FveK2nuTEPHxg4fMxE8CXY1v31otDjedZtvN AP0YDCg84ivNx6bR2NKYfoa3e2csZhFut1VUFDEnB0QxtDOY442oUn6Ol3VFfmxD nZMp4PR1mnWDeokR6L/jqlS9RkSKBsoAhMw082Y8q+3XjUMk92hRi5Gx/uNW2yDM nTO+i6FRI1PDKuSaLyjo4rI6ZlcImEDmFcPHZdkzXCQkdoAXAwfhUM8z8iJ43ACZ BBoCM/ZV+tLjP3JvJ+uKXg27JwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBxEAPHs 8iOnxtAhZzhwGkls718NMB8GA1UdIwQYMBaAFPAiRTU/wfGUqQIqSsAZd95f3jb5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTk2QS8yODc4NUY2MEJG QkYxMUVDQUVENDhDNzFDNEY5QUUwMi84Q0pGTlRfQjhaU3BBaXBLd0JsMzNsX2VO dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhDSkZOVF9COFpTcEFpcEt3QmwzM2xfZU52ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTk2QS8yODc4NUY2MEJGQkYxMUVDQUVENDhDNzFDNEY5QUUwMi84Q0pGTlRfQjha U3BBaXBLd0JsMzNsX2VOdmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvyVNkrC3hvsf0XZklSdkxXDRrzZxliBBj1tBF6RjQFesjXd5tyAQM TrddCXSRVVEwrcy9tNhsUaHZAanOuESfvgLv1SYt94ocDHmbUjYyl+FpOGEA2Qb/ KOPipFyr8WQ4YM2JCdqDKA+mvx7KOCH98Oye2JHxUtS8sICzP4TSUvtczxa10n5N P7H4A0u3xictmLH3BKKLq+0qTwS0AiIk5yyyk1lt1+CapwprIH19FILSYGM+/yaD fBRoF+evCbwvJ/7m9Sv9/Y+s7srBcvFFltDuFWe0XkkWrjMt0+mrJUSWSC3Zx3cq MifSmHo9z5kxod6K0PqNyaKxhvZaRlwQ -----END CERTIFICATE-----Generated at Mon May 12 12:36:45 2025 by rpki-client