$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.mft File: I8MbHNaMzE0c6105mlAbYFD9HUY.mft (raw, json) Hash identifier: uS37wDFuLRKi8fRPmK1tmVVNRk6mRur9TDyQ+w8YwPQ= Subject key identifier: F6:A5:2D:46:F0:23:3A:86:87:24:80:5C:11:C2:2C:64:99:EE:7B:15 Authority key identifier: 23:C3:1B:1C:D6:8C:CC:4D:1C:EB:5D:39:9A:50:1B:60:50:FD:1D:46 Certificate issuer: /CN=A91A0FC0/serialNumber=23C31B1CD68CCC4D1CEB5D399A501B6050FD1D46 Certificate serial: 03A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8MbHNaMzE0c6105mlAbYFD9HUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.mft Manifest number: 045E Signing time: Sun 11 May 2025 00:19:01 +0000 Manifest this update: Sun 11 May 2025 00:19:00 +0000 Manifest next update: Sun 18 May 2025 00:19:00 +0000 Files and hashes: 1: I8MbHNaMzE0c6105mlAbYFD9HUY.crl (hash: 5L4siLFLadBAnT0ZBTIxXzNEsDbng1F0wDQxVR9pjpg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.crl rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8MbHNaMzE0c6105mlAbYFD9HUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 00:18:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 935 (0x3a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0FC0, serialNumber=23C31B1CD68CCC4D1CEB5D399A501B6050FD1D46 Validity Not Before: May 11 00:19:00 2025 GMT Not After : May 18 00:19:00 2025 GMT Subject: CN=681fecf4-b6ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:c0:b1:95:cd:de:03:e5:5f:a7:80:5c:28:e2: 73:7a:08:cf:5a:e4:c6:64:c2:92:40:ad:d8:de:ac: 18:54:4a:ed:5d:29:83:7c:1a:f7:67:51:d0:b5:5c: 16:ce:20:78:61:ac:9b:66:1d:17:40:84:91:6d:83: a4:c5:83:93:12:41:8b:df:f9:16:48:3f:d3:6f:5a: c0:b8:76:69:02:02:63:20:f7:d8:92:59:98:8d:45: 1f:75:a0:b4:cd:06:b4:a2:d3:8e:53:cc:4f:d3:16: 7c:9d:6d:66:67:16:36:a7:ea:90:38:16:2a:a4:cc: da:50:80:1b:8f:64:51:78:95:29:c6:9f:84:82:3c: 1e:6b:7c:06:9f:f9:73:0a:d7:bc:af:e8:81:c1:50: 0e:df:46:7d:64:ba:b3:a5:2e:4f:f6:af:9d:e0:b1: c8:8a:dc:fc:e8:87:ce:e1:30:cf:12:8c:19:b6:e9: 5a:cf:d1:d4:a3:ec:2c:8f:eb:09:5e:f9:58:db:ac: a3:cf:90:7e:e1:f0:e5:5a:ad:e2:48:12:15:9e:ab: 1f:e4:1b:84:fd:19:fe:3e:69:7c:12:9f:9a:d5:a7: f2:52:d3:a5:e6:d3:fc:c9:91:eb:11:72:ac:09:83: 65:6b:34:c8:68:0e:ac:46:6b:eb:10:b1:e5:d5:b6: 59:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:A5:2D:46:F0:23:3A:86:87:24:80:5C:11:C2:2C:64:99:EE:7B:15 X509v3 Authority Key Identifier: keyid:23:C3:1B:1C:D6:8C:CC:4D:1C:EB:5D:39:9A:50:1B:60:50:FD:1D:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8MbHNaMzE0c6105mlAbYFD9HUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:aa:51:cb:fa:22:67:63:8b:6c:b8:fd:c5:16:2d:12:04:73: ec:32:71:97:b3:f4:af:96:50:b3:74:fc:11:b7:48:4b:5c:fc: f7:b8:64:f9:ee:68:ff:8f:3d:d7:39:f0:3b:2e:2f:92:a4:bf: 87:95:db:08:10:5e:a9:49:9f:eb:92:95:02:cd:82:21:77:cf: 2c:1b:45:a6:83:3b:a0:c5:77:a5:04:71:51:c8:c9:f3:87:db: d8:24:aa:a7:d5:da:e0:a2:60:8c:2e:94:92:1b:93:2a:b8:f0: 02:50:43:87:71:37:c6:35:2f:60:f0:9f:7f:8b:72:3e:a6:1c: 7c:9e:95:e9:b0:89:5a:0e:62:a7:34:38:77:45:b8:72:42:23: 61:24:39:cc:39:ac:3c:4c:a7:cc:6d:51:99:ed:85:5f:9e:0f: 82:43:dd:38:cd:ca:eb:63:9e:2e:ce:b7:1b:d5:0d:91:f5:02: 52:20:1c:85:b6:45:5e:f6:b2:94:16:1e:aa:50:f2:63:d0:a1: a4:ad:4f:f5:7b:35:8e:86:d5:dc:cf:1a:33:9c:39:f9:49:e1: fd:91:28:e7:cf:25:96:47:87:42:5a:0b:3a:5c:16:c4:05:a6: b8:b9:2f:0c:ee:cf:f0:cd:19:07:c5:c6:91:ea:fb:33:52:a2: 33:6c:56:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBGQzAxMTAvBgNVBAUTKDIzQzMxQjFDRDY4Q0NDNEQxQ0VCNUQzOTlBNTAxQjYw NTBGRDFENDYwHhcNMjUwNTExMDAxOTAwWhcNMjUwNTE4MDAxOTAwWjAYMRYwFAYD VQQDEw02ODFmZWNmNC1iNmJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlcCxlc3eA+Vfp4BcKOJzegjPWuTGZMKSQK3Y3qwYVErtXSmDfBr3Z1HQtVwW ziB4YaybZh0XQISRbYOkxYOTEkGL3/kWSD/Tb1rAuHZpAgJjIPfYklmYjUUfdaC0 zQa0otOOU8xP0xZ8nW1mZxY2p+qQOBYqpMzaUIAbj2RReJUpxp+Egjwea3wGn/lz Cte8r+iBwVAO30Z9ZLqzpS5P9q+d4LHIitz86IfO4TDPEowZtulaz9HUo+wsj+sJ XvlY26yjz5B+4fDlWq3iSBIVnqsf5BuE/Rn+Pml8Ep+a1afyUtOl5tP8yZHrEXKs CYNlazTIaA6sRmvrELHl1bZZVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPalLUbw IzqGhySAXBHCLGSZ7nsVMB8GA1UdIwQYMBaAFCPDGxzWjMxNHOtdOZpQG2BQ/R1G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEZDMC9DREUwOTg3Njk1 NzgxMUVDQTMyQ0NGNTVDNEY5QUUwMi9JOE1iSE5hTXpFMGM2MTA1bWxBYllGRDlI VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0k4TWJITmFNekUwYzYxMDVtbEFiWUZEOUhVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MEZDMC9DREUwOTg3Njk1NzgxMUVDQTMyQ0NGNTVDNEY5QUUwMi9JOE1iSE5hTXpF MGM2MTA1bWxBYllGRDlIVVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9qlHL+iJnY4tsuP3FFi0SBHPsMnGXs/SvllCzdPwRt0hLXPz3uGT5 7mj/jz3XOfA7Li+SpL+HldsIEF6pSZ/rkpUCzYIhd88sG0WmgzugxXelBHFRyMnz h9vYJKqn1drgomCMLpSSG5MquPACUEOHcTfGNS9g8J9/i3I+phx8npXpsIlaDmKn NDh3RbhyQiNhJDnMOaw8TKfMbVGZ7YVfng+CQ904zcrrY54uzrcb1Q2R9QJSIByF tkVe9rKUFh6qUPJj0KGkrU/1ezWOhtXczxoznDn5SeH9kSjnzyWWR4dCWgs6XBbE Baa4uS8M7s/wzRkHxcaR6vszUqIzbFYF -----END CERTIFICATE-----Generated at Mon May 12 04:22:20 2025 by rpki-client