$ rpki-client -vvf rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft File: s8j34GTam1qm6nlgF-xg0okDeCo.mft (raw, json) Hash identifier: i+97adXf29QlW9c2GPQdToocm5xI8OgANtGk4IKvbfE= Subject key identifier: B9:DD:E8:21:B6:8B:5F:13:8A:C1:1D:4E:44:59:AF:B5:3E:59:8D:5A Authority key identifier: B3:C8:F7:E0:64:DA:9B:5A:A6:EA:79:60:17:EC:60:D2:89:03:78:2A Certificate issuer: /CN=A91D671F/serialNumber=B3C8F7E064DA9B5AA6EA796017EC60D28903782A Certificate serial: 1612 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft Manifest number: 15FE Signing time: Sat 10 May 2025 16:39:31 +0000 Manifest this update: Sat 10 May 2025 16:39:31 +0000 Manifest next update: Sat 17 May 2025 16:39:30 +0000 Files and hashes: 1: s8j34GTam1qm6nlgF-xg0okDeCo.crl (hash: BHsKzVWrQdKY7whtjWD5C9AlQYCToD8WAczW2q2c/iI=) 2: A135DDD4162211EC9B4B6F77C4F9AE02.roa (hash: gE7cug0EHsEUbFwgT17gxGmIIkwaJjakWdAGw753tTM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.crl rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 16:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5650 (0x1612) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D671F, serialNumber=B3C8F7E064DA9B5AA6EA796017EC60D28903782A Validity Not Before: May 10 16:39:31 2025 GMT Not After : May 17 16:39:30 2025 GMT Subject: CN=681f8143-cc63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:dc:95:13:ae:44:3b:60:24:6f:b4:ed:06:50: ef:09:05:dc:3f:57:ce:1c:30:53:50:a0:a5:b9:bb: 39:d5:45:5e:82:20:c0:30:25:b6:46:60:08:f7:22: 32:16:b5:f4:e7:f9:44:68:b3:20:f1:5f:3a:8d:9b: 14:d3:7f:fa:c0:b2:17:37:c9:a2:ff:3b:c4:af:c5: b8:ad:e5:f5:43:d7:71:e1:e7:cf:c6:df:42:29:f4: 92:e6:8d:5c:e4:01:23:52:8f:41:36:32:78:2d:85: 88:c7:82:42:53:e5:38:ac:ab:0e:37:90:97:47:5f: e8:db:27:02:d1:7f:a6:85:8a:fe:44:5b:3d:b8:84: 3f:3c:0f:5f:73:75:d4:c8:c2:57:f2:da:c8:53:40: 9f:9d:f9:f1:15:78:0b:ec:9d:9e:b9:3d:7f:e4:12: 02:54:d8:fc:62:1b:8d:08:b3:57:5b:a9:3a:f5:72: fc:39:2a:4f:b7:fc:6e:61:d1:d3:db:c9:91:9a:87: 30:16:d4:a9:bd:8d:88:84:35:f9:1a:20:97:4d:76: e5:17:10:6d:a6:ed:70:4b:09:89:0a:b3:af:ae:b2: c4:90:6a:c9:90:db:35:69:e3:87:a2:3a:9c:2e:08: c5:60:e5:c7:e8:ce:5f:de:67:8c:07:94:ff:ba:40: 0b:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:DD:E8:21:B6:8B:5F:13:8A:C1:1D:4E:44:59:AF:B5:3E:59:8D:5A X509v3 Authority Key Identifier: keyid:B3:C8:F7:E0:64:DA:9B:5A:A6:EA:79:60:17:EC:60:D2:89:03:78:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:6c:b7:56:1d:92:cf:c7:77:5c:a9:90:68:f4:ef:d3:57:7c: 18:d3:7c:c4:27:e0:c3:f9:22:32:34:d7:22:78:3f:9f:6f:3f: 22:eb:c1:bb:31:60:8a:ed:3f:f5:bb:f0:37:a2:0f:43:33:cc: cc:d8:6a:24:cb:65:c3:f7:bf:f2:46:4c:e2:73:d7:ce:fb:78: c4:86:af:cc:c5:18:46:67:be:5a:93:e0:b9:8b:62:2c:b7:3b: 8a:0c:a1:99:3b:74:b4:d2:be:8d:c6:af:89:67:04:99:a6:79: c2:13:64:97:0f:94:26:ae:4f:a9:22:87:dd:6e:0d:c4:34:1a: 30:c1:d2:a2:a3:2f:b6:6d:20:5f:40:d0:0d:ee:7a:77:2b:f7: 36:9b:db:a5:28:41:f4:9b:cc:5b:24:ad:02:ba:59:dd:f4:0a: cb:f4:aa:12:b2:f1:d7:63:af:18:a3:47:6e:b1:46:e6:39:cc: 0f:09:72:8e:52:5b:53:01:1f:03:33:0e:4a:a5:bd:da:ba:f3: fa:ce:c4:d5:d3:42:b4:43:26:0b:63:fa:ff:2f:d0:04:78:26: 59:11:c4:c2:19:d3:bb:51:dd:f9:ec:82:02:9d:0f:9c:67:17: 7e:ed:3e:c6:9b:b2:02:28:82:c8:e4:35:7d:b6:ce:8c:1c:2a: 96:3c:75:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFhIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY3MUYxMTAvBgNVBAUTKEIzQzhGN0UwNjREQTlCNUFBNkVBNzk2MDE3RUM2MEQy ODkwMzc4MkEwHhcNMjUwNTEwMTYzOTMxWhcNMjUwNTE3MTYzOTMwWjAYMRYwFAYD VQQDEw02ODFmODE0My1jYzYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxNyVE65EO2Akb7TtBlDvCQXcP1fOHDBTUKClubs51UVegiDAMCW2RmAI9yIy FrX05/lEaLMg8V86jZsU03/6wLIXN8mi/zvEr8W4reX1Q9dx4efPxt9CKfSS5o1c 5AEjUo9BNjJ4LYWIx4JCU+U4rKsON5CXR1/o2ycC0X+mhYr+RFs9uIQ/PA9fc3XU yMJX8trIU0CfnfnxFXgL7J2euT1/5BICVNj8YhuNCLNXW6k69XL8OSpPt/xuYdHT 28mRmocwFtSpvY2IhDX5GiCXTXblFxBtpu1wSwmJCrOvrrLEkGrJkNs1aeOHojqc LgjFYOXH6M5f3meMB5T/ukALGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLnd6CG2 i18TisEdTkRZr7U+WY1aMB8GA1UdIwQYMBaAFLPI9+Bk2ptapup5YBfsYNKJA3gq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjcxRi8xRURDMTBCQzE3 MUUxMUU4ODU2QkM0NDNDNEY5QUUwMi9zOGozNEdUYW0xcW02bmxnRi14ZzBva0Rl Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M4ajM0R1RhbTFxbTZubGdGLXhnMG9rRGVDby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjcxRi8xRURDMTBCQzE3MUUxMUU4ODU2QkM0NDNDNEY5QUUwMi9zOGozNEdUYW0x cW02bmxnRi14ZzBva0RlQ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTbLdWHZLPx3dcqZBo9O/TV3wY03zEJ+DD+SIyNNcieD+fbz8i68G7 MWCK7T/1u/A3og9DM8zM2Goky2XD97/yRkzic9fO+3jEhq/MxRhGZ75ak+C5i2Is tzuKDKGZO3S00r6Nxq+JZwSZpnnCE2SXD5Qmrk+pIofdbg3ENBowwdKioy+2bSBf QNAN7np3K/c2m9ulKEH0m8xbJK0Culnd9ArL9KoSsvHXY68Yo0dusUbmOcwPCXKO UltTAR8DMw5Kpb3auvP6zsTV00K0QyYLY/r/L9AEeCZZEcTCGdO7Ud357IICnQ+c Zxd+7T7Gm7ICKILI5DV9ts6MHCqWPHW0 -----END CERTIFICATE-----Generated at Sun May 11 21:08:22 2025 by rpki-client