$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBD27/DE5E774E7DCD11ECA6BD9D32C4F9AE02/8hTt1--NAG-Coif85lvF8-ZIo_o.mft File: 8hTt1--NAG-Coif85lvF8-ZIo_o.mft (raw, json) Hash identifier: /hiIzSiz78Ee9BE1SilRPEd5kc+pblTqmOS94xLSmXs= Subject key identifier: 3E:32:7D:A7:36:65:8F:BA:31:3B:49:E1:DE:CE:EE:98:17:CC:BE:52 Authority key identifier: F2:14:ED:D7:EF:8D:00:6F:82:A2:27:FC:E6:5B:C5:F3:E6:48:A3:FA Certificate issuer: /CN=A91DBD27/serialNumber=F214EDD7EF8D006F82A227FCE65BC5F3E648A3FA Certificate serial: 03E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8hTt1--NAG-Coif85lvF8-ZIo_o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBD27/DE5E774E7DCD11ECA6BD9D32C4F9AE02/8hTt1--NAG-Coif85lvF8-ZIo_o.mft Manifest number: 03E0 Signing time: Sun 11 May 2025 00:07:10 +0000 Manifest this update: Sun 11 May 2025 00:07:10 +0000 Manifest next update: Sun 18 May 2025 00:07:10 +0000 Files and hashes: 1: 8hTt1--NAG-Coif85lvF8-ZIo_o.crl (hash: u0Aap6leNtf9ON8p3OA3KErqe2z1KjibfX6kTb9ihkI=) 2: 1A15CABE7DD111ECBB4A7D84C4F9AE02.roa (hash: aUKFEcgAYH8+/UqmZ13PB+UHXTWO1HzOhS9AQMfTurg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBD27/DE5E774E7DCD11ECA6BD9D32C4F9AE02/8hTt1--NAG-Coif85lvF8-ZIo_o.crl rsync://rpki.apnic.net/member_repository/A91DBD27/DE5E774E7DCD11ECA6BD9D32C4F9AE02/8hTt1--NAG-Coif85lvF8-ZIo_o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8hTt1--NAG-Coif85lvF8-ZIo_o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 00:07:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 997 (0x3e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBD27, serialNumber=F214EDD7EF8D006F82A227FCE65BC5F3E648A3FA Validity Not Before: May 11 00:07:10 2025 GMT Not After : May 18 00:07:10 2025 GMT Subject: CN=681fea2e-ddfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:66:80:12:89:a0:f5:fd:6a:e2:a8:98:b4:e1: f0:cd:7e:70:d4:85:63:6e:a4:8a:82:e8:59:10:ce: 75:46:8e:52:a9:26:85:6b:96:07:17:ca:e4:94:0a: f6:a7:f1:ce:21:77:8b:3e:96:68:ce:76:a2:12:45: e5:96:e4:d8:92:bc:ab:ac:e9:ca:4f:4a:70:1d:39: 99:c5:49:83:73:35:32:25:2d:b7:7e:4a:08:3b:40: 6a:88:26:d9:ee:3b:40:6c:f4:50:6a:c0:91:83:06: 62:b8:bf:b3:74:59:f0:a0:82:e5:5e:80:96:bc:a2: 11:55:da:70:c1:47:fc:d9:52:2c:ef:18:b4:49:71: 65:a5:6f:e6:26:38:fd:27:bd:7c:18:1a:8d:54:23: 04:b0:95:79:57:f0:86:68:38:95:16:09:da:70:43: 90:c6:d2:8b:92:62:3d:31:22:cb:4c:a8:36:8d:5b: 40:ec:73:80:38:04:90:32:5c:b7:62:12:d1:41:d6: 5c:bc:0d:c9:9a:82:ea:3c:e6:bc:ed:a4:c4:f1:ab: 02:27:2f:ca:5c:21:e6:2a:12:d2:e8:46:8b:df:a4: 15:87:17:85:c7:2b:05:b5:4e:07:27:77:b4:60:38: d5:6d:5f:59:b9:72:8e:bc:f5:54:db:8c:e8:7c:9b: e7:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:32:7D:A7:36:65:8F:BA:31:3B:49:E1:DE:CE:EE:98:17:CC:BE:52 X509v3 Authority Key Identifier: keyid:F2:14:ED:D7:EF:8D:00:6F:82:A2:27:FC:E6:5B:C5:F3:E6:48:A3:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBD27/DE5E774E7DCD11ECA6BD9D32C4F9AE02/8hTt1--NAG-Coif85lvF8-ZIo_o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8hTt1--NAG-Coif85lvF8-ZIo_o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBD27/DE5E774E7DCD11ECA6BD9D32C4F9AE02/8hTt1--NAG-Coif85lvF8-ZIo_o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:20:95:b6:97:e6:41:7f:cb:38:34:86:a5:9b:d2:ab:8a:91: 2a:bf:2d:c5:d8:ad:cd:c5:26:d2:20:a7:24:fb:80:7c:0f:cb: 3c:1f:d1:d1:a6:c0:50:82:14:8e:4c:29:84:bd:d0:27:77:db: 58:db:e0:e4:0f:b7:00:3b:ca:41:ff:a4:93:af:c8:16:5d:38: f1:d9:20:ca:7f:4c:1f:c7:a8:d9:0b:82:5d:5e:62:95:de:7e: ae:f6:f8:b2:24:d3:e4:5b:63:04:89:dd:87:b9:94:4c:4d:32: 7e:47:c4:19:9e:ff:9a:5f:50:fa:36:a3:7d:89:90:14:94:27: 6b:b4:dc:72:ae:8a:5f:de:42:c9:47:a5:0e:22:81:e7:ba:95: 24:32:29:84:c7:68:21:87:f0:d2:38:7b:e3:92:53:9d:82:14: 7f:a2:bb:8a:20:d1:20:ba:52:52:46:2e:35:fb:e3:7c:3e:cf: 07:90:38:cb:22:e9:31:88:10:f2:95:cd:b1:0f:e0:ed:3a:b8: 66:c7:01:16:91:e8:6e:13:72:8d:6e:59:d3:32:ec:bb:e3:cd: f0:35:5c:c0:d5:c7:23:0e:21:fa:ac:4f:55:e5:cf:7d:40:ce: c1:61:f5:13:71:b6:80:db:d0:3d:89:8a:57:00:94:04:a5:4e: ba:e1:1f:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJEMjcxMTAvBgNVBAUTKEYyMTRFREQ3RUY4RDAwNkY4MkEyMjdGQ0U2NUJDNUYz RTY0OEEzRkEwHhcNMjUwNTExMDAwNzEwWhcNMjUwNTE4MDAwNzEwWjAYMRYwFAYD VQQDEw02ODFmZWEyZS1kZGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsmaAEomg9f1q4qiYtOHwzX5w1IVjbqSKguhZEM51Ro5SqSaFa5YHF8rklAr2 p/HOIXeLPpZoznaiEkXlluTYkryrrOnKT0pwHTmZxUmDczUyJS23fkoIO0BqiCbZ 7jtAbPRQasCRgwZiuL+zdFnwoILlXoCWvKIRVdpwwUf82VIs7xi0SXFlpW/mJjj9 J718GBqNVCMEsJV5V/CGaDiVFgnacEOQxtKLkmI9MSLLTKg2jVtA7HOAOASQMly3 YhLRQdZcvA3JmoLqPOa87aTE8asCJy/KXCHmKhLS6EaL36QVhxeFxysFtU4HJ3e0 YDjVbV9ZuXKOvPVU24zofJvnpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD4yfac2 ZY+6MTtJ4d7O7pgXzL5SMB8GA1UdIwQYMBaAFPIU7dfvjQBvgqIn/OZbxfPmSKP6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkQyNy9ERTVFNzc0RTdE Q0QxMUVDQTZCRDlEMzJDNEY5QUUwMi84aFR0MS0tTkFHLUNvaWY4NWx2RjgtWklv X28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhoVHQxLS1OQUctQ29pZjg1bHZGOC1aSW9fby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkQyNy9ERTVFNzc0RTdEQ0QxMUVDQTZCRDlEMzJDNEY5QUUwMi84aFR0MS0tTkFH LUNvaWY4NWx2RjgtWklvX28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqIJW2l+ZBf8s4NIalm9KripEqvy3F2K3NxSbSIKck+4B8D8s8H9HR psBQghSOTCmEvdAnd9tY2+DkD7cAO8pB/6STr8gWXTjx2SDKf0wfx6jZC4JdXmKV 3n6u9viyJNPkW2MEid2HuZRMTTJ+R8QZnv+aX1D6NqN9iZAUlCdrtNxyropf3kLJ R6UOIoHnupUkMimEx2ghh/DSOHvjklOdghR/oruKINEgulJSRi41++N8Ps8HkDjL IukxiBDylc2xD+DtOrhmxwEWkehuE3KNblnTMuy7483wNVzA1ccjDiH6rE9V5c99 QM7BYfUTcbaA29A9iYpXAJQEpU664R++ -----END CERTIFICATE-----Generated at Sun May 11 21:16:06 2025 by rpki-client