$ rpki-client -vvf rpki.apnic.net/member_repository/A91E36C4/C1605852FEED11EF9FF6CE80C4F9AE02/x8MjS9JtrWKeLX70REhP5UHYFI4.mft File: x8MjS9JtrWKeLX70REhP5UHYFI4.mft (raw, json) Hash identifier: aLwnv7syakXDhIvre55ImZ96EbTXK02Xr0cFwyCKCfc= Subject key identifier: 27:FB:C2:5A:E6:71:EC:6A:01:07:B4:06:26:2C:C1:71:87:74:90:3E Authority key identifier: C7:C3:23:4B:D2:6D:AD:62:9E:2D:7E:F4:44:48:4F:E5:41:D8:14:8E Certificate issuer: /CN=A91E36C4/serialNumber=C7C3234BD26DAD629E2D7EF444484FE541D8148E Certificate serial: 24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8MjS9JtrWKeLX70REhP5UHYFI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E36C4/C1605852FEED11EF9FF6CE80C4F9AE02/x8MjS9JtrWKeLX70REhP5UHYFI4.mft Manifest number: 23 Signing time: Tue 13 May 2025 07:05:50 +0000 Manifest this update: Tue 13 May 2025 07:05:50 +0000 Manifest next update: Tue 20 May 2025 07:05:49 +0000 Files and hashes: 1: x8MjS9JtrWKeLX70REhP5UHYFI4.crl (hash: ziT2A22ahJDuJIW1ttAquBcaIhsVlhNgKU9t0JVlKZg=) 2: FA429FD6FEED11EF826A3F81C4F9AE02.roa (hash: +DgxPlUsAPOqgoW/QPj4mhiM+6u6bShnRM17P00ub90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E36C4/C1605852FEED11EF9FF6CE80C4F9AE02/x8MjS9JtrWKeLX70REhP5UHYFI4.crl rsync://rpki.apnic.net/member_repository/A91E36C4/C1605852FEED11EF9FF6CE80C4F9AE02/x8MjS9JtrWKeLX70REhP5UHYFI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8MjS9JtrWKeLX70REhP5UHYFI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 07:04:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E36C4, serialNumber=C7C3234BD26DAD629E2D7EF444484FE541D8148E Validity Not Before: May 13 07:05:50 2025 GMT Not After : May 20 07:05:49 2025 GMT Subject: CN=6822ef4e-8cf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:1f:f3:d6:46:ed:57:d9:9d:53:ba:cb:09:66: 67:76:39:3c:8f:9d:0b:b7:84:32:a1:74:51:0f:b4: e3:a6:3e:ea:6c:ba:bd:60:6c:53:8a:8c:12:70:8c: 5b:c5:64:de:67:7e:d3:66:d4:7e:24:76:11:0f:8b: d0:64:d8:e8:6d:d1:b6:3e:c8:b1:be:5c:bd:ef:06: d5:5b:13:8b:eb:46:7f:fe:14:4a:5c:97:bc:a0:e1: 15:54:e5:46:b6:2a:b1:c6:b5:a4:30:db:5d:5e:88: 31:a4:77:c9:8e:12:1d:7e:1c:e0:98:c6:ca:e6:c5: 70:6c:fd:64:ae:5f:ee:a8:26:a5:4b:ca:91:cd:80: 3e:93:cc:93:bb:07:e6:43:96:e6:a4:33:ef:5a:c8: a6:7e:ae:c8:21:45:d4:ee:1f:10:47:9f:30:a3:0d: 80:86:c5:81:1a:16:2b:7b:cf:da:d3:d2:67:01:28: 4a:14:85:d3:ea:56:f0:cf:ef:16:b0:e4:37:dc:e3: 29:37:1d:44:c0:11:59:98:1b:60:50:02:b7:df:a7: cd:46:2a:cf:18:c4:bb:15:5e:44:bd:6d:49:5d:9d: 8d:96:a2:2f:7f:6e:0b:d6:3b:01:03:83:2b:cc:18: 7a:e5:64:a7:5e:7e:32:0d:93:89:ad:de:d4:a2:25: 2c:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:FB:C2:5A:E6:71:EC:6A:01:07:B4:06:26:2C:C1:71:87:74:90:3E X509v3 Authority Key Identifier: keyid:C7:C3:23:4B:D2:6D:AD:62:9E:2D:7E:F4:44:48:4F:E5:41:D8:14:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E36C4/C1605852FEED11EF9FF6CE80C4F9AE02/x8MjS9JtrWKeLX70REhP5UHYFI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8MjS9JtrWKeLX70REhP5UHYFI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E36C4/C1605852FEED11EF9FF6CE80C4F9AE02/x8MjS9JtrWKeLX70REhP5UHYFI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:f0:b3:b3:8b:0f:1b:92:85:0d:b3:8e:71:f3:d5:d4:af:e9: 47:0f:a1:fa:ed:75:be:da:98:f4:98:1a:0a:2a:1a:b3:35:b9: ec:33:1d:ae:cc:99:b8:36:ee:4e:ba:1d:0d:3e:c7:52:7e:6b: c1:05:7a:c7:8e:48:f3:ff:91:0d:30:19:f8:69:83:27:4f:34: 13:d2:2b:80:7e:f5:45:fa:81:c2:09:3e:c5:f3:57:ec:83:6d: 38:aa:af:08:e8:3a:71:83:a4:8a:ef:a7:5f:e1:e0:a1:4a:89: 3c:e1:34:e9:d5:3e:e9:82:28:64:cf:a5:83:68:87:bc:4f:db: 01:fe:92:80:7e:5c:79:30:86:ff:77:95:8e:95:56:45:ac:d6: 43:c2:2a:e4:80:d8:7d:79:e7:66:50:98:73:5a:7c:ab:91:e8: 97:28:34:50:0d:2a:bc:d9:8f:f4:41:43:62:c9:8f:de:ba:af: 97:91:73:3d:dd:46:57:6b:77:0f:2f:50:6d:94:55:bd:4a:50: d5:06:65:a4:1b:40:07:2b:b1:0d:be:c4:f1:2b:18:af:a8:d1: 88:e5:38:7a:60:5e:b3:fe:a7:ec:7f:17:a1:25:bd:ac:16:97: b8:eb:5a:fc:42:d0:55:94:3d:d4:b3:95:22:72:1e:fa:a2:be: 58:77:c7:c0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MzZDNDExMC8GA1UEBRMoQzdDMzIzNEJEMjZEQUQ2MjlFMkQ3RUY0NDQ0ODRGRTU0 MUQ4MTQ4RTAeFw0yNTA1MTMwNzA1NTBaFw0yNTA1MjAwNzA1NDlaMBgxFjAUBgNV BAMTDTY4MjJlZjRlLThjZjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCTH/PWRu1X2Z1TussJZmd2OTyPnQu3hDKhdFEPtOOmPupsur1gbFOKjBJwjFvF ZN5nftNm1H4kdhEPi9Bk2Oht0bY+yLG+XL3vBtVbE4vrRn/+FEpcl7yg4RVU5Ua2 KrHGtaQw211eiDGkd8mOEh1+HOCYxsrmxXBs/WSuX+6oJqVLypHNgD6TzJO7B+ZD luakM+9ayKZ+rsghRdTuHxBHnzCjDYCGxYEaFit7z9rT0mcBKEoUhdPqVvDP7xaw 5Dfc4yk3HUTAEVmYG2BQArffp81GKs8YxLsVXkS9bUldnY2Woi9/bgvWOwEDgyvM GHrlZKdefjINk4mt3tSiJSxpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJ/vCWuZx 7GoBB7QGJizBcYd0kD4wHwYDVR0jBBgwFoAUx8MjS9JtrWKeLX70REhP5UHYFI4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzNkM0L0MxNjA1ODUyRkVF RDExRUY5RkY2Q0U4MEM0RjlBRTAyL3g4TWpTOUp0cldLZUxYNzBSRWhQNVVIWUZJ NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveDhNalM5SnRyV0tlTFg3MFJFaFA1VUhZRkk0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUz NkM0L0MxNjA1ODUyRkVFRDExRUY5RkY2Q0U4MEM0RjlBRTAyL3g4TWpTOUp0cldL ZUxYNzBSRWhQNVVIWUZJNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIbws7OLDxuShQ2zjnHz1dSv6UcPofrtdb7amPSYGgoqGrM1uewzHa7M mbg27k66HQ0+x1J+a8EFeseOSPP/kQ0wGfhpgydPNBPSK4B+9UX6gcIJPsXzV+yD bTiqrwjoOnGDpIrvp1/h4KFKiTzhNOnVPumCKGTPpYNoh7xP2wH+koB+XHkwhv93 lY6VVkWs1kPCKuSA2H1552ZQmHNafKuR6JcoNFANKrzZj/RBQ2LJj966r5eRcz3d Rldrdw8vUG2UVb1KUNUGZaQbQAcrsQ2+xPErGK+o0YjlOHpgXrP+p+x/F6ElvawW l7jrWvxC0FWUPdSzlSJyHvqivlh3x8A= -----END CERTIFICATE-----Generated at Tue May 13 09:03:30 2025 by rpki-client