$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft File: 8ghPeg88CpH4Jf79nxA18zVBWEw.mft (raw, json) Hash identifier: eKh7amFoVmbtkf+ZaH6BjzTw5sbVKHWkxYfK9Uuaf+4= Subject key identifier: 39:14:69:79:5D:C2:D2:33:7D:B6:C7:1B:9A:28:57:6B:56:86:39:08 Authority key identifier: F2:08:4F:7A:0F:3C:0A:91:F8:25:FE:FD:9F:10:35:F3:35:41:58:4C Certificate issuer: /CN=A91EAEAF/serialNumber=F2084F7A0F3C0A91F825FEFD9F1035F33541584C Certificate serial: 020F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft Manifest number: 020C Signing time: Sun 11 May 2025 01:31:52 +0000 Manifest this update: Sun 11 May 2025 01:31:52 +0000 Manifest next update: Sun 18 May 2025 01:31:52 +0000 Files and hashes: 1: 8ghPeg88CpH4Jf79nxA18zVBWEw.crl (hash: GJpVhK9E6WzBpRR7IcWvDZCuki4RRIf7l1wzEGnf+YE=) 2: EF0EFF5833F511EDA5C4F37DC4F9AE02.roa (hash: LAWmMRc8daUtEB7NaiA0m2Tl41sqEulVfrA7do1Thps=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.crl rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 01:31:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 527 (0x20f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAEAF, serialNumber=F2084F7A0F3C0A91F825FEFD9F1035F33541584C Validity Not Before: May 11 01:31:52 2025 GMT Not After : May 18 01:31:52 2025 GMT Subject: CN=681ffe08-5a55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5b:c1:e5:d8:61:01:71:58:46:45:91:c7:c8: cf:fa:c2:27:b9:43:6a:c4:70:cc:fe:c0:87:5e:64: 1e:08:3f:da:78:66:c5:50:6b:da:6e:da:1f:12:e4: 26:66:8c:cd:f9:cd:96:57:31:c6:32:55:21:c0:3e: 15:b1:b0:a5:96:b2:b4:d1:86:46:ac:12:a5:f2:03: 21:c7:ec:b7:09:85:05:bb:d8:a6:a2:cc:46:a3:96: 54:b8:12:05:9b:d7:3b:90:e6:0f:c7:71:fd:ef:61: cc:73:11:60:0f:b1:a7:47:78:5b:36:2d:4e:7e:36: ce:3d:2e:7a:d5:6e:b4:d0:73:ca:59:90:a9:a9:e5: 78:57:7b:2f:59:92:4a:41:3b:e9:03:a7:2e:07:92: 3e:10:a2:af:21:55:bb:c9:fc:63:54:97:5f:bb:86: 5e:4a:6a:7e:e9:69:58:85:03:3c:df:8d:aa:2f:b6: 21:44:05:3c:74:fb:9d:b4:a2:ba:f6:eb:f3:cb:80: 34:37:ec:5d:c5:68:e7:74:ec:a7:2e:07:7e:fe:51: c2:2f:f3:c2:c5:df:94:3d:97:95:08:6d:f5:bd:3a: 0a:18:88:fe:9f:c4:ad:3e:49:ea:43:c4:a9:1f:46: f6:53:03:f1:7e:6c:82:76:68:9f:ad:7d:7b:34:01: e0:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:14:69:79:5D:C2:D2:33:7D:B6:C7:1B:9A:28:57:6B:56:86:39:08 X509v3 Authority Key Identifier: keyid:F2:08:4F:7A:0F:3C:0A:91:F8:25:FE:FD:9F:10:35:F3:35:41:58:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:d8:b5:77:04:af:cd:fe:ba:b0:2f:ca:2e:1b:4e:55:1d:4c: c4:74:c7:6d:45:52:50:15:6d:7c:e3:6a:72:8e:b0:7e:73:a9: 86:ae:f4:62:80:d3:ef:ee:53:d0:a9:3c:78:a2:38:78:d1:83: be:e5:78:1f:f6:01:df:1e:7c:45:a9:9a:dc:6f:22:ce:3e:b1: db:6d:e4:a9:5f:6f:6a:98:39:f1:9b:05:bb:62:1c:59:d1:50: d9:e5:26:32:16:48:75:59:e7:4a:02:f6:dc:f9:62:c5:83:13: e3:30:38:1f:c1:c9:7e:9b:e5:0b:68:e7:6b:2f:3a:56:6e:a3: 32:b9:be:33:fe:e5:ec:87:82:3e:1f:68:13:2c:07:8f:7c:f8: fa:2a:b4:44:24:8d:be:1e:44:15:f9:78:25:78:49:22:16:fa: b3:47:71:d7:c5:90:35:b5:35:c6:40:da:c9:67:78:af:64:5a: 93:a3:e8:fc:c6:23:64:53:db:64:3d:7c:42:67:1d:5f:3d:7b: b0:40:04:8d:3c:43:90:1d:9d:96:02:11:f4:39:96:25:c3:bd: e1:4b:78:1a:ee:2e:ad:ec:57:5f:6d:9a:e2:20:b0:f7:5c:27: 80:cb:b5:db:ce:e5:0f:12:e6:e6:58:2f:e0:8f:e9:0a:dd:d8: 01:b5:f4:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAg8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFQUYxMTAvBgNVBAUTKEYyMDg0RjdBMEYzQzBBOTFGODI1RkVGRDlGMTAzNUYz MzU0MTU4NEMwHhcNMjUwNTExMDEzMTUyWhcNMjUwNTE4MDEzMTUyWjAYMRYwFAYD VQQDEw02ODFmZmUwOC01YTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv1vB5dhhAXFYRkWRx8jP+sInuUNqxHDM/sCHXmQeCD/aeGbFUGvabtofEuQm ZozN+c2WVzHGMlUhwD4VsbCllrK00YZGrBKl8gMhx+y3CYUFu9imosxGo5ZUuBIF m9c7kOYPx3H972HMcxFgD7GnR3hbNi1OfjbOPS561W600HPKWZCpqeV4V3svWZJK QTvpA6cuB5I+EKKvIVW7yfxjVJdfu4ZeSmp+6WlYhQM8342qL7YhRAU8dPudtKK6 9uvzy4A0N+xdxWjndOynLgd+/lHCL/PCxd+UPZeVCG31vToKGIj+n8StPknqQ8Sp H0b2UwPxfmyCdmifrX17NAHgkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDkUaXld wtIzfbbHG5ooV2tWhjkIMB8GA1UdIwQYMBaAFPIIT3oPPAqR+CX+/Z8QNfM1QVhM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUVBRi9CRTM1MjFCODMz RjExMUVEQjgzNjEwODZDNEY5QUUwMi84Z2hQZWc4OENwSDRKZjc5bnhBMTh6VkJX RXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhnaFBlZzg4Q3BINEpmNzlueEExOHpWQldFdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUVBRi9CRTM1MjFCODMzRjExMUVEQjgzNjEwODZDNEY5QUUwMi84Z2hQZWc4OENw SDRKZjc5bnhBMTh6VkJXRXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCb2LV3BK/N/rqwL8ouG05VHUzEdMdtRVJQFW1842pyjrB+c6mGrvRi gNPv7lPQqTx4ojh40YO+5Xgf9gHfHnxFqZrcbyLOPrHbbeSpX29qmDnxmwW7YhxZ 0VDZ5SYyFkh1WedKAvbc+WLFgxPjMDgfwcl+m+ULaOdrLzpWbqMyub4z/uXsh4I+ H2gTLAePfPj6KrREJI2+HkQV+XgleEkiFvqzR3HXxZA1tTXGQNrJZ3ivZFqTo+j8 xiNkU9tkPXxCZx1fPXuwQASNPEOQHZ2WAhH0OZYlw73hS3ga7i6t7FdfbZriILD3 XCeAy7XbzuUPEubmWC/gj+kK3dgBtfQ2 -----END CERTIFICATE-----Generated at Mon May 12 09:09:58 2025 by rpki-client