$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.mft File: 8YaDAEWuVIbpCXNDfanSB6VmhpE.mft (raw, json) Hash identifier: TvX+slYr9v+osLqF+zxtpSaAzkQbh31UhY2rKZjXQ3k= Subject key identifier: AF:DE:12:E8:52:71:26:D4:31:A4:9D:74:4E:E0:37:3B:5D:BB:40:B2 Authority key identifier: F1:86:83:00:45:AE:54:86:E9:09:73:43:7D:A9:D2:07:A5:66:86:91 Certificate issuer: /CN=A91F5AAA/serialNumber=F186830045AE5486E90973437DA9D207A5668691 Certificate serial: 31E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8YaDAEWuVIbpCXNDfanSB6VmhpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.mft Manifest number: 31E2 Signing time: Wed 14 May 2025 15:28:42 +0000 Manifest this update: Wed 14 May 2025 15:28:41 +0000 Manifest next update: Wed 21 May 2025 15:28:41 +0000 Files and hashes: 1: 8YaDAEWuVIbpCXNDfanSB6VmhpE.crl (hash: EJj+8w6MZIQ4th6PzkKlq14Tq0Q0J5OdAywVa6WSb7A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.crl rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8YaDAEWuVIbpCXNDfanSB6VmhpE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 15:28:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12770 (0x31e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5AAA, serialNumber=F186830045AE5486E90973437DA9D207A5668691 Validity Not Before: May 14 15:28:41 2025 GMT Not After : May 21 15:28:41 2025 GMT Subject: CN=6824b6aa-2529 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:79:42:42:da:11:cb:07:93:72:e2:b9:69:3f: ca:f2:8f:83:f1:fd:2d:c9:d3:20:af:d2:4c:f5:cc: d4:63:c7:e0:99:c1:48:c4:1d:cd:7b:bc:55:1c:8b: 1b:e4:ef:d5:19:27:e3:2d:7f:56:13:3c:f4:a3:56: ad:c5:a3:a9:5e:12:7f:cc:83:cd:be:40:aa:ae:df: 98:0f:cc:44:9f:73:10:eb:f9:eb:8e:d0:6e:4e:73: 53:f0:a6:de:33:2a:56:85:5c:5d:5f:9f:2b:26:32: 5a:48:46:2e:fb:14:94:57:49:00:db:be:93:f2:34: d9:a2:1c:0f:ba:7a:34:8f:7e:05:09:25:e1:22:e7: 0d:10:98:f4:1c:77:41:e2:32:b0:e7:64:32:13:ea: 7e:5f:92:52:9c:7f:62:ad:e8:95:dd:ad:49:cc:af: d4:dc:1c:73:29:f6:a4:7e:3b:af:09:9e:06:47:45: 0c:b2:11:a1:43:c9:60:d5:76:ea:9e:a6:11:9f:ba: 25:2a:8c:bb:12:ae:ca:99:8d:65:87:c4:7a:1c:f1: 4a:a3:b2:ec:38:af:df:43:7a:82:57:2f:ed:63:a6: 47:93:70:28:02:3b:36:e2:b4:41:39:a3:1e:a3:77: 5e:d2:cf:3d:b0:e8:ac:2d:10:c7:58:ec:a5:2d:75: 1d:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:DE:12:E8:52:71:26:D4:31:A4:9D:74:4E:E0:37:3B:5D:BB:40:B2 X509v3 Authority Key Identifier: keyid:F1:86:83:00:45:AE:54:86:E9:09:73:43:7D:A9:D2:07:A5:66:86:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8YaDAEWuVIbpCXNDfanSB6VmhpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:6f:58:4e:b2:3e:7c:f8:d4:9f:1b:29:7c:ab:6b:3e:76:42: 22:5a:8e:f3:c5:f1:d3:38:6f:8b:4a:c3:10:df:1a:99:c3:c6: 97:f5:7a:13:c4:db:d2:56:7b:84:06:ff:b4:b7:57:f7:ad:d2: 8d:be:45:7d:24:4e:f5:3e:8e:6f:24:e4:af:e0:44:04:25:70: fc:4a:47:d9:04:e6:b0:02:86:1b:98:01:13:9f:71:b3:76:99: 2f:cf:30:33:91:0d:7c:44:e6:5f:49:6b:80:6f:25:3a:de:24: 93:70:cb:05:f8:f4:3e:a5:4c:cc:ae:19:84:96:51:27:2b:e7: 06:b8:af:48:9e:4c:9a:4e:97:2f:85:0c:d6:03:88:f6:98:de: 8c:47:ba:78:5a:e6:06:c9:0b:0a:af:d8:c4:14:5e:31:00:b2: 43:36:33:38:05:50:e2:72:17:50:44:3c:cc:5b:d0:a3:63:2a: 8f:07:cd:d8:2c:d9:d7:c9:54:5a:d4:d4:66:d6:1a:8b:13:26: d9:b0:d8:54:e2:39:2f:0f:76:24:91:6a:07:58:18:79:8c:cf: 3a:c5:00:38:b3:b2:45:db:9d:42:06:20:90:cf:f7:47:d5:e3: bb:1d:8d:98:4e:f4:03:c4:7d:a1:aa:72:0a:04:29:52:e5:47: 81:4a:4e:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVBQUExMTAvBgNVBAUTKEYxODY4MzAwNDVBRTU0ODZFOTA5NzM0MzdEQTlEMjA3 QTU2Njg2OTEwHhcNMjUwNTE0MTUyODQxWhcNMjUwNTIxMTUyODQxWjAYMRYwFAYD VQQDEw02ODI0YjZhYS0yNTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxnlCQtoRyweTcuK5aT/K8o+D8f0tydMgr9JM9czUY8fgmcFIxB3Ne7xVHIsb 5O/VGSfjLX9WEzz0o1atxaOpXhJ/zIPNvkCqrt+YD8xEn3MQ6/nrjtBuTnNT8Kbe MypWhVxdX58rJjJaSEYu+xSUV0kA276T8jTZohwPuno0j34FCSXhIucNEJj0HHdB 4jKw52QyE+p+X5JSnH9ireiV3a1JzK/U3BxzKfakfjuvCZ4GR0UMshGhQ8lg1Xbq nqYRn7olKoy7Eq7KmY1lh8R6HPFKo7LsOK/fQ3qCVy/tY6ZHk3AoAjs24rRBOaMe o3de0s89sOisLRDHWOylLXUdQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK/eEuhS cSbUMaSddE7gNztdu0CyMB8GA1UdIwQYMBaAFPGGgwBFrlSG6QlzQ32p0gelZoaR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUFBQS84QjI4MjQ1MjlG RjcxMUUyQUQ5Q0VERUUyRjVBNzc1NC84WWFEQUVXdVZJYnBDWE5EZmFuU0I2Vm1o cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhZYURBRVd1VklicENYTkRmYW5TQjZWbWhwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NUFBQS84QjI4MjQ1MjlGRjcxMUUyQUQ5Q0VERUUyRjVBNzc1NC84WWFEQUVXdVZJ YnBDWE5EZmFuU0I2Vm1ocEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUb1hOsj58+NSfGyl8q2s+dkIiWo7zxfHTOG+LSsMQ3xqZw8aX9XoT xNvSVnuEBv+0t1f3rdKNvkV9JE71Po5vJOSv4EQEJXD8SkfZBOawAoYbmAETn3Gz dpkvzzAzkQ18ROZfSWuAbyU63iSTcMsF+PQ+pUzMrhmEllEnK+cGuK9InkyaTpcv hQzWA4j2mN6MR7p4WuYGyQsKr9jEFF4xALJDNjM4BVDichdQRDzMW9CjYyqPB83Y LNnXyVRa1NRm1hqLEybZsNhU4jkvD3YkkWoHWBh5jM86xQA4s7JF251CBiCQz/dH 1eO7HY2YTvQDxH2hqnIKBClS5UeBSk5n -----END CERTIFICATE-----Generated at Wed May 14 21:31:16 2025 by rpki-client