$ rpki-client -vvf rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft File: Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft (raw, json) Hash identifier: ZWQnNsGw/JFtaspG8SnI2wyjK58wsvIx2X5Lq0w9Xgc= Subject key identifier: AA:69:FF:3A:F4:CA:B9:D3:74:96:72:DA:33:41:BC:0B:C7:61:E7:60 Authority key identifier: 37:2F:1C:77:61:B1:DD:C8:32:8C:50:BA:D0:EE:ED:CD:99:F2:E4:F2 Certificate issuer: /CN=A91142EA/serialNumber=372F1C7761B1DDC8328C50BAD0EEEDCD99F2E4F2 Certificate serial: 0189 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ny8cd2Gx3cgyjFC60O7tzZny5PI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft Manifest number: 1F37 Signing time: Wed 14 May 2025 16:10:07 +0000 Manifest this update: Wed 14 May 2025 16:10:06 +0000 Manifest next update: Wed 21 May 2025 16:10:06 +0000 Files and hashes: 1: Ny8cd2Gx3cgyjFC60O7tzZny5PI.crl (hash: s5s6joDkIYkdTtnyX7MIXCHhLeqGlXW3rgWI7jNiM6I=) 2: 9FD12146ED7211ED8A92041CC4F9AE02.roa (hash: oRm2blLyiJS/QAfKc6f3YExIUJkkRHUJrPUQp9W2Q+s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.crl rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ny8cd2Gx3cgyjFC60O7tzZny5PI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 16:10:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 393 (0x189) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91142EA, serialNumber=372F1C7761B1DDC8328C50BAD0EEEDCD99F2E4F2 Validity Not Before: May 14 16:10:06 2025 GMT Not After : May 21 16:10:06 2025 GMT Subject: CN=6824c05e-d355 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a3:31:9c:b2:cb:be:17:59:89:5b:90:61:ba: 45:92:f6:56:42:a8:95:e5:6c:b3:82:6b:d4:e8:63: 3c:73:5e:af:7b:83:93:27:fb:c7:84:6f:99:86:b1: 0e:c5:b9:40:f4:a4:ee:d1:95:b1:29:28:18:ff:3b: 6f:be:c5:fe:a7:56:00:41:7d:ff:35:cd:72:72:eb: 84:96:d1:4b:a8:84:00:b7:8b:b3:23:41:af:55:95: d7:7b:f6:73:db:c5:ab:0f:eb:c5:81:d8:fc:ec:21: fe:9b:57:01:83:c4:73:0e:50:29:f5:4c:3c:ac:18: d2:05:01:ec:1e:d6:ed:c2:a4:f3:24:9d:da:c9:04: f7:55:4e:9f:1f:bb:c2:2e:9c:dc:a4:67:4d:64:57: 64:84:d8:30:df:79:f0:a4:8d:fa:c5:4f:de:13:18: 77:e2:86:61:59:a1:86:13:42:57:7c:8f:74:ed:cc: 2b:aa:03:5d:7d:0b:ce:de:00:c9:09:6e:53:7f:e5: 5a:6c:a1:a9:eb:2c:f2:b0:2b:81:8f:ee:a3:ca:f4: 72:96:12:fe:9e:12:21:92:83:ba:9d:41:e5:21:0b: 88:94:4f:b8:16:3f:10:7b:d7:cb:76:d2:d4:d8:26: e5:05:b3:ca:1e:ee:7b:e1:1b:9a:54:03:7b:3b:01: f1:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:69:FF:3A:F4:CA:B9:D3:74:96:72:DA:33:41:BC:0B:C7:61:E7:60 X509v3 Authority Key Identifier: keyid:37:2F:1C:77:61:B1:DD:C8:32:8C:50:BA:D0:EE:ED:CD:99:F2:E4:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ny8cd2Gx3cgyjFC60O7tzZny5PI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption df:35:ff:dc:36:4c:bb:54:09:f6:72:30:b7:67:d6:58:8f:34: 8a:6d:06:b7:fa:d2:1e:59:ec:49:86:fc:ea:c4:fc:64:1b:9e: ec:0f:79:89:70:06:66:3e:92:34:b4:44:a3:9e:e8:26:13:f8: 19:39:db:f3:0b:2c:1a:c5:32:e7:80:b6:a9:11:65:4d:43:5d: 61:31:d6:48:14:83:02:2b:7a:63:6d:6d:97:3b:23:91:9a:e4: 9e:59:ab:d5:78:b4:e8:f8:b2:cf:aa:dd:1c:db:8c:de:dc:db: 06:a0:5b:f9:06:b3:19:7e:71:c4:07:c4:40:dc:2f:0f:33:5a: 04:70:0e:ec:34:02:20:82:92:4a:50:58:8f:f3:d5:06:9c:a5: 36:42:03:5a:1c:fa:a4:e0:aa:5e:ed:bd:af:a4:61:23:72:7c: a3:be:45:77:91:a0:1c:92:7c:4d:df:b8:dc:92:50:ae:6a:9d: bd:af:18:44:b3:fb:14:46:16:c8:d0:a5:da:d3:4b:07:b7:d1: af:f2:8a:22:cb:f8:5c:90:54:13:a9:26:f6:42:a1:fe:34:4b: 1c:67:97:e0:b3:89:e0:1a:03:4e:24:04:36:34:d8:5c:5d:ee: 7c:6d:fd:31:e6:46:13:f4:88:52:1d:c8:0e:3b:92:d8:b2:94: 15:85:5f:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTQyRUExMTAvBgNVBAUTKDM3MkYxQzc3NjFCMUREQzgzMjhDNTBCQUQwRUVFRENE OTlGMkU0RjIwHhcNMjUwNTE0MTYxMDA2WhcNMjUwNTIxMTYxMDA2WjAYMRYwFAYD VQQDEw02ODI0YzA1ZS1kMzU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqKMxnLLLvhdZiVuQYbpFkvZWQqiV5WyzgmvU6GM8c16ve4OTJ/vHhG+ZhrEO xblA9KTu0ZWxKSgY/ztvvsX+p1YAQX3/Nc1ycuuEltFLqIQAt4uzI0GvVZXXe/Zz 28WrD+vFgdj87CH+m1cBg8RzDlAp9Uw8rBjSBQHsHtbtwqTzJJ3ayQT3VU6fH7vC LpzcpGdNZFdkhNgw33nwpI36xU/eExh34oZhWaGGE0JXfI907cwrqgNdfQvO3gDJ CW5Tf+VabKGp6yzysCuBj+6jyvRylhL+nhIhkoO6nUHlIQuIlE+4Fj8Qe9fLdtLU 2CblBbPKHu574RuaVAN7OwHx+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKpp/zr0 yrnTdJZy2jNBvAvHYedgMB8GA1UdIwQYMBaAFDcvHHdhsd3IMoxQutDu7c2Z8uTy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNDJFQS9GNTMzMkQ3RTg0 QzMxMUU2Qjk4MjFBODFDNEY5QUUwMi9OeThjZDJHeDNjZ3lqRkM2ME83dHpabnk1 UEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL055OGNkMkd4M2NneWpGQzYwTzd0elpueTVQSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NDJFQS9GNTMzMkQ3RTg0QzMxMUU2Qjk4MjFBODFDNEY5QUUwMi9OeThjZDJHeDNj Z3lqRkM2ME83dHpabnk1UEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDfNf/cNky7VAn2cjC3Z9ZYjzSKbQa3+tIeWexJhvzqxPxkG57sD3mJ cAZmPpI0tESjnugmE/gZOdvzCywaxTLngLapEWVNQ11hMdZIFIMCK3pjbW2XOyOR muSeWavVeLTo+LLPqt0c24ze3NsGoFv5BrMZfnHEB8RA3C8PM1oEcA7sNAIggpJK UFiP89UGnKU2QgNaHPqk4Kpe7b2vpGEjcnyjvkV3kaAcknxN37jcklCuap29rxhE s/sURhbI0KXa00sHt9Gv8ooiy/hckFQTqSb2QqH+NEscZ5fgs4ngGgNOJAQ2NNhc Xe58bf0x5kYT9IhSHcgOO5LYspQVhV+8 -----END CERTIFICATE-----Generated at Thu May 15 07:06:30 2025 by rpki-client