$ rpki-client -vvf rpki.apnic.net/member_repository/A91162DE/176794D4155A11EDB0A12720C4F9AE02/34Jss7t6i7KhHuS64uCH6sOnIdI.mft File: 34Jss7t6i7KhHuS64uCH6sOnIdI.mft (raw, json) Hash identifier: FTMhEUhBT4ByVlLKJ4Wh0fz1S0UNYae8UASbcZujHao= Subject key identifier: C5:A9:18:3D:98:5C:39:4A:C7:84:5E:4A:60:4A:4C:3F:42:CF:2D:10 Authority key identifier: DF:82:6C:B3:BB:7A:8B:B2:A1:1E:E4:BA:E2:E0:87:EA:C3:A7:21:D2 Certificate issuer: /CN=A91162DE/serialNumber=DF826CB3BB7A8BB2A11EE4BAE2E087EAC3A721D2 Certificate serial: 026F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34Jss7t6i7KhHuS64uCH6sOnIdI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91162DE/176794D4155A11EDB0A12720C4F9AE02/34Jss7t6i7KhHuS64uCH6sOnIdI.mft Manifest number: 0266 Signing time: Sat 17 May 2025 02:00:57 +0000 Manifest this update: Sat 17 May 2025 02:00:56 +0000 Manifest next update: Sat 24 May 2025 02:00:56 +0000 Files and hashes: 1: 34Jss7t6i7KhHuS64uCH6sOnIdI.crl (hash: iE68URXaeaLjfMW8D9/wIJyMDuLK0g9HAwcFTXzy+hM=) 2: 7C754058415411ED8133414DC4F9AE02.roa (hash: l47Gy8uLHHO9oyMWzHntqbTvL69ppWBGcq5K8U2N6Ws=) 3: C303879E415111EDBC3A1D19C4F9AE02.roa (hash: S+ycEkxlExSiIAk8iubLwdKE1ijDKJmAZke+yPsWDEw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91162DE/176794D4155A11EDB0A12720C4F9AE02/34Jss7t6i7KhHuS64uCH6sOnIdI.crl rsync://rpki.apnic.net/member_repository/A91162DE/176794D4155A11EDB0A12720C4F9AE02/34Jss7t6i7KhHuS64uCH6sOnIdI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34Jss7t6i7KhHuS64uCH6sOnIdI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 02:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 623 (0x26f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91162DE, serialNumber=DF826CB3BB7A8BB2A11EE4BAE2E087EAC3A721D2 Validity Not Before: May 17 02:00:56 2025 GMT Not After : May 24 02:00:56 2025 GMT Subject: CN=6827edd9-950a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b3:6c:82:28:ae:7b:3c:db:e0:3d:22:a2:ef: 97:f6:1c:15:d5:f6:75:39:5a:fc:66:91:37:f1:94: 51:f9:99:3c:82:39:8f:7e:88:9c:e8:ea:5f:2f:90: 18:c9:44:7e:54:b7:0f:cd:48:09:c7:25:35:01:54: f1:04:a3:38:2f:34:97:a9:19:f9:b6:46:9a:92:0f: 8a:dd:df:1e:9c:4f:9a:a0:c7:22:7e:66:de:12:45: e0:6c:e7:17:19:64:ba:7e:58:3f:16:6c:55:56:bd: f7:33:24:ff:9e:15:c4:c1:e1:1e:48:c7:82:b0:15: e7:40:a6:5a:2e:46:2b:b1:42:a5:b7:dc:3a:78:cf: 5e:ba:11:b7:31:f2:71:e6:c3:b6:12:ee:1f:01:ac: e2:7e:5e:25:63:d6:46:51:b9:0e:9f:18:a8:c5:69: 53:1a:d8:b4:cc:9c:5a:6e:a9:f2:8f:29:9a:71:ee: 6d:e2:fa:63:0e:13:2a:8f:e2:c2:c4:f5:0d:5e:03: db:27:94:03:5a:07:a0:1b:df:30:06:8b:d6:e8:f4: 98:88:ee:ee:5c:89:67:93:8a:03:ff:3a:09:4b:64: b0:00:85:df:34:66:d7:d5:ed:33:85:a6:7a:6f:c8: 3c:dc:b1:37:b2:8f:1d:6f:b6:23:86:93:75:8e:e8: 79:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:A9:18:3D:98:5C:39:4A:C7:84:5E:4A:60:4A:4C:3F:42:CF:2D:10 X509v3 Authority Key Identifier: keyid:DF:82:6C:B3:BB:7A:8B:B2:A1:1E:E4:BA:E2:E0:87:EA:C3:A7:21:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91162DE/176794D4155A11EDB0A12720C4F9AE02/34Jss7t6i7KhHuS64uCH6sOnIdI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34Jss7t6i7KhHuS64uCH6sOnIdI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91162DE/176794D4155A11EDB0A12720C4F9AE02/34Jss7t6i7KhHuS64uCH6sOnIdI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:c5:aa:0d:64:bd:19:a3:85:78:43:03:28:59:5a:98:0c:70: 4e:fd:64:3b:83:f4:8e:f3:13:9e:da:02:03:0c:ed:22:d3:1e: 35:5a:4d:b5:99:4e:af:18:b0:cf:39:dd:77:9b:41:98:5a:64: 2c:66:5a:e2:44:e8:b5:02:a9:c1:d8:db:ba:bd:bc:a1:54:ce: a0:89:94:ee:20:9e:4f:3e:da:0d:c7:30:43:08:fe:44:72:b1: 5d:7e:d1:17:18:a5:04:c2:bc:99:ee:ed:10:0a:26:18:9a:f1: 8d:1b:54:18:ba:13:66:49:e8:79:b5:8f:96:ef:0e:d0:07:d0: d5:7d:7e:9f:8c:11:ef:26:22:ce:3c:be:86:5d:12:3e:3f:2e: b6:8e:44:cb:f2:ec:88:99:e9:a3:75:19:04:97:f4:30:89:4e: b1:6e:83:0c:24:08:c3:85:a8:e2:a2:b7:0f:2a:97:d5:a2:33: 5f:e6:6b:1f:a3:2b:c9:8c:69:08:5e:04:01:6e:ef:1d:54:39: fb:44:8e:a6:4d:13:ef:43:a9:2f:72:2a:6d:92:d8:0f:56:62: 18:af:6d:17:7b:8c:9e:5b:0d:18:d9:3b:af:f9:7a:0e:71:36: 01:43:72:e8:7c:94:52:e5:9a:2a:ef:77:43:82:e8:a9:44:67: d7:45:3a:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTYyREUxMTAvBgNVBAUTKERGODI2Q0IzQkI3QThCQjJBMTFFRTRCQUUyRTA4N0VB QzNBNzIxRDIwHhcNMjUwNTE3MDIwMDU2WhcNMjUwNTI0MDIwMDU2WjAYMRYwFAYD VQQDEw02ODI3ZWRkOS05NTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7Nsgiiuezzb4D0iou+X9hwV1fZ1OVr8ZpE38ZRR+Zk8gjmPfoic6OpfL5AY yUR+VLcPzUgJxyU1AVTxBKM4LzSXqRn5tkaakg+K3d8enE+aoMcifmbeEkXgbOcX GWS6flg/FmxVVr33MyT/nhXEweEeSMeCsBXnQKZaLkYrsUKlt9w6eM9euhG3MfJx 5sO2Eu4fAazifl4lY9ZGUbkOnxioxWlTGti0zJxabqnyjymace5t4vpjDhMqj+LC xPUNXgPbJ5QDWgegG98wBovW6PSYiO7uXIlnk4oD/zoJS2SwAIXfNGbX1e0zhaZ6 b8g83LE3so8db7YjhpN1juh5yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMWpGD2Y XDlKx4ReSmBKTD9Czy0QMB8GA1UdIwQYMBaAFN+CbLO7eouyoR7kuuLgh+rDpyHS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjJERS8xNzY3OTRENDE1 NUExMUVEQjBBMTI3MjBDNEY5QUUwMi8zNEpzczd0Nmk3S2hIdVM2NHVDSDZzT25J ZEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM0SnNzN3Q2aTdLaEh1UzY0dUNINnNPbklkSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjJERS8xNzY3OTRENDE1NUExMUVEQjBBMTI3MjBDNEY5QUUwMi8zNEpzczd0Nmk3 S2hIdVM2NHVDSDZzT25JZEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaxaoNZL0Zo4V4QwMoWVqYDHBO/WQ7g/SO8xOe2gIDDO0i0x41Wk21 mU6vGLDPOd13m0GYWmQsZlriROi1AqnB2Nu6vbyhVM6giZTuIJ5PPtoNxzBDCP5E crFdftEXGKUEwryZ7u0QCiYYmvGNG1QYuhNmSeh5tY+W7w7QB9DVfX6fjBHvJiLO PL6GXRI+Py62jkTL8uyImemjdRkEl/QwiU6xboMMJAjDhajiorcPKpfVojNf5msf oyvJjGkIXgQBbu8dVDn7RI6mTRPvQ6kvciptktgPVmIYr20Xe4yeWw0Y2Tuv+XoO cTYBQ3LofJRS5Zoq73dDguipRGfXRTqJ -----END CERTIFICATE-----Generated at Sat May 17 19:22:20 2025 by rpki-client