$ rpki-client -vvf rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft File: 7dKmloaGUlbJsP3da3FJZtU3jzM.mft (raw, json) Hash identifier: +mNYEOrT7Y8OdC/C+3BTpgNdYjucw3oheY71W//T+jE= Subject key identifier: ED:07:8D:4E:BF:E6:79:00:CF:2A:76:95:6F:92:19:37:C2:B7:C9:17 Authority key identifier: ED:D2:A6:96:86:86:52:56:C9:B0:FD:DD:6B:71:49:66:D5:37:8F:33 Certificate issuer: /CN=A912D3CB/serialNumber=EDD2A69686865256C9B0FDDD6B714966D5378F33 Certificate serial: 0A59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft Manifest number: 0A44 Signing time: Mon 12 May 2025 19:35:24 +0000 Manifest this update: Mon 12 May 2025 19:35:23 +0000 Manifest next update: Mon 19 May 2025 19:35:23 +0000 Files and hashes: 1: 7dKmloaGUlbJsP3da3FJZtU3jzM.crl (hash: G32X/MEMVjt80eap3pwxED6TIUfrXfpU8WkFqBQjaJ4=) 2: 923B6404466B11EE8B37E13CC4F9AE02.roa (hash: horX5P75gumDA8WyF+ghzmHcSe0CjNBHMfSInHVl7ao=) 3: C2E32E34466B11EE988B243DC4F9AE02.roa (hash: hBn0Qcv2Wj2OFO1BXPRpxsQ8U4zswJ2i/kTyMm1Zr1Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.crl rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 19:35:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2649 (0xa59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D3CB, serialNumber=EDD2A69686865256C9B0FDDD6B714966D5378F33 Validity Not Before: May 12 19:35:23 2025 GMT Not After : May 19 19:35:23 2025 GMT Subject: CN=68224d7c-16ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c6:89:8a:59:e2:94:30:17:8b:be:da:5d:46: e5:55:ee:9e:03:69:7a:47:a8:1e:98:d4:15:51:c5: cf:d8:80:a4:a2:67:f8:ea:86:b1:06:95:ce:46:f2: 82:16:6a:ee:37:cd:64:b4:71:35:11:e2:4d:30:71: 07:d6:2a:80:52:5a:e7:4d:13:48:da:23:ea:7a:6a: 75:5a:fc:e2:ce:24:8c:3b:4f:b9:6f:95:22:78:47: 48:65:50:16:e8:c3:87:65:16:4a:4d:7c:c0:f1:cf: 9e:f1:0f:ca:47:cc:38:57:b4:e5:24:02:be:62:88: 9a:60:cf:44:e2:52:ea:9b:c2:82:35:2b:ae:0e:90: d4:6b:88:ea:04:6d:fb:1f:3d:06:90:bd:db:27:b4: cc:a6:b5:56:ea:9e:b0:ac:b3:a7:bf:fc:cf:34:26: d2:43:e6:fb:cf:d6:98:ec:af:90:aa:7b:e3:68:a2: 40:34:46:fd:17:4a:a1:4b:f7:e2:b9:28:46:06:9b: ca:ed:8e:47:6c:56:4d:9d:82:d9:b1:ca:0f:60:3e: e9:f1:b6:11:24:ce:54:d1:84:9b:95:de:9b:ed:a9: 05:e0:f5:e7:4e:cf:5a:f3:04:fe:96:9d:5c:34:f3: e0:49:49:00:9a:90:b6:d8:13:f6:ab:a4:db:55:42: 94:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:07:8D:4E:BF:E6:79:00:CF:2A:76:95:6F:92:19:37:C2:B7:C9:17 X509v3 Authority Key Identifier: keyid:ED:D2:A6:96:86:86:52:56:C9:B0:FD:DD:6B:71:49:66:D5:37:8F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:9a:07:d1:fb:56:cf:8b:ba:81:91:b5:c9:18:49:c5:4d:a4: c0:52:f6:0d:bd:d7:ea:a0:2b:49:9c:6e:4a:93:78:15:ad:3a: cb:a8:7a:ce:92:b9:e0:a2:95:c2:43:3b:88:9d:b6:3f:32:c3: 4e:cd:08:ad:ca:3e:fd:7a:57:ba:12:15:1b:71:94:a1:98:58: 0c:6b:ff:81:44:dd:10:09:2c:0c:7d:42:96:34:93:53:29:b9: e7:73:a2:6a:75:21:8a:8a:c6:a9:d9:78:3b:68:e8:11:e8:d0: e3:3c:51:ec:6a:02:80:7a:92:8f:8e:33:1b:1a:81:5e:1f:33: 5e:00:d7:b1:ef:eb:c0:e9:b7:58:89:af:e8:03:3b:6b:ef:34: e2:b1:ad:f4:3f:d1:5d:7c:0c:f5:5c:99:f2:14:b6:fa:ba:3d: 9f:53:20:34:a5:0a:3c:e7:22:20:42:a3:de:4e:27:79:13:fa: 73:a6:20:84:d4:f5:6b:2a:a2:7d:4a:de:a6:e1:c2:af:64:16: 9c:0d:57:af:48:6d:79:e4:5d:46:81:11:49:a4:de:0d:93:d1: bc:58:0e:64:d0:e4:76:51:bd:37:06:dc:d3:a5:60:fd:61:d9: e9:31:bc:31:d8:38:a3:f5:2d:9b:52:18:4a:e8:0a:ce:a9:66: 3a:86:b8:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQzQ0IxMTAvBgNVBAUTKEVERDJBNjk2ODY4NjUyNTZDOUIwRkRERDZCNzE0OTY2 RDUzNzhGMzMwHhcNMjUwNTEyMTkzNTIzWhcNMjUwNTE5MTkzNTIzWjAYMRYwFAYD VQQDEw02ODIyNGQ3Yy0xNmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyMaJilnilDAXi77aXUblVe6eA2l6R6gemNQVUcXP2ICkomf46oaxBpXORvKC FmruN81ktHE1EeJNMHEH1iqAUlrnTRNI2iPqemp1WvziziSMO0+5b5UieEdIZVAW 6MOHZRZKTXzA8c+e8Q/KR8w4V7TlJAK+YoiaYM9E4lLqm8KCNSuuDpDUa4jqBG37 Hz0GkL3bJ7TMprVW6p6wrLOnv/zPNCbSQ+b7z9aY7K+QqnvjaKJANEb9F0qhS/fi uShGBpvK7Y5HbFZNnYLZscoPYD7p8bYRJM5U0YSbld6b7akF4PXnTs9a8wT+lp1c NPPgSUkAmpC22BP2q6TbVUKUdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO0HjU6/ 5nkAzyp2lW+SGTfCt8kXMB8GA1UdIwQYMBaAFO3SppaGhlJWybD93WtxSWbVN48z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDNDQi9BOUE0MzlGQzY5 QjIxMUVBOTc3OURENDhDNEY5QUUwMi83ZEttbG9hR1VsYkpzUDNkYTNGSlp0VTNq ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdkS21sb2FHVWxiSnNQM2RhM0ZKWnRVM2p6TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDNDQi9BOUE0MzlGQzY5QjIxMUVBOTc3OURENDhDNEY5QUUwMi83ZEttbG9hR1Vs YkpzUDNkYTNGSlp0VTNqek0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFmgfR+1bPi7qBkbXJGEnFTaTAUvYNvdfqoCtJnG5Kk3gVrTrLqHrO krngopXCQzuInbY/MsNOzQityj79ele6EhUbcZShmFgMa/+BRN0QCSwMfUKWNJNT Kbnnc6JqdSGKisap2Xg7aOgR6NDjPFHsagKAepKPjjMbGoFeHzNeANex7+vA6bdY ia/oAztr7zTisa30P9FdfAz1XJnyFLb6uj2fUyA0pQo85yIgQqPeTid5E/pzpiCE 1PVrKqJ9St6m4cKvZBacDVevSG155F1GgRFJpN4Nk9G8WA5k0OR2Ub03BtzTpWD9 YdnpMbwx2Dij9S2bUhhK6ArOqWY6hrjP -----END CERTIFICATE-----Generated at Tue May 13 18:26:07 2025 by rpki-client