$ rpki-client -vvf rpki.apnic.net/member_repository/A91380B5/69463D04CA3D11EC91AC426DC4F9AE02/fmXFj6NDoQxTQ1CrSX_QkM7vv7s.mft File: fmXFj6NDoQxTQ1CrSX_QkM7vv7s.mft (raw, json) Hash identifier: eT0OxT3aDR1J243jwzBbbp8qVf6b1W0MogQWg6v89Ds= Subject key identifier: 04:15:B4:A0:65:CD:B6:B2:CD:8E:03:51:BD:57:9D:56:DC:9C:E7:43 Authority key identifier: 7E:65:C5:8F:A3:43:A1:0C:53:43:50:AB:49:7F:D0:90:CE:EF:BF:BB Certificate issuer: /CN=A91380B5/serialNumber=7E65C58FA343A10C534350AB497FD090CEEFBFBB Certificate serial: 0332 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fmXFj6NDoQxTQ1CrSX_QkM7vv7s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91380B5/69463D04CA3D11EC91AC426DC4F9AE02/fmXFj6NDoQxTQ1CrSX_QkM7vv7s.mft Manifest number: 0324 Signing time: Tue 13 May 2025 00:57:47 +0000 Manifest this update: Tue 13 May 2025 00:57:47 +0000 Manifest next update: Tue 20 May 2025 00:57:47 +0000 Files and hashes: 1: fmXFj6NDoQxTQ1CrSX_QkM7vv7s.crl (hash: RRGJFazlikvYUC2bnjmt16+b8RCjsQRmPUJ+N+TwQ0o=) 2: 121437B45ABB11EF8C696E58C4F9AE02.roa (hash: Sr1dJPYf4TMlmdyHmkZ3DvPV6/M5+cUFUvIXCjxQ2mk=) 3: 245B417CADD411EE95FF6C6DC4F9AE02.roa (hash: bivJnwcabrf/iwZuZLc+oQKC0osH7DqM8uD5h0VU2hw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91380B5/69463D04CA3D11EC91AC426DC4F9AE02/fmXFj6NDoQxTQ1CrSX_QkM7vv7s.crl rsync://rpki.apnic.net/member_repository/A91380B5/69463D04CA3D11EC91AC426DC4F9AE02/fmXFj6NDoQxTQ1CrSX_QkM7vv7s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fmXFj6NDoQxTQ1CrSX_QkM7vv7s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 00:57:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 818 (0x332) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91380B5, serialNumber=7E65C58FA343A10C534350AB497FD090CEEFBFBB Validity Not Before: May 13 00:57:47 2025 GMT Not After : May 20 00:57:47 2025 GMT Subject: CN=6822990b-c454 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:1b:bb:b5:6a:8e:75:86:29:f4:32:38:4c:9a: 9a:dc:5b:6b:86:ce:31:46:74:6c:a4:1b:74:5e:25: 5d:66:44:46:71:8a:4f:7f:46:ca:57:b0:e3:4d:70: 28:57:f1:16:a6:bf:f4:02:05:65:30:6b:e6:d6:b1: eb:0c:56:43:79:67:c2:46:5d:88:05:e2:22:d2:87: e7:72:79:cd:dc:95:23:32:5e:dd:a8:21:aa:a2:6f: 4a:05:24:54:68:f3:85:ac:88:ea:05:f6:2b:97:ec: d8:2e:a6:aa:25:87:30:62:1a:72:59:9a:81:45:b4: 57:8a:c4:c8:ba:ef:f7:04:7c:86:24:d4:24:d9:75: 12:4e:8c:a3:27:9e:30:ca:ba:97:16:45:3c:67:18: 72:ec:2a:01:bc:76:b8:a5:34:94:6d:51:65:97:5e: b5:31:00:0e:34:de:83:33:70:96:a1:6a:c2:a1:77: 33:0d:bc:3b:c6:ef:cb:dd:6b:d0:45:44:61:36:35: 49:b2:e4:73:70:a6:31:92:8d:ee:9a:2c:7c:b2:32: 90:3a:65:d9:a9:9b:4c:97:a0:95:3b:ab:06:ad:e9: db:39:52:6f:3a:f9:b0:ea:8b:7d:ef:2e:a7:d7:be: 6a:b9:b6:ad:f6:0b:83:9e:9a:56:44:3b:ea:10:60: c4:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:15:B4:A0:65:CD:B6:B2:CD:8E:03:51:BD:57:9D:56:DC:9C:E7:43 X509v3 Authority Key Identifier: keyid:7E:65:C5:8F:A3:43:A1:0C:53:43:50:AB:49:7F:D0:90:CE:EF:BF:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91380B5/69463D04CA3D11EC91AC426DC4F9AE02/fmXFj6NDoQxTQ1CrSX_QkM7vv7s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fmXFj6NDoQxTQ1CrSX_QkM7vv7s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91380B5/69463D04CA3D11EC91AC426DC4F9AE02/fmXFj6NDoQxTQ1CrSX_QkM7vv7s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:34:19:7a:c4:cc:0e:9d:1d:e8:84:ef:ef:35:e2:7b:e0:43: 16:35:9c:c9:ff:05:3b:0e:2c:35:1a:eb:c4:2f:f7:36:75:68: c0:8c:6d:23:3d:c8:69:9a:32:8a:8e:d2:43:93:5b:d2:79:1b: 5d:0d:ff:ab:d8:4b:d5:50:0f:e6:a4:db:43:93:b1:18:82:25: 8e:f6:e2:7a:84:5c:c9:2c:25:5f:29:38:c7:d2:ff:42:7e:67: 0a:c3:44:14:9d:85:ed:21:12:e4:5f:ed:28:65:25:87:b4:d4: 20:4c:23:f6:1c:1e:1a:23:20:81:dd:ae:3d:56:c4:3b:6f:9d: 68:8d:3a:2e:aa:7a:e0:71:20:70:36:78:15:73:62:ba:1c:fc: 44:8f:cd:7c:86:36:d6:31:f8:df:17:90:cb:02:1c:c9:ce:ce: 40:56:9f:dc:f4:47:9c:34:d6:50:9f:64:58:b0:11:05:d6:b5: 12:b9:ca:47:26:8f:30:95:1b:05:b4:47:f3:f7:35:a8:d0:7a: 66:28:2e:f6:d6:f2:2d:bb:e9:9f:90:eb:f7:0c:c4:79:4d:ca: 7a:28:f9:72:5d:08:d8:45:53:b0:e2:de:8f:43:c1:93:95:e6: 2e:8a:fb:b7:3b:b8:1f:db:44:6b:1f:8e:ea:74:90:85:2c:4a: be:05:bb:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgwQjUxMTAvBgNVBAUTKDdFNjVDNThGQTM0M0ExMEM1MzQzNTBBQjQ5N0ZEMDkw Q0VFRkJGQkIwHhcNMjUwNTEzMDA1NzQ3WhcNMjUwNTIwMDA1NzQ3WjAYMRYwFAYD VQQDEw02ODIyOTkwYi1jNDU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzRu7tWqOdYYp9DI4TJqa3Ftrhs4xRnRspBt0XiVdZkRGcYpPf0bKV7DjTXAo V/EWpr/0AgVlMGvm1rHrDFZDeWfCRl2IBeIi0ofncnnN3JUjMl7dqCGqom9KBSRU aPOFrIjqBfYrl+zYLqaqJYcwYhpyWZqBRbRXisTIuu/3BHyGJNQk2XUSToyjJ54w yrqXFkU8Zxhy7CoBvHa4pTSUbVFll161MQAONN6DM3CWoWrCoXczDbw7xu/L3WvQ RURhNjVJsuRzcKYxko3umix8sjKQOmXZqZtMl6CVO6sGrenbOVJvOvmw6ot97y6n 175qubat9guDnppWRDvqEGDE5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAQVtKBl zbayzY4DUb1XnVbcnOdDMB8GA1UdIwQYMBaAFH5lxY+jQ6EMU0NQq0l/0JDO77+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODBCNS82OTQ2M0QwNENB M0QxMUVDOTFBQzQyNkRDNEY5QUUwMi9mbVhGajZORG9ReFRRMUNyU1hfUWtNN3Z2 N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZtWEZqNk5Eb1F4VFExQ3JTWF9Ra003dnY3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODBCNS82OTQ2M0QwNENBM0QxMUVDOTFBQzQyNkRDNEY5QUUwMi9mbVhGajZORG9R eFRRMUNyU1hfUWtNN3Z2N3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXNBl6xMwOnR3ohO/vNeJ74EMWNZzJ/wU7Diw1GuvEL/c2dWjAjG0j PchpmjKKjtJDk1vSeRtdDf+r2EvVUA/mpNtDk7EYgiWO9uJ6hFzJLCVfKTjH0v9C fmcKw0QUnYXtIRLkX+0oZSWHtNQgTCP2HB4aIyCB3a49VsQ7b51ojTouqnrgcSBw NngVc2K6HPxEj818hjbWMfjfF5DLAhzJzs5AVp/c9EecNNZQn2RYsBEF1rUSucpH Jo8wlRsFtEfz9zWo0HpmKC721vItu+mfkOv3DMR5Tcp6KPlyXQjYRVOw4t6PQ8GT leYuivu3O7gf20RrH47qdJCFLEq+Bbtk -----END CERTIFICATE-----Generated at Tue May 13 18:57:34 2025 by rpki-client