$ rpki-client -vvf rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft File: a9bIzoghkMgWnoE2ReDt2bdX6xk.mft (raw, json) Hash identifier: WMYL+Z0o/zuZTMAtq+ixEGe7JakzK5cUGwdOYPyhjy0= Subject key identifier: 2E:3B:C3:45:C5:E8:B8:E4:B1:49:8E:AC:98:F4:D9:D7:53:52:84:BB Authority key identifier: 6B:D6:C8:CE:88:21:90:C8:16:9E:81:36:45:E0:ED:D9:B7:57:EB:19 Certificate issuer: /CN=A91398E5/serialNumber=6BD6C8CE882190C8169E813645E0EDD9B757EB19 Certificate serial: 1708 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft Manifest number: 203A Signing time: Wed 14 May 2025 16:42:54 +0000 Manifest this update: Wed 14 May 2025 16:42:53 +0000 Manifest next update: Wed 21 May 2025 16:42:53 +0000 Files and hashes: 1: a9bIzoghkMgWnoE2ReDt2bdX6xk.crl (hash: 0AnhzwHcET0fYD2SrFQyZ8QR50ZMyAynlXqcTOuXQxc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.crl rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 16:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5896 (0x1708) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91398E5, serialNumber=6BD6C8CE882190C8169E813645E0EDD9B757EB19 Validity Not Before: May 14 16:42:53 2025 GMT Not After : May 21 16:42:53 2025 GMT Subject: CN=6824c80d-f20e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a1:2d:97:6b:ee:19:5b:83:aa:69:22:ac:12: 0e:7f:ce:f4:91:31:49:fa:8b:ff:92:b1:7f:4e:94: f7:a7:02:75:f2:57:e7:92:24:1e:66:6f:ac:e2:5b: 5e:21:6a:6f:f6:89:f8:30:c2:11:bd:63:76:96:bc: ba:1b:41:74:2e:27:0b:eb:10:8d:30:44:0d:cf:e1: ad:ee:13:b2:90:d2:cc:a5:51:09:f1:cb:28:a6:05: a0:57:b3:bb:89:ae:0c:bd:31:15:c3:12:03:cf:8b: bd:42:5d:dd:4a:33:28:35:08:c9:ef:39:69:df:6a: 0c:14:6e:46:42:1d:2b:b4:a4:b7:05:6e:a8:19:45: 40:9f:d5:ed:fe:c0:49:35:67:2d:2b:a1:af:bd:8f: c9:ae:7d:93:cb:1d:79:74:14:af:a8:54:e1:21:ba: d1:2e:b8:06:c1:1d:2f:84:e5:c7:cd:38:76:d3:eb: 28:3e:95:ca:ba:9a:71:2b:f3:59:a7:4c:b5:39:c4: 18:0a:7f:ce:6d:89:5e:17:17:48:5d:60:8c:1a:7d: 3b:d3:5c:e9:49:08:ca:c8:45:4c:8b:51:83:97:e6: 06:b1:8a:ae:98:4e:d9:26:40:11:de:37:61:c6:7a: 7e:9e:3b:07:44:c7:f2:e0:d4:1e:de:f8:02:1b:04: aa:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:3B:C3:45:C5:E8:B8:E4:B1:49:8E:AC:98:F4:D9:D7:53:52:84:BB X509v3 Authority Key Identifier: keyid:6B:D6:C8:CE:88:21:90:C8:16:9E:81:36:45:E0:ED:D9:B7:57:EB:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:5c:4a:f3:ab:20:99:dc:b8:ae:35:94:7e:6b:54:21:39:ab: 5f:3b:0c:01:80:19:d5:c5:e7:46:88:4e:35:64:02:0e:5e:bd: 65:85:5f:7f:ed:e4:15:1c:5e:19:a6:c1:05:b7:df:c6:e0:65: bd:cf:18:84:a9:53:9c:f8:97:d5:0a:c7:ee:7b:fb:67:d9:c7: 49:02:fe:9f:8b:a0:31:8b:0d:cb:71:eb:93:4d:de:c6:ba:5c: 7d:86:df:a5:f8:06:89:e0:f8:c1:b4:9f:4c:14:90:52:e3:d7: a9:50:31:c6:81:2f:85:45:5f:e5:b8:18:3e:fa:bb:45:7d:1a: b5:56:a6:87:a5:05:6f:10:73:42:2e:94:a8:6f:90:a0:8a:12: c4:ac:44:93:92:a1:f7:0b:a2:02:93:0f:f5:6a:be:44:97:d3: 68:5b:13:2b:f8:9c:3e:3c:36:08:5f:1c:20:28:ea:f5:63:aa: f9:da:84:ba:30:d3:a4:55:b6:94:47:26:35:d5:56:cf:b1:45: 8e:a1:a0:32:09:20:b1:ec:8b:fd:7e:df:4f:fc:bc:4d:dd:d6: 81:42:23:77:7e:f8:89:c0:b4:0a:7d:63:92:04:d7:c4:d7:6e: 01:9e:cc:e0:9a:de:a1:24:1a:49:2c:e0:04:e4:e4:27:43:6b: 5d:9b:8d:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFwgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk4RTUxMTAvBgNVBAUTKDZCRDZDOENFODgyMTkwQzgxNjlFODEzNjQ1RTBFREQ5 Qjc1N0VCMTkwHhcNMjUwNTE0MTY0MjUzWhcNMjUwNTIxMTY0MjUzWjAYMRYwFAYD VQQDEw02ODI0YzgwZC1mMjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvKEtl2vuGVuDqmkirBIOf870kTFJ+ov/krF/TpT3pwJ18lfnkiQeZm+s4lte IWpv9on4MMIRvWN2lry6G0F0LicL6xCNMEQNz+Gt7hOykNLMpVEJ8csopgWgV7O7 ia4MvTEVwxIDz4u9Ql3dSjMoNQjJ7zlp32oMFG5GQh0rtKS3BW6oGUVAn9Xt/sBJ NWctK6GvvY/Jrn2Tyx15dBSvqFThIbrRLrgGwR0vhOXHzTh20+soPpXKuppxK/NZ p0y1OcQYCn/ObYleFxdIXWCMGn0701zpSQjKyEVMi1GDl+YGsYqumE7ZJkAR3jdh xnp+njsHRMfy4NQe3vgCGwSqGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC47w0XF 6LjksUmOrJj02ddTUoS7MB8GA1UdIwQYMBaAFGvWyM6IIZDIFp6BNkXg7dm3V+sZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOThFNS83ODQwRDk1RUU0 OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9hOWJJem9naGtNZ1dub0UyUmVEdDJiZFg2 eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2E5Ykl6b2doa01nV25vRTJSZUR0MmJkWDZ4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OThFNS83ODQwRDk1RUU0OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9hOWJJem9naGtN Z1dub0UyUmVEdDJiZFg2eGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9XErzqyCZ3LiuNZR+a1QhOatfOwwBgBnVxedGiE41ZAIOXr1lhV9/ 7eQVHF4ZpsEFt9/G4GW9zxiEqVOc+JfVCsfue/tn2cdJAv6fi6Axiw3LceuTTd7G ulx9ht+l+AaJ4PjBtJ9MFJBS49epUDHGgS+FRV/luBg++rtFfRq1VqaHpQVvEHNC LpSob5CgihLErESTkqH3C6ICkw/1ar5El9NoWxMr+Jw+PDYIXxwgKOr1Y6r52oS6 MNOkVbaURyY11VbPsUWOoaAyCSCx7Iv9ft9P/LxN3daBQiN3fviJwLQKfWOSBNfE 124Bnszgmt6hJBpJLOAE5OQnQ2tdm42O -----END CERTIFICATE-----Generated at Wed May 14 23:59:49 2025 by rpki-client