$ rpki-client -vvf rpki.apnic.net/member_repository/A913A81E/91C9559C34FA11EB98941E7BC4F9AE02/bcDHAorrOzsmYx9pJXBQC2DtJxk.mft File: bcDHAorrOzsmYx9pJXBQC2DtJxk.mft (raw, json) Hash identifier: 4iF3JK7EVY5CDQLBW53VZetwi1Uy+1rJ/YgEV4S1e74= Subject key identifier: 04:BF:0D:F4:CC:EE:95:C2:6C:BD:64:47:0B:A1:8D:A2:2C:81:F3:2B Authority key identifier: 6D:C0:C7:02:8A:EB:3B:3B:26:63:1F:69:25:70:50:0B:60:ED:27:19 Certificate issuer: /CN=A913A81E/serialNumber=6DC0C7028AEB3B3B26631F692570500B60ED2719 Certificate serial: 0727 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bcDHAorrOzsmYx9pJXBQC2DtJxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A81E/91C9559C34FA11EB98941E7BC4F9AE02/bcDHAorrOzsmYx9pJXBQC2DtJxk.mft Manifest number: 0721 Signing time: Mon 12 May 2025 21:37:23 +0000 Manifest this update: Mon 12 May 2025 21:37:23 +0000 Manifest next update: Mon 19 May 2025 21:37:23 +0000 Files and hashes: 1: bcDHAorrOzsmYx9pJXBQC2DtJxk.crl (hash: u4C30JhSStuJ5OV5ad9Yvwbl8FtG6Kpd+SAmp28J48w=) 2: C562A08C34FC11EB9AA0EE7DC4F9AE02.roa (hash: iwf2bc8877eQNQdlvgE9Pwyqx+IwGNsKelNjJ8iJuYw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A81E/91C9559C34FA11EB98941E7BC4F9AE02/bcDHAorrOzsmYx9pJXBQC2DtJxk.crl rsync://rpki.apnic.net/member_repository/A913A81E/91C9559C34FA11EB98941E7BC4F9AE02/bcDHAorrOzsmYx9pJXBQC2DtJxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bcDHAorrOzsmYx9pJXBQC2DtJxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 21:37:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1831 (0x727) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A81E, serialNumber=6DC0C7028AEB3B3B26631F692570500B60ED2719 Validity Not Before: May 12 21:37:23 2025 GMT Not After : May 19 21:37:23 2025 GMT Subject: CN=68226a13-9966 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:25:19:39:98:61:1d:ae:aa:26:37:71:17:6a: 3d:31:43:ed:48:8d:d7:aa:2e:35:cb:1b:8e:cf:54: 7c:a9:88:7c:81:10:9f:15:33:55:ad:7d:95:a1:c1: 06:53:7f:ba:3b:97:70:5c:82:71:e2:a5:ea:6f:08: 59:c7:50:27:40:4f:b9:6f:a5:d8:2d:d0:db:7c:5e: 60:14:14:e3:04:f1:f2:26:01:7b:25:45:f3:83:bd: 71:df:c3:52:cb:96:5c:f3:f5:1a:07:b7:e3:ef:6f: 59:32:d7:1e:24:eb:54:17:6f:13:ce:91:f2:95:53: 2e:dd:8e:b1:53:6e:80:4c:29:5a:c1:f0:ba:c0:af: b1:ac:bd:2e:59:55:77:f7:eb:82:cf:35:9c:1a:38: 67:88:41:d3:5f:a2:c9:26:c9:f4:36:f0:85:14:d4: 4a:27:9c:37:11:17:60:d8:f2:8f:a7:c1:41:2c:55: 2f:ab:04:e6:69:17:d7:38:47:cb:98:87:f2:48:7f: 99:26:5b:ac:11:30:6e:c9:6f:57:80:c1:35:d7:94: 24:b6:d4:31:bd:e2:93:79:10:ac:23:20:d5:bb:ca: 74:c5:d7:13:8c:d2:82:52:ba:8f:89:28:e4:71:fe: c3:46:3c:c1:19:be:83:d6:df:cb:c4:06:e1:c5:32: e2:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:BF:0D:F4:CC:EE:95:C2:6C:BD:64:47:0B:A1:8D:A2:2C:81:F3:2B X509v3 Authority Key Identifier: keyid:6D:C0:C7:02:8A:EB:3B:3B:26:63:1F:69:25:70:50:0B:60:ED:27:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A81E/91C9559C34FA11EB98941E7BC4F9AE02/bcDHAorrOzsmYx9pJXBQC2DtJxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bcDHAorrOzsmYx9pJXBQC2DtJxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A81E/91C9559C34FA11EB98941E7BC4F9AE02/bcDHAorrOzsmYx9pJXBQC2DtJxk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:d1:c8:3e:c9:00:cc:1f:9d:91:38:b1:58:ee:9b:eb:80:d1: f8:6a:1a:99:d1:26:c6:a6:9e:6d:b2:61:eb:57:43:92:a2:1e: 76:f6:2b:2e:41:4d:a4:26:0b:d4:fb:7a:21:d9:dd:7d:90:07: 25:ba:2e:50:77:77:e1:1a:cc:65:c8:4c:73:7e:d6:7e:e9:c6: e8:a5:bd:57:53:88:83:7a:34:af:a5:ca:0e:45:dd:7f:2c:c0: e8:4f:b1:0b:dc:e8:27:af:f9:69:67:06:82:24:ce:02:74:bc: 4c:92:0f:ab:58:66:a0:46:aa:da:49:b2:da:7f:27:e2:e8:9a: 2a:a3:6a:75:21:18:f6:17:e0:19:5d:02:89:31:29:1c:29:da: 9b:c0:ec:65:22:a5:6d:27:fb:ea:f7:be:7a:8f:f7:ce:28:21: c0:f2:7a:df:e5:a4:9f:b5:56:33:83:ba:46:50:c3:69:b4:31: f2:ec:0c:27:43:e7:55:f4:0f:01:a7:8e:43:69:00:d7:13:45: b5:37:3d:de:03:77:c3:5f:de:eb:0e:fc:df:1a:1d:03:16:a9: 54:38:4b:65:22:05:ae:00:66:63:e7:0e:4c:ba:d2:b6:06:a1: 3a:b6:ca:e4:77:0a:7d:82:c5:b4:1a:65:03:d4:13:1d:e7:a0: b9:39:65:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBycwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E4MUUxMTAvBgNVBAUTKDZEQzBDNzAyOEFFQjNCM0IyNjYzMUY2OTI1NzA1MDBC NjBFRDI3MTkwHhcNMjUwNTEyMjEzNzIzWhcNMjUwNTE5MjEzNzIzWjAYMRYwFAYD VQQDEw02ODIyNmExMy05OTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0CUZOZhhHa6qJjdxF2o9MUPtSI3Xqi41yxuOz1R8qYh8gRCfFTNVrX2VocEG U3+6O5dwXIJx4qXqbwhZx1AnQE+5b6XYLdDbfF5gFBTjBPHyJgF7JUXzg71x38NS y5Zc8/UaB7fj729ZMtceJOtUF28TzpHylVMu3Y6xU26ATClawfC6wK+xrL0uWVV3 9+uCzzWcGjhniEHTX6LJJsn0NvCFFNRKJ5w3ERdg2PKPp8FBLFUvqwTmaRfXOEfL mIfySH+ZJlusETBuyW9XgME115QkttQxveKTeRCsIyDVu8p0xdcTjNKCUrqPiSjk cf7DRjzBGb6D1t/LxAbhxTLiMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAS/DfTM 7pXCbL1kRwuhjaIsgfMrMB8GA1UdIwQYMBaAFG3AxwKK6zs7JmMfaSVwUAtg7ScZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTgxRS85MUM5NTU5QzM0 RkExMUVCOTg5NDFFN0JDNEY5QUUwMi9iY0RIQW9yck96c21ZeDlwSlhCUUMyRHRK eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JjREhBb3JyT3pzbVl4OXBKWEJRQzJEdEp4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTgxRS85MUM5NTU5QzM0RkExMUVCOTg5NDFFN0JDNEY5QUUwMi9iY0RIQW9yck96 c21ZeDlwSlhCUUMyRHRKeGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAV0cg+yQDMH52ROLFY7pvrgNH4ahqZ0SbGpp5tsmHrV0OSoh529isu QU2kJgvU+3oh2d19kAclui5Qd3fhGsxlyExzftZ+6cbopb1XU4iDejSvpcoORd1/ LMDoT7EL3Ognr/lpZwaCJM4CdLxMkg+rWGagRqraSbLafyfi6Joqo2p1IRj2F+AZ XQKJMSkcKdqbwOxlIqVtJ/vq9756j/fOKCHA8nrf5aSftVYzg7pGUMNptDHy7Awn Q+dV9A8Bp45DaQDXE0W1Nz3eA3fDX97rDvzfGh0DFqlUOEtlIgWuAGZj5w5MutK2 BqE6tsrkdwp9gsW0GmUD1BMd56C5OWW7 -----END CERTIFICATE-----Generated at Tue May 13 18:57:35 2025 by rpki-client