$ rpki-client -vvf rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft File: baFr8M0J73aPkCE7ZtjLw86TQgY.mft (raw, json) Hash identifier: WzXU1ruq2X1i7GMJGssLusfv3hrGHZ9NeljYkkY5YSk= Subject key identifier: 32:2A:2B:D8:C7:98:29:69:4A:99:12:73:77:9F:12:BA:5D:EC:BB:1E Authority key identifier: 6D:A1:6B:F0:CD:09:EF:76:8F:90:21:3B:66:D8:CB:C3:CE:93:42:06 Certificate issuer: /CN=A9151B71/serialNumber=6DA16BF0CD09EF768F90213B66D8CBC3CE934206 Certificate serial: 0740 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft Manifest number: 0737 Signing time: Mon 12 May 2025 21:34:09 +0000 Manifest this update: Mon 12 May 2025 21:34:08 +0000 Manifest next update: Mon 19 May 2025 21:34:08 +0000 Files and hashes: 1: baFr8M0J73aPkCE7ZtjLw86TQgY.crl (hash: wTANTJQjDQuwavASZTBoGVfBSrMiawgbGEBbjxDxjl8=) 2: 0A866A522EAB11EBAB198239C4F9AE02.roa (hash: y8a8NpATY6YYaN1sCCi6QGlP5oTWUdFfM/H2gKyeO+A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.crl rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 21:34:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1856 (0x740) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151B71, serialNumber=6DA16BF0CD09EF768F90213B66D8CBC3CE934206 Validity Not Before: May 12 21:34:08 2025 GMT Not After : May 19 21:34:08 2025 GMT Subject: CN=68226950-24b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:16:cf:4b:94:92:6d:a9:77:a4:92:47:9f:f4: e7:93:e4:81:e2:fc:7d:ab:3d:0f:03:3b:c7:a2:54: df:a5:00:cc:8d:e7:8d:3c:c4:c8:d6:50:8b:85:d4: a7:50:5a:2f:0e:8e:08:c7:1b:b5:fe:b5:d2:e8:db: ec:c7:f2:f5:d2:59:10:ea:40:47:62:82:9c:66:ff: b3:95:c1:6c:82:50:8b:ba:e2:ae:7b:f0:3d:3c:fa: 36:77:d8:f6:a5:20:ad:71:3f:e9:02:a3:34:3e:58: 2e:b6:1b:c4:b6:c0:dc:28:d9:0a:53:fa:2f:ca:8a: 93:5a:1f:5e:43:cf:6f:81:5d:bf:a8:b5:d7:80:21: aa:cf:bb:98:36:b3:1a:d2:64:0c:00:79:dc:e8:37: 6b:ca:eb:0b:5b:96:1e:cd:90:66:87:a3:ac:b2:a4: 68:81:c0:63:53:7a:13:41:25:74:b6:c6:28:5b:25: f2:d5:61:cd:a3:7a:e1:ce:28:65:d7:02:f9:24:9d: 03:40:74:b2:65:ef:fc:38:de:c0:84:43:98:35:de: 8c:99:95:92:37:ba:56:b4:d5:b1:f5:aa:f0:8f:39: dc:f2:09:64:99:e1:fa:3d:0d:e5:55:fe:95:4b:05: 8e:29:2c:e0:27:0e:b6:92:dc:a8:59:71:4f:24:65: f8:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:2A:2B:D8:C7:98:29:69:4A:99:12:73:77:9F:12:BA:5D:EC:BB:1E X509v3 Authority Key Identifier: keyid:6D:A1:6B:F0:CD:09:EF:76:8F:90:21:3B:66:D8:CB:C3:CE:93:42:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:f0:3a:1f:81:c5:1d:64:8f:f2:31:61:45:46:fe:5e:c0:d9: c9:66:30:c7:c4:11:46:bd:d9:b8:d9:e1:db:c3:b5:74:49:eb: 44:d2:71:fc:b2:dd:c7:ea:7a:d2:90:7a:86:41:52:41:46:2c: f8:45:90:a4:ad:28:99:a0:dc:07:79:44:ec:b5:b5:e5:e3:8e: 65:b8:7c:62:d0:69:56:20:e7:bc:ed:47:db:31:f1:46:91:91: 70:e7:f4:19:32:93:70:ac:4c:20:1d:e8:2a:5f:01:63:2c:83: 0d:25:3a:d1:78:f3:ff:91:c0:3e:f7:b3:9f:38:0d:f4:75:5b: 94:6e:e9:d3:13:63:8d:1a:de:79:ec:0d:02:fe:78:47:34:35: aa:b5:db:90:8f:4f:f7:62:09:a3:2a:85:d9:56:85:23:24:b7: 98:ab:88:07:0d:b6:ba:aa:1d:96:9e:4a:f5:32:0b:47:b5:83: d6:2e:09:b1:6d:e7:7b:77:bd:0a:82:aa:36:b9:c1:c3:82:b0: b8:96:d3:a6:cb:ad:1f:7b:41:fe:9e:f2:a9:32:d4:b9:8b:02: b0:72:83:1f:71:11:5e:a4:3e:d1:18:a3:5a:44:a2:6e:83:75: 8c:aa:d0:0f:32:b3:1b:d0:0f:d6:2a:ad:27:86:08:ed:c8:4c: 87:99:04:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFCNzExMTAvBgNVBAUTKDZEQTE2QkYwQ0QwOUVGNzY4RjkwMjEzQjY2RDhDQkMz Q0U5MzQyMDYwHhcNMjUwNTEyMjEzNDA4WhcNMjUwNTE5MjEzNDA4WjAYMRYwFAYD VQQDEw02ODIyNjk1MC0yNGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5xbPS5SSbal3pJJHn/Tnk+SB4vx9qz0PAzvHolTfpQDMjeeNPMTI1lCLhdSn UFovDo4Ixxu1/rXS6Nvsx/L10lkQ6kBHYoKcZv+zlcFsglCLuuKue/A9PPo2d9j2 pSCtcT/pAqM0PlguthvEtsDcKNkKU/ovyoqTWh9eQ89vgV2/qLXXgCGqz7uYNrMa 0mQMAHnc6DdryusLW5YezZBmh6OssqRogcBjU3oTQSV0tsYoWyXy1WHNo3rhzihl 1wL5JJ0DQHSyZe/8ON7AhEOYNd6MmZWSN7pWtNWx9arwjznc8glkmeH6PQ3lVf6V SwWOKSzgJw62ktyoWXFPJGX4aQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDIqK9jH mClpSpkSc3efErpd7LseMB8GA1UdIwQYMBaAFG2ha/DNCe92j5AhO2bYy8POk0IG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUI3MS85RkQ1RjgwRTJF QTkxMUVCOTE2OEZCMzdDNEY5QUUwMi9iYUZyOE0wSjczYVBrQ0U3WnRqTHc4NlRR Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JhRnI4TTBKNzNhUGtDRTdadGpMdzg2VFFnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MUI3MS85RkQ1RjgwRTJFQTkxMUVCOTE2OEZCMzdDNEY5QUUwMi9iYUZyOE0wSjcz YVBrQ0U3WnRqTHc4NlRRZ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBE8DofgcUdZI/yMWFFRv5ewNnJZjDHxBFGvdm42eHbw7V0SetE0nH8 st3H6nrSkHqGQVJBRiz4RZCkrSiZoNwHeUTstbXl445luHxi0GlWIOe87UfbMfFG kZFw5/QZMpNwrEwgHegqXwFjLIMNJTrRePP/kcA+97OfOA30dVuUbunTE2ONGt55 7A0C/nhHNDWqtduQj0/3YgmjKoXZVoUjJLeYq4gHDba6qh2Wnkr1MgtHtYPWLgmx bed7d70Kgqo2ucHDgrC4ltOmy60fe0H+nvKpMtS5iwKwcoMfcRFepD7RGKNaRKJu g3WMqtAPMrMb0A/WKq0nhgjtyEyHmQRt -----END CERTIFICATE-----Generated at Wed May 14 04:42:14 2025 by rpki-client