$ rpki-client -vvf rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.mft File: M_iOrx5M4PGhh31J75fA5_7cA5o.mft (raw, json) Hash identifier: Q2FfGHM7+ET/wVX7Eqk6W7tdax/wba+RG/v4Q2jgI+s= Subject key identifier: 9C:A3:56:A4:24:59:79:3E:52:36:26:27:C1:92:47:38:EF:39:B6:09 Authority key identifier: 33:F8:8E:AF:1E:4C:E0:F1:A1:87:7D:49:EF:97:C0:E7:FE:DC:03:9A Certificate issuer: /CN=A91758DF/serialNumber=33F88EAF1E4CE0F1A1877D49EF97C0E7FEDC039A Certificate serial: 0484 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M_iOrx5M4PGhh31J75fA5_7cA5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.mft Manifest number: 047A Signing time: Sat 10 May 2025 20:34:58 +0000 Manifest this update: Sat 10 May 2025 20:34:57 +0000 Manifest next update: Sat 17 May 2025 20:34:57 +0000 Files and hashes: 1: M_iOrx5M4PGhh31J75fA5_7cA5o.crl (hash: ZStZW+gog3XVo6F0MF/vaDCooBaM70b5zyjvMsggIec=) 2: E763AA76A3E811EC8665D621C4F9AE02.roa (hash: Ao2xYTosLdprmQ1iWk+n5IxTYfK7aKOeNtfro7ROk4k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.crl rsync://rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M_iOrx5M4PGhh31J75fA5_7cA5o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 18:23:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1156 (0x484) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91758DF, serialNumber=33F88EAF1E4CE0F1A1877D49EF97C0E7FEDC039A Validity Not Before: May 10 20:34:57 2025 GMT Not After : May 17 20:34:57 2025 GMT Subject: CN=681fb871-4624 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0d:db:12:20:45:c5:ad:e7:82:44:89:f7:c6: 1c:04:7e:8d:b4:81:e0:51:78:64:58:1d:9e:45:35: b2:51:53:dc:1f:13:11:96:4d:2e:a0:cf:38:d2:c7: ec:b5:ad:8b:99:eb:e1:e7:74:76:ab:b5:76:fe:37: df:7d:43:b3:26:f0:ed:a1:9f:49:a9:8d:a5:d0:ec: f0:12:7c:b7:0c:ca:f5:3e:e9:66:8a:3f:05:0d:19: 62:a1:5c:fe:de:41:99:a4:ca:d4:fe:3c:07:48:35: ca:d1:a7:a5:79:ab:72:a7:88:9b:ad:65:1a:e5:1d: a8:54:83:36:70:b5:b5:3d:3a:82:7b:d2:c0:f0:26: 02:16:e3:d4:67:58:21:65:05:90:75:e7:5e:7d:86: c7:27:60:9d:7e:c8:dd:ed:55:1a:3d:67:bb:d7:75: ed:b3:33:3d:08:92:1c:e6:37:4d:33:db:ef:b0:ba: 5a:68:21:81:86:3a:88:8c:5a:0b:88:3a:db:e1:8f: 6c:1f:98:e5:31:7b:42:5f:e2:ae:19:1f:b5:ac:36: 9a:75:a8:c5:d4:40:6f:72:ce:62:5e:5f:e4:f0:76: 72:4a:45:41:b3:4a:88:8e:a5:24:12:4c:a1:0b:fb: 4e:b7:80:08:9c:5b:68:d9:07:a6:95:b3:d1:5b:d9: 12:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:A3:56:A4:24:59:79:3E:52:36:26:27:C1:92:47:38:EF:39:B6:09 X509v3 Authority Key Identifier: keyid:33:F8:8E:AF:1E:4C:E0:F1:A1:87:7D:49:EF:97:C0:E7:FE:DC:03:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M_iOrx5M4PGhh31J75fA5_7cA5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:0d:d9:cd:ef:e3:65:09:8b:e8:07:89:df:36:0c:b2:86:24: 45:c5:3d:25:0c:29:21:ad:6a:79:93:5e:bd:74:1e:67:85:a5: 78:75:f3:9c:77:36:29:ab:c0:19:2a:a0:54:4d:0d:68:a0:13: 68:44:66:5a:f9:e1:b6:70:7d:54:90:ab:6f:66:66:df:36:82: f9:da:92:24:54:da:29:67:d6:5d:7d:78:9a:d6:8e:aa:79:86: cd:96:ba:6a:03:4b:0d:6e:65:68:ac:d4:d3:a0:45:37:97:20: 58:cb:13:29:24:2c:15:e7:da:55:c4:cf:58:a6:9b:25:10:75: 03:42:07:29:e6:ad:51:80:19:79:67:d1:5a:10:ba:02:3a:f1: fa:2e:ea:cc:d3:81:cd:db:db:ea:0d:3e:5b:29:b0:d9:b1:59: 54:e0:6b:1f:f6:61:5b:bc:76:09:69:e6:c0:5d:3a:c7:6c:cb: a0:6e:42:cc:7a:b5:d4:a5:64:a4:6f:27:fe:3e:9d:e8:36:a6: 36:08:8e:fc:f0:51:51:c2:85:71:9a:ad:00:a3:66:14:61:93: 53:00:aa:e7:58:a8:fe:70:e8:3c:5d:2d:53:58:e5:dd:67:b9: d6:29:52:ca:e5:6c:82:01:97:3b:54:04:d3:c8:fe:03:15:37: 6b:2f:86:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU4REYxMTAvBgNVBAUTKDMzRjg4RUFGMUU0Q0UwRjFBMTg3N0Q0OUVGOTdDMEU3 RkVEQzAzOUEwHhcNMjUwNTEwMjAzNDU3WhcNMjUwNTE3MjAzNDU3WjAYMRYwFAYD VQQDEw02ODFmYjg3MS00NjI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQ3bEiBFxa3ngkSJ98YcBH6NtIHgUXhkWB2eRTWyUVPcHxMRlk0uoM840sfs ta2Lmevh53R2q7V2/jfffUOzJvDtoZ9JqY2l0OzwEny3DMr1Pulmij8FDRlioVz+ 3kGZpMrU/jwHSDXK0aeleatyp4ibrWUa5R2oVIM2cLW1PTqCe9LA8CYCFuPUZ1gh ZQWQdedefYbHJ2Cdfsjd7VUaPWe713XtszM9CJIc5jdNM9vvsLpaaCGBhjqIjFoL iDrb4Y9sH5jlMXtCX+KuGR+1rDaadajF1EBvcs5iXl/k8HZySkVBs0qIjqUkEkyh C/tOt4AInFto2QemlbPRW9kSxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJyjVqQk WXk+UjYmJ8GSRzjvObYJMB8GA1UdIwQYMBaAFDP4jq8eTODxoYd9Se+XwOf+3AOa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NThERi84NjczNjA4MDQ3 RkUxMUVDOUNERjRCMEFDNEY5QUUwMi9NX2lPcng1TTRQR2hoMzFKNzVmQTVfN2NB NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01faU9yeDVNNFBHaGgzMUo3NWZBNV83Y0E1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NThERi84NjczNjA4MDQ3RkUxMUVDOUNERjRCMEFDNEY5QUUwMi9NX2lPcng1TTRQ R2hoMzFKNzVmQTVfN2NBNW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6DdnN7+NlCYvoB4nfNgyyhiRFxT0lDCkhrWp5k169dB5nhaV4dfOc dzYpq8AZKqBUTQ1ooBNoRGZa+eG2cH1UkKtvZmbfNoL52pIkVNopZ9ZdfXia1o6q eYbNlrpqA0sNbmVorNTToEU3lyBYyxMpJCwV59pVxM9YppslEHUDQgcp5q1RgBl5 Z9FaELoCOvH6LurM04HN29vqDT5bKbDZsVlU4Gsf9mFbvHYJaebAXTrHbMugbkLM erXUpWSkbyf+Pp3oNqY2CI788FFRwoVxmq0Ao2YUYZNTAKrnWKj+cOg8XS1TWOXd Z7nWKVLK5WyCAZc7VATTyP4DFTdrL4YK -----END CERTIFICATE-----Generated at Sun May 11 01:13:29 2025 by rpki-client