$ rpki-client -vvf rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.mft File: MmRDZHmlDtQMz9K3BOYCSWCOQ6g.mft (raw, json) Hash identifier: ihMAoSkQkBhYlSggn/JuUDMd9d4pAA3blhvlP721KMU= Subject key identifier: A3:AB:FE:6E:63:F2:73:73:60:C9:1F:D9:0C:25:FC:03:E2:AA:1A:B9 Authority key identifier: 32:64:43:64:79:A5:0E:D4:0C:CF:D2:B7:04:E6:02:49:60:8E:43:A8 Certificate issuer: /CN=A918C88D/serialNumber=3264436479A50ED40CCFD2B704E60249608E43A8 Certificate serial: 0B35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.mft Manifest number: 0B20 Signing time: Mon 12 May 2025 19:05:19 +0000 Manifest this update: Mon 12 May 2025 19:05:17 +0000 Manifest next update: Mon 19 May 2025 19:05:17 +0000 Files and hashes: 1: MmRDZHmlDtQMz9K3BOYCSWCOQ6g.crl (hash: DyyNWBuCP9NAafrOrWYIrGpoHMDZ5mjoxJPO8yKLtX4=) 2: E1EFDAA8F40611EAA5B2244FC4F9AE02.roa (hash: da18YanehMb25ZME1c4CpzCwhlEVLs96RlfGiZoiMxU=) 3: E324E2F6F40611EAA5B2244FC4F9AE02.roa (hash: feQeohVrk3aa2EM/daTKcvI0d6w6k0q2b/efqxvduBI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.crl rsync://rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 19:05:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2869 (0xb35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C88D, serialNumber=3264436479A50ED40CCFD2B704E60249608E43A8 Validity Not Before: May 12 19:05:17 2025 GMT Not After : May 19 19:05:17 2025 GMT Subject: CN=6822466e-a161 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:03:a6:0b:bd:62:41:04:ab:9b:5e:47:0c:b9: 0b:91:e3:df:5c:0e:e0:51:e6:dd:32:eb:26:c3:99: be:8c:58:08:f5:bf:ea:88:fe:f1:b6:45:1d:7e:03: 5b:7f:d0:ed:e2:01:9e:4a:3d:46:99:e3:9f:aa:0e: 59:ad:99:43:3a:bf:4f:54:87:9e:e4:1f:21:26:4e: 8c:4e:02:08:fa:fc:ca:cc:cd:a6:cc:92:85:5c:69: 0b:c8:94:7a:76:1f:c2:2d:4d:6f:ff:ed:87:e7:f1: b8:13:92:40:9d:9e:34:2a:72:bc:e9:c1:03:eb:fd: c6:87:18:62:49:3d:cc:d4:a5:36:d6:b3:7b:81:a8: 1a:e8:7b:31:33:d5:db:53:35:17:a6:a1:64:7a:9e: cc:aa:d2:37:45:12:9a:c7:5a:11:ee:7f:58:6e:5e: f9:00:65:19:e9:cc:b8:c7:80:4d:6c:d6:b6:35:a5: d6:73:8f:ec:47:97:93:b9:b0:9f:7b:17:3c:70:27: 5d:5d:8a:d6:1d:d3:e6:b9:ee:ad:68:9d:39:2c:cd: eb:fa:c5:dd:e9:f7:f3:c8:2f:81:92:01:5f:bd:c6: dd:a1:9b:ed:cd:20:a6:5c:58:e4:54:a2:0a:a7:35: 42:99:3f:67:5b:59:81:de:64:af:c0:81:27:51:e7: f6:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:AB:FE:6E:63:F2:73:73:60:C9:1F:D9:0C:25:FC:03:E2:AA:1A:B9 X509v3 Authority Key Identifier: keyid:32:64:43:64:79:A5:0E:D4:0C:CF:D2:B7:04:E6:02:49:60:8E:43:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:2c:c3:bc:70:72:35:96:97:cd:ec:4d:8f:9f:58:0c:54:11: 25:ec:5f:ed:5f:23:88:a0:4a:07:db:d2:21:9e:79:a8:63:d0: de:97:ce:fc:90:07:1d:0a:a5:ca:8f:2d:0e:23:1c:87:e3:43: 2c:ed:3c:9b:cb:05:df:94:55:b7:8b:10:3f:83:bf:da:46:06: e4:b0:89:b0:b8:c7:02:18:e3:5c:e3:20:80:b3:7f:69:d5:e8: 55:54:bb:3b:0a:5c:93:12:80:81:7f:c4:6a:c0:6a:35:61:6b: be:18:83:79:d5:f1:47:78:27:23:3e:64:3f:68:95:99:ad:4f: 76:6a:12:09:6c:8b:1f:39:22:bb:e2:11:1a:c2:1d:6b:06:8b: 8f:e9:86:76:8e:c0:e3:b7:53:62:ce:be:1e:20:21:fd:ef:dd: 9d:0e:03:47:04:b9:f1:cf:70:14:68:9e:53:4e:4d:81:a6:13: 15:a5:02:23:da:ee:8f:b1:e1:a9:5f:42:9c:d3:58:26:ac:ef: db:70:f4:4f:f8:65:40:8e:6c:be:f6:a7:6e:11:a8:eb:48:89: 4d:d7:53:a8:6a:f8:7d:e6:36:5c:97:91:24:b7:4e:89:7d:d7: 20:05:23:06:f7:1a:3d:1a:53:ed:22:ba:e5:12:b9:a8:e4:7a: a4:d7:94:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEM4OEQxMTAvBgNVBAUTKDMyNjQ0MzY0NzlBNTBFRDQwQ0NGRDJCNzA0RTYwMjQ5 NjA4RTQzQTgwHhcNMjUwNTEyMTkwNTE3WhcNMjUwNTE5MTkwNTE3WjAYMRYwFAYD VQQDEw02ODIyNDY2ZS1hMTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6gOmC71iQQSrm15HDLkLkePfXA7gUebdMusmw5m+jFgI9b/qiP7xtkUdfgNb f9Dt4gGeSj1GmeOfqg5ZrZlDOr9PVIee5B8hJk6MTgII+vzKzM2mzJKFXGkLyJR6 dh/CLU1v/+2H5/G4E5JAnZ40KnK86cED6/3GhxhiST3M1KU21rN7gaga6HsxM9Xb UzUXpqFkep7MqtI3RRKax1oR7n9Ybl75AGUZ6cy4x4BNbNa2NaXWc4/sR5eTubCf exc8cCddXYrWHdPmue6taJ05LM3r+sXd6ffzyC+BkgFfvcbdoZvtzSCmXFjkVKIK pzVCmT9nW1mB3mSvwIEnUef2tQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKOr/m5j 8nNzYMkf2Qwl/APiqhq5MB8GA1UdIwQYMBaAFDJkQ2R5pQ7UDM/StwTmAklgjkOo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Qzg4RC8zOEFCNTkxRTNE QzExMUVBQUYyQjY3MzVDNEY5QUUwMi9NbVJEWkhtbER0UU16OUszQk9ZQ1NXQ09R NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01tUkRaSG1sRHRRTXo5SzNCT1lDU1dDT1E2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Qzg4RC8zOEFCNTkxRTNEQzExMUVBQUYyQjY3MzVDNEY5QUUwMi9NbVJEWkhtbER0 UU16OUszQk9ZQ1NXQ09RNmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMLMO8cHI1lpfN7E2Pn1gMVBEl7F/tXyOIoEoH29IhnnmoY9Del878 kAcdCqXKjy0OIxyH40Ms7TybywXflFW3ixA/g7/aRgbksImwuMcCGONc4yCAs39p 1ehVVLs7ClyTEoCBf8RqwGo1YWu+GIN51fFHeCcjPmQ/aJWZrU92ahIJbIsfOSK7 4hEawh1rBouP6YZ2jsDjt1Nizr4eICH9792dDgNHBLnxz3AUaJ5TTk2BphMVpQIj 2u6PseGpX0Kc01gmrO/bcPRP+GVAjmy+9qduEajrSIlN11Ooavh95jZcl5Ekt06J fdcgBSMG9xo9GlPtIrrlErmo5Hqk15QI -----END CERTIFICATE-----Generated at Tue May 13 02:23:28 2025 by rpki-client