$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft File: S0QUrmheSI9CsbZH7qAd67DE86A.mft (raw, json) Hash identifier: KNkWjq/8RPBRVqCDi9+K1VVIBETcO6nRw7c9nBQtU8g= Subject key identifier: B8:48:17:C5:26:BD:84:2A:BF:B0:E9:CF:68:39:5E:93:9F:D9:5B:57 Authority key identifier: 4B:44:14:AE:68:5E:48:8F:42:B1:B6:47:EE:A0:1D:EB:B0:C4:F3:A0 Certificate issuer: /CN=A91A9B1B/serialNumber=4B4414AE685E488F42B1B647EEA01DEBB0C4F3A0 Certificate serial: 0273 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft Manifest number: 026D Signing time: Thu 15 May 2025 01:43:33 +0000 Manifest this update: Thu 15 May 2025 01:43:32 +0000 Manifest next update: Thu 22 May 2025 01:43:32 +0000 Files and hashes: 1: S0QUrmheSI9CsbZH7qAd67DE86A.crl (hash: nmOmQqjLj7DEhJ3/gIisM8SY/u4ejpsZ8GJjwxcnNEU=) 2: B3F935160E0F11ED89E89675C4F9AE02.roa (hash: FlIBDcsCI6hEzE/Hsl8Oo4AgNaxmcJbVTdpEo3OVvJM=) 3: B4A58FE60E0F11ED89E89675C4F9AE02.roa (hash: xbGvdrnN3RARHETkrmNSzdVV6UQzyx3squYg0aDBmMc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.crl rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 01:43:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 627 (0x273) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B1B, serialNumber=4B4414AE685E488F42B1B647EEA01DEBB0C4F3A0 Validity Not Before: May 15 01:43:32 2025 GMT Not After : May 22 01:43:32 2025 GMT Subject: CN=682546c5-e20a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:ab:a1:d1:ad:eb:fc:95:6d:8c:13:fa:70:17: 3b:ab:e6:e0:c4:8b:f9:64:4d:73:08:67:03:b8:bb: 1f:d9:83:08:32:eb:69:c2:42:fa:a2:50:fe:bf:ec: ea:d8:48:ab:51:ea:0e:bc:b3:17:bf:af:4f:fc:c3: 8c:f2:44:6b:0f:06:7a:18:dc:07:09:29:f2:ed:fa: 95:23:55:f6:ab:38:fd:ac:9e:86:38:4b:cf:07:dd: 96:d5:9f:f9:fe:21:53:ec:c7:13:0e:2d:3a:df:7d: b8:7e:56:12:99:26:f8:42:f6:ce:d6:3a:c8:32:46: c6:95:df:d8:47:36:20:54:85:5d:aa:fd:19:01:f3: 98:b5:a3:aa:e9:37:e2:56:f5:d5:ec:87:6b:4a:a7: 0f:05:80:ce:f5:d9:94:92:66:13:ae:79:f7:59:33: 0d:d6:eb:73:35:06:fb:2d:69:c0:11:3e:d8:3a:d2: 26:5a:98:40:db:1c:d7:ac:68:96:89:f6:1b:6c:9e: 48:7b:30:c6:22:a5:36:9a:cb:d0:86:83:5b:96:1a: 95:5c:88:aa:da:df:2a:b9:3e:ff:76:93:7a:52:98: 63:46:dd:dc:78:63:48:ec:41:ef:29:46:a2:d0:d2: 3c:1e:26:d2:18:97:ef:09:99:93:b5:66:e9:da:9b: e9:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:48:17:C5:26:BD:84:2A:BF:B0:E9:CF:68:39:5E:93:9F:D9:5B:57 X509v3 Authority Key Identifier: keyid:4B:44:14:AE:68:5E:48:8F:42:B1:B6:47:EE:A0:1D:EB:B0:C4:F3:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:36:ad:8c:2c:fc:fc:c8:88:52:d5:c4:89:db:2a:8c:b6:96: 4f:ef:6c:07:b5:d7:9c:c7:bf:3b:bc:a9:af:6c:b6:a1:92:86: 97:94:d2:ef:94:a2:c9:3f:2f:f0:28:6f:36:6a:e1:e5:4a:76: 4a:59:12:6e:e8:4e:e3:4a:28:dc:42:85:6d:8b:43:31:2d:f3: d9:84:94:57:49:37:6b:d6:e3:1d:f2:47:f6:2d:80:7f:bf:51: 89:c4:e7:49:4d:0b:d7:d4:b1:a5:08:e5:ef:0e:ce:12:3b:4e: 07:df:6d:d6:aa:7e:0c:61:47:52:1c:b8:31:80:9c:38:65:bc: e1:c6:74:85:ce:d7:a4:a5:87:e6:2e:29:5f:dd:d4:63:10:b8: dd:b9:21:fb:57:be:f3:95:52:61:a7:e3:3a:9c:5c:24:ff:0f: 08:45:fb:37:9c:75:b3:80:61:95:fa:d7:e6:5b:34:d5:c1:d9: ea:77:6e:f0:e4:98:b4:64:5b:cd:34:f5:ce:d3:f0:44:f6:99: 62:4c:a7:20:62:70:75:c5:30:27:6e:3a:6b:24:76:90:ec:5a: 73:11:71:a7:09:a1:f8:36:d3:8d:2b:d2:f1:83:b7:24:28:37: 17:17:d8:df:2f:d2:22:9a:40:cb:ab:e1:b4:9d:27:42:ea:98: f3:c8:52:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCMUIxMTAvBgNVBAUTKDRCNDQxNEFFNjg1RTQ4OEY0MkIxQjY0N0VFQTAxREVC QjBDNEYzQTAwHhcNMjUwNTE1MDE0MzMyWhcNMjUwNTIyMDE0MzMyWjAYMRYwFAYD VQQDEw02ODI1NDZjNS1lMjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3quh0a3r/JVtjBP6cBc7q+bgxIv5ZE1zCGcDuLsf2YMIMutpwkL6olD+v+zq 2EirUeoOvLMXv69P/MOM8kRrDwZ6GNwHCSny7fqVI1X2qzj9rJ6GOEvPB92W1Z/5 /iFT7McTDi063324flYSmSb4QvbO1jrIMkbGld/YRzYgVIVdqv0ZAfOYtaOq6Tfi VvXV7IdrSqcPBYDO9dmUkmYTrnn3WTMN1utzNQb7LWnAET7YOtImWphA2xzXrGiW ifYbbJ5IezDGIqU2msvQhoNblhqVXIiq2t8quT7/dpN6UphjRt3ceGNI7EHvKUai 0NI8HibSGJfvCZmTtWbp2pvpqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLhIF8Um vYQqv7Dpz2g5XpOf2VtXMB8GA1UdIwQYMBaAFEtEFK5oXkiPQrG2R+6gHeuwxPOg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIxQi80QjM4NjREODBF MEIxMUVEQThEMTJFNThDNEY5QUUwMi9TMFFVcm1oZVNJOUNzYlpIN3FBZDY3REU4 NkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MwUVVybWhlU0k5Q3NiWkg3cUFkNjdERTg2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUIxQi80QjM4NjREODBFMEIxMUVEQThEMTJFNThDNEY5QUUwMi9TMFFVcm1oZVNJ OUNzYlpIN3FBZDY3REU4NkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkNq2MLPz8yIhS1cSJ2yqMtpZP72wHtdecx787vKmvbLahkoaXlNLv lKLJPy/wKG82auHlSnZKWRJu6E7jSijcQoVti0MxLfPZhJRXSTdr1uMd8kf2LYB/ v1GJxOdJTQvX1LGlCOXvDs4SO04H323Wqn4MYUdSHLgxgJw4ZbzhxnSFztekpYfm Lilf3dRjELjduSH7V77zlVJhp+M6nFwk/w8IRfs3nHWzgGGV+tfmWzTVwdnqd27w 5Ji0ZFvNNPXO0/BE9pliTKcgYnB1xTAnbjprJHaQ7FpzEXGnCaH4NtONK9Lxg7ck KDcXF9jfL9IimkDLq+G0nSdC6pjzyFKD -----END CERTIFICATE-----Generated at Fri May 16 19:21:04 2025 by rpki-client