$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft File: t3KDxTMROjkeMdlFJxhqz4OZol8.mft (raw, json) Hash identifier: 0SB/rL/C+q+RURexm8mTccSfOrHdnXqcHc0epjuX0U0= Subject key identifier: 90:61:DE:5B:2A:CA:EB:DE:1A:DA:1A:FD:F4:6F:DD:D1:92:2B:EB:F5 Authority key identifier: B7:72:83:C5:33:11:3A:39:1E:31:D9:45:27:18:6A:CF:83:99:A2:5F Certificate issuer: /CN=A91AEE4B/serialNumber=B77283C533113A391E31D94527186ACF8399A25F Certificate serial: 0AFA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t3KDxTMROjkeMdlFJxhqz4OZol8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft Manifest number: 0AF1 Signing time: Wed 14 May 2025 19:29:52 +0000 Manifest this update: Wed 14 May 2025 19:29:52 +0000 Manifest next update: Wed 21 May 2025 19:29:52 +0000 Files and hashes: 1: t3KDxTMROjkeMdlFJxhqz4OZol8.crl (hash: 21mDEFyDhL2yR6VW8r56DtIyw7A09wxej/s6cfqCP+A=) 2: 02F1850E45A611EA81CD145AC4F9AE02.roa (hash: +dnFv6At/j+rB10C6K34OqDt094wwEbkgdTC71u4hkg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.crl rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t3KDxTMROjkeMdlFJxhqz4OZol8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 19:29:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2810 (0xafa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEE4B, serialNumber=B77283C533113A391E31D94527186ACF8399A25F Validity Not Before: May 14 19:29:52 2025 GMT Not After : May 21 19:29:52 2025 GMT Subject: CN=6824ef30-d3a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:1f:05:72:00:f8:c8:e5:cf:71:be:3d:44:a9: b1:15:d8:3e:1a:3f:df:ea:cc:c6:d1:8e:80:6e:9a: d8:39:40:92:1a:f6:05:2c:9b:d4:cb:01:df:2a:d0: 35:34:02:ca:e7:ff:b9:6f:06:a5:97:f2:fb:5a:eb: 31:1c:14:a8:93:a7:7a:c7:97:7c:50:1e:bb:1c:77: 11:d7:91:c0:67:8d:2b:4f:2a:80:50:5d:14:ef:ee: 56:04:1b:4e:9f:60:04:fe:0a:f8:58:01:ae:6f:0f: 79:8e:a4:75:7f:55:bd:f7:ee:cf:84:7d:68:04:25: 97:71:9c:be:f1:44:9d:48:fd:b8:cc:1d:e7:1e:33: de:2c:ab:8b:f5:a9:0a:0e:7d:e8:5c:ac:d1:e1:97: 0d:6f:1c:e7:fc:fb:1b:53:1d:51:55:65:61:e2:32: 21:a1:66:c5:13:9b:72:ad:7c:ed:fe:04:73:2b:4c: 3b:76:17:75:49:ee:5e:2c:5a:08:78:c1:8a:66:d6: 10:3c:04:ed:03:7f:e5:d6:83:46:e4:8c:58:c6:3c: 28:1b:c9:bd:e7:ec:27:b3:9f:5c:06:39:4c:f1:2b: 09:16:85:4b:19:90:3f:f8:af:e5:29:2d:21:38:f2: 85:4f:d6:0a:3c:b0:aa:42:0b:e2:a7:c7:a0:29:4e: 02:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:61:DE:5B:2A:CA:EB:DE:1A:DA:1A:FD:F4:6F:DD:D1:92:2B:EB:F5 X509v3 Authority Key Identifier: keyid:B7:72:83:C5:33:11:3A:39:1E:31:D9:45:27:18:6A:CF:83:99:A2:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t3KDxTMROjkeMdlFJxhqz4OZol8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:ed:c9:1a:54:75:d4:22:c0:d0:84:e5:4b:5d:d9:92:f7:a5: c8:f2:e1:c3:b3:fd:fb:dc:ce:d9:11:db:6c:88:a5:cb:27:83: bd:3c:fb:17:e0:89:3c:03:a4:0a:3b:a2:2b:36:f5:8b:3d:04: 96:6e:24:69:df:60:e1:c8:7f:90:c8:42:2c:09:bf:49:7d:37: 61:f8:73:9f:2b:f5:90:d6:98:80:f0:0a:aa:18:d0:63:6a:80: ca:01:99:bb:3d:66:c9:92:fb:ef:db:8c:32:a4:f4:9d:76:08: f2:a8:14:aa:c8:5c:e8:1c:98:53:b1:48:69:03:c3:66:6c:53: 4a:26:43:76:7d:49:3c:2c:82:f3:f5:60:2c:b2:21:6e:95:3a: 7e:04:a1:ef:1f:bb:77:28:c1:81:da:9e:b4:23:d0:fe:ee:4b: 4c:a5:ac:1d:19:8f:a6:98:fd:56:c1:7a:c3:66:78:75:a9:14: f7:6f:89:18:fd:4b:0f:73:57:07:34:7c:d0:f6:7d:56:db:39: 58:e2:9c:1a:74:8d:63:c2:1e:a9:46:6e:3b:82:cc:8a:2f:a2: f8:50:64:8b:06:5e:a0:de:90:4f:19:d6:ed:25:89:cd:78:af: 17:03:85:31:10:d0:8a:25:83:55:d9:62:2a:3a:44:ee:59:5a: 8a:2a:cc:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVFNEIxMTAvBgNVBAUTKEI3NzI4M0M1MzMxMTNBMzkxRTMxRDk0NTI3MTg2QUNG ODM5OUEyNUYwHhcNMjUwNTE0MTkyOTUyWhcNMjUwNTIxMTkyOTUyWjAYMRYwFAYD VQQDEw02ODI0ZWYzMC1kM2E1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqR8FcgD4yOXPcb49RKmxFdg+Gj/f6szG0Y6AbprYOUCSGvYFLJvUywHfKtA1 NALK5/+5bwall/L7WusxHBSok6d6x5d8UB67HHcR15HAZ40rTyqAUF0U7+5WBBtO n2AE/gr4WAGubw95jqR1f1W99+7PhH1oBCWXcZy+8USdSP24zB3nHjPeLKuL9akK Dn3oXKzR4ZcNbxzn/PsbUx1RVWVh4jIhoWbFE5tyrXzt/gRzK0w7dhd1Se5eLFoI eMGKZtYQPATtA3/l1oNG5IxYxjwoG8m95+wns59cBjlM8SsJFoVLGZA/+K/lKS0h OPKFT9YKPLCqQgvip8egKU4CQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJBh3lsq yuveGtoa/fRv3dGSK+v1MB8GA1UdIwQYMBaAFLdyg8UzETo5HjHZRScYas+DmaJf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUU0Qi82M0RGRjgwMjQ1 QTQxMUVBOTQyRTA5NTdDNEY5QUUwMi90M0tEeFRNUk9qa2VNZGxGSnhocXo0T1pv bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3QzS0R4VE1ST2prZU1kbEZKeGhxejRPWm9sOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RUU0Qi82M0RGRjgwMjQ1QTQxMUVBOTQyRTA5NTdDNEY5QUUwMi90M0tEeFRNUk9q a2VNZGxGSnhocXo0T1pvbDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCG7ckaVHXUIsDQhOVLXdmS96XI8uHDs/373M7ZEdtsiKXLJ4O9PPsX 4Ik8A6QKO6IrNvWLPQSWbiRp32DhyH+QyEIsCb9JfTdh+HOfK/WQ1piA8AqqGNBj aoDKAZm7PWbJkvvv24wypPSddgjyqBSqyFzoHJhTsUhpA8NmbFNKJkN2fUk8LILz 9WAssiFulTp+BKHvH7t3KMGB2p60I9D+7ktMpawdGY+mmP1WwXrDZnh1qRT3b4kY /UsPc1cHNHzQ9n1W2zlY4pwadI1jwh6pRm47gsyKL6L4UGSLBl6g3pBPGdbtJYnN eK8XA4UxENCKJYNV2WIqOkTuWVqKKsxu -----END CERTIFICATE-----Generated at Fri May 16 05:06:35 2025 by rpki-client