$ rpki-client -vvf rpki.apnic.net/member_repository/A91B00B6/9F9AF7A8756E11EA9914236BC4F9AE02/ROq4zxyb1totteNCtBx0fuOkUF8.mft File: ROq4zxyb1totteNCtBx0fuOkUF8.mft (raw, json) Hash identifier: FQq/sVeXmzz8BO4AoZ2kwJv2bMfVTqvW/TTUh85orEg= Subject key identifier: 2B:CC:FE:C4:EC:EC:74:06:99:BF:A9:CA:3A:CE:2D:16:E3:2A:54:80 Authority key identifier: 44:EA:B8:CF:1C:9B:D6:DA:2D:B5:E3:42:B4:1C:74:7E:E3:A4:50:5F Certificate issuer: /CN=A91B00B6/serialNumber=44EAB8CF1C9BD6DA2DB5E342B41C747EE3A4505F Certificate serial: 0A00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ROq4zxyb1totteNCtBx0fuOkUF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B00B6/9F9AF7A8756E11EA9914236BC4F9AE02/ROq4zxyb1totteNCtBx0fuOkUF8.mft Manifest number: 09FA Signing time: Mon 12 May 2025 19:42:15 +0000 Manifest this update: Mon 12 May 2025 19:42:15 +0000 Manifest next update: Mon 19 May 2025 19:42:15 +0000 Files and hashes: 1: ROq4zxyb1totteNCtBx0fuOkUF8.crl (hash: QFd0X55DeD/PMEJ3iJ3pu2VbqXE8vL0j6PyFWQynLg0=) 2: 800EC4AE756F11EAAA2E0F6CC4F9AE02.roa (hash: yZGCclZoBxnBhfhgaEtvdMtpamiVGJaHMeM0i3edazA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B00B6/9F9AF7A8756E11EA9914236BC4F9AE02/ROq4zxyb1totteNCtBx0fuOkUF8.crl rsync://rpki.apnic.net/member_repository/A91B00B6/9F9AF7A8756E11EA9914236BC4F9AE02/ROq4zxyb1totteNCtBx0fuOkUF8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ROq4zxyb1totteNCtBx0fuOkUF8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 19:42:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2560 (0xa00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B00B6, serialNumber=44EAB8CF1C9BD6DA2DB5E342B41C747EE3A4505F Validity Not Before: May 12 19:42:15 2025 GMT Not After : May 19 19:42:15 2025 GMT Subject: CN=68224f17-50da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ab:95:7b:9b:79:18:e6:bf:65:86:33:f3:80: 42:5f:97:c9:cb:28:0d:46:91:87:d9:19:ab:19:b3: e6:bd:6b:b4:c1:32:58:58:83:05:f2:9e:30:d1:a5: d9:20:7e:03:65:8f:40:7e:3e:94:75:d1:a0:81:41: be:e5:e5:a9:39:92:4d:5c:16:ae:e3:f0:77:48:8e: 34:ef:02:e8:e2:fb:ed:3c:d9:8c:55:6c:b1:72:fb: 95:c3:bc:a7:5e:6e:3a:bb:5f:c6:f0:49:64:04:6d: dc:29:8c:a7:fc:a4:68:2b:2b:d0:4c:f5:03:44:36: b0:71:35:df:24:7b:f1:57:1c:f7:d0:35:6b:50:f7: a0:d2:ba:bd:e5:c6:61:cc:17:5f:36:59:38:fb:f0: 25:38:70:68:77:dc:24:49:09:99:ee:7f:ab:9f:1c: 70:65:01:94:e7:c4:2b:eb:b8:0b:25:63:3a:39:b6: 40:0f:c3:5c:4c:ba:8a:19:ab:7b:6a:3a:3c:c5:09: e7:3c:c8:cd:5b:67:66:c6:f1:f0:9b:89:82:60:d8: 77:1f:6b:22:75:a1:af:8f:46:c1:8b:3d:17:b3:b3: 2b:45:1f:04:82:77:91:19:82:3c:54:b7:14:8e:61: ed:92:26:bd:fe:be:33:44:b7:bf:f6:3b:9a:3a:6e: ef:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:CC:FE:C4:EC:EC:74:06:99:BF:A9:CA:3A:CE:2D:16:E3:2A:54:80 X509v3 Authority Key Identifier: keyid:44:EA:B8:CF:1C:9B:D6:DA:2D:B5:E3:42:B4:1C:74:7E:E3:A4:50:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B00B6/9F9AF7A8756E11EA9914236BC4F9AE02/ROq4zxyb1totteNCtBx0fuOkUF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ROq4zxyb1totteNCtBx0fuOkUF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B00B6/9F9AF7A8756E11EA9914236BC4F9AE02/ROq4zxyb1totteNCtBx0fuOkUF8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:80:ee:a1:6a:f4:67:9e:26:27:67:b8:31:5c:f2:b2:bc:e9: ce:12:38:bb:49:9b:76:e7:7b:70:b7:d0:05:a6:a6:e5:53:42: fa:ef:34:45:48:25:b0:ce:fc:4d:7c:4b:d5:66:10:c1:cb:e6: a2:26:ca:21:85:20:43:e5:f9:75:55:08:8e:5a:8f:5e:e8:a1: 0e:18:b2:ab:79:28:e8:45:ba:9f:70:23:ab:d0:68:26:32:a8: dd:c3:3f:66:8d:25:fc:dd:6e:e2:31:75:e6:36:c1:86:06:d7: 26:9b:d8:44:46:53:b9:76:ae:25:04:3e:22:59:84:52:1c:de: fa:79:2a:68:c9:5d:95:cc:05:93:b5:49:73:0f:e1:8a:81:d8: 8f:3f:b7:55:d5:e2:6c:5c:dc:aa:c9:eb:a4:c7:04:4e:2a:40: 11:12:d6:a0:e5:d2:a8:de:f5:f7:d5:72:e7:78:41:67:61:4d: 97:e4:b6:9e:c6:81:7c:4b:b0:a9:56:50:56:bf:de:88:39:d4: c9:88:9d:63:3d:b7:75:ec:44:d3:db:57:41:2c:e5:6f:a3:15: 88:d6:cc:f1:92:2f:83:b6:04:3a:d6:0e:33:9b:ce:98:5d:7f: a5:e1:17:e3:96:1c:01:d8:9a:ef:50:6f:58:84:55:7d:c4:9a: e0:35:b2:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAwQjYxMTAvBgNVBAUTKDQ0RUFCOENGMUM5QkQ2REEyREI1RTM0MkI0MUM3NDdF RTNBNDUwNUYwHhcNMjUwNTEyMTk0MjE1WhcNMjUwNTE5MTk0MjE1WjAYMRYwFAYD VQQDEw02ODIyNGYxNy01MGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq6uVe5t5GOa/ZYYz84BCX5fJyygNRpGH2RmrGbPmvWu0wTJYWIMF8p4w0aXZ IH4DZY9Afj6UddGggUG+5eWpOZJNXBau4/B3SI407wLo4vvtPNmMVWyxcvuVw7yn Xm46u1/G8ElkBG3cKYyn/KRoKyvQTPUDRDawcTXfJHvxVxz30DVrUPeg0rq95cZh zBdfNlk4+/AlOHBod9wkSQmZ7n+rnxxwZQGU58Qr67gLJWM6ObZAD8NcTLqKGat7 ajo8xQnnPMjNW2dmxvHwm4mCYNh3H2sidaGvj0bBiz0Xs7MrRR8EgneRGYI8VLcU jmHtkia9/r4zRLe/9juaOm7vcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCvM/sTs 7HQGmb+pyjrOLRbjKlSAMB8GA1UdIwQYMBaAFETquM8cm9baLbXjQrQcdH7jpFBf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDBCNi85RjlBRjdBODc1 NkUxMUVBOTkxNDIzNkJDNEY5QUUwMi9ST3E0enh5YjF0b3R0ZU5DdEJ4MGZ1T2tV RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JPcTR6eHliMXRvdHRlTkN0QngwZnVPa1VGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDBCNi85RjlBRjdBODc1NkUxMUVBOTkxNDIzNkJDNEY5QUUwMi9ST3E0enh5YjF0 b3R0ZU5DdEJ4MGZ1T2tVRjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMgO6havRnniYnZ7gxXPKyvOnOEji7SZt253twt9AFpqblU0L67zRF SCWwzvxNfEvVZhDBy+aiJsohhSBD5fl1VQiOWo9e6KEOGLKreSjoRbqfcCOr0Ggm Mqjdwz9mjSX83W7iMXXmNsGGBtcmm9hERlO5dq4lBD4iWYRSHN76eSpoyV2VzAWT tUlzD+GKgdiPP7dV1eJsXNyqyeukxwROKkAREtag5dKo3vX31XLneEFnYU2X5Lae xoF8S7CpVlBWv96IOdTJiJ1jPbd17ETT21dBLOVvoxWI1szxki+DtgQ61g4zm86Y XX+l4RfjlhwB2JrvUG9YhFV9xJrgNbJ4 -----END CERTIFICATE-----Generated at Wed May 14 19:53:19 2025 by rpki-client