$ rpki-client -vvf rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.mft File: p1cNzzcgqNWohWpLtlg_G66uAJM.mft (raw, json) Hash identifier: qwU23FaUKRstnrKlKhmtym412I/Yj+b0ANITJ/GnI34= Subject key identifier: CA:9C:D6:41:7B:A7:3A:BD:8B:3F:A4:7E:DA:DB:92:8F:FC:19:DC:21 Authority key identifier: A7:57:0D:CF:37:20:A8:D5:A8:85:6A:4B:B6:58:3F:1B:AE:AE:00:93 Certificate issuer: /CN=A91B37E3/serialNumber=A7570DCF3720A8D5A8856A4BB6583F1BAEAE0093 Certificate serial: 0C87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p1cNzzcgqNWohWpLtlg_G66uAJM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.mft Manifest number: 0C5E Signing time: Wed 14 May 2025 18:32:19 +0000 Manifest this update: Wed 14 May 2025 18:32:19 +0000 Manifest next update: Wed 21 May 2025 18:32:19 +0000 Files and hashes: 1: p1cNzzcgqNWohWpLtlg_G66uAJM.crl (hash: Gif+Sc/UkSEWDjo6KLBLEXJfH1yeLgTZP67Q2mIXBAE=) 2: 1994900403CE11EAA10C6A84C4F9AE02.roa (hash: +t2OsFQRgFf0c7jNBR5fu1U2IpPKMIuwM5iZNaY//qo=) 3: 4F6721CEB84B11EAB6247B7AC4F9AE02.roa (hash: coEgjngsR/Ce6vFWSBZaZ5rCfdvEVYlwbgZyFrxHv0s=) 4: 24252532B84711EA8A7F036DC4F9AE02.roa (hash: amqBd7Gmw280SNEgcUdjWQQGaKazRNP/HiWRn2dZkzs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.crl rsync://rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p1cNzzcgqNWohWpLtlg_G66uAJM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 18:32:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3207 (0xc87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B37E3, serialNumber=A7570DCF3720A8D5A8856A4BB6583F1BAEAE0093 Validity Not Before: May 14 18:32:19 2025 GMT Not After : May 21 18:32:19 2025 GMT Subject: CN=6824e1b3-c52e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:14:1f:75:02:a7:d0:2b:d0:4d:51:1e:39:15: da:0e:41:b0:7d:7b:19:a7:c5:8a:74:9c:52:a6:d6: 98:57:9a:55:76:83:2a:3c:59:c0:04:6c:b5:78:73: c3:f2:01:14:a5:0a:f1:a6:64:60:f8:d0:51:0b:e2: 0d:00:f2:1a:07:f9:f0:a0:55:e3:f1:47:04:02:53: ae:e4:71:9c:ad:ce:19:7f:38:cd:73:8c:ee:26:0c: e7:09:39:4a:6f:fd:e7:48:32:ec:1a:c7:eb:ea:78: 26:d5:4c:63:47:e9:d0:80:3e:60:96:1b:80:7b:85: 65:6f:d4:1a:5b:d2:52:48:3b:04:83:52:a3:45:13: e8:c1:28:53:cc:18:4d:4b:5e:de:eb:01:ed:77:36: 34:54:27:8b:9a:03:3b:78:6f:35:d5:ad:21:82:b7: d9:fd:44:be:e5:2e:b7:5b:5e:f0:44:a5:8a:e4:e7: b5:6c:9f:52:8f:86:e5:a0:bb:ee:74:9b:7f:f3:78: be:0f:87:13:34:a9:cc:11:aa:03:d2:f0:7a:ed:60: 6b:58:16:28:4d:6f:0c:e3:56:6e:3b:84:5d:81:d3: fd:9f:c6:e3:11:2c:a3:0c:0e:08:61:fe:da:55:f4: fd:78:93:0e:0d:07:1c:02:1b:73:81:ca:4e:29:b5: c3:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:9C:D6:41:7B:A7:3A:BD:8B:3F:A4:7E:DA:DB:92:8F:FC:19:DC:21 X509v3 Authority Key Identifier: keyid:A7:57:0D:CF:37:20:A8:D5:A8:85:6A:4B:B6:58:3F:1B:AE:AE:00:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p1cNzzcgqNWohWpLtlg_G66uAJM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:83:80:16:2d:1f:a2:cd:87:b0:ca:eb:91:ac:75:33:c3:ed: 9c:38:da:83:36:58:a6:00:91:51:5c:38:ba:8c:ef:52:dc:70: 0a:6a:70:90:b2:9c:93:98:52:6b:b9:ba:2b:9e:98:7e:d3:81: db:7e:a7:27:fa:c9:b8:a7:ec:2a:b5:ca:bf:8e:1c:4a:df:cb: 93:49:7d:40:21:26:ed:f1:09:68:5e:e3:53:b1:1c:a8:90:59: 41:0b:35:ca:1e:0e:a1:ea:e5:51:b1:12:b7:03:46:08:3b:7b: fc:9b:4f:fa:f5:14:46:92:9e:f8:02:69:7f:10:77:f8:af:c4: 89:ae:d9:94:03:b9:34:f2:0c:8b:6f:c2:39:2e:4d:87:8f:c5: 57:b5:f7:21:86:3b:79:4f:9c:91:0e:db:c2:03:fc:6a:71:98: 69:ec:da:1c:33:07:58:22:58:18:3b:38:5f:47:4a:6c:66:55: 99:3a:e5:d8:14:74:16:86:d0:d4:eb:48:c9:d4:68:e4:4e:51: 69:a8:fd:82:c5:23:e0:a3:5e:63:a7:2a:9f:10:f1:89:da:7c: 0a:31:5b:94:f3:96:14:ef:79:d5:e5:f7:e5:7e:03:61:41:89: 6c:83:47:ed:18:3a:7c:95:7a:f1:4e:c0:18:78:e4:90:4e:db: e7:fd:9e:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM3RTMxMTAvBgNVBAUTKEE3NTcwRENGMzcyMEE4RDVBODg1NkE0QkI2NTgzRjFC QUVBRTAwOTMwHhcNMjUwNTE0MTgzMjE5WhcNMjUwNTIxMTgzMjE5WjAYMRYwFAYD VQQDEw02ODI0ZTFiMy1jNTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzxQfdQKn0CvQTVEeORXaDkGwfXsZp8WKdJxSptaYV5pVdoMqPFnABGy1eHPD 8gEUpQrxpmRg+NBRC+INAPIaB/nwoFXj8UcEAlOu5HGcrc4ZfzjNc4zuJgznCTlK b/3nSDLsGsfr6ngm1UxjR+nQgD5glhuAe4Vlb9QaW9JSSDsEg1KjRRPowShTzBhN S17e6wHtdzY0VCeLmgM7eG811a0hgrfZ/US+5S63W17wRKWK5Oe1bJ9Sj4bloLvu dJt/83i+D4cTNKnMEaoD0vB67WBrWBYoTW8M41ZuO4RdgdP9n8bjESyjDA4IYf7a VfT9eJMODQccAhtzgcpOKbXDWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMqc1kF7 pzq9iz+kftrbko/8GdwhMB8GA1UdIwQYMBaAFKdXDc83IKjVqIVqS7ZYPxuurgCT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzdFMy8wQUZFQTdDRTAz QTAxMUVBQjRDNUQyN0NDNEY5QUUwMi9wMWNOenpjZ3FOV29oV3BMdGxnX0c2NnVB Sk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3AxY056emNncU5Xb2hXcEx0bGdfRzY2dUFKTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzdFMy8wQUZFQTdDRTAzQTAxMUVBQjRDNUQyN0NDNEY5QUUwMi9wMWNOenpjZ3FO V29oV3BMdGxnX0c2NnVBSk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQg4AWLR+izYewyuuRrHUzw+2cONqDNlimAJFRXDi6jO9S3HAKanCQ spyTmFJrubornph+04Hbfqcn+sm4p+wqtcq/jhxK38uTSX1AISbt8QloXuNTsRyo kFlBCzXKHg6h6uVRsRK3A0YIO3v8m0/69RRGkp74Aml/EHf4r8SJrtmUA7k08gyL b8I5Lk2Hj8VXtfchhjt5T5yRDtvCA/xqcZhp7NocMwdYIlgYOzhfR0psZlWZOuXY FHQWhtDU60jJ1GjkTlFpqP2CxSPgo15jpyqfEPGJ2nwKMVuU85YU73nV5fflfgNh QYlsg0ftGDp8lXrxTsAYeOSQTtvn/Z7q -----END CERTIFICATE-----Generated at Thu May 15 18:46:41 2025 by rpki-client