$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft File: tY0p97gQfxWFtf_nDFAsbI9dMwI.mft (raw, json) Hash identifier: lJCz1Capk4ENUO63h7rYyDgQaJYYiQ6+h/8UP4Uhlwk= Subject key identifier: 14:C3:48:EA:BB:E6:35:18:CD:53:95:2A:94:13:B9:8D:30:89:43:F6 Authority key identifier: B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 Certificate issuer: /CN=A91B3CA4/serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Certificate serial: 084E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft Manifest number: 0838 Signing time: Mon 12 May 2025 20:36:49 +0000 Manifest this update: Mon 12 May 2025 20:36:49 +0000 Manifest next update: Mon 19 May 2025 20:36:49 +0000 Files and hashes: 1: tY0p97gQfxWFtf_nDFAsbI9dMwI.crl (hash: RA+S/0EgWXJY/QdaxLUtPLnJuOxfNst6bJkKZAzsGwc=) 2: C33EB0EC7C4211EB933D233EC4F9AE02.roa (hash: d3qr5RqMQclwYYIrxTT2M2ZEqEhw3tr48jNwaXCY/ZQ=) 3: 3C3F21BAD6F011EE9B38B67DC4F9AE02.roa (hash: Gf0OG44Gbrw/oSuWZaX2oN0pSzBlgivn+JOWWsA/Jy4=) 4: 8F44F16A4BCC11EDA2E6375FC4F9AE02.roa (hash: A3kThrVaT5oRwxsCsohgrMXC95qG/MeuK1hdFh/7ma0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 20:36:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2126 (0x84e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CA4, serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Validity Not Before: May 12 20:36:49 2025 GMT Not After : May 19 20:36:49 2025 GMT Subject: CN=68225be1-cbe5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:50:ff:24:02:d8:20:28:57:c6:cd:7d:cd:48: 5e:66:08:eb:c5:00:94:09:db:8a:4c:7f:2e:48:d1: 3b:55:ac:3f:36:97:0d:ab:1d:10:1b:cc:19:43:0d: d3:92:2e:07:8e:a0:80:c4:de:6b:f9:45:72:b5:5c: d9:e5:14:39:8d:ed:75:ae:6b:65:46:e2:96:03:b1: d4:f9:6e:15:8a:aa:2f:99:5d:36:52:a5:94:ae:f8: 30:51:8a:a3:85:6a:75:d5:93:6f:96:c8:ee:a8:4a: db:ba:cd:d9:2a:37:2f:be:0d:10:9c:ae:2a:d3:91: 8b:fc:75:c3:a5:72:b1:49:be:cb:e4:da:7b:ae:ea: e4:bb:7e:a6:4e:d1:8a:39:f3:01:fd:bc:a7:a0:1f: 9f:18:3d:32:ae:48:96:01:f6:56:fe:7f:fc:d0:56: 8b:88:1b:89:42:8d:24:93:dd:a1:0e:dd:9e:55:64: 06:72:2c:68:4b:42:7e:8e:90:67:e7:cc:2c:dd:ae: da:6e:43:d9:48:5d:2d:29:2c:58:92:e7:27:a4:03: 4c:b2:28:07:14:73:14:58:91:85:54:b2:42:b6:e0: d4:e5:ba:41:a2:ea:df:9b:5d:57:36:62:65:06:ee: 29:9a:11:36:31:8d:4c:e0:14:d9:9f:e9:dd:77:f1: f7:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:C3:48:EA:BB:E6:35:18:CD:53:95:2A:94:13:B9:8D:30:89:43:F6 X509v3 Authority Key Identifier: keyid:B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:2d:6d:c2:a9:39:b4:88:7b:b7:e3:ff:0b:79:b5:1f:ae:73: 8d:70:48:d6:f8:9a:ff:37:75:4f:81:6d:b8:34:ee:c2:0e:c5: eb:fa:93:62:0e:94:7f:ca:c8:92:4c:9a:05:f3:b2:ab:a5:4f: d9:64:93:01:56:2f:57:b3:6f:51:f3:e8:c5:71:02:d4:0a:23: 5a:f7:65:2c:11:23:ae:c9:70:fa:c6:32:1e:35:ad:10:ea:82: 01:ee:80:a9:79:e9:d4:e4:08:81:eb:22:3a:24:2b:eb:90:34: 70:ab:71:c3:b9:3e:b4:5d:9b:96:e0:48:a4:cf:40:6d:a8:38: 1c:de:88:41:a1:96:d8:07:7b:54:02:89:e8:15:c3:80:21:39: 0a:fb:fa:66:ff:ac:6a:70:a8:d1:d9:4c:4a:e1:fa:45:d3:0e: 2f:18:9e:e5:42:38:3b:bf:31:4e:0c:58:bf:c1:b5:88:91:be: aa:5f:60:04:08:d9:1e:3b:f2:79:f9:0d:8b:4b:51:8f:7c:ce: b5:49:9f:44:31:5e:59:23:f6:5f:f8:9f:5b:5b:c0:36:7f:15: 82:ca:d3:54:60:8c:ff:76:94:3d:49:4e:f2:d7:fe:ab:a1:2d: 69:31:70:bd:01:1a:ee:f5:3f:61:fa:a8:f5:96:19:d7:b6:c8: 6a:d2:6f:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCE4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNDQTQxMTAvBgNVBAUTKEI1OEQyOUY3QjgxMDdGMTU4NUI1RkZFNzBDNTAyQzZD OEY1RDMzMDIwHhcNMjUwNTEyMjAzNjQ5WhcNMjUwNTE5MjAzNjQ5WjAYMRYwFAYD VQQDEw02ODIyNWJlMS1jYmU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyVD/JALYIChXxs19zUheZgjrxQCUCduKTH8uSNE7Vaw/NpcNqx0QG8wZQw3T ki4HjqCAxN5r+UVytVzZ5RQ5je11rmtlRuKWA7HU+W4ViqovmV02UqWUrvgwUYqj hWp11ZNvlsjuqErbus3ZKjcvvg0QnK4q05GL/HXDpXKxSb7L5Np7rurku36mTtGK OfMB/bynoB+fGD0yrkiWAfZW/n/80FaLiBuJQo0kk92hDt2eVWQGcixoS0J+jpBn 58ws3a7abkPZSF0tKSxYkucnpANMsigHFHMUWJGFVLJCtuDU5bpBourfm11XNmJl Bu4pmhE2MY1M4BTZn+ndd/H3mwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBTDSOq7 5jUYzVOVKpQTuY0wiUP2MB8GA1UdIwQYMBaAFLWNKfe4EH8VhbX/5wxQLGyPXTMC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0NBNC8xNUY2OEI1Q0NG MTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4V0Z0Zl9uREZBc2JJOWRN d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZMHA5N2dRZnhXRnRmX25ERkFzYkk5ZE13SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0NBNC8xNUY2OEI1Q0NGMTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4 V0Z0Zl9uREZBc2JJOWRNd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7LW3CqTm0iHu34/8LebUfrnONcEjW+Jr/N3VPgW24NO7CDsXr+pNi DpR/ysiSTJoF87KrpU/ZZJMBVi9Xs29R8+jFcQLUCiNa92UsESOuyXD6xjIeNa0Q 6oIB7oCpeenU5AiB6yI6JCvrkDRwq3HDuT60XZuW4Eikz0BtqDgc3ohBoZbYB3tU AonoFcOAITkK+/pm/6xqcKjR2UxK4fpF0w4vGJ7lQjg7vzFODFi/wbWIkb6qX2AE CNkeO/J5+Q2LS1GPfM61SZ9EMV5ZI/Zf+J9bW8A2fxWCytNUYIz/dpQ9SU7y1/6r oS1pMXC9ARru9T9h+qj1lhnXtshq0m/8 -----END CERTIFICATE-----Generated at Tue May 13 14:48:19 2025 by rpki-client