$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft File: U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft (raw, json) Hash identifier: Fvb1AaR/6m9Y2KKUwvUA+1pfbVU94XCHlpTAhxvAVtI= Subject key identifier: B6:C8:E8:08:27:48:A0:10:7F:30:66:E4:D4:27:2A:4F:F2:19:62:CF Authority key identifier: 53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 Certificate issuer: /CN=A91B6F47/serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Certificate serial: 3558 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft Manifest number: 34DC Signing time: Mon 12 May 2025 14:24:09 +0000 Manifest this update: Mon 12 May 2025 14:24:09 +0000 Manifest next update: Mon 19 May 2025 14:24:09 +0000 Files and hashes: 1: U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl (hash: fTcxE2CSQftFJX/FEm6dzyiM3+voICVPUWIDs3MSLfM=) 2: DF8602D05E5B11ED994E491CC4F9AE02.roa (hash: KKCg2NooRoQGuF3KYpzz51c9C/45UUPObnLo2e5njhU=) 3: D0886954188811EC8E86754FC4F9AE02.roa (hash: yPv2xJqSMbxdqO3CUxzFvtSmE89AHilhOo/061TH8FU=) 4: AB9889725E5E11EDB5361D3BC4F9AE02.roa (hash: nfNjfg1IXDDhMM0k16fT6xDTUZvLHRQ/C+xvVXQFUFE=) 5: 99CF729E221011ED980A6F47C4F9AE02.roa (hash: iSQxLeiRN1fYoIns2yWqQhKW9w0d7Bh4Hi7g+FcoiAo=) 6: 491E49AECDCA11ED8F57D386C4F9AE02.roa (hash: GOobL3IcAmOzxEXI8Av9eECmrglVLT+e8Yk36aU9ns8=) 7: 9F3A919468D811EFB2FE405FC4F9AE02.roa (hash: ZaxlSh3XWBv2fOJrVopMAyhJjHEvnP8TGG96c6iuXcg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 14:24:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13656 (0x3558) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6F47, serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Validity Not Before: May 12 14:24:09 2025 GMT Not After : May 19 14:24:09 2025 GMT Subject: CN=68220489-9d8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:17:2f:e3:1b:fc:16:26:ed:79:e8:1a:41:1c: 45:6b:1c:94:6a:df:96:71:9a:4b:a6:64:32:26:42: e1:56:57:f7:48:fd:c4:34:5d:65:b2:7a:49:4d:fd: b6:09:21:b8:27:7a:f8:89:a2:4a:a6:4c:76:83:26: 55:d4:ad:a3:cd:cb:6f:a1:00:02:c3:1c:96:3f:ab: ab:0d:73:94:23:ec:31:3d:95:9c:10:a2:26:f4:62: d7:ce:63:22:03:bd:ee:03:3b:53:0b:06:6f:a2:01: 41:cb:e2:ca:de:b7:b5:43:ed:71:93:8b:b6:d8:28: 93:81:29:a0:af:f8:ed:19:a7:7a:91:95:68:38:92: 3f:2d:32:72:82:1a:b4:cf:0c:e3:67:61:b7:2e:c2: 7e:75:58:26:f4:0c:49:51:0b:c3:73:be:87:1e:c9: cd:d2:04:33:8c:3e:8b:61:4b:42:99:6f:90:4c:98: a4:64:4b:72:ac:33:9a:d3:ca:13:23:85:33:8d:36: 65:df:fe:2f:c8:1b:f9:b6:5e:b2:8d:81:a5:71:2e: a5:f6:56:a6:da:ed:b3:58:33:58:d2:39:14:dc:a8: 98:1e:52:34:6f:b1:7e:2e:fc:6b:db:58:7c:9b:c1: 87:d7:b9:2d:5a:e4:4e:5c:7b:a6:a6:9c:8f:aa:3e: da:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:C8:E8:08:27:48:A0:10:7F:30:66:E4:D4:27:2A:4F:F2:19:62:CF X509v3 Authority Key Identifier: keyid:53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:78:62:ed:af:e6:4c:f9:97:de:36:24:8a:cd:b8:9d:30:04: 87:83:8e:97:ef:b1:ad:6d:ec:ca:59:b0:b2:24:3a:86:74:9f: 42:a4:04:25:26:07:bf:d2:70:71:fa:6c:bf:d2:23:79:7b:56: de:4f:a7:8a:cb:0c:f7:c5:11:a8:d6:09:79:9c:0d:f5:bf:27: c6:55:03:f9:6c:36:fe:d7:62:69:a9:9c:40:c6:dc:52:ce:ad: e7:ca:b6:eb:31:36:3c:7b:d2:6f:a9:40:fd:2b:57:d2:d5:fb: 04:90:8f:60:0e:eb:da:29:db:4c:d5:38:52:2c:e7:6c:6b:5d: ef:de:94:e0:b2:45:35:ec:45:94:1c:4b:c3:27:c9:ba:d0:10: 07:d1:d5:07:c3:04:d4:36:71:ca:d0:41:99:48:fd:f7:e1:2d: f4:69:d6:8e:1d:be:2d:98:c9:c0:41:f9:1a:6f:f0:e6:f9:d9: 09:8d:fe:e1:79:d3:db:b3:f5:8c:83:be:75:2f:0b:19:cf:a4: b6:c8:8d:6c:9e:a3:79:31:df:b3:27:0d:27:dc:40:75:42:7b: 1d:13:60:cb:8c:8d:86:5d:28:5d:49:7f:e4:fc:d5:12:6c:be: 5b:c6:db:2a:ad:91:12:2a:5b:fe:01:e2:d6:37:b6:27:23:87: 9b:3b:d1:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZGNDcxMTAvBgNVBAUTKDUzOEIwNzZFMEFBREQ4RkFFMjk3MEM5NTQzRTg0OUE5 MEZFNzM3NTIwHhcNMjUwNTEyMTQyNDA5WhcNMjUwNTE5MTQyNDA5WjAYMRYwFAYD VQQDEw02ODIyMDQ4OS05ZDhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvBcv4xv8FibteegaQRxFaxyUat+WcZpLpmQyJkLhVlf3SP3ENF1lsnpJTf22 CSG4J3r4iaJKpkx2gyZV1K2jzctvoQACwxyWP6urDXOUI+wxPZWcEKIm9GLXzmMi A73uAztTCwZvogFBy+LK3re1Q+1xk4u22CiTgSmgr/jtGad6kZVoOJI/LTJyghq0 zwzjZ2G3LsJ+dVgm9AxJUQvDc76HHsnN0gQzjD6LYUtCmW+QTJikZEtyrDOa08oT I4UzjTZl3/4vyBv5tl6yjYGlcS6l9lam2u2zWDNY0jkU3KiYHlI0b7F+Lvxr21h8 m8GH17ktWuROXHumppyPqj7aeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLbI6Agn SKAQfzBm5NQnKk/yGWLPMB8GA1UdIwQYMBaAFFOLB24Krdj64pcMlUPoSakP5zdS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkY0Ny9CNEE4NkMzODFE ODQxMUUyOTY5RkM1REEwOEIwMkNEMi9VNHNIYmdxdDJQcmlsd3lWUS1oSnFRX25O MUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0c0hiZ3F0MlByaWx3eVZRLWhKcVFfbk4xSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NkY0Ny9CNEE4NkMzODFEODQxMUUyOTY5RkM1REEwOEIwMkNEMi9VNHNIYmdxdDJQ cmlsd3lWUS1oSnFRX25OMUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8eGLtr+ZM+ZfeNiSKzbidMASHg46X77GtbezKWbCyJDqGdJ9CpAQl Jge/0nBx+my/0iN5e1beT6eKywz3xRGo1gl5nA31vyfGVQP5bDb+12JpqZxAxtxS zq3nyrbrMTY8e9JvqUD9K1fS1fsEkI9gDuvaKdtM1ThSLOdsa13v3pTgskU17EWU HEvDJ8m60BAH0dUHwwTUNnHK0EGZSP334S30adaOHb4tmMnAQfkab/Dm+dkJjf7h edPbs/WMg751LwsZz6S2yI1snqN5Md+zJw0n3EB1QnsdE2DLjI2GXShdSX/k/NUS bL5bxtsqrZESKlv+AeLWN7YnI4ebO9Hr -----END CERTIFICATE-----Generated at Wed May 14 09:13:08 2025 by rpki-client