$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft File: MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft (raw, json) Hash identifier: 1J5RizZ/XvCOit5MbYNDQ4kgZLujHdNJty5t7Vj2qQU= Subject key identifier: EE:9B:42:07:74:4E:22:F6:54:E1:F1:52:33:90:7C:D0:40:34:65:EA Authority key identifier: 30:6E:34:FA:84:DA:09:0C:60:01:B3:54:64:BB:8C:42:63:57:D9:28 Certificate issuer: /CN=A91B9EC7/serialNumber=306E34FA84DA090C6001B35464BB8C426357D928 Certificate serial: 011A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft Manifest number: 0118 Signing time: Tue 13 May 2025 03:59:43 +0000 Manifest this update: Tue 13 May 2025 03:59:42 +0000 Manifest next update: Tue 20 May 2025 03:59:42 +0000 Files and hashes: 1: MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl (hash: gWhRvFFDcJIxy5r8zLQoYIfJ8VkZEZ1LM777cINVrik=) 2: 02FC3E3C82A511EEA1F2710DC4F9AE02.roa (hash: 6W6Gywd7YHiIdjjDyCFNskNZyB3wgY++Ir7hfO/X2TY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 03:59:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 282 (0x11a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9EC7, serialNumber=306E34FA84DA090C6001B35464BB8C426357D928 Validity Not Before: May 13 03:59:42 2025 GMT Not After : May 20 03:59:42 2025 GMT Subject: CN=6822c3ae-463d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:e7:46:f6:98:c7:0d:41:3d:18:1c:c2:6a:d0: 66:6e:c9:5a:e0:43:4f:f1:c7:8c:c8:ac:45:be:5f: 6c:51:d6:3b:5c:40:b6:45:cf:6d:3b:12:11:d5:7f: 63:ed:e4:7b:0a:5a:7c:3e:e4:5e:27:49:31:0f:4b: f7:1c:84:b3:6d:1a:39:4b:e0:db:8b:5d:2c:c6:1e: b6:8e:a8:68:50:e2:cf:3e:d5:38:36:40:ba:e0:6e: 2b:33:c6:05:b3:29:c7:04:33:cb:88:f4:3f:71:df: 4a:76:67:3f:32:18:47:35:ef:06:9a:0c:38:86:07: 06:96:3c:3b:f8:6b:20:dc:ca:ab:1d:6a:f0:6c:d1: d6:dc:7e:ee:d6:31:57:c5:b8:96:e1:62:6c:8e:42: 31:d3:e1:b9:0d:c6:5b:71:e1:30:07:62:a7:7c:b0: 76:e3:c0:a6:8e:9c:cf:5e:09:33:9c:52:f6:1c:44: 38:59:8b:30:74:c5:24:93:a4:c9:0b:48:48:a0:f5: 47:c7:e5:62:30:bb:d1:9f:1d:57:de:b9:59:b8:29: 2c:e3:13:1b:0e:dd:d8:26:44:53:3b:f5:9c:78:23: 5a:10:69:1b:8e:3c:6b:bf:27:ff:79:7b:3b:4b:44: a5:07:76:34:39:08:cc:6a:f9:13:f3:7c:a8:95:e3: de:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:9B:42:07:74:4E:22:F6:54:E1:F1:52:33:90:7C:D0:40:34:65:EA X509v3 Authority Key Identifier: keyid:30:6E:34:FA:84:DA:09:0C:60:01:B3:54:64:BB:8C:42:63:57:D9:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:79:3d:e3:30:ff:6f:9e:3d:08:ef:2c:56:ea:12:fd:06:71: fc:df:8f:60:26:57:06:82:e3:c1:95:42:80:a4:9e:9f:b6:f6: 38:4e:b3:00:0d:9d:be:18:93:07:7b:b3:ba:89:36:a5:ff:2a: d9:f9:69:4c:5f:e8:bb:a4:c7:ba:9f:70:ea:ed:6a:83:66:e9: 68:04:c0:c8:1d:f7:81:d9:6d:00:c9:6d:92:c5:11:0d:ba:97: d6:3c:30:8d:c7:ac:e7:8c:0c:df:50:98:08:40:cd:56:a9:54: b3:a9:86:34:00:75:84:6c:93:43:07:0d:ea:47:d0:25:98:81: a3:e7:d4:ac:ca:5e:15:e8:79:04:7d:63:12:9c:01:f8:25:44: 07:9b:21:42:6f:38:2d:9e:13:de:9e:b9:6a:13:fc:53:77:b2: 95:e5:1e:6e:e7:4c:f4:1b:2a:28:13:16:0d:a9:fc:70:e8:c1: 42:0b:80:21:6d:9e:ca:ec:e9:90:08:26:25:fe:78:a5:00:ee: 17:ba:3a:e3:c3:e0:c1:cd:0c:25:5c:89:82:8d:25:da:62:a3: 3a:e5:62:11:ae:e4:b5:b2:fe:26:43:b2:21:25:50:a1:8e:c2: 0f:c5:d9:a3:56:9d:72:58:0f:c7:4a:4f:cd:d0:c7:a3:2e:df: 09:84:36:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlFQzcxMTAvBgNVBAUTKDMwNkUzNEZBODREQTA5MEM2MDAxQjM1NDY0QkI4QzQy NjM1N0Q5MjgwHhcNMjUwNTEzMDM1OTQyWhcNMjUwNTIwMDM1OTQyWjAYMRYwFAYD VQQDEw02ODIyYzNhZS00NjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApedG9pjHDUE9GBzCatBmbsla4ENP8ceMyKxFvl9sUdY7XEC2Rc9tOxIR1X9j 7eR7Clp8PuReJ0kxD0v3HISzbRo5S+Dbi10sxh62jqhoUOLPPtU4NkC64G4rM8YF synHBDPLiPQ/cd9Kdmc/MhhHNe8Gmgw4hgcGljw7+Gsg3MqrHWrwbNHW3H7u1jFX xbiW4WJsjkIx0+G5DcZbceEwB2KnfLB248CmjpzPXgkznFL2HEQ4WYswdMUkk6TJ C0hIoPVHx+ViMLvRnx1X3rlZuCks4xMbDt3YJkRTO/WceCNaEGkbjjxrvyf/eXs7 S0SlB3Y0OQjMavkT83yolePerwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO6bQgd0 TiL2VOHxUjOQfNBANGXqMB8GA1UdIwQYMBaAFDBuNPqE2gkMYAGzVGS7jEJjV9ko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUVDNy9FNjNGMkY4QTgy QTMxMUVFOUIxMTczNTdDNEY5QUUwMi9NRzQwLW9UYUNReGdBYk5VWkx1TVFtTlgy U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01HNDAtb1RhQ1F4Z0FiTlVaTHVNUW1OWDJTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUVDNy9FNjNGMkY4QTgyQTMxMUVFOUIxMTczNTdDNEY5QUUwMi9NRzQwLW9UYUNR eGdBYk5VWkx1TVFtTlgyU2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBieT3jMP9vnj0I7yxW6hL9BnH8349gJlcGguPBlUKApJ6ftvY4TrMA DZ2+GJMHe7O6iTal/yrZ+WlMX+i7pMe6n3Dq7WqDZuloBMDIHfeB2W0AyW2SxREN upfWPDCNx6znjAzfUJgIQM1WqVSzqYY0AHWEbJNDBw3qR9AlmIGj59Ssyl4V6HkE fWMSnAH4JUQHmyFCbzgtnhPenrlqE/xTd7KV5R5u50z0GyooExYNqfxw6MFCC4Ah bZ7K7OmQCCYl/nilAO4Xujrjw+DBzQwlXImCjSXaYqM65WIRruS1sv4mQ7IhJVCh jsIPxdmjVp1yWA/HSk/N0MejLt8JhDaq -----END CERTIFICATE-----Generated at Wed May 14 12:49:43 2025 by rpki-client