$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0FAC/3CF798E0049711ECA53D4B3CC4F9AE02/0VLfcuXWwcb-QrZCN3w7CIEobec.mft File: 0VLfcuXWwcb-QrZCN3w7CIEobec.mft (raw, json) Hash identifier: E0ei6T5X7H9nIc0pgxpqcl7BIyrwyt2G2uIrkX1mQVY= Subject key identifier: B0:C0:E5:47:A4:23:AC:4C:2F:E0:EE:73:DE:F9:E5:FD:9A:6B:ED:A7 Authority key identifier: D1:52:DF:72:E5:D6:C1:C6:FE:42:B6:42:37:7C:3B:08:81:28:6D:E7 Certificate issuer: /CN=A91C0FAC/serialNumber=D152DF72E5D6C1C6FE42B642377C3B0881286DE7 Certificate serial: 0513 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0VLfcuXWwcb-QrZCN3w7CIEobec.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0FAC/3CF798E0049711ECA53D4B3CC4F9AE02/0VLfcuXWwcb-QrZCN3w7CIEobec.mft Manifest number: 050F Signing time: Wed 14 May 2025 23:39:55 +0000 Manifest this update: Wed 14 May 2025 23:39:55 +0000 Manifest next update: Wed 21 May 2025 23:39:55 +0000 Files and hashes: 1: 0VLfcuXWwcb-QrZCN3w7CIEobec.crl (hash: OGcKePMxNylqxCE00bUbPYUbt2qUJWZg20e9vSLmvHw=) 2: 4C2E7A3C049B11ECAC7E5D0DC4F9AE02.roa (hash: RRDCzU53SK4RYR2DdbmwE16o06HoY4GRJ9TEKW1rm3A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0FAC/3CF798E0049711ECA53D4B3CC4F9AE02/0VLfcuXWwcb-QrZCN3w7CIEobec.crl rsync://rpki.apnic.net/member_repository/A91C0FAC/3CF798E0049711ECA53D4B3CC4F9AE02/0VLfcuXWwcb-QrZCN3w7CIEobec.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0VLfcuXWwcb-QrZCN3w7CIEobec.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 23:39:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1299 (0x513) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0FAC, serialNumber=D152DF72E5D6C1C6FE42B642377C3B0881286DE7 Validity Not Before: May 14 23:39:55 2025 GMT Not After : May 21 23:39:55 2025 GMT Subject: CN=682529cb-89d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:da:57:6f:42:86:75:93:32:ce:de:50:b0:1c: ed:4c:24:50:0c:78:02:65:e1:24:ea:c3:2a:e1:1d: 09:56:5f:0f:10:30:19:0c:0f:d7:1f:14:b3:da:c0: 38:4a:07:de:50:b7:99:33:60:23:c1:a9:a2:ba:58: e4:fe:4e:45:73:58:ef:59:b3:c2:90:4d:71:d5:4d: 28:e9:b1:58:14:42:0e:e0:64:ca:34:2d:05:3d:5e: 4a:0d:76:28:9f:08:58:6b:a8:e3:18:16:8f:c3:a1: 48:6c:52:b4:59:bd:fb:2a:05:4c:f4:5e:12:36:3b: da:d2:c6:e3:91:98:df:56:d4:57:fd:3c:c0:2f:2e: f3:02:e0:74:f6:9e:51:bb:96:82:20:c1:77:54:5c: 09:0b:4b:8f:67:06:d3:30:52:d5:d1:a8:51:2e:4c: fa:1b:10:49:fe:23:d7:db:d7:54:c9:af:19:bb:c3: bf:43:b6:b2:ea:fc:2a:f7:5e:76:13:66:22:c7:b1: 58:fd:30:87:2e:b1:48:3b:82:20:17:dc:11:1b:b2: 6f:15:ba:63:22:e8:28:a7:4b:b3:cd:33:ea:01:33: cc:4b:91:d8:88:90:2e:68:b9:93:e9:3e:39:46:57: 09:76:05:c7:07:f7:10:c0:b3:4b:5d:fd:9e:01:53: 7e:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:C0:E5:47:A4:23:AC:4C:2F:E0:EE:73:DE:F9:E5:FD:9A:6B:ED:A7 X509v3 Authority Key Identifier: keyid:D1:52:DF:72:E5:D6:C1:C6:FE:42:B6:42:37:7C:3B:08:81:28:6D:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0FAC/3CF798E0049711ECA53D4B3CC4F9AE02/0VLfcuXWwcb-QrZCN3w7CIEobec.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0VLfcuXWwcb-QrZCN3w7CIEobec.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0FAC/3CF798E0049711ECA53D4B3CC4F9AE02/0VLfcuXWwcb-QrZCN3w7CIEobec.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:92:62:27:fa:c5:1a:2e:2d:61:07:c3:ad:66:92:43:b7:ad: 86:f4:fb:d6:b0:3b:e6:d0:4c:08:e7:e9:11:a8:a1:c9:26:36: 6a:b6:51:c2:8c:8f:e9:76:d3:7c:a5:02:60:4b:50:50:ad:46: a8:78:5f:5c:c8:76:00:99:fa:45:03:e9:fc:77:08:40:6b:af: 58:ef:ec:38:dc:30:f7:ee:d1:3d:09:09:c3:0f:7f:30:29:c3: 42:a3:6a:d0:72:c4:65:63:9d:31:a3:01:02:b0:5f:52:4a:8d: 13:fa:ff:07:27:01:d3:40:05:aa:96:4d:97:ea:b6:4b:e6:67: 21:c0:85:34:e1:cc:8f:16:d7:cb:c6:09:13:cb:e0:79:63:3f: a8:fb:ae:66:0e:e2:40:1c:a2:58:01:fd:91:70:34:15:00:13: 71:a9:e9:e5:1f:4a:38:d5:47:90:b5:01:c8:ac:40:e2:df:ff: 3f:14:20:9d:e0:a5:90:1e:e4:fb:97:a0:e9:b4:df:63:69:d9: 72:27:05:93:bc:be:21:a6:20:3f:d3:65:b5:30:2f:17:09:dc: 38:0c:b3:32:2f:ba:d9:bf:20:8a:67:dc:f9:9d:8b:35:a9:7e: cb:81:fe:62:e1:40:a4:52:6d:b3:47:2f:db:cf:08:8d:f3:c6: 84:c0:c0:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBGQUMxMTAvBgNVBAUTKEQxNTJERjcyRTVENkMxQzZGRTQyQjY0MjM3N0MzQjA4 ODEyODZERTcwHhcNMjUwNTE0MjMzOTU1WhcNMjUwNTIxMjMzOTU1WjAYMRYwFAYD VQQDEw02ODI1MjljYi04OWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8tpXb0KGdZMyzt5QsBztTCRQDHgCZeEk6sMq4R0JVl8PEDAZDA/XHxSz2sA4 SgfeULeZM2Ajwamiuljk/k5Fc1jvWbPCkE1x1U0o6bFYFEIO4GTKNC0FPV5KDXYo nwhYa6jjGBaPw6FIbFK0Wb37KgVM9F4SNjva0sbjkZjfVtRX/TzALy7zAuB09p5R u5aCIMF3VFwJC0uPZwbTMFLV0ahRLkz6GxBJ/iPX29dUya8Zu8O/Q7ay6vwq9152 E2Yix7FY/TCHLrFIO4IgF9wRG7JvFbpjIugop0uzzTPqATPMS5HYiJAuaLmT6T45 RlcJdgXHB/cQwLNLXf2eAVN+2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLDA5Uek I6xML+Duc9755f2aa+2nMB8GA1UdIwQYMBaAFNFS33Ll1sHG/kK2Qjd8OwiBKG3n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEZBQy8zQ0Y3OThFMDA0 OTcxMUVDQTUzRDRCM0NDNEY5QUUwMi8wVkxmY3VYV3djYi1RclpDTjN3N0NJRW9i ZWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBWTGZjdVhXd2NiLVFyWkNOM3c3Q0lFb2JlYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEZBQy8zQ0Y3OThFMDA0OTcxMUVDQTUzRDRCM0NDNEY5QUUwMi8wVkxmY3VYV3dj Yi1RclpDTjN3N0NJRW9iZWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAakmIn+sUaLi1hB8OtZpJDt62G9PvWsDvm0EwI5+kRqKHJJjZqtlHC jI/pdtN8pQJgS1BQrUaoeF9cyHYAmfpFA+n8dwhAa69Y7+w43DD37tE9CQnDD38w KcNCo2rQcsRlY50xowECsF9SSo0T+v8HJwHTQAWqlk2X6rZL5mchwIU04cyPFtfL xgkTy+B5Yz+o+65mDuJAHKJYAf2RcDQVABNxqenlH0o41UeQtQHIrEDi3/8/FCCd 4KWQHuT7l6DptN9jadlyJwWTvL4hpiA/02W1MC8XCdw4DLMyL7rZvyCKZ9z5nYs1 qX7Lgf5i4UCkUm2zRy/bzwiN88aEwMCI -----END CERTIFICATE-----Generated at Thu May 15 19:02:17 2025 by rpki-client