$ rpki-client -vvf rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft File: bLMNwI7ylzDp3wScVPOVgquFvpQ.mft (raw, json) Hash identifier: V5+BP3YlI8im6cWr5edzYhSXfGQjbeZbafqYeoWqYIg= Subject key identifier: 13:F7:39:0B:20:6B:EB:27:F2:0A:5C:7B:48:C0:7D:27:D9:CE:79:C8 Authority key identifier: 6C:B3:0D:C0:8E:F2:97:30:E9:DF:04:9C:54:F3:95:82:AB:85:BE:94 Certificate issuer: /CN=A91C40D1/serialNumber=6CB30DC08EF29730E9DF049C54F39582AB85BE94 Certificate serial: 12B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLMNwI7ylzDp3wScVPOVgquFvpQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft Manifest number: 12AA Signing time: Wed 14 May 2025 17:09:54 +0000 Manifest this update: Wed 14 May 2025 17:09:54 +0000 Manifest next update: Wed 21 May 2025 17:09:54 +0000 Files and hashes: 1: bLMNwI7ylzDp3wScVPOVgquFvpQ.crl (hash: CH3FW//7NpeUDep4kTZW77mMBHIQTzj56Dy7QsvJwtk=) 2: 18272628C30B11E8A6851824C4F9AE02.roa (hash: zhAB02c7MO6g0ZjU60Q0NOMxZrMu/KXiBvCTRD/ktbM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.crl rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLMNwI7ylzDp3wScVPOVgquFvpQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 17:09:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4789 (0x12b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C40D1, serialNumber=6CB30DC08EF29730E9DF049C54F39582AB85BE94 Validity Not Before: May 14 17:09:54 2025 GMT Not After : May 21 17:09:54 2025 GMT Subject: CN=6824ce62-09ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a6:76:cc:12:86:a4:dd:49:08:d3:0e:0e:db: 5f:b3:cd:15:f6:4c:28:48:7e:04:0f:44:ab:d4:48: cb:c1:33:f0:24:03:7c:8c:c3:0c:dc:90:7c:ce:61: 49:a6:22:35:f3:f1:19:5f:d2:c5:1f:4d:53:58:9d: 37:2e:bb:6c:c0:89:4b:3e:92:94:cd:59:0f:8b:a2: b7:31:11:63:63:28:a0:84:aa:7c:c2:11:2e:46:01: 4b:1b:00:97:06:68:4c:eb:a1:26:8e:43:6f:59:43: 8a:5e:3b:e3:a8:a8:6f:41:da:41:94:3e:04:a8:73: d8:55:d2:73:b1:64:96:32:65:ae:e3:19:cd:36:7a: e1:09:2f:f6:6d:e9:d5:dd:9c:2d:38:86:27:0c:a8: 9e:84:8c:92:97:68:97:9e:ab:3e:cc:4a:d8:f3:3a: ec:83:e7:36:1c:b2:a7:d6:46:49:06:ee:90:b7:2b: 53:c1:27:46:5a:e3:e3:47:55:9e:bc:7a:50:f1:b4: 4e:3f:7b:3d:9d:49:73:31:d9:9d:2c:3b:fe:8a:07: 0a:82:1b:73:e9:8e:9a:0d:ee:9d:3f:5e:22:0a:5c: ec:4d:e2:bc:2e:e8:8f:83:13:9e:33:b1:d9:89:f7: 4e:63:65:d3:87:cc:41:72:bd:7a:63:45:9b:b3:cb: d9:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:F7:39:0B:20:6B:EB:27:F2:0A:5C:7B:48:C0:7D:27:D9:CE:79:C8 X509v3 Authority Key Identifier: keyid:6C:B3:0D:C0:8E:F2:97:30:E9:DF:04:9C:54:F3:95:82:AB:85:BE:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLMNwI7ylzDp3wScVPOVgquFvpQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:2e:14:43:20:c2:67:c5:c2:bb:9f:bb:db:b1:2f:d6:13:5d: 00:a4:99:15:d9:ab:97:39:9f:2c:0a:54:47:9b:db:66:93:2f: 10:8c:7f:e6:ba:57:49:18:46:24:e5:ef:aa:12:4f:e6:19:4d: 12:15:19:dd:66:19:9f:f1:67:7e:f2:72:1b:e8:2b:83:f9:fd: 48:55:ff:b6:0c:79:f2:b7:fe:1a:7f:cc:83:1f:a4:1f:40:0c: 81:5a:d7:ab:36:ab:f2:60:36:df:89:7e:9c:4f:db:0a:59:50: 14:e3:07:1a:0b:47:27:32:f3:a6:0f:7a:20:94:4d:e2:d8:8b: 35:72:f3:24:8a:28:a5:9b:36:87:89:2e:1f:f3:04:92:75:aa: 56:1d:a2:bd:b5:a4:7f:c2:50:9d:2a:a2:b0:97:85:a7:e2:0e: 0e:72:fe:6e:aa:c7:f3:ee:94:a6:4e:6a:5b:0c:c1:4c:44:57: 13:fd:8c:2f:9a:cc:31:cd:52:21:f5:7f:d9:83:75:86:48:fe: a8:42:48:1c:84:7b:e8:32:ab:70:c7:12:ae:16:f7:d5:96:cf: 3a:07:f8:20:cf:ae:44:7a:d6:e1:8e:0b:71:90:09:cd:d8:0c: fb:5b:45:2a:6a:7d:7e:20:73:a6:76:31:0f:6d:8a:ea:97:06: 03:14:37:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICErUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwRDExMTAvBgNVBAUTKDZDQjMwREMwOEVGMjk3MzBFOURGMDQ5QzU0RjM5NTgy QUI4NUJFOTQwHhcNMjUwNTE0MTcwOTU0WhcNMjUwNTIxMTcwOTU0WjAYMRYwFAYD VQQDEw02ODI0Y2U2Mi0wOWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArqZ2zBKGpN1JCNMODttfs80V9kwoSH4ED0Sr1EjLwTPwJAN8jMMM3JB8zmFJ piI18/EZX9LFH01TWJ03LrtswIlLPpKUzVkPi6K3MRFjYyighKp8whEuRgFLGwCX BmhM66EmjkNvWUOKXjvjqKhvQdpBlD4EqHPYVdJzsWSWMmWu4xnNNnrhCS/2benV 3ZwtOIYnDKiehIySl2iXnqs+zErY8zrsg+c2HLKn1kZJBu6QtytTwSdGWuPjR1We vHpQ8bROP3s9nUlzMdmdLDv+igcKghtz6Y6aDe6dP14iClzsTeK8LuiPgxOeM7HZ ifdOY2XTh8xBcr16Y0Wbs8vZIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBP3OQsg a+sn8gpce0jAfSfZznnIMB8GA1UdIwQYMBaAFGyzDcCO8pcw6d8EnFTzlYKrhb6U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDBEMS9DQzc4MzBCMEMz MDkxMUU4OTAwRTVGMjFDNEY5QUUwMi9iTE1Od0k3eWx6RHAzd1NjVlBPVmdxdUZ2 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JMTU53STd5bHpEcDN3U2NWUE9WZ3F1RnZwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDBEMS9DQzc4MzBCMEMzMDkxMUU4OTAwRTVGMjFDNEY5QUUwMi9iTE1Od0k3eWx6 RHAzd1NjVlBPVmdxdUZ2cFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4LhRDIMJnxcK7n7vbsS/WE10ApJkV2auXOZ8sClRHm9tmky8QjH/m uldJGEYk5e+qEk/mGU0SFRndZhmf8Wd+8nIb6CuD+f1IVf+2DHnyt/4af8yDH6Qf QAyBWterNqvyYDbfiX6cT9sKWVAU4wcaC0cnMvOmD3oglE3i2Is1cvMkiiilmzaH iS4f8wSSdapWHaK9taR/wlCdKqKwl4Wn4g4Ocv5uqsfz7pSmTmpbDMFMRFcT/Ywv mswxzVIh9X/Zg3WGSP6oQkgchHvoMqtwxxKuFvfVls86B/ggz65EetbhjgtxkAnN 2Az7W0Uqan1+IHOmdjEPbYrqlwYDFDe4 -----END CERTIFICATE-----Generated at Fri May 16 12:48:40 2025 by rpki-client