$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft File: -XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft (raw, json) Hash identifier: nLFKHAr2xU/LsWTic4Hlh5laAceZXFfCKogFraAeOow= Subject key identifier: 70:83:CF:F6:5D:08:82:CA:17:53:73:93:27:B9:C6:CA:E4:BE:FA:DC Authority key identifier: F9:72:E7:5E:3D:03:E5:CE:19:01:93:0C:43:D1:6D:C4:A8:9C:47:92 Certificate issuer: /CN=A91C9484/serialNumber=F972E75E3D03E5CE1901930C43D16DC4A89C4792 Certificate serial: 34B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft Manifest number: 349A Signing time: Sat 10 May 2025 14:45:56 +0000 Manifest this update: Sat 10 May 2025 14:45:55 +0000 Manifest next update: Sat 17 May 2025 14:45:55 +0000 Files and hashes: 1: -XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl (hash: Jva31FoBWPOZhmv3xoc8N7XM13+2gJ7eEHRrZoExauE=) 2: 49036D2CB0D711E58B185E0FC4F9AE02.roa (hash: AsLmLNpdLhba6hfcYMLpd0sVqrUh2auGXL+sqK0hCjo=) 3: FFC89DF8CECD11EEA4AA6D44C4F9AE02.roa (hash: LT0aNSmVv5vvmR7dpu4yqP0BpA8hfoKsmy5XfMM5RqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 14:45:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13489 (0x34b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9484, serialNumber=F972E75E3D03E5CE1901930C43D16DC4A89C4792 Validity Not Before: May 10 14:45:55 2025 GMT Not After : May 17 14:45:55 2025 GMT Subject: CN=681f66a3-33a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f6:89:48:7c:50:7c:a1:4c:4d:1d:99:7f:8d: 5c:be:70:72:08:bd:4b:4e:f5:02:1a:57:a8:10:01: f9:cc:10:e2:2b:2c:16:d9:88:9d:ad:9f:55:45:ee: 48:a6:fa:80:6d:6b:cb:76:e0:a3:32:6b:2e:b3:ff: 60:6a:a0:ef:f7:23:5f:02:e9:b0:69:b0:f2:93:51: 17:ef:b5:33:1b:d2:5b:50:bc:03:f3:6a:14:3a:ee: 92:3b:d9:2b:df:30:f3:02:7a:92:44:66:a1:b0:4c: bf:c7:1a:4a:79:4d:1d:4d:41:c4:f5:6d:f1:2a:ba: 60:57:ba:f9:1a:4d:17:cc:1c:ba:e6:33:87:0e:08: 9f:b2:78:fd:77:b6:78:6d:94:5f:dd:c1:dd:e2:cc: c0:8f:a6:28:5c:aa:76:93:ee:c5:df:20:98:6d:7b: 5b:cb:0d:f7:19:9a:60:50:9f:4c:d6:f1:b3:b1:fa: 02:c7:1c:25:d0:64:a0:86:c6:40:e4:06:13:75:3f: cd:bf:68:63:89:82:40:75:d6:b8:ad:c1:e5:bd:bb: 99:c1:2a:03:2a:98:7a:7a:4c:49:1f:ea:e6:37:e6: ee:f1:e3:2b:18:a5:d0:2f:94:f6:69:56:73:06:93: e6:39:b4:70:11:89:63:d7:cb:79:b1:b3:e0:f3:ed: bd:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:83:CF:F6:5D:08:82:CA:17:53:73:93:27:B9:C6:CA:E4:BE:FA:DC X509v3 Authority Key Identifier: keyid:F9:72:E7:5E:3D:03:E5:CE:19:01:93:0C:43:D1:6D:C4:A8:9C:47:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:de:7d:b5:45:f0:cd:ec:1b:04:8c:ab:a3:08:5b:44:22:e6: 92:f7:aa:a4:c3:4c:c7:c4:92:35:9c:92:7a:94:3a:bd:53:d8: a4:1d:49:54:a5:2e:03:95:49:d6:e5:f9:33:5c:02:55:12:45: 74:8e:ee:0f:06:b2:8b:12:61:54:ce:58:30:53:90:bf:75:2a: 01:95:b7:ef:18:87:80:0e:6a:ce:a4:de:b0:d7:e7:bb:d3:79: 61:dd:63:c4:2e:e8:dc:61:aa:f3:b2:68:7f:73:13:c6:a9:20: 53:65:95:4e:e8:4d:0e:e3:75:34:52:a3:ef:68:95:45:cf:9b: 5f:55:6b:00:bb:f1:9a:f5:40:d7:bb:c7:0c:ec:f6:6d:1f:ee: 6a:c1:ca:ba:97:1f:32:b9:39:10:b6:7a:da:7b:02:18:b4:d4: 4f:9d:54:3d:0b:c6:5d:de:54:f9:6a:dd:ae:63:bc:38:1a:6a: 95:89:87:35:c6:2b:b6:ea:e2:2e:5d:1a:b2:a0:ab:58:ce:7f: 42:12:3f:35:4c:f0:e6:27:e8:01:d5:42:42:22:97:21:b7:7f: bc:4f:47:4f:da:51:df:98:b8:69:25:97:9b:79:de:c4:2f:34: c0:ed:06:ac:1e:a2:8e:a5:19:60:03:2e:95:c0:0c:f0:fb:f1: 68:c4:c7:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk0ODQxMTAvBgNVBAUTKEY5NzJFNzVFM0QwM0U1Q0UxOTAxOTMwQzQzRDE2REM0 QTg5QzQ3OTIwHhcNMjUwNTEwMTQ0NTU1WhcNMjUwNTE3MTQ0NTU1WjAYMRYwFAYD VQQDEw02ODFmNjZhMy0zM2E1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvPaJSHxQfKFMTR2Zf41cvnByCL1LTvUCGleoEAH5zBDiKywW2YidrZ9VRe5I pvqAbWvLduCjMmsus/9gaqDv9yNfAumwabDyk1EX77UzG9JbULwD82oUOu6SO9kr 3zDzAnqSRGahsEy/xxpKeU0dTUHE9W3xKrpgV7r5Gk0XzBy65jOHDgifsnj9d7Z4 bZRf3cHd4szAj6YoXKp2k+7F3yCYbXtbyw33GZpgUJ9M1vGzsfoCxxwl0GSghsZA 5AYTdT/Nv2hjiYJAdda4rcHlvbuZwSoDKph6ekxJH+rmN+bu8eMrGKXQL5T2aVZz BpPmObRwEYlj18t5sbPg8+29ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHCDz/Zd CILKF1Nzkye5xsrkvvrcMB8GA1UdIwQYMBaAFPly5149A+XOGQGTDEPRbcSonEeS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTQ4NC82RkYwRERFMDFE OTQxMUUyOURFQ0I1RjgwOEIwMkNEMi8tWExuWGowRDVjNFpBWk1NUTlGdHhLaWNS NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1YTG5YajBENWM0WkFaTU1ROUZ0eEtpY1I1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTQ4NC82RkYwRERFMDFEOTQxMUUyOURFQ0I1RjgwOEIwMkNEMi8tWExuWGowRDVj NFpBWk1NUTlGdHhLaWNSNUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAb3n21RfDN7BsEjKujCFtEIuaS96qkw0zHxJI1nJJ6lDq9U9ikHUlU pS4DlUnW5fkzXAJVEkV0ju4PBrKLEmFUzlgwU5C/dSoBlbfvGIeADmrOpN6w1+e7 03lh3WPELujcYarzsmh/cxPGqSBTZZVO6E0O43U0UqPvaJVFz5tfVWsAu/Ga9UDX u8cM7PZtH+5qwcq6lx8yuTkQtnraewIYtNRPnVQ9C8Zd3lT5at2uY7w4GmqViYc1 xiu26uIuXRqyoKtYzn9CEj81TPDmJ+gB1UJCIpcht3+8T0dP2lHfmLhpJZebed7E LzTA7QasHqKOpRlgAy6VwAzw+/FoxMep -----END CERTIFICATE-----Generated at Sun May 11 19:55:18 2025 by rpki-client