$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft File: CJy1orM7eG11SgfWgKnElBQmGeE.mft (raw, json) Hash identifier: 8PGHCyDMWuTjnTX8NfwWobYBWNEX5/1J1b1zLOGQSS8= Subject key identifier: 85:6E:27:A8:27:C6:64:79:20:54:A5:D7:0E:45:B2:78:E0:17:CE:27 Authority key identifier: 08:9C:B5:A2:B3:3B:78:6D:75:4A:07:D6:80:A9:C4:94:14:26:19:E1 Certificate issuer: /CN=A91D0C18/serialNumber=089CB5A2B33B786D754A07D680A9C494142619E1 Certificate serial: A3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft Manifest number: A1 Signing time: Thu 03 Jul 2025 06:27:12 +0000 Manifest this update: Thu 03 Jul 2025 06:27:11 +0000 Manifest next update: Thu 10 Jul 2025 06:27:11 +0000 Files and hashes: 1: CJy1orM7eG11SgfWgKnElBQmGeE.crl (hash: nUwWOIUqMHnx3sMsy5Id7p1AEzDTocSIPEcOqIzwTB8=) 2: EEE0092A646611EFA25D167EC4F9AE02.roa (hash: 2I1s5RbX9mRnDSwDS9XqFVY3yT7dmC+Kb1B8YfP6Dhk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.crl rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163 (0xa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0C18, serialNumber=089CB5A2B33B786D754A07D680A9C494142619E1 Validity Not Before: Jul 3 06:27:11 2025 GMT Not After : Jul 10 06:27:11 2025 GMT Subject: CN=686622bf-8449 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:10:64:63:e8:45:8b:21:29:72:60:35:52:af: a3:66:87:c2:81:c9:ea:1d:2a:aa:53:38:58:44:2a: b0:7f:0c:f8:ff:65:fc:53:e6:18:bb:da:ae:90:98: f1:ef:d5:ea:a7:3c:b9:4d:dc:6b:27:94:6e:44:66: 6d:f5:14:10:19:94:bf:87:d2:81:b5:a9:e3:ed:bc: 98:57:fc:76:15:b3:83:1f:93:14:94:ee:f7:af:44: c8:1b:c9:bb:b2:29:a6:8b:ee:f9:56:c1:cc:16:90: eb:b0:64:47:da:d4:15:03:b0:f6:d9:76:ae:42:85: 35:42:df:6a:49:2c:f2:41:0a:a2:c0:53:1d:eb:eb: be:71:54:05:e5:4a:6b:4e:11:fe:1e:25:1e:76:2d: 8e:3d:79:0d:87:05:dc:9b:42:8a:4e:6f:99:4b:9d: 88:5a:03:46:43:64:8b:5a:2e:6e:ea:cb:30:e8:f8: 64:06:f9:d8:96:98:62:a6:6c:5b:86:08:54:8c:95: 9b:38:f7:e1:d2:6b:a9:82:0a:d6:ae:c1:e8:d1:2a: 5b:e8:eb:7e:61:38:7e:b0:83:0c:c2:bc:14:78:16: c0:ca:e1:5d:b4:c6:ef:16:4b:45:2c:a7:73:be:04: ae:a2:bd:ce:14:66:a4:8c:c5:9e:f6:2f:ab:cc:4e: 7a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:6E:27:A8:27:C6:64:79:20:54:A5:D7:0E:45:B2:78:E0:17:CE:27 X509v3 Authority Key Identifier: keyid:08:9C:B5:A2:B3:3B:78:6D:75:4A:07:D6:80:A9:C4:94:14:26:19:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:d6:38:45:9a:6d:23:5b:53:f1:f0:dd:60:f1:f4:d3:c6:1e: 2a:07:7e:11:44:b1:45:90:7e:b9:f0:0c:74:1b:cf:47:08:01: 40:7f:03:b5:66:8b:a6:dd:bb:bf:b7:45:1a:3f:68:ff:f4:53: 96:9f:62:76:45:46:ce:56:bb:00:af:ba:42:35:c7:a7:58:94: 58:a9:fa:3d:6e:63:04:c5:70:2d:c8:d4:15:a7:13:26:d9:aa: c3:05:31:d5:6f:5e:17:19:b4:38:f3:45:4a:a0:7c:4d:8f:58: bc:3f:3b:5e:37:6a:31:ee:c9:58:07:30:8c:a7:4d:1d:88:0c: 91:66:25:a9:da:20:85:43:23:d3:da:1a:6e:ec:98:86:74:08: 16:75:c4:d9:eb:81:f8:53:3f:93:6c:4d:34:07:26:f7:6b:80: 83:93:82:53:88:03:84:b1:52:a5:72:89:3d:44:68:b9:dd:fb: b5:4d:4e:a2:69:5e:21:e2:98:78:cd:09:64:b1:5e:c8:02:0d: 00:25:34:be:01:93:db:72:22:ba:a1:bb:04:c8:9c:65:33:e3: a0:3a:ea:27:b4:f1:d5:35:f4:9a:f6:7f:b4:74:e7:0a:af:8c: 61:5a:d9:f8:66:a8:aa:0f:27:7b:f7:08:7e:b2:c9:65:96:9b: 5b:be:4e:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBDMTgxMTAvBgNVBAUTKDA4OUNCNUEyQjMzQjc4NkQ3NTRBMDdENjgwQTlDNDk0 MTQyNjE5RTEwHhcNMjUwNzAzMDYyNzExWhcNMjUwNzEwMDYyNzExWjAYMRYwFAYD VQQDEw02ODY2MjJiZi04NDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApRBkY+hFiyEpcmA1Uq+jZofCgcnqHSqqUzhYRCqwfwz4/2X8U+YYu9qukJjx 79Xqpzy5TdxrJ5RuRGZt9RQQGZS/h9KBtanj7byYV/x2FbODH5MUlO73r0TIG8m7 simmi+75VsHMFpDrsGRH2tQVA7D22XauQoU1Qt9qSSzyQQqiwFMd6+u+cVQF5Upr ThH+HiUedi2OPXkNhwXcm0KKTm+ZS52IWgNGQ2SLWi5u6ssw6PhkBvnYlphipmxb hghUjJWbOPfh0mupggrWrsHo0Spb6Ot+YTh+sIMMwrwUeBbAyuFdtMbvFktFLKdz vgSuor3OFGakjMWe9i+rzE56IwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIVuJ6gn xmR5IFSl1w5FsnjgF84nMB8GA1UdIwQYMBaAFAictaKzO3htdUoH1oCpxJQUJhnh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEMxOC82ODNCQTA5NjY0 NjYxMUVGOEUxOEY4N0FDNEY5QUUwMi9DSnkxb3JNN2VHMTFTZ2ZXZ0tuRWxCUW1H ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0NKeTFvck03ZUcxMVNnZldnS25FbEJRbUdlRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEMxOC82ODNCQTA5NjY0NjYxMUVGOEUxOEY4N0FDNEY5QUUwMi9DSnkxb3JNN2VH MTFTZ2ZXZ0tuRWxCUW1HZUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCb1jhFmm0jW1Px8N1g8fTTxh4qB34RRLFFkH658Ax0G89HCAFAfwO1 Zoum3bu/t0UaP2j/9FOWn2J2RUbOVrsAr7pCNcenWJRYqfo9bmMExXAtyNQVpxMm 2arDBTHVb14XGbQ480VKoHxNj1i8PzteN2ox7slYBzCMp00diAyRZiWp2iCFQyPT 2hpu7JiGdAgWdcTZ64H4Uz+TbE00Byb3a4CDk4JTiAOEsVKlcok9RGi53fu1TU6i aV4h4ph4zQlksV7IAg0AJTS+AZPbciK6obsEyJxlM+OgOuontPHVNfSa9n+0dOcK r4xhWtn4ZqiqDyd79wh+sslllptbvk6a -----END CERTIFICATE-----Generated at Thu Jul 3 23:05:59 2025 by rpki-client