$ rpki-client -vvf rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft File: sGfGu3DfDcBM5398jXZwakn2y4U.mft (raw, json) Hash identifier: E0hksug2/gEfbn3PJcEQY+08jKViQ7fOy8x7+p6nzZ0= Subject key identifier: 5F:50:2A:3B:98:6E:0E:21:8E:54:76:E6:CA:FE:D1:B9:86:39:CA:0F Authority key identifier: B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85 Certificate issuer: /CN=A91D366A/serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85 Certificate serial: 026F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft Manifest number: 024B Signing time: Tue 13 May 2025 01:46:43 +0000 Manifest this update: Tue 13 May 2025 01:46:43 +0000 Manifest next update: Tue 20 May 2025 01:46:43 +0000 Files and hashes: 1: sGfGu3DfDcBM5398jXZwakn2y4U.crl (hash: CtSX3mq0vfyyuYcFfQLaDPWi79WZzmMKgUCG8Twt9/0=) 2: E309B1883C9711EF88C2B284C4F9AE02.roa (hash: w51TUZ9aKXo3NJmk6dhABfqfugO3+EeHqPsN7Ek6pSc=) 3: 8673F05C816911EF9022F40CC4F9AE02.roa (hash: Lvob14CywzAMuxThU8EVo51F2cECjcbnduJBtYIJSBI=) 4: 4E65B594D35711EEB8F04828C4F9AE02.roa (hash: oF0KHM0s6qEdjrzJyCovkn3VK6S/rVe2wxmJbXBONNA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 01:46:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 623 (0x26f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D366A, serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85 Validity Not Before: May 13 01:46:43 2025 GMT Not After : May 20 01:46:43 2025 GMT Subject: CN=6822a483-ab0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:61:c2:07:75:ac:b7:06:1a:f5:b1:e3:20:9f: 63:78:e9:cb:06:1a:2c:15:70:32:d2:0d:45:4d:38: 98:51:ef:a6:b4:0d:d7:93:82:9e:1c:2e:cb:48:74: 97:5b:e3:a9:76:4b:e3:a8:56:54:bb:16:4d:84:77: 81:f5:fa:56:6d:99:99:3a:de:a5:93:c8:91:2c:64: 59:f5:f4:9d:dc:68:42:78:7b:fb:b8:f3:fa:96:f1: 78:94:2c:3c:33:61:26:b6:ef:ec:16:9c:42:80:7f: 30:84:e2:ab:d6:a9:fd:9e:45:ab:5d:88:fd:eb:b4: 6c:9f:1d:b5:fa:b5:7e:31:29:71:4d:13:b9:0a:5c: 9f:87:0b:81:8b:fa:dc:73:ea:e8:41:b4:fa:7a:30: 4c:64:86:79:29:2e:61:cb:69:b9:b2:09:e0:2d:5f: ce:84:c5:56:58:34:9e:de:74:8c:a4:01:fd:a1:04: 77:9e:39:77:22:19:5b:97:d1:61:5a:7c:e4:54:89: de:12:d0:3e:1d:a4:69:92:b7:0c:61:4d:fa:fb:d7: b6:85:87:9e:0c:77:53:65:36:f2:da:f7:96:44:d9: ca:e3:98:ff:7f:23:b2:d6:cd:ed:8a:ab:c2:e2:74: 77:9e:f8:46:43:c0:8f:b5:cf:57:64:81:a8:f1:c1: 40:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:50:2A:3B:98:6E:0E:21:8E:54:76:E6:CA:FE:D1:B9:86:39:CA:0F X509v3 Authority Key Identifier: keyid:B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:ce:e5:a5:43:25:36:f2:b4:1d:8b:ee:9b:60:5c:a5:4c:de: 42:06:d8:9f:61:3b:1c:e4:70:c4:ae:e4:3d:f1:0e:9a:08:78: 71:31:f4:48:0d:2f:f1:9b:c3:ae:2e:a6:81:bf:d5:7f:f1:8e: a2:11:47:f0:25:55:1c:ac:69:d7:17:ed:8a:3a:b4:2b:e2:af: a4:6b:d7:0a:a3:5d:1f:ad:0a:72:84:2d:62:df:1c:09:be:06: 2e:68:bb:23:7c:0a:bb:8a:03:50:58:00:1b:9a:ae:74:0f:cf: 45:71:7e:13:81:8f:c9:bf:b9:46:32:fd:63:0b:f0:c6:9b:8d: 64:6a:69:c4:f0:a8:ba:fb:b4:c1:d3:e7:9c:14:43:0b:3f:31: 66:1b:91:7b:ae:9c:26:87:67:de:5c:3e:4f:9e:95:83:e9:85: 57:ab:08:90:c5:29:10:c5:3d:f9:d7:57:61:cd:c4:cf:a6:38: 1e:87:c0:02:5a:78:ed:3c:ef:e5:36:63:80:c0:2d:57:13:45: be:d5:0f:5e:89:fe:f5:1c:80:93:23:3d:89:34:9c:8a:e4:b6: 73:64:d7:11:98:33:04:d9:58:d6:1c:cb:f1:d4:56:f0:d2:4e: 6b:04:2d:f2:c5:ff:ff:ec:49:b8:bd:d0:db:38:01:62:dc:c8: da:13:2d:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM2NkExMTAvBgNVBAUTKEIwNjdDNkJCNzBERjBEQzA0Q0U3N0Y3QzhENzY3MDZB NDlGNkNCODUwHhcNMjUwNTEzMDE0NjQzWhcNMjUwNTIwMDE0NjQzWjAYMRYwFAYD VQQDEw02ODIyYTQ4My1hYjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWHCB3WstwYa9bHjIJ9jeOnLBhosFXAy0g1FTTiYUe+mtA3Xk4KeHC7LSHSX W+OpdkvjqFZUuxZNhHeB9fpWbZmZOt6lk8iRLGRZ9fSd3GhCeHv7uPP6lvF4lCw8 M2Emtu/sFpxCgH8whOKr1qn9nkWrXYj967Rsnx21+rV+MSlxTRO5ClyfhwuBi/rc c+roQbT6ejBMZIZ5KS5hy2m5sgngLV/OhMVWWDSe3nSMpAH9oQR3njl3Ihlbl9Fh WnzkVIneEtA+HaRpkrcMYU36+9e2hYeeDHdTZTby2veWRNnK45j/fyOy1s3tiqvC 4nR3nvhGQ8CPtc9XZIGo8cFAFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF9QKjuY bg4hjlR25sr+0bmGOcoPMB8GA1UdIwQYMBaAFLBnxrtw3w3ATOd/fI12cGpJ9suF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzY2QS9FQzA5QUE0QTMw N0QxMUVEQTZDM0EyMTJDNEY5QUUwMi9zR2ZHdTNEZkRjQk01Mzk4alhad2FrbjJ5 NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NHZkd1M0RmRGNCTTUzOThqWFp3YWtuMnk0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzY2QS9FQzA5QUE0QTMwN0QxMUVEQTZDM0EyMTJDNEY5QUUwMi9zR2ZHdTNEZkRj Qk01Mzk4alhad2FrbjJ5NFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuzuWlQyU28rQdi+6bYFylTN5CBtifYTsc5HDEruQ98Q6aCHhxMfRI DS/xm8OuLqaBv9V/8Y6iEUfwJVUcrGnXF+2KOrQr4q+ka9cKo10frQpyhC1i3xwJ vgYuaLsjfAq7igNQWAAbmq50D89FcX4TgY/Jv7lGMv1jC/DGm41kamnE8Ki6+7TB 0+ecFEMLPzFmG5F7rpwmh2feXD5PnpWD6YVXqwiQxSkQxT3511dhzcTPpjgeh8AC WnjtPO/lNmOAwC1XE0W+1Q9eif71HICTIz2JNJyK5LZzZNcRmDME2VjWHMvx1Fbw 0k5rBC3yxf//7Em4vdDbOAFi3MjaEy0o -----END CERTIFICATE-----Generated at Tue May 13 22:16:46 2025 by rpki-client