$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft File: o1D687bxS8juGymW7tSOJwIOEIM.mft (raw, json) Hash identifier: Ptl4mraYtvj4sBEZCD9pozJ2+4gOsvNQ8GTi7lRZNUM= Subject key identifier: 53:42:8C:48:0E:A1:27:E4:92:F5:04:EF:7C:CA:A2:89:3B:B7:F4:5A Authority key identifier: A3:50:FA:F3:B6:F1:4B:C8:EE:1B:29:96:EE:D4:8E:27:02:0E:10:83 Certificate issuer: /CN=A91D4834/serialNumber=A350FAF3B6F14BC8EE1B2996EED48E27020E1083 Certificate serial: 0855 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft Manifest number: 0844 Signing time: Wed 14 May 2025 20:53:15 +0000 Manifest this update: Wed 14 May 2025 20:53:14 +0000 Manifest next update: Wed 21 May 2025 20:53:14 +0000 Files and hashes: 1: o1D687bxS8juGymW7tSOJwIOEIM.crl (hash: gXFPYaLzXIqHwh5lpOutIGzEKyzLSPRUMyjfx98XQxI=) 2: C286BE40C4C711EDAFA9AF17C4F9AE02.roa (hash: wm0PciNiC4cbLFQcb4SHn/OMRIvkGpQeYyT8rS6bdpU=) 3: 032132A0E0D011ECAF88A30DC4F9AE02.roa (hash: Oqme3hgS+ErgCZrhOMJFY6E0bgLfBlO2jysH8V+HitY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.crl rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 20:53:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2133 (0x855) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4834, serialNumber=A350FAF3B6F14BC8EE1B2996EED48E27020E1083 Validity Not Before: May 14 20:53:14 2025 GMT Not After : May 21 20:53:14 2025 GMT Subject: CN=682502bb-29c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:2d:73:2b:62:fe:5c:0c:97:da:fb:ef:8e:31: e7:19:94:4a:5c:0d:a3:1a:4b:1f:12:64:6b:ad:5a: 0d:0e:6d:9e:4f:38:09:f9:0d:9d:6c:ec:e2:45:77: 18:98:7e:a9:a6:44:72:66:42:35:db:eb:9a:e8:2a: a6:6a:6c:84:8b:09:de:98:ae:c8:d8:a6:26:49:9f: 15:7d:c8:91:69:0c:96:dd:0e:bb:d4:7f:b9:4a:e8: b7:4c:28:9b:cd:20:27:f3:f4:40:db:3d:0f:8a:e7: 66:16:83:b9:03:11:4a:3e:44:92:42:1f:28:bd:8d: 49:5b:4d:3a:6c:5a:a9:38:bf:ca:02:6e:10:66:0a: be:c2:93:b9:b7:d8:90:d9:01:33:bb:f5:3d:02:10: ce:83:17:0a:4c:46:06:28:7c:31:6b:39:cf:b2:cc: ce:9e:39:09:32:e8:91:2f:d6:23:b6:03:50:1d:2c: 85:e9:10:a2:df:06:44:3c:8b:82:ab:39:28:e3:f2: c2:dd:4f:55:2c:a0:d1:df:b7:08:2a:6c:40:00:d1: e6:e4:10:2c:38:8f:ae:15:6d:f3:69:ad:6d:d9:19: 38:4c:60:54:2c:f3:44:a9:24:2f:50:ae:76:b6:88: 38:e4:b9:9c:ae:3b:98:d2:42:75:ad:19:88:4b:7b: 66:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:42:8C:48:0E:A1:27:E4:92:F5:04:EF:7C:CA:A2:89:3B:B7:F4:5A X509v3 Authority Key Identifier: keyid:A3:50:FA:F3:B6:F1:4B:C8:EE:1B:29:96:EE:D4:8E:27:02:0E:10:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:54:43:6f:89:7e:20:60:69:fc:ed:5e:f0:35:6d:a7:c7:25: e6:ff:ba:b0:98:70:8e:15:83:21:66:25:d7:03:ad:98:42:02: bb:e9:dc:28:41:cc:d2:5d:43:fb:38:29:8a:ff:7c:d9:54:cb: 7c:77:50:0d:ea:c2:7b:31:f4:f1:2a:0d:42:7e:09:04:5b:1c: a1:26:c8:72:1c:08:78:41:67:56:e5:04:39:ab:ee:3a:85:90: 58:b5:e4:2f:8f:73:43:e1:54:ae:79:8c:d3:33:d5:b4:a1:0c: 2b:64:d3:39:d0:9d:db:af:1b:dc:91:d0:63:94:47:d4:b8:e2: 7c:81:5a:c4:7a:b6:e0:8d:b7:7f:67:58:11:40:e2:e6:be:82: 71:fe:e6:67:54:a9:2a:57:b2:db:d8:92:ae:38:ee:5a:c9:49: fc:0d:82:fd:9f:9e:e0:b7:ff:37:7c:b1:ce:fd:f5:95:e4:13: 70:3b:4c:54:5d:28:d2:26:90:cb:1f:6e:3f:89:d5:75:bb:cc: d5:04:b3:b3:b7:00:ad:6c:4a:79:0b:53:e9:55:ce:29:19:e0: d0:e6:7c:43:da:19:d4:07:3e:43:ec:12:4b:b0:1e:7c:58:f6: 77:7c:66:f2:24:07:67:5b:11:cb:bb:00:59:32:5b:91:ad:92: f6:fe:52:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ4MzQxMTAvBgNVBAUTKEEzNTBGQUYzQjZGMTRCQzhFRTFCMjk5NkVFRDQ4RTI3 MDIwRTEwODMwHhcNMjUwNTE0MjA1MzE0WhcNMjUwNTIxMjA1MzE0WjAYMRYwFAYD VQQDEw02ODI1MDJiYi0yOWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5S1zK2L+XAyX2vvvjjHnGZRKXA2jGksfEmRrrVoNDm2eTzgJ+Q2dbOziRXcY mH6ppkRyZkI12+ua6CqmamyEiwnemK7I2KYmSZ8VfciRaQyW3Q671H+5Sui3TCib zSAn8/RA2z0PiudmFoO5AxFKPkSSQh8ovY1JW006bFqpOL/KAm4QZgq+wpO5t9iQ 2QEzu/U9AhDOgxcKTEYGKHwxaznPsszOnjkJMuiRL9YjtgNQHSyF6RCi3wZEPIuC qzko4/LC3U9VLKDR37cIKmxAANHm5BAsOI+uFW3zaa1t2Rk4TGBULPNEqSQvUK52 tog45LmcrjuY0kJ1rRmIS3tmDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFNCjEgO oSfkkvUE73zKook7t/RaMB8GA1UdIwQYMBaAFKNQ+vO28UvI7hsplu7UjicCDhCD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDgzNC81MUJFREZDNEND OEQxMUVBQUZGRURCMzZDNEY5QUUwMi9vMUQ2ODdieFM4anVHeW1XN3RTT0p3SU9F SU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28xRDY4N2J4UzhqdUd5bVc3dFNPSndJT0VJTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDgzNC81MUJFREZDNENDOEQxMUVBQUZGRURCMzZDNEY5QUUwMi9vMUQ2ODdieFM4 anVHeW1XN3RTT0p3SU9FSU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJVENviX4gYGn87V7wNW2nxyXm/7qwmHCOFYMhZiXXA62YQgK76dwo QczSXUP7OCmK/3zZVMt8d1AN6sJ7MfTxKg1CfgkEWxyhJshyHAh4QWdW5QQ5q+46 hZBYteQvj3ND4VSueYzTM9W0oQwrZNM50J3brxvckdBjlEfUuOJ8gVrEerbgjbd/ Z1gRQOLmvoJx/uZnVKkqV7Lb2JKuOO5ayUn8DYL9n57gt/83fLHO/fWV5BNwO0xU XSjSJpDLH24/idV1u8zVBLOztwCtbEp5C1PpVc4pGeDQ5nxD2hnUBz5D7BJLsB58 WPZ3fGbyJAdnWxHLuwBZMluRrZL2/lLG -----END CERTIFICATE-----Generated at Thu May 15 09:58:00 2025 by rpki-client