$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft File: y8ZgM3D76EzM4GToT08m7b7CZ7E.mft (raw, json) Hash identifier: sF5wtyAOeZLh2SmymJ4HZ4mV94t9pwImEGEqeN8FS34= Subject key identifier: B6:3A:C9:F2:8F:96:EE:C1:81:32:66:27:CC:E6:1E:36:89:63:C6:AC Authority key identifier: CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 Certificate issuer: /CN=A91D9CA8/serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Certificate serial: 3C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft Manifest number: 36 Signing time: Sat 10 May 2025 08:15:41 +0000 Manifest this update: Sat 10 May 2025 08:15:39 +0000 Manifest next update: Sat 17 May 2025 08:15:39 +0000 Files and hashes: 1: y8ZgM3D76EzM4GToT08m7b7CZ7E.crl (hash: KPyRX+z1ZDUXB/Gw1G+FpjW4JGFkzcoQC2kc6qj8I7w=) 2: F37B99DE2D7611F0B2EFB30CC4F9AE02.roa (hash: qk4LNX+6CfjLwZVDTIa28ZXQ7DnqqepMSq/jQ9PQEug=) 3: B67DB7C42D7611F0A8AF2581C4F9AE02.roa (hash: dX2Tufrh33lS3L7HI7SrvAnH5dQ+euB+KFty6ApiT4c=) 4: B97BD74AE4FF11EFB75F5836C4F9AE02.roa (hash: KR4Tx3kFeLSQKCW18mb5WqFjOSaFssRkJQn1FwH+pqg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 08:15:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CA8, serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Validity Not Before: May 10 08:15:39 2025 GMT Not After : May 17 08:15:39 2025 GMT Subject: CN=681f0b2c-4426 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:44:6b:4e:cc:a9:90:b4:33:1a:c5:74:1d:fe: dc:06:72:a4:68:39:41:12:df:46:52:62:36:ad:b5: 5a:62:22:23:4b:34:94:b7:57:d9:cf:15:ca:bc:e0: 49:ed:b6:cc:16:c6:2a:51:e7:91:b1:b7:3d:5d:d2: c0:a4:22:67:63:4f:36:e3:09:d0:0e:1d:fa:9c:af: ea:19:5c:4a:be:07:10:52:63:cc:76:13:dc:4f:a3: 67:b9:59:70:d2:d3:2f:c2:4f:8b:5e:f0:fd:6f:e9: 05:ca:5b:7c:9f:eb:f3:6d:0b:0f:12:f6:bc:9a:93: 0c:ad:0e:23:a9:e2:27:c7:36:22:ac:6f:c3:f9:2e: b1:a6:78:a2:a4:32:57:e6:0c:03:ba:81:83:69:01: 46:69:af:64:d6:4d:33:75:59:61:7a:d6:81:1d:23: ab:30:e3:eb:a3:31:4c:d2:d4:80:68:bb:00:02:f3: d8:11:39:1b:d4:57:6f:40:db:07:35:21:84:53:e2: 76:78:b4:ac:0d:71:df:a7:8e:e7:e8:18:c2:a7:71: 8d:ff:e9:71:53:53:13:4b:85:5d:e0:c0:f0:f7:53: a8:1c:af:ee:a6:a2:eb:91:8d:df:18:b0:2f:6e:e7: bc:7c:5a:38:72:61:74:7f:13:86:80:84:96:36:13: d1:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:3A:C9:F2:8F:96:EE:C1:81:32:66:27:CC:E6:1E:36:89:63:C6:AC X509v3 Authority Key Identifier: keyid:CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:19:4f:4a:98:fc:98:5b:4b:20:31:af:34:ec:74:0a:fc:13: b1:26:62:fa:c0:6d:d3:ab:ea:c2:f8:d2:d4:0e:87:96:b2:ce: a8:c8:0b:1d:ba:ef:16:b3:2b:42:f3:48:43:ff:f5:8b:90:fe: db:78:bd:03:22:cd:90:a6:22:10:cb:57:b9:43:77:2b:33:8b: 50:e2:43:b7:75:1a:30:de:23:e1:f3:e1:de:26:e5:31:84:5f: a5:0e:1c:41:84:6a:47:0a:f5:43:a8:6c:b4:53:4a:99:62:63: 01:d5:fb:d1:be:42:1f:f9:4e:57:2b:ca:58:fb:d8:79:e4:be: 3a:83:5f:5f:8d:2f:a5:29:7b:01:fb:9d:69:76:cf:28:64:7c: dd:dc:8d:30:05:5b:bc:de:5d:47:ed:ba:7a:53:33:cd:04:ee: 89:07:d9:b8:45:8a:37:3b:07:b6:d3:1c:01:d3:22:2e:1e:e4: b8:bb:97:be:cb:94:80:d2:4b:1a:23:e9:f7:6a:23:8f:ea:a7: 52:cd:f8:8a:bf:77:9c:1a:bf:b5:ae:b0:be:53:6b:3f:db:75: 4b:0f:8f:99:33:0f:6c:7e:fa:d7:b1:87:25:2d:0b:c6:a5:14: f2:ae:59:90:e7:8f:d4:56:76:6a:1e:07:06:fb:2f:ba:61:e5: 07:11:e4:c9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OUNBODExMC8GA1UEBRMoQ0JDNjYwMzM3MEZCRTg0Q0NDRTA2NEU4NEY0RjI2RURC RUMyNjdCMTAeFw0yNTA1MTAwODE1MzlaFw0yNTA1MTcwODE1MzlaMBgxFjAUBgNV BAMTDTY4MWYwYjJjLTQ0MjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCmRGtOzKmQtDMaxXQd/twGcqRoOUES30ZSYjattVpiIiNLNJS3V9nPFcq84Ent tswWxipR55Gxtz1d0sCkImdjTzbjCdAOHfqcr+oZXEq+BxBSY8x2E9xPo2e5WXDS 0y/CT4te8P1v6QXKW3yf6/NtCw8S9ryakwytDiOp4ifHNiKsb8P5LrGmeKKkMlfm DAO6gYNpAUZpr2TWTTN1WWF61oEdI6sw4+ujMUzS1IBouwAC89gRORvUV29A2wc1 IYRT4nZ4tKwNcd+njufoGMKncY3/6XFTUxNLhV3gwPD3U6gcr+6mouuRjd8YsC9u 57x8WjhyYXR/E4aAhJY2E9H5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUtjrJ8o+W 7sGBMmYnzOYeNoljxqwwHwYDVR0jBBgwFoAUy8ZgM3D76EzM4GToT08m7b7CZ7Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5Q0E4LzIwREEyNzQ2RTRG RDExRUZBQzFDRTY3RkM0RjlBRTAyL3k4WmdNM0Q3NkV6TTRHVG9UMDhtN2I3Q1o3 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveThaZ00zRDc2RXpNNEdUb1QwOG03YjdDWjdFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5 Q0E4LzIwREEyNzQ2RTRGRDExRUZBQzFDRTY3RkM0RjlBRTAyL3k4WmdNM0Q3NkV6 TTRHVG9UMDhtN2I3Q1o3RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACUZT0qY/JhbSyAxrzTsdAr8E7EmYvrAbdOr6sL40tQOh5ayzqjICx26 7xazK0LzSEP/9YuQ/tt4vQMizZCmIhDLV7lDdyszi1DiQ7d1GjDeI+Hz4d4m5TGE X6UOHEGEakcK9UOobLRTSpliYwHV+9G+Qh/5Tlcrylj72HnkvjqDX1+NL6UpewH7 nWl2zyhkfN3cjTAFW7zeXUftunpTM80E7okH2bhFijc7B7bTHAHTIi4e5Li7l77L lIDSSxoj6fdqI4/qp1LN+Iq/d5wav7WusL5Taz/bdUsPj5kzD2x++texhyUtC8al FPKuWZDnj9RWdmoeBwb7L7ph5QcR5Mk= -----END CERTIFICATE-----Generated at Sun May 11 01:21:59 2025 by rpki-client