$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/3Bs5tU9giRrHeKkxbXGwvoAGOW4.mft File: 3Bs5tU9giRrHeKkxbXGwvoAGOW4.mft (raw, json) Hash identifier: vM9PyVSqWsEDUkz1S4d2ypo5NVic21nhX0He1CBgjBE= Subject key identifier: 67:C6:16:3A:9F:E7:AF:AC:E3:9B:48:0D:57:4E:BF:14:E7:64:2D:AA Authority key identifier: DC:1B:39:B5:4F:60:89:1A:C7:78:A9:31:6D:71:B0:BE:80:06:39:6E Certificate issuer: /CN=A91DC4E1/serialNumber=DC1B39B54F60891AC778A9316D71B0BE8006396E Certificate serial: 1B53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bs5tU9giRrHeKkxbXGwvoAGOW4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/3Bs5tU9giRrHeKkxbXGwvoAGOW4.mft Manifest number: 1B31 Signing time: Sat 10 May 2025 16:12:56 +0000 Manifest this update: Sat 10 May 2025 16:12:56 +0000 Manifest next update: Sat 17 May 2025 16:12:56 +0000 Files and hashes: 1: 3Bs5tU9giRrHeKkxbXGwvoAGOW4.crl (hash: YpmyRi385SiYFPyeNASE7zQWGBnjkx3FsVnfYBOykGk=) 2: D129428E25DF11E7AC03C03EC4F9AE02.roa (hash: 26Hx4AkbPRTYM9L9rQHlirDpC55IRFhPxlOYhEhXmNA=) 3: 20772F82207611E7AD8F8459C4F9AE02.roa (hash: ItkNWWq8nRtDa6uB2Q8iwUXsM5xJRUOh/lTQOL6uROM=) 4: 920126A625F011E7AB40BB69C4F9AE02.roa (hash: VGx79HjfctMAH3951trK9IBgyFBPVt62lhijc0hOVt4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/3Bs5tU9giRrHeKkxbXGwvoAGOW4.crl rsync://rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/3Bs5tU9giRrHeKkxbXGwvoAGOW4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bs5tU9giRrHeKkxbXGwvoAGOW4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 16:12:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6995 (0x1b53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC4E1, serialNumber=DC1B39B54F60891AC778A9316D71B0BE8006396E Validity Not Before: May 10 16:12:56 2025 GMT Not After : May 17 16:12:56 2025 GMT Subject: CN=681f7b08-909e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:0a:7d:45:f7:24:64:f0:63:a9:db:ce:35:af: c4:ae:2b:c3:e3:b2:e6:1d:9b:85:27:cd:63:53:ce: b2:ed:95:e6:9c:6a:a2:7f:00:03:1c:27:02:d4:ca: f2:49:ae:a4:84:a3:d7:22:8c:46:c3:07:b5:4c:e0: 15:1d:aa:b5:0f:06:6b:58:bc:62:41:ce:43:05:66: a8:2d:bd:53:0c:a7:cb:f4:d2:52:a5:da:9b:57:51: e9:4a:3d:6c:4a:96:be:47:31:d8:97:78:eb:c0:c1: 5e:62:f1:81:59:44:7c:5b:83:44:b5:dd:d8:87:1c: e4:94:aa:6b:96:21:a4:d6:3a:25:17:6d:c6:0d:04: bd:42:0d:a4:81:11:6d:74:c5:a2:d4:4c:bd:a2:71: e1:ef:99:83:d4:f5:86:74:1d:4c:4b:9e:97:90:59: 84:32:26:c7:9f:fa:c1:44:68:28:82:0b:25:7b:50: 66:cc:ea:33:d6:46:37:a3:c8:4e:af:73:92:eb:d2: d0:47:ad:21:37:a0:85:09:09:14:1a:32:10:df:6e: 8d:09:40:97:d3:d2:b9:65:72:15:d7:9d:6b:4e:bf: 11:c9:1a:3c:af:06:a3:97:00:70:a0:9a:80:86:62: 20:06:05:52:38:96:18:c5:4e:36:4f:72:31:09:c2: 03:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:C6:16:3A:9F:E7:AF:AC:E3:9B:48:0D:57:4E:BF:14:E7:64:2D:AA X509v3 Authority Key Identifier: keyid:DC:1B:39:B5:4F:60:89:1A:C7:78:A9:31:6D:71:B0:BE:80:06:39:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/3Bs5tU9giRrHeKkxbXGwvoAGOW4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bs5tU9giRrHeKkxbXGwvoAGOW4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/3Bs5tU9giRrHeKkxbXGwvoAGOW4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:1c:18:bd:a6:14:c4:be:e5:bb:79:5f:e7:38:b2:5e:0e:2e: d4:f2:79:e2:81:04:9f:51:20:46:bc:bf:e2:03:c4:69:62:57: e7:7f:17:ea:d6:09:fe:4f:60:0d:51:fb:1c:c5:59:7a:22:9c: 97:8d:65:be:32:9a:87:82:5b:21:bf:cb:26:28:b4:79:4c:15: cf:fc:5c:47:05:b7:8c:64:7b:cf:fb:0e:4b:72:e0:58:dd:d6: 33:aa:85:42:29:34:bb:3e:c6:a1:9c:d6:5a:a2:90:c4:78:e2: 90:23:40:b5:a2:c6:81:2e:cc:c4:bf:85:63:21:a0:fd:8c:d2: e4:69:ba:09:61:d4:59:06:c9:66:db:bc:be:af:cb:a2:3c:15: d7:29:06:2e:7e:19:b6:bd:6d:c3:41:dc:25:c5:48:ff:f8:bb: 5e:61:d6:3f:06:2c:b3:ec:96:eb:34:c7:66:56:73:3c:15:f9: 0c:bf:f3:40:a3:65:17:ee:22:5f:13:dd:33:67:87:f5:f6:be: 4d:f6:5f:8c:14:e1:bc:fa:23:46:91:ca:cd:7a:8c:34:7c:a2: 2d:65:a1:8a:ae:09:f3:b4:5c:18:af:16:91:86:ab:3a:3b:a5: f3:58:e7:f7:82:86:98:b5:63:e0:d3:fb:ac:66:c4:14:7c:8d: ab:50:07:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG1MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0RTExMTAvBgNVBAUTKERDMUIzOUI1NEY2MDg5MUFDNzc4QTkzMTZENzFCMEJF ODAwNjM5NkUwHhcNMjUwNTEwMTYxMjU2WhcNMjUwNTE3MTYxMjU2WjAYMRYwFAYD VQQDEw02ODFmN2IwOC05MDllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0gp9RfckZPBjqdvONa/ErivD47LmHZuFJ81jU86y7ZXmnGqifwADHCcC1Mry Sa6khKPXIoxGwwe1TOAVHaq1DwZrWLxiQc5DBWaoLb1TDKfL9NJSpdqbV1HpSj1s Spa+RzHYl3jrwMFeYvGBWUR8W4NEtd3YhxzklKprliGk1jolF23GDQS9Qg2kgRFt dMWi1Ey9onHh75mD1PWGdB1MS56XkFmEMibHn/rBRGgoggsle1BmzOoz1kY3o8hO r3OS69LQR60hN6CFCQkUGjIQ326NCUCX09K5ZXIV151rTr8RyRo8rwajlwBwoJqA hmIgBgVSOJYYxU42T3IxCcIDWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGfGFjqf 56+s45tIDVdOvxTnZC2qMB8GA1UdIwQYMBaAFNwbObVPYIkax3ipMW1xsL6ABjlu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzRFMS8yMDA0RjE0NDE2 MDExMUU3QThBQzIyNURDNEY5QUUwMi8zQnM1dFU5Z2lSckhlS2t4YlhHd3ZvQUdP VzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNCczV0VTlnaVJySGVLa3hiWEd3dm9BR09XNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzRFMS8yMDA0RjE0NDE2MDExMUU3QThBQzIyNURDNEY5QUUwMi8zQnM1dFU5Z2lS ckhlS2t4YlhHd3ZvQUdPVzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDFHBi9phTEvuW7eV/nOLJeDi7U8nnigQSfUSBGvL/iA8RpYlfnfxfq 1gn+T2ANUfscxVl6IpyXjWW+MpqHglshv8smKLR5TBXP/FxHBbeMZHvP+w5LcuBY 3dYzqoVCKTS7PsahnNZaopDEeOKQI0C1osaBLszEv4VjIaD9jNLkaboJYdRZBslm 27y+r8uiPBXXKQYufhm2vW3DQdwlxUj/+LteYdY/Biyz7JbrNMdmVnM8FfkMv/NA o2UX7iJfE90zZ4f19r5N9l+MFOG8+iNGkcrNeow0fKItZaGKrgnztFwYrxaRhqs6 O6XzWOf3goaYtWPg0/usZsQUfI2rUAep -----END CERTIFICATE-----Generated at Mon May 12 15:41:42 2025 by rpki-client