$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft File: bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft (raw, json) Hash identifier: 20Da77JWjnq3UWQVrIHzTNMG2AeeIJmMlEcQirH88MA= Subject key identifier: 22:FD:6B:59:40:7B:35:78:F8:ED:F5:B7:9E:09:50:A9:CB:C5:53:86 Authority key identifier: 6E:3F:6A:4C:BD:2C:76:51:B4:90:EB:64:90:4B:BF:F1:F4:62:01:D5 Certificate issuer: /CN=A91DDDA7/serialNumber=6E3F6A4CBD2C7651B490EB64904BBFF1F46201D5 Certificate serial: 0649 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bj9qTL0sdlG0kOtkkEu_8fRiAdU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft Manifest number: 0643 Signing time: Sat 10 May 2025 20:03:19 +0000 Manifest this update: Sat 10 May 2025 20:03:19 +0000 Manifest next update: Sat 17 May 2025 20:03:19 +0000 Files and hashes: 1: bj9qTL0sdlG0kOtkkEu_8fRiAdU.crl (hash: lcMmH7pYGIV2X1ne/ZV/96vhtaTxSUCjsw6kAPMUBeY=) 2: 815931708D5411EB9DA31875C4F9AE02.roa (hash: LyuoMJXz1NyXM9pSNW11Fa6fRcMflVH6LhgfRij1kVg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.crl rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bj9qTL0sdlG0kOtkkEu_8fRiAdU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 20:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1609 (0x649) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDDA7, serialNumber=6E3F6A4CBD2C7651B490EB64904BBFF1F46201D5 Validity Not Before: May 10 20:03:19 2025 GMT Not After : May 17 20:03:19 2025 GMT Subject: CN=681fb107-38a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c3:8c:be:ff:f8:a3:78:76:03:a8:92:c6:1f: e6:ff:a6:81:2f:c8:2f:21:52:bf:5a:c1:99:ae:aa: 53:b1:91:b1:14:98:d6:8a:8d:36:26:d7:c3:5b:17: a0:ea:5e:d7:06:58:db:1f:6e:89:46:6f:5c:08:4f: f0:a8:de:73:69:34:18:f4:7d:2c:30:52:e1:d8:3e: d8:c7:49:ca:a4:1f:3e:a3:c5:69:df:de:c2:00:87: fb:ec:53:49:44:20:28:b1:2e:07:af:49:83:a6:75: 6c:93:86:f0:ba:35:29:9b:6d:df:08:b2:f9:27:7b: c8:5c:4e:02:e9:c7:6c:99:81:51:d0:28:25:60:e8: ea:78:21:e0:7f:52:d1:2b:3e:1a:16:25:bd:14:79: 5a:24:75:b1:b5:49:b3:95:a7:13:64:f0:45:cf:35: 6f:d0:89:5c:24:fc:58:43:41:17:dd:b4:11:10:57: 65:0e:e0:15:cf:4b:fc:ae:14:12:0d:bd:68:38:24: a2:71:5d:a9:74:0c:64:16:9a:59:92:34:75:d9:d4: 59:31:4c:3a:71:ca:3d:6c:7e:35:8b:bb:f6:8f:fd: da:5a:ca:6a:86:8c:f2:7a:b7:70:87:72:99:ac:68: 43:b7:5c:b0:e9:5d:7b:0b:e8:ab:0c:aa:ba:5a:6a: f2:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:FD:6B:59:40:7B:35:78:F8:ED:F5:B7:9E:09:50:A9:CB:C5:53:86 X509v3 Authority Key Identifier: keyid:6E:3F:6A:4C:BD:2C:76:51:B4:90:EB:64:90:4B:BF:F1:F4:62:01:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bj9qTL0sdlG0kOtkkEu_8fRiAdU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:64:30:ee:f5:9f:ce:f3:d6:82:96:12:cb:91:98:63:ba:02: dc:2f:8f:1b:dd:5d:82:54:bd:57:b3:39:c9:8c:ba:6e:02:44: 83:c1:b4:e6:b4:b6:f4:75:63:7a:2b:67:f4:91:4b:a5:c2:42: 9a:15:95:93:44:83:20:3f:3c:93:bd:5d:ca:b1:7d:8e:fe:01: 84:fd:7f:4c:1d:f4:bf:7a:6f:86:4f:56:88:b3:41:7d:91:57: d8:35:44:41:2f:95:27:51:e3:30:2a:96:4a:67:8c:17:c0:55: 10:7f:91:34:c6:ae:5b:cc:a3:00:0f:b8:80:9e:fd:73:a2:dc: 74:51:e7:0c:49:99:49:50:93:8e:b0:49:14:6a:06:53:b8:b2: c2:ee:31:e8:c1:06:54:a8:c3:57:d0:aa:c2:98:22:f0:6f:29: 79:8c:d6:67:2f:02:5d:f1:51:7c:20:f9:41:34:cd:07:3d:e8: 5d:49:8b:6f:58:9c:92:14:7c:3e:30:3d:fe:72:6c:bc:e0:f6: cb:5d:57:6e:7e:7c:a4:fe:aa:4b:f4:93:65:60:49:eb:01:c5: f5:81:4a:a2:b2:71:eb:29:09:73:e1:ba:5a:f2:03:f6:18:2c: 69:92:20:59:fb:26:64:81:91:48:42:88:d8:6b:5d:3e:04:45: f2:99:5e:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REREQTcxMTAvBgNVBAUTKDZFM0Y2QTRDQkQyQzc2NTFCNDkwRUI2NDkwNEJCRkYx RjQ2MjAxRDUwHhcNMjUwNTEwMjAwMzE5WhcNMjUwNTE3MjAwMzE5WjAYMRYwFAYD VQQDEw02ODFmYjEwNy0zOGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuMOMvv/4o3h2A6iSxh/m/6aBL8gvIVK/WsGZrqpTsZGxFJjWio02JtfDWxeg 6l7XBljbH26JRm9cCE/wqN5zaTQY9H0sMFLh2D7Yx0nKpB8+o8Vp397CAIf77FNJ RCAosS4Hr0mDpnVsk4bwujUpm23fCLL5J3vIXE4C6cdsmYFR0CglYOjqeCHgf1LR Kz4aFiW9FHlaJHWxtUmzlacTZPBFzzVv0IlcJPxYQ0EX3bQREFdlDuAVz0v8rhQS Db1oOCSicV2pdAxkFppZkjR12dRZMUw6cco9bH41i7v2j/3aWspqhozyerdwh3KZ rGhDt1yw6V17C+irDKq6WmrytQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCL9a1lA ezV4+O31t54JUKnLxVOGMB8GA1UdIwQYMBaAFG4/aky9LHZRtJDrZJBLv/H0YgHV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERERBNy8zQzk1MzE5QzhE NTQxMUVCOTg0MEUwNUZDNEY5QUUwMi9iajlxVEwwc2RsRzBrT3Rra0V1XzhmUmlB ZFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2JqOXFUTDBzZGxHMGtPdGtrRXVfOGZSaUFkVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RERBNy8zQzk1MzE5QzhENTQxMUVCOTg0MEUwNUZDNEY5QUUwMi9iajlxVEwwc2Rs RzBrT3Rra0V1XzhmUmlBZFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKZDDu9Z/O89aClhLLkZhjugLcL48b3V2CVL1XsznJjLpuAkSDwbTm tLb0dWN6K2f0kUulwkKaFZWTRIMgPzyTvV3KsX2O/gGE/X9MHfS/em+GT1aIs0F9 kVfYNURBL5UnUeMwKpZKZ4wXwFUQf5E0xq5bzKMAD7iAnv1zotx0UecMSZlJUJOO sEkUagZTuLLC7jHowQZUqMNX0KrCmCLwbyl5jNZnLwJd8VF8IPlBNM0HPehdSYtv WJySFHw+MD3+cmy84PbLXVdufnyk/qpL9JNlYEnrAcX1gUqisnHrKQlz4bpa8gP2 GCxpkiBZ+yZkgZFIQojYa10+BEXymV5K -----END CERTIFICATE-----Generated at Mon May 12 03:43:48 2025 by rpki-client