$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft File: v3H1vxFop4QFduAAbzu8ZfxINAs.mft (raw, json) Hash identifier: ceLNYJmioAcuUlAEzKnQfJ8mbQet5QMDLjlL9dDK1wg= Subject key identifier: 2B:7C:94:C7:1A:E7:EF:70:21:5A:46:12:ED:5C:93:23:2C:E3:24:0A Authority key identifier: BF:71:F5:BF:11:68:A7:84:05:76:E0:00:6F:3B:BC:65:FC:48:34:0B Certificate issuer: /CN=A91ED596/serialNumber=BF71F5BF1168A7840576E0006F3BBC65FC48340B Certificate serial: 8E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/v3H1vxFop4QFduAAbzu8ZfxINAs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft Manifest number: 8D Signing time: Thu 15 May 2025 05:43:49 +0000 Manifest this update: Thu 15 May 2025 05:43:48 +0000 Manifest next update: Thu 22 May 2025 05:43:48 +0000 Files and hashes: 1: v3H1vxFop4QFduAAbzu8ZfxINAs.crl (hash: awBT4GkwdlDXm/bgTzvj7Ijoa1nTcFo7dB0jiRndUS0=) 2: 8580DC705AE311EF86351430C4F9AE02.roa (hash: tNd1A1Pa4JpDSAJTUxSzKVvWvdR5TDXaWTiFNabeiYY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.crl rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/v3H1vxFop4QFduAAbzu8ZfxINAs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:43:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 142 (0x8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED596, serialNumber=BF71F5BF1168A7840576E0006F3BBC65FC48340B Validity Not Before: May 15 05:43:48 2025 GMT Not After : May 22 05:43:48 2025 GMT Subject: CN=68257f15-93e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:2c:20:80:d3:0f:5b:94:76:a6:8c:1e:a9:e4: 3c:b9:f8:1c:dc:7a:43:dd:f6:0f:d4:67:90:6f:26: cd:72:53:31:d4:71:c8:c4:db:db:85:4e:e2:c7:ec: d1:65:a1:b7:c9:a3:a0:69:4e:39:7c:7e:b2:d4:b4: 56:b1:b8:92:5c:14:59:87:56:05:66:44:65:06:40: 7d:7b:1c:22:ce:99:8b:9f:73:d0:a6:1b:82:74:d1: 95:6d:d9:15:e9:22:a7:da:69:b6:1f:f5:eb:e3:59: e0:67:9a:f9:a4:25:fe:8f:ab:19:08:73:5e:17:df: 0d:65:46:32:8f:f2:86:e8:df:24:2e:69:57:bb:1b: db:b9:18:19:40:5b:03:6e:24:71:9d:55:cf:6a:29: ad:b2:4a:63:c0:29:40:09:50:24:c9:29:b8:02:d8: a9:7f:36:51:9c:47:ea:47:77:f9:a8:7d:87:dd:86: b2:75:2f:93:15:7c:21:b5:75:21:78:19:2f:09:0d: 6c:7a:94:56:3c:82:b9:68:e3:68:96:5e:15:f3:46: ba:7d:25:d3:b6:d0:69:e3:9f:85:40:ff:5d:db:86: ed:a0:78:72:d0:de:e9:bd:3c:f3:99:7f:5c:2b:c5: f2:58:d1:e6:e2:02:13:2a:24:0d:05:78:78:3e:c6: 37:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:7C:94:C7:1A:E7:EF:70:21:5A:46:12:ED:5C:93:23:2C:E3:24:0A X509v3 Authority Key Identifier: keyid:BF:71:F5:BF:11:68:A7:84:05:76:E0:00:6F:3B:BC:65:FC:48:34:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/v3H1vxFop4QFduAAbzu8ZfxINAs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:29:88:03:5c:a6:b7:42:d4:05:ea:f5:53:c5:d2:43:09:42: 58:eb:90:9d:27:7d:6b:57:54:2b:08:66:5d:ea:07:f7:e1:2d: d4:25:94:ed:61:d4:60:6e:8b:b7:0a:09:50:fd:70:85:da:9c: 16:cf:a5:c5:05:3f:07:8d:e3:d3:8c:44:2f:cd:4c:ca:ae:e4: 39:84:2f:c6:d5:b8:ac:ba:9a:c4:6c:45:99:96:b5:f2:66:ce: 66:a7:70:03:38:6e:1f:83:1d:6b:bf:40:c9:20:f7:01:3d:5b: 19:a1:68:bd:4f:57:3d:36:66:1f:1c:c6:b8:52:a5:20:59:af: cb:43:64:bd:33:27:bc:80:d1:88:a0:2f:f5:ea:3a:b8:9b:c1: ec:62:1c:40:d4:5b:ce:a4:9b:f9:65:c4:f7:13:08:26:8a:95: a5:aa:18:1a:d4:7e:3e:8d:89:97:17:48:59:53:02:1a:ec:c1: 40:5d:28:12:91:ba:06:d4:9b:79:e3:c0:b8:8b:2c:2b:5a:6d: 35:cb:80:01:09:32:7d:49:1d:e9:8e:fa:fa:96:9e:46:73:a9: 8d:d2:ba:7a:82:fc:0f:b2:d3:2b:f1:5a:fd:6c:3f:71:86:40: 6f:86:8a:45:c3:ca:d2:31:b7:ff:5e:55:bb:ea:17:0e:5c:71: 8b:b8:ea:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ1OTYxMTAvBgNVBAUTKEJGNzFGNUJGMTE2OEE3ODQwNTc2RTAwMDZGM0JCQzY1 RkM0ODM0MEIwHhcNMjUwNTE1MDU0MzQ4WhcNMjUwNTIyMDU0MzQ4WjAYMRYwFAYD VQQDEw02ODI1N2YxNS05M2UyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2CwggNMPW5R2poweqeQ8ufgc3HpD3fYP1GeQbybNclMx1HHIxNvbhU7ix+zR ZaG3yaOgaU45fH6y1LRWsbiSXBRZh1YFZkRlBkB9exwizpmLn3PQphuCdNGVbdkV 6SKn2mm2H/Xr41ngZ5r5pCX+j6sZCHNeF98NZUYyj/KG6N8kLmlXuxvbuRgZQFsD biRxnVXPaimtskpjwClACVAkySm4AtipfzZRnEfqR3f5qH2H3YaydS+TFXwhtXUh eBkvCQ1sepRWPIK5aONoll4V80a6fSXTttBp45+FQP9d24btoHhy0N7pvTzzmX9c K8XyWNHm4gITKiQNBXh4PsY3+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCt8lMca 5+9wIVpGEu1ckyMs4yQKMB8GA1UdIwQYMBaAFL9x9b8RaKeEBXbgAG87vGX8SDQL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDU5Ni8wNTcyREQ4QTVB RTMxMUVGOTMyQzIzMkZDNEY5QUUwMi92M0gxdnhGb3A0UUZkdUFBYnp1OFpmeElO QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3YzSDF2eEZvcDRRRmR1QUFienU4WmZ4SU5Bcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDU5Ni8wNTcyREQ4QTVBRTMxMUVGOTMyQzIzMkZDNEY5QUUwMi92M0gxdnhGb3A0 UUZkdUFBYnp1OFpmeElOQXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGKYgDXKa3QtQF6vVTxdJDCUJY65CdJ31rV1QrCGZd6gf34S3UJZTt YdRgbou3CglQ/XCF2pwWz6XFBT8HjePTjEQvzUzKruQ5hC/G1bisuprEbEWZlrXy Zs5mp3ADOG4fgx1rv0DJIPcBPVsZoWi9T1c9NmYfHMa4UqUgWa/LQ2S9Mye8gNGI oC/16jq4m8HsYhxA1FvOpJv5ZcT3EwgmipWlqhga1H4+jYmXF0hZUwIa7MFAXSgS kboG1Jt548C4iywrWm01y4ABCTJ9SR3pjvr6lp5Gc6mN0rp6gvwPstMr8Vr9bD9x hkBvhopFw8rSMbf/XlW76hcOXHGLuOoK -----END CERTIFICATE-----Generated at Thu May 15 20:22:06 2025 by rpki-client