$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/b3tF49x2JsN_igHgq46krwVfSYo.mft File: b3tF49x2JsN_igHgq46krwVfSYo.mft (raw, json) Hash identifier: Nhq2di7ngwWpuvCpOIjTVnmzA/baJD8mJnWzvh6yyFQ= Subject key identifier: 19:96:13:46:EF:8B:EA:2C:AD:43:95:86:5B:F8:FE:0F:76:CB:AA:1D Authority key identifier: 6F:7B:45:E3:DC:76:26:C3:7F:8A:01:E0:AB:8E:A4:AF:05:5F:49:8A Certificate issuer: /CN=A91F0AF0/serialNumber=6F7B45E3DC7626C37F8A01E0AB8EA4AF055F498A Certificate serial: 1118 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b3tF49x2JsN_igHgq46krwVfSYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/b3tF49x2JsN_igHgq46krwVfSYo.mft Manifest number: 1D6D Signing time: Mon 12 May 2025 17:12:50 +0000 Manifest this update: Mon 12 May 2025 17:12:50 +0000 Manifest next update: Mon 19 May 2025 17:12:50 +0000 Files and hashes: 1: b3tF49x2JsN_igHgq46krwVfSYo.crl (hash: 8lp6TNU7xavN5v430/gFji9rVcaSiUA4/09Z1ocIz54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/b3tF49x2JsN_igHgq46krwVfSYo.crl rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/b3tF49x2JsN_igHgq46krwVfSYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b3tF49x2JsN_igHgq46krwVfSYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 17:12:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4376 (0x1118) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0AF0, serialNumber=6F7B45E3DC7626C37F8A01E0AB8EA4AF055F498A Validity Not Before: May 12 17:12:50 2025 GMT Not After : May 19 17:12:50 2025 GMT Subject: CN=68222c12-c4e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:59:92:6e:3e:88:b6:be:12:66:23:c0:11:48: 05:4c:55:4d:26:e0:7e:ee:a8:20:bc:de:69:b9:2b: 4b:d2:01:8d:47:90:91:1d:c3:a6:05:f5:85:8d:0c: d8:78:0c:fc:99:e4:1c:cd:46:82:70:ef:25:74:fb: a5:78:a8:e9:f5:43:ef:ec:30:75:34:aa:19:8e:32: 41:75:40:1d:3d:d0:c4:b2:2f:c9:98:01:6e:6b:0a: 27:27:26:49:c1:19:f9:05:8b:a8:3c:a1:27:3d:1b: bc:c7:16:61:2c:c7:1b:25:20:46:ca:1c:c2:f0:89: 66:32:79:66:c7:b8:95:46:15:5e:b9:a5:da:d8:b9: f4:eb:f0:2e:d8:56:94:17:aa:c0:06:65:f4:04:d9: 7a:7a:eb:5b:b4:30:db:4d:ae:42:70:d8:fb:34:ae: 14:db:e0:18:d0:26:38:1b:84:8b:c0:a4:f3:53:94: 90:68:62:a1:de:a9:13:d9:45:70:2e:3f:6f:bd:80: 0d:36:b8:57:3c:81:dd:9f:5d:55:9c:a6:56:f8:f6: d7:ee:8d:55:73:71:16:88:33:f6:02:80:30:bb:1b: 4e:3a:a4:c0:5c:ed:42:fe:82:bb:76:10:b6:e8:c6: 14:eb:58:04:9a:a0:cb:e5:92:14:56:93:98:94:6b: f0:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:96:13:46:EF:8B:EA:2C:AD:43:95:86:5B:F8:FE:0F:76:CB:AA:1D X509v3 Authority Key Identifier: keyid:6F:7B:45:E3:DC:76:26:C3:7F:8A:01:E0:AB:8E:A4:AF:05:5F:49:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/b3tF49x2JsN_igHgq46krwVfSYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b3tF49x2JsN_igHgq46krwVfSYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/b3tF49x2JsN_igHgq46krwVfSYo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:46:89:5c:ef:eb:4d:7f:8f:4c:1e:e3:33:30:ba:ac:72:3e: 14:15:b4:32:15:ef:de:67:12:5b:6b:93:66:e5:02:6e:35:67: 76:7a:8d:74:a8:65:05:f2:4d:a5:82:db:b9:94:01:56:85:87: 24:99:48:81:cc:61:e5:56:b9:bf:28:db:9e:51:fa:06:f2:aa: 1a:87:cf:9c:1c:e6:5d:76:85:6f:24:51:36:d9:0e:8e:1d:b2: 25:95:96:85:24:d9:2a:da:42:6d:cb:06:07:03:ac:50:6b:b9: da:50:13:72:65:85:11:35:46:d8:05:c8:ec:8b:d9:c9:7d:78: fa:ac:ec:4d:36:c2:20:94:cf:74:eb:72:c7:0e:48:18:28:a4: 8d:e5:ad:6d:d3:9f:fd:b8:0c:d5:37:47:5f:15:18:a6:e2:ba: df:62:8d:b9:90:ea:a2:a4:09:21:70:8c:77:da:9a:fd:b9:cf: 71:50:8e:b9:21:c6:46:98:53:6b:24:b9:46:19:2d:c4:89:7e: 2a:8d:9e:c3:93:3e:ab:0b:12:ff:c9:ae:70:24:6e:70:ef:e0: 8e:8e:41:05:52:e7:5d:06:7e:52:46:bc:05:a6:5f:10:13:7f: c4:a8:b9:d0:9c:79:32:ed:d7:bf:74:00:cd:d3:be:e6:78:6a: 1d:f0:a4:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICERgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBBRjAxMTAvBgNVBAUTKDZGN0I0NUUzREM3NjI2QzM3RjhBMDFFMEFCOEVBNEFG MDU1RjQ5OEEwHhcNMjUwNTEyMTcxMjUwWhcNMjUwNTE5MTcxMjUwWjAYMRYwFAYD VQQDEw02ODIyMmMxMi1jNGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1mSbj6Itr4SZiPAEUgFTFVNJuB+7qggvN5puStL0gGNR5CRHcOmBfWFjQzY eAz8meQczUaCcO8ldPuleKjp9UPv7DB1NKoZjjJBdUAdPdDEsi/JmAFuawonJyZJ wRn5BYuoPKEnPRu8xxZhLMcbJSBGyhzC8IlmMnlmx7iVRhVeuaXa2Ln06/Au2FaU F6rABmX0BNl6eutbtDDbTa5CcNj7NK4U2+AY0CY4G4SLwKTzU5SQaGKh3qkT2UVw Lj9vvYANNrhXPIHdn11VnKZW+PbX7o1Vc3EWiDP2AoAwuxtOOqTAXO1C/oK7dhC2 6MYU61gEmqDL5ZIUVpOYlGvwMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBmWE0bv i+osrUOVhlv4/g92y6odMB8GA1UdIwQYMBaAFG97RePcdibDf4oB4KuOpK8FX0mK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEFGMC9FMzc2Mjk1MDBG RkYxMUU5ODgxNUFFMjJDNEY5QUUwMi9iM3RGNDl4MkpzTl9pZ0hncTQ2a3J3VmZT WW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IzdEY0OXgySnNOX2lnSGdxNDZrcndWZlNZby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEFGMC9FMzc2Mjk1MDBGRkYxMUU5ODgxNUFFMjJDNEY5QUUwMi9iM3RGNDl4Mkpz Tl9pZ0hncTQ2a3J3VmZTWW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6Rolc7+tNf49MHuMzMLqscj4UFbQyFe/eZxJba5Nm5QJuNWd2eo10 qGUF8k2lgtu5lAFWhYckmUiBzGHlVrm/KNueUfoG8qoah8+cHOZddoVvJFE22Q6O HbIllZaFJNkq2kJtywYHA6xQa7naUBNyZYURNUbYBcjsi9nJfXj6rOxNNsIglM90 63LHDkgYKKSN5a1t05/9uAzVN0dfFRim4rrfYo25kOqipAkhcIx32pr9uc9xUI65 IcZGmFNrJLlGGS3EiX4qjZ7Dkz6rCxL/ya5wJG5w7+COjkEFUuddBn5SRrwFpl8Q E3/EqLnQnHky7de/dADN077meGod8KTo -----END CERTIFICATE-----Generated at Wed May 14 17:34:25 2025 by rpki-client