$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2C07/A774A9CE1E6011F0B7DC7654C4F9AE02/DOBgwuQw3YUYEMnyD-wbohGZ49Y.mft File: DOBgwuQw3YUYEMnyD-wbohGZ49Y.mft (raw, json) Hash identifier: h5NMXsubKt7v1Lu77Y99Fh3SZXmaaq/7x7aRS0QjGB0= Subject key identifier: 0E:1F:B6:43:23:75:A7:5F:BB:F6:C6:B5:C9:3E:C7:D4:21:A6:02:80 Authority key identifier: 0C:E0:60:C2:E4:30:DD:85:18:10:C9:F2:0F:EC:1B:A2:11:99:E3:D6 Certificate issuer: /CN=A91F2C07/serialNumber=0CE060C2E430DD851810C9F20FEC1BA21199E3D6 Certificate serial: 0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOBgwuQw3YUYEMnyD-wbohGZ49Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2C07/A774A9CE1E6011F0B7DC7654C4F9AE02/DOBgwuQw3YUYEMnyD-wbohGZ49Y.mft Manifest number: 0E Signing time: Thu 15 May 2025 07:22:59 +0000 Manifest this update: Thu 15 May 2025 07:22:59 +0000 Manifest next update: Thu 22 May 2025 07:22:58 +0000 Files and hashes: 1: DOBgwuQw3YUYEMnyD-wbohGZ49Y.crl (hash: RF71SaRkPOz9tltd86XxQL67OoVvi0PsMIDznEnzHLY=) 2: FDD4FA341E6111F0B8D45B79C4F9AE02.roa (hash: 7JB/cgKUwfUR4YGlIPTezqpMMVQ3OA1LBmpMpECbKmQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2C07/A774A9CE1E6011F0B7DC7654C4F9AE02/DOBgwuQw3YUYEMnyD-wbohGZ49Y.crl rsync://rpki.apnic.net/member_repository/A91F2C07/A774A9CE1E6011F0B7DC7654C4F9AE02/DOBgwuQw3YUYEMnyD-wbohGZ49Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOBgwuQw3YUYEMnyD-wbohGZ49Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 07:22:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15 (0xf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2C07, serialNumber=0CE060C2E430DD851810C9F20FEC1BA21199E3D6 Validity Not Before: May 15 07:22:59 2025 GMT Not After : May 22 07:22:58 2025 GMT Subject: CN=68259653-d6ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:bb:f1:56:ac:5a:29:31:be:50:7a:ea:0c:36: 3b:3c:ea:11:be:15:f9:e3:07:9f:fd:53:b5:cd:dd: 4d:35:18:cb:7f:57:ed:12:21:af:26:fb:71:0e:d0: 14:e2:1d:0b:56:b7:60:ea:f4:4b:59:1b:7a:23:bb: 77:50:38:b2:53:3f:e2:b7:05:5e:03:ff:14:88:2f: 2d:20:c0:e9:1a:f8:f5:de:ff:da:e4:32:86:4a:48: 19:0f:9b:e6:6f:8d:f2:05:f0:17:f6:90:1c:82:db: ae:8b:ba:a3:c4:fa:bc:8d:39:d5:02:d4:da:62:a6: 33:b2:02:c9:6e:8a:7e:c4:ac:30:68:99:2f:0c:6a: d2:d7:32:95:45:af:c7:46:cc:ff:07:37:43:e0:d9: 09:ea:c4:12:08:4d:4a:3f:b9:e5:1d:46:2d:94:32: 41:69:7c:54:76:a8:a8:27:06:28:7c:c9:68:dc:cf: d2:4d:be:51:14:ca:3e:09:1b:a6:9e:08:72:b8:da: ae:29:be:c1:19:d6:ce:75:99:37:82:8c:ed:6d:a8: 2e:f8:92:8a:d6:2a:9d:b1:12:05:b5:9a:99:9c:c5: 1f:00:97:a3:3b:5d:85:c5:81:7d:c4:67:a5:bd:2c: d7:db:3e:76:84:a9:f8:b8:85:fb:e7:bb:20:08:10: 5a:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:1F:B6:43:23:75:A7:5F:BB:F6:C6:B5:C9:3E:C7:D4:21:A6:02:80 X509v3 Authority Key Identifier: keyid:0C:E0:60:C2:E4:30:DD:85:18:10:C9:F2:0F:EC:1B:A2:11:99:E3:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2C07/A774A9CE1E6011F0B7DC7654C4F9AE02/DOBgwuQw3YUYEMnyD-wbohGZ49Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOBgwuQw3YUYEMnyD-wbohGZ49Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2C07/A774A9CE1E6011F0B7DC7654C4F9AE02/DOBgwuQw3YUYEMnyD-wbohGZ49Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:a1:30:1f:d3:e4:ba:18:df:3c:27:e1:c3:10:78:c8:f3:97: 6b:e8:3e:9a:cd:0a:60:ab:fc:77:f0:06:80:67:4f:b4:81:86: 20:89:75:c5:94:95:00:71:52:0e:76:16:75:4c:af:a6:90:a8: cd:3f:74:ba:1d:94:91:64:5c:b4:ee:55:19:1a:95:eb:13:5a: 30:c6:b8:1b:57:dd:ea:d6:d1:44:e0:60:49:3d:44:a6:4d:0e: e9:ee:c3:84:6c:33:09:e0:f4:fd:9e:85:a2:56:be:7b:8b:bd: 83:40:35:13:e1:e1:a2:52:fd:9d:61:da:5d:31:01:25:fe:53: c5:a4:50:ac:f6:a2:c4:cf:55:b4:19:5f:18:eb:bf:58:70:af: 6c:8f:62:5f:13:be:67:91:35:a5:b7:8b:e6:21:0a:43:1f:48: 0f:22:e0:64:08:02:e7:4e:ee:0c:88:db:47:29:6c:c6:be:47: 10:f8:93:1a:dc:b4:1a:b9:91:c9:5f:57:d2:33:aa:e4:1e:8a: f5:43:3b:25:ef:ab:c3:3a:86:ca:40:6d:4b:fe:e6:9f:2e:19: f9:fe:dc:56:c3:f9:fc:95:59:49:ab:ff:d7:a5:07:e5:37:5a: 01:92:13:fd:f1:63:fd:59:42:5f:77:97:4b:8d:65:81:9e:64: 64:31:70:3d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MkMwNzExMC8GA1UEBRMoMENFMDYwQzJFNDMwREQ4NTE4MTBDOUYyMEZFQzFCQTIx MTk5RTNENjAeFw0yNTA1MTUwNzIyNTlaFw0yNTA1MjIwNzIyNThaMBgxFjAUBgNV BAMTDTY4MjU5NjUzLWQ2ZWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDeu/FWrFopMb5QeuoMNjs86hG+FfnjB5/9U7XN3U01GMt/V+0SIa8m+3EO0BTi HQtWt2Dq9EtZG3oju3dQOLJTP+K3BV4D/xSILy0gwOka+PXe/9rkMoZKSBkPm+Zv jfIF8Bf2kByC266LuqPE+ryNOdUC1NpipjOyAsluin7ErDBomS8MatLXMpVFr8dG zP8HN0Pg2QnqxBIITUo/ueUdRi2UMkFpfFR2qKgnBih8yWjcz9JNvlEUyj4JG6ae CHK42q4pvsEZ1s51mTeCjO1tqC74korWKp2xEgW1mpmcxR8Al6M7XYXFgX3EZ6W9 LNfbPnaEqfi4hfvnuyAIEFofAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDh+2QyN1 p1+79sa1yT7H1CGmAoAwHwYDVR0jBBgwFoAUDOBgwuQw3YUYEMnyD+wbohGZ49Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYyQzA3L0E3NzRBOUNFMUU2 MDExRjBCN0RDNzY1NEM0RjlBRTAyL0RPQmd3dVF3M1lVWUVNbnlELXdib2hHWjQ5 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRE9CZ3d1UXczWVVZRU1ueUQtd2JvaEdaNDlZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYy QzA3L0E3NzRBOUNFMUU2MDExRjBCN0RDNzY1NEM0RjlBRTAyL0RPQmd3dVF3M1lV WUVNbnlELXdib2hHWjQ5WS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHuhMB/T5LoY3zwn4cMQeMjzl2voPprNCmCr/HfwBoBnT7SBhiCJdcWU lQBxUg52FnVMr6aQqM0/dLodlJFkXLTuVRkalesTWjDGuBtX3erW0UTgYEk9RKZN Dunuw4RsMwng9P2ehaJWvnuLvYNANRPh4aJS/Z1h2l0xASX+U8WkUKz2osTPVbQZ Xxjrv1hwr2yPYl8TvmeRNaW3i+YhCkMfSA8i4GQIAudO7gyI20cpbMa+RxD4kxrc tBq5kclfV9IzquQeivVDOyXvq8M6hspAbUv+5p8uGfn+3FbD+fyVWUmr/9elB+U3 WgGSE/3xY/1ZQl93l0uNZYGeZGQxcD0= -----END CERTIFICATE-----Generated at Fri May 16 21:53:27 2025 by rpki-client