$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.mft File: 9nGKXl5C0I4lOi-zAP8Jw_U1HTI.mft (raw, json) Hash identifier: KfqvXUqDHZGUFJcp8QXSwq9CFmygslR30PamwfhewwI= Subject key identifier: 50:18:8A:56:91:A9:17:22:22:AD:ED:B0:37:8E:28:54:D7:83:A2:7B Authority key identifier: F6:71:8A:5E:5E:42:D0:8E:25:3A:2F:B3:00:FF:09:C3:F5:35:1D:32 Certificate issuer: /CN=A91F6D91/serialNumber=F6718A5E5E42D08E253A2FB300FF09C3F5351D32 Certificate serial: 063F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.mft Manifest number: 0627 Signing time: Tue 06 May 2025 22:39:00 +0000 Manifest this update: Tue 06 May 2025 22:38:59 +0000 Manifest next update: Tue 13 May 2025 22:38:59 +0000 Files and hashes: 1: 9nGKXl5C0I4lOi-zAP8Jw_U1HTI.crl (hash: 2MyQn5SYJI5clGbDRFCNojh9tdlDmr6E+yZImbIOAEw=) 2: 105CB01A830711ECB472CA0AC4F9AE02.roa (hash: P0BhZPNBq4fF0iWoLAGwiGCR4fuUazibBS/DViNXhlI=) 3: 0E2711E6830711ECB472CA0AC4F9AE02.roa (hash: 6bWPYL9HlnXbgKm1pf8hjZDzf0KdOhZ+kEEuV8xvMnc=) 4: 0F6980C0830711ECB472CA0AC4F9AE02.roa (hash: GSq2aTh4Ighs8Kd5WfNm9bR33IhLvfkn/9rz4nvZ37o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.crl rsync://rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 22:38:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1599 (0x63f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6D91, serialNumber=F6718A5E5E42D08E253A2FB300FF09C3F5351D32 Validity Not Before: May 6 22:38:59 2025 GMT Not After : May 13 22:38:59 2025 GMT Subject: CN=681a8f84-9d50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:43:4e:f1:19:cf:3e:3a:87:9e:79:a9:60:22: 22:6a:bd:6f:f7:31:ad:9f:94:03:6f:7d:13:35:eb: db:aa:4d:26:b7:19:13:2d:42:63:be:a5:37:55:0e: 36:98:96:dd:52:f8:18:72:e4:e6:c6:68:89:ab:40: 01:7d:97:be:b5:93:13:9f:f6:7e:54:90:bf:29:b2: 40:59:cc:25:9b:54:21:39:2d:e7:78:59:ba:7b:87: 45:90:e1:37:e1:1e:23:93:e7:e6:cf:06:ae:e2:51: 28:96:00:b3:a4:a1:30:2e:a7:28:f4:fd:6e:08:ce: 14:bf:e9:0c:f3:f7:54:60:ed:74:85:e0:97:04:ec: f9:0d:1f:2f:21:06:4a:02:c7:ea:1c:40:c1:10:73: 7b:cd:1c:97:21:da:ee:26:2f:8a:95:22:09:50:fb: a7:79:f0:3c:cc:e0:ef:b8:a1:cc:b4:f9:92:69:47: 47:98:04:d0:3b:b1:f8:a5:37:57:be:2d:3f:37:48: 93:f8:9c:5d:19:a9:c4:25:8d:eb:70:e5:0a:99:3c: 4f:6b:03:90:99:2f:db:f6:44:e5:6f:1d:e9:bb:1d: 9d:84:4d:bb:67:d1:4b:06:b4:ff:9b:b2:b0:4f:f1: 75:87:81:bf:66:c3:4e:de:d1:db:21:5d:a0:4a:5f: a9:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:18:8A:56:91:A9:17:22:22:AD:ED:B0:37:8E:28:54:D7:83:A2:7B X509v3 Authority Key Identifier: keyid:F6:71:8A:5E:5E:42:D0:8E:25:3A:2F:B3:00:FF:09:C3:F5:35:1D:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:8c:d3:47:26:f0:6f:f5:91:f3:3e:22:e2:fc:ff:77:52:24: 3c:aa:3f:fd:31:01:47:4e:49:37:f6:e2:5f:a4:51:97:1e:e4: 88:f4:ba:4d:b7:61:47:54:6e:17:5a:b8:fb:8a:ad:8b:ea:37: bb:06:39:0b:11:81:74:a3:3b:60:1a:4e:41:23:69:ad:4b:71: 98:ff:44:66:40:22:1d:d2:24:4d:4e:c7:1a:4d:0c:cc:e1:c2: f3:06:4e:ee:0a:b8:c0:71:70:22:f7:9e:db:69:f4:dd:5c:92: fd:1b:20:1f:34:27:91:d4:c1:37:a0:5b:4f:68:33:2b:24:dc: 86:79:38:c2:01:07:a9:f8:09:ba:67:83:05:11:2e:c6:ec:fe: 80:7a:ef:df:8d:29:c1:fe:14:07:71:5b:2a:47:44:14:1d:ec: 81:d9:db:7c:8c:57:78:40:08:c3:a2:b8:9a:1c:70:6d:60:46: 60:9e:95:e3:3e:e9:4d:ad:00:0d:c1:aa:de:e3:e0:b2:68:4e: fb:65:03:74:0a:84:c1:5a:d5:af:ff:d3:88:91:0a:7b:7c:4e: 6d:82:6d:97:d2:2c:38:a1:ab:62:fb:10:7c:ed:1a:64:d7:44: 68:fc:32:7e:88:c2:1f:bc:b9:b2:56:1a:ca:39:70:97:c8:64: 8b:01:0d:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZEOTExMTAvBgNVBAUTKEY2NzE4QTVFNUU0MkQwOEUyNTNBMkZCMzAwRkYwOUMz RjUzNTFEMzIwHhcNMjUwNTA2MjIzODU5WhcNMjUwNTEzMjIzODU5WjAYMRYwFAYD VQQDEw02ODFhOGY4NC05ZDUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyENO8RnPPjqHnnmpYCIiar1v9zGtn5QDb30TNevbqk0mtxkTLUJjvqU3VQ42 mJbdUvgYcuTmxmiJq0ABfZe+tZMTn/Z+VJC/KbJAWcwlm1QhOS3neFm6e4dFkOE3 4R4jk+fmzwau4lEolgCzpKEwLqco9P1uCM4Uv+kM8/dUYO10heCXBOz5DR8vIQZK AsfqHEDBEHN7zRyXIdruJi+KlSIJUPunefA8zODvuKHMtPmSaUdHmATQO7H4pTdX vi0/N0iT+JxdGanEJY3rcOUKmTxPawOQmS/b9kTlbx3pux2dhE27Z9FLBrT/m7Kw T/F1h4G/ZsNO3tHbIV2gSl+pBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFAYilaR qRciIq3tsDeOKFTXg6J7MB8GA1UdIwQYMBaAFPZxil5eQtCOJTovswD/CcP1NR0y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkQ5MS9FNTE3RjJCNjlB RTUxMUVCODM3RjEzNUVDNEY5QUUwMi85bkdLWGw1QzBJNGxPaS16QVA4SndfVTFI VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzluR0tYbDVDMEk0bE9pLXpBUDhKd19VMUhUSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkQ5MS9FNTE3RjJCNjlBRTUxMUVCODM3RjEzNUVDNEY5QUUwMi85bkdLWGw1QzBJ NGxPaS16QVA4SndfVTFIVEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAujNNHJvBv9ZHzPiLi/P93UiQ8qj/9MQFHTkk39uJfpFGXHuSI9LpN t2FHVG4XWrj7iq2L6je7BjkLEYF0oztgGk5BI2mtS3GY/0RmQCId0iRNTscaTQzM 4cLzBk7uCrjAcXAi957bafTdXJL9GyAfNCeR1ME3oFtPaDMrJNyGeTjCAQep+Am6 Z4MFES7G7P6Aeu/fjSnB/hQHcVsqR0QUHeyB2dt8jFd4QAjDoriaHHBtYEZgnpXj PulNrQANware4+CyaE77ZQN0CoTBWtWv/9OIkQp7fE5tgm2X0iw4oati+xB87Rpk 10Ro/DJ+iMIfvLmyVhrKOXCXyGSLAQ1u -----END CERTIFICATE-----Generated at Thu May 8 16:33:06 2025 by rpki-client