$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7AC9/0D9F40E60C5A11EC9F415345C4F9AE02/Mm5V50sGzYP5lMwdpmVlQhzJ4hk.mft File: Mm5V50sGzYP5lMwdpmVlQhzJ4hk.mft (raw, json) Hash identifier: T7OGR13Ptomxl5JwnBbQSj9Vmdcxl1+gerPwJVTJL6g= Subject key identifier: 10:C6:A8:32:22:30:F7:3D:DB:BD:E2:08:A1:40:50:C5:CA:10:C3:C7 Authority key identifier: 32:6E:55:E7:4B:06:CD:83:F9:94:CC:1D:A6:65:65:42:1C:C9:E2:19 Certificate issuer: /CN=A91F7AC9/serialNumber=326E55E74B06CD83F994CC1DA66565421CC9E219 Certificate serial: 0504 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mm5V50sGzYP5lMwdpmVlQhzJ4hk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7AC9/0D9F40E60C5A11EC9F415345C4F9AE02/Mm5V50sGzYP5lMwdpmVlQhzJ4hk.mft Manifest number: 04FE Signing time: Sat 10 May 2025 23:17:12 +0000 Manifest this update: Sat 10 May 2025 23:17:12 +0000 Manifest next update: Sat 17 May 2025 23:17:12 +0000 Files and hashes: 1: Mm5V50sGzYP5lMwdpmVlQhzJ4hk.crl (hash: N3YFwdC93eGQ6+u1WQRIKZJn7FE0IeqX15d1c5UTLac=) 2: 66CA9E0C0C5C11ECBD37E846C4F9AE02.roa (hash: OdV4BW1AypHn4SWRXVNRSTTOuuILOVr+n5WSk2uAXqs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7AC9/0D9F40E60C5A11EC9F415345C4F9AE02/Mm5V50sGzYP5lMwdpmVlQhzJ4hk.crl rsync://rpki.apnic.net/member_repository/A91F7AC9/0D9F40E60C5A11EC9F415345C4F9AE02/Mm5V50sGzYP5lMwdpmVlQhzJ4hk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mm5V50sGzYP5lMwdpmVlQhzJ4hk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 23:17:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1284 (0x504) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7AC9, serialNumber=326E55E74B06CD83F994CC1DA66565421CC9E219 Validity Not Before: May 10 23:17:12 2025 GMT Not After : May 17 23:17:12 2025 GMT Subject: CN=681fde78-1277 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:3d:e2:74:57:d4:5e:97:a1:f1:ad:44:63:ba: e7:7b:33:61:95:46:f5:5a:2c:b8:8d:26:fa:e3:bc: 7c:37:97:de:ac:6a:27:7a:73:00:b4:57:f1:08:5b: a0:20:ef:a8:dd:04:c3:0e:1b:40:ed:3e:21:23:53: 2f:74:ca:b9:57:ae:f6:3b:b5:44:c1:93:93:86:d4: 4a:08:61:61:ad:32:69:d5:05:28:19:fa:0f:4f:02: 55:1f:be:68:51:b4:8c:6f:42:f0:01:07:c3:53:4a: 1f:a4:9d:e6:86:ea:58:04:8e:5f:ca:5b:91:07:1c: cd:23:c0:be:31:d8:aa:17:ac:86:88:6e:a0:ac:ae: 38:c6:05:dd:cd:de:1c:9c:74:b7:75:6e:a2:98:0f: 4f:dd:b5:ad:c1:a0:6f:bf:ce:8d:4a:77:17:8b:e2: 51:cf:54:39:a7:79:ba:8c:d6:53:81:9c:44:96:c8: cf:dd:73:4b:62:00:af:e5:c4:1d:cf:e8:bc:94:c4: 08:ff:b0:79:bd:a5:43:e2:08:2a:f8:c4:e0:df:86: a6:39:eb:88:7b:86:f0:ee:b7:b2:b1:ae:cd:33:e7: f7:09:15:fd:19:96:57:98:52:02:04:fe:ff:d9:20: 19:d1:2d:0e:3c:b1:b5:ce:3d:16:27:ef:7f:0c:14: 3c:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:C6:A8:32:22:30:F7:3D:DB:BD:E2:08:A1:40:50:C5:CA:10:C3:C7 X509v3 Authority Key Identifier: keyid:32:6E:55:E7:4B:06:CD:83:F9:94:CC:1D:A6:65:65:42:1C:C9:E2:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7AC9/0D9F40E60C5A11EC9F415345C4F9AE02/Mm5V50sGzYP5lMwdpmVlQhzJ4hk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mm5V50sGzYP5lMwdpmVlQhzJ4hk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7AC9/0D9F40E60C5A11EC9F415345C4F9AE02/Mm5V50sGzYP5lMwdpmVlQhzJ4hk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:2e:69:bd:fc:e3:78:7e:af:f8:c8:ed:c4:35:7a:ba:d6:7e: a7:d8:9e:65:c5:2f:28:1a:04:37:9d:43:42:7c:9b:a7:d5:be: 1b:37:d5:01:bd:32:07:57:91:fb:1a:98:b3:25:5a:6c:66:0a: 73:53:a1:1f:6a:dd:73:27:f0:e1:ac:11:36:05:37:e5:b4:3d: f3:7b:c1:78:3e:99:77:2f:bb:39:8a:58:5e:49:19:2e:80:34: 62:ec:6c:05:a9:c7:99:1a:60:a3:0c:02:a8:f0:b1:ee:de:f2: e1:63:6b:03:81:97:f8:83:0d:45:6a:c8:37:33:d9:3f:8a:91: fc:84:c0:77:68:66:d7:07:e6:b9:6f:91:9c:40:8e:85:69:57: b1:9d:e5:67:5b:bf:f2:42:37:c7:43:d0:de:c3:9f:55:ab:5d: c9:98:bc:d9:4d:10:ef:86:d8:a9:d0:4a:34:fa:cd:20:a2:73: 57:44:67:bc:a8:f2:24:6c:dd:f0:fe:d1:fa:0e:9c:4e:28:f3: 05:45:f4:36:fc:fa:d0:25:87:61:9e:24:c4:da:3f:e6:88:9c: 0c:a1:bb:2f:f4:b9:d6:67:85:97:f9:9c:74:fa:6b:4f:b6:5e: 76:a5:ad:a3:52:e5:b3:ad:f6:5f:1f:c0:ea:50:69:b2:7e:08: bb:ed:16:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdBQzkxMTAvBgNVBAUTKDMyNkU1NUU3NEIwNkNEODNGOTk0Q0MxREE2NjU2NTQy MUNDOUUyMTkwHhcNMjUwNTEwMjMxNzEyWhcNMjUwNTE3MjMxNzEyWjAYMRYwFAYD VQQDEw02ODFmZGU3OC0xMjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyT3idFfUXpeh8a1EY7rnezNhlUb1Wiy4jSb647x8N5ferGonenMAtFfxCFug IO+o3QTDDhtA7T4hI1MvdMq5V672O7VEwZOThtRKCGFhrTJp1QUoGfoPTwJVH75o UbSMb0LwAQfDU0ofpJ3mhupYBI5fyluRBxzNI8C+MdiqF6yGiG6grK44xgXdzd4c nHS3dW6imA9P3bWtwaBvv86NSncXi+JRz1Q5p3m6jNZTgZxElsjP3XNLYgCv5cQd z+i8lMQI/7B5vaVD4ggq+MTg34amOeuIe4bw7reysa7NM+f3CRX9GZZXmFICBP7/ 2SAZ0S0OPLG1zj0WJ+9/DBQ8DQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBDGqDIi MPc9273iCKFAUMXKEMPHMB8GA1UdIwQYMBaAFDJuVedLBs2D+ZTMHaZlZUIcyeIZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0FDOS8wRDlGNDBFNjBD NUExMUVDOUY0MTUzNDVDNEY5QUUwMi9NbTVWNTBzR3pZUDVsTXdkcG1WbFFoeko0 aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01tNVY1MHNHellQNWxNd2RwbVZsUWh6SjRoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG N0FDOS8wRDlGNDBFNjBDNUExMUVDOUY0MTUzNDVDNEY5QUUwMi9NbTVWNTBzR3pZ UDVsTXdkcG1WbFFoeko0aGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtLmm9/ON4fq/4yO3ENXq61n6n2J5lxS8oGgQ3nUNCfJun1b4bN9UB vTIHV5H7GpizJVpsZgpzU6Efat1zJ/DhrBE2BTfltD3ze8F4Ppl3L7s5ilheSRku gDRi7GwFqceZGmCjDAKo8LHu3vLhY2sDgZf4gw1Fasg3M9k/ipH8hMB3aGbXB+a5 b5GcQI6FaVexneVnW7/yQjfHQ9Dew59Vq13JmLzZTRDvhtip0Eo0+s0gonNXRGe8 qPIkbN3w/tH6DpxOKPMFRfQ2/PrQJYdhniTE2j/miJwMobsv9LnWZ4WX+Zx0+mtP tl52pa2jUuWzrfZfH8DqUGmyfgi77RbC -----END CERTIFICATE-----Generated at Mon May 12 19:31:31 2025 by rpki-client