$ rpki-client -vvf rpki.apnic.net/member_repository/A91218BB/6A0B2054C8C511EF8EC55565C4F9AE02/MayWR8f4cKZrot54hUTNjDJr3_k.mft File: MayWR8f4cKZrot54hUTNjDJr3_k.mft (raw, json) Hash identifier: EiiKV7GCZc5LI53OL89CRFjXnZtnRT9yifEZnsOGTbs= Subject key identifier: 6A:7F:36:8E:54:56:F1:CA:30:16:48:C0:12:25:43:AC:86:D8:89:03 Authority key identifier: 31:AC:96:47:C7:F8:70:A6:6B:A2:DE:78:85:44:CD:8C:32:6B:DF:F9 Certificate issuer: /CN=A91218BB/serialNumber=31AC9647C7F870A66BA2DE788544CD8C326BDFF9 Certificate serial: 3C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MayWR8f4cKZrot54hUTNjDJr3_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91218BB/6A0B2054C8C511EF8EC55565C4F9AE02/MayWR8f4cKZrot54hUTNjDJr3_k.mft Manifest number: 3B Signing time: Mon 21 Apr 2025 06:20:28 +0000 Manifest this update: Mon 21 Apr 2025 06:20:28 +0000 Manifest next update: Mon 28 Apr 2025 06:20:28 +0000 Files and hashes: 1: MayWR8f4cKZrot54hUTNjDJr3_k.crl (hash: +1TAjy7sU1RW//Ge+WSso4pBw/7gzVXfJjVVTfuOG3I=) 2: 4DD6D628C8D211EF9F1BE312C4F9AE02.roa (hash: sUWfAuRTWaVVgcAthywuFU4ZlijXzthACuza893doh4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91218BB/6A0B2054C8C511EF8EC55565C4F9AE02/MayWR8f4cKZrot54hUTNjDJr3_k.crl rsync://rpki.apnic.net/member_repository/A91218BB/6A0B2054C8C511EF8EC55565C4F9AE02/MayWR8f4cKZrot54hUTNjDJr3_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MayWR8f4cKZrot54hUTNjDJr3_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 06:20:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91218BB, serialNumber=31AC9647C7F870A66BA2DE788544CD8C326BDFF9 Validity Not Before: Apr 21 06:20:28 2025 GMT Not After : Apr 28 06:20:28 2025 GMT Subject: CN=6805e3ac-6885 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e2:32:24:2b:e5:a9:07:46:23:af:4b:62:13: 9b:07:08:68:39:bd:9c:12:df:d6:f7:7e:65:75:e9: 66:59:65:fb:98:99:63:c6:27:99:ef:53:fb:7d:0f: 5a:02:11:94:de:05:43:c8:da:58:3a:23:5f:e0:de: d1:5d:60:d0:b6:0d:9e:94:48:a9:30:be:23:c2:60: 2b:c1:db:4e:32:42:f5:3c:fe:04:b1:b6:00:70:05: 4f:5b:0e:73:49:d0:84:68:6d:a4:ee:77:bc:71:0a: 6b:84:1d:b1:de:1d:6b:2a:b0:76:d4:cb:20:c0:77: b6:df:81:5b:08:6a:51:7a:9b:f9:f5:a5:57:1b:30: c4:8f:6c:3b:ef:4c:47:3e:ae:89:65:e2:ff:1e:17: 54:ec:17:87:59:46:72:32:c3:d5:50:35:94:48:ae: be:eb:42:d2:a0:b0:e4:27:f5:a2:d7:07:9c:02:e9: b3:d1:b4:4f:6b:98:43:ee:28:f9:35:b4:48:f8:d9: 0a:80:e9:11:42:18:88:4d:74:74:02:bc:59:63:9e: 12:62:d1:2b:7a:f1:9e:6f:07:6e:20:af:13:f7:49: 69:49:cb:0f:79:0e:6c:fa:01:56:41:6b:e2:65:db: 62:3e:54:25:76:f9:d1:96:3d:0a:46:21:a7:8f:88: fd:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:7F:36:8E:54:56:F1:CA:30:16:48:C0:12:25:43:AC:86:D8:89:03 X509v3 Authority Key Identifier: keyid:31:AC:96:47:C7:F8:70:A6:6B:A2:DE:78:85:44:CD:8C:32:6B:DF:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91218BB/6A0B2054C8C511EF8EC55565C4F9AE02/MayWR8f4cKZrot54hUTNjDJr3_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MayWR8f4cKZrot54hUTNjDJr3_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91218BB/6A0B2054C8C511EF8EC55565C4F9AE02/MayWR8f4cKZrot54hUTNjDJr3_k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:5d:8f:25:ab:21:4e:6e:53:e0:44:c4:b1:45:2d:28:29:78: a4:a6:a8:d9:b9:02:54:7f:a4:b9:f9:d4:ac:a8:36:6b:27:7c: 01:9c:1b:39:9f:f8:d8:5c:51:10:91:3e:e2:14:e6:30:55:b9: cf:99:74:ab:1a:5a:cd:5b:ea:a2:14:28:12:10:77:98:f7:27: 6d:d2:8d:36:27:36:65:ef:d7:d8:12:da:13:4f:4c:86:cc:7d: 95:96:28:af:93:dc:34:67:9d:2b:0c:02:0e:a9:c3:dc:e1:46: 2f:ed:aa:0e:6c:5d:ed:01:8d:40:45:4a:63:5e:6d:40:94:1b: cb:b9:89:d4:39:93:5c:0a:4d:0f:8f:49:3c:17:2b:7e:ea:7a: 3d:c0:89:0a:51:c9:19:12:f8:93:22:8f:13:a4:e7:ba:38:0d: 96:a8:7b:f6:41:2e:58:ff:1d:72:33:fc:63:6b:02:41:27:1b: 5e:36:1a:d2:e9:6a:61:38:a5:46:e5:a5:81:18:86:61:01:3a: a0:5d:bb:2a:88:1d:fa:df:f2:f3:f1:21:a5:e0:02:f9:03:61: 7b:2b:c3:9b:ae:de:01:4c:fd:56:42:f4:48:23:13:7b:96:ec: 22:08:25:fd:21:30:7d:47:bd:37:e6:ec:70:a3:43:76:3c:f9: 08:09:15:23 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MThCQjExMC8GA1UEBRMoMzFBQzk2NDdDN0Y4NzBBNjZCQTJERTc4ODU0NENEOEMz MjZCREZGOTAeFw0yNTA0MjEwNjIwMjhaFw0yNTA0MjgwNjIwMjhaMBgxFjAUBgNV BAMTDTY4MDVlM2FjLTY4ODUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC34jIkK+WpB0Yjr0tiE5sHCGg5vZwS39b3fmV16WZZZfuYmWPGJ5nvU/t9D1oC EZTeBUPI2lg6I1/g3tFdYNC2DZ6USKkwviPCYCvB204yQvU8/gSxtgBwBU9bDnNJ 0IRobaTud7xxCmuEHbHeHWsqsHbUyyDAd7bfgVsIalF6m/n1pVcbMMSPbDvvTEc+ roll4v8eF1TsF4dZRnIyw9VQNZRIrr7rQtKgsOQn9aLXB5wC6bPRtE9rmEPuKPk1 tEj42QqA6RFCGIhNdHQCvFljnhJi0St68Z5vB24grxP3SWlJyw95Dmz6AVZBa+Jl 22I+VCV2+dGWPQpGIaePiP3vAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUan82jlRW 8cowFkjAEiVDrIbYiQMwHwYDVR0jBBgwFoAUMayWR8f4cKZrot54hUTNjDJr3/kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIxOEJCLzZBMEIyMDU0QzhD NTExRUY4RUM1NTU2NUM0RjlBRTAyL01heVdSOGY0Y0tacm90NTRoVVROakRKcjNf ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTWF5V1I4ZjRjS1pyb3Q1NGhVVE5qREpyM19rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIx OEJCLzZBMEIyMDU0QzhDNTExRUY4RUM1NTU2NUM0RjlBRTAyL01heVdSOGY0Y0ta cm90NTRoVVROakRKcjNfay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFBdjyWrIU5uU+BExLFFLSgpeKSmqNm5AlR/pLn51KyoNmsnfAGcGzmf +NhcURCRPuIU5jBVuc+ZdKsaWs1b6qIUKBIQd5j3J23SjTYnNmXv19gS2hNPTIbM fZWWKK+T3DRnnSsMAg6pw9zhRi/tqg5sXe0BjUBFSmNebUCUG8u5idQ5k1wKTQ+P STwXK37qej3AiQpRyRkS+JMijxOk57o4DZaoe/ZBLlj/HXIz/GNrAkEnG142GtLp amE4pUblpYEYhmEBOqBduyqIHfrf8vPxIaXgAvkDYXsrw5uu3gFM/VZC9EgjE3uW 7CIIJf0hMH1HvTfm7HCjQ3Y8+QgJFSM= -----END CERTIFICATE-----Generated at Mon Apr 21 19:20:58 2025 by rpki-client