$ rpki-client -vvf rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.mft File: aamToYghmKytXxzqNQZrr0nn1dA.mft (raw, json) Hash identifier: a+9ry7SgyGeL1WB3HwDx5Swg9ont+MYm4uZUbYc64UM= Subject key identifier: 5E:8A:B7:B9:73:31:B5:C5:73:89:61:0A:29:EF:5D:A2:F4:91:83:23 Authority key identifier: 69:A9:93:A1:88:21:98:AC:AD:5F:1C:EA:35:06:6B:AF:49:E7:D5:D0 Certificate issuer: /CN=A912B23F/serialNumber=69A993A1882198ACAD5F1CEA35066BAF49E7D5D0 Certificate serial: E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aamToYghmKytXxzqNQZrr0nn1dA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.mft Manifest number: E3 Signing time: Sat 31 May 2025 05:03:41 +0000 Manifest this update: Sat 31 May 2025 05:03:40 +0000 Manifest next update: Sat 07 Jun 2025 05:03:40 +0000 Files and hashes: 1: aamToYghmKytXxzqNQZrr0nn1dA.crl (hash: VjfIzPcPTO69bfmR6hFoilTQ0zirOhX5eGp6JJ4bAV8=) 2: 78585C5EB6E011EFBB3E2A0DC4F9AE02.roa (hash: eMhCb8Y7hz6TbBI3GN4y5RWtGaIS6jYSPRe2ESsv3M0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.crl rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aamToYghmKytXxzqNQZrr0nn1dA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:03:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B23F, serialNumber=69A993A1882198ACAD5F1CEA35066BAF49E7D5D0 Validity Not Before: May 31 05:03:40 2025 GMT Not After : Jun 7 05:03:40 2025 GMT Subject: CN=683a8dac-1114 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d2:87:31:75:5b:6a:af:21:80:d1:26:ab:2c: 44:9b:e2:e6:21:61:ea:b0:3b:35:72:d1:76:dc:67: 77:4d:ea:7d:6a:96:de:49:f2:8f:90:e9:d8:07:db: ff:d9:1c:4f:ff:a2:fc:6b:19:0e:aa:cc:18:a5:cb: 21:c5:68:7f:84:1c:0e:6d:05:f5:8e:1c:fc:62:fb: f6:38:d0:83:53:4d:84:fd:a9:bd:79:b2:56:c6:48: 81:16:bc:b0:1d:0e:32:fb:7a:73:0d:af:a5:13:a8: 20:e9:55:87:5b:94:68:35:24:5c:48:f0:67:3c:b5: 0d:db:24:cc:5b:50:98:1a:3e:50:8d:75:3e:08:51: d3:73:a2:73:91:80:83:61:f6:bc:16:00:1c:a5:57: ec:5e:71:48:9e:6e:3b:c5:64:fb:cc:a7:30:8c:71: bf:05:bd:6f:aa:be:02:bb:e9:0c:d4:0d:ee:12:9a: 34:ad:0e:d3:f5:01:7e:f9:b4:c9:e8:7c:6b:cf:0a: 61:14:d2:36:e8:1b:7a:02:8c:c8:78:1f:1b:65:24: 6d:fd:84:0e:cc:36:63:bb:8e:ac:c9:e1:b1:b2:80: 77:fe:5d:10:d0:8f:4d:89:b3:0c:0e:8d:99:86:40: 89:5d:0d:ba:82:ab:52:ad:fc:5f:77:e1:25:97:75: 5e:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:8A:B7:B9:73:31:B5:C5:73:89:61:0A:29:EF:5D:A2:F4:91:83:23 X509v3 Authority Key Identifier: keyid:69:A9:93:A1:88:21:98:AC:AD:5F:1C:EA:35:06:6B:AF:49:E7:D5:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aamToYghmKytXxzqNQZrr0nn1dA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:50:ae:65:e9:56:5e:93:a3:6f:9d:16:3a:6b:cb:be:86:ed: 03:32:a6:ce:6b:7e:8c:3d:70:b6:43:1b:b7:9b:4c:89:f8:0b: 3c:71:cc:fd:82:c2:42:2c:4c:64:8b:ad:1f:9c:04:9b:10:73: 17:27:e4:ab:d6:aa:0c:de:59:25:a7:7e:5c:38:50:78:5c:c6: 38:25:e9:ae:a9:2d:3a:12:a9:e1:ae:6d:82:d7:d2:79:ae:bf: 13:73:89:5d:1d:d1:ef:e9:38:1d:7b:ff:55:9a:bb:64:3b:69: 03:6d:e6:53:6d:4a:66:d4:97:52:ea:64:40:52:8b:e8:b2:d2: 1b:7b:d0:a5:ff:a1:ab:c9:d6:95:27:e8:71:e6:4f:59:07:4a: 20:e3:4b:bd:08:e5:6d:e3:e9:33:0a:69:85:07:a1:e6:f2:1a: e6:30:c8:c6:53:2e:88:25:f2:38:00:4f:9a:0a:f5:1e:2b:3c: a6:b4:4c:e8:5e:96:3f:25:7e:5d:0e:c0:7d:3f:33:60:eb:09: db:fe:df:ca:9d:eb:2b:80:fd:04:2f:d5:43:18:d1:0d:0c:46: fc:50:72:91:da:f2:2b:f0:d2:e4:b0:a3:d2:64:73:d1:19:11: 0e:c9:5c:5a:e6:3c:c1:5f:b7:db:17:2c:ca:8b:ee:2c:f4:3f: 3c:b9:2a:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkIyM0YxMTAvBgNVBAUTKDY5QTk5M0ExODgyMTk4QUNBRDVGMUNFQTM1MDY2QkFG NDlFN0Q1RDAwHhcNMjUwNTMxMDUwMzQwWhcNMjUwNjA3MDUwMzQwWjAYMRYwFAYD VQQDEw02ODNhOGRhYy0xMTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAydKHMXVbaq8hgNEmqyxEm+LmIWHqsDs1ctF23Gd3Tep9apbeSfKPkOnYB9v/ 2RxP/6L8axkOqswYpcshxWh/hBwObQX1jhz8Yvv2ONCDU02E/am9ebJWxkiBFryw HQ4y+3pzDa+lE6gg6VWHW5RoNSRcSPBnPLUN2yTMW1CYGj5QjXU+CFHTc6JzkYCD Yfa8FgAcpVfsXnFInm47xWT7zKcwjHG/Bb1vqr4Cu+kM1A3uEpo0rQ7T9QF++bTJ 6HxrzwphFNI26Bt6AozIeB8bZSRt/YQOzDZju46syeGxsoB3/l0Q0I9NibMMDo2Z hkCJXQ26gqtSrfxfd+Ell3VeXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF6Kt7lz MbXFc4lhCinvXaL0kYMjMB8GA1UdIwQYMBaAFGmpk6GIIZisrV8c6jUGa69J59XQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjIzRi82NzBDMkYyQ0Uy OUYxMUVFQjY4MkM2MTFDNEY5QUUwMi9hYW1Ub1lnaG1LeXRYeHpxTlFacnIwbm4x ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FhbVRvWWdobUt5dFh4enFOUVpycjBubjFkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjIzRi82NzBDMkYyQ0UyOUYxMUVFQjY4MkM2MTFDNEY5QUUwMi9hYW1Ub1lnaG1L eXRYeHpxTlFacnIwbm4xZEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdUK5l6VZek6NvnRY6a8u+hu0DMqbOa36MPXC2Qxu3m0yJ+As8ccz9 gsJCLExki60fnASbEHMXJ+Sr1qoM3lklp35cOFB4XMY4JemuqS06Eqnhrm2C19J5 rr8Tc4ldHdHv6Tgde/9VmrtkO2kDbeZTbUpm1JdS6mRAUovostIbe9Cl/6GrydaV J+hx5k9ZB0og40u9COVt4+kzCmmFB6Hm8hrmMMjGUy6IJfI4AE+aCvUeKzymtEzo XpY/JX5dDsB9PzNg6wnb/t/KnesrgP0EL9VDGNENDEb8UHKR2vIr8NLksKPSZHPR GREOyVxa5jzBX7fbFyzKi+4s9D88uSro -----END CERTIFICATE-----Generated at Sat May 31 17:45:09 2025 by rpki-client