$ rpki-client -vvf rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.mft File: RIvZcaMGqwNjmecW3CIcozj1i1k.mft (raw, json) Hash identifier: keUfkwj/mwXJ6zcnzdhEh6uBu/ebHo6i0gXYMQpDhTs= Subject key identifier: AD:2B:D3:CC:97:BD:46:34:E0:8E:A1:4F:1B:62:4B:74:7E:E4:72:5A Authority key identifier: 44:8B:D9:71:A3:06:AB:03:63:99:E7:16:DC:22:1C:A3:38:F5:8B:59 Certificate issuer: /CN=A91301D5/serialNumber=448BD971A306AB036399E716DC221CA338F58B59 Certificate serial: 1513 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIvZcaMGqwNjmecW3CIcozj1i1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.mft Manifest number: 14CB Signing time: Fri 30 May 2025 17:03:40 +0000 Manifest this update: Fri 30 May 2025 17:03:39 +0000 Manifest next update: Fri 06 Jun 2025 17:03:39 +0000 Files and hashes: 1: RIvZcaMGqwNjmecW3CIcozj1i1k.crl (hash: c4QoxOE9BKUsC6wibkt2ndU0Efk8ZWBuFEEn5wkC0/U=) 2: 7338235CC06011EE882BC34AC4F9AE02.roa (hash: gzRITOkOOGrTx/TsBYiR/c3khv1Gc2m9Qh3FJnnq+g4=) 3: 743770A0C06011EE882BC34AC4F9AE02.roa (hash: wDUkAV/G8nH6a42xA1jspBcH2CyrvgBJPhHTMVF0vF4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.crl rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIvZcaMGqwNjmecW3CIcozj1i1k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:03:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5395 (0x1513) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91301D5, serialNumber=448BD971A306AB036399E716DC221CA338F58B59 Validity Not Before: May 30 17:03:39 2025 GMT Not After : Jun 6 17:03:39 2025 GMT Subject: CN=6839e4eb-e289 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:32:ff:7c:67:fa:ce:ec:43:df:34:ee:ce:74: d2:15:b5:7b:49:33:a8:49:3a:57:30:24:52:34:2f: 48:ed:ee:cb:97:8b:1c:41:a7:21:d4:18:c0:00:eb: 57:ee:e6:bd:5a:22:96:7b:e8:08:ad:76:59:f1:b7: bf:38:a8:c0:92:56:69:e3:02:2e:0d:a4:72:50:d6: bc:1c:80:94:fc:27:d9:77:6e:82:ba:bf:fa:d3:fd: 1c:85:b3:01:02:f0:cc:79:9e:c6:43:af:1d:66:b2: 4b:eb:1d:39:e8:b9:87:c9:fe:bc:5c:a5:a4:66:f7: 7b:43:3e:13:85:ae:e4:12:13:45:39:49:52:0c:73: 0d:36:a9:dd:cd:02:6b:87:10:60:b3:07:78:f6:10: c4:46:b2:3c:0e:78:3c:28:3a:1f:95:c3:1d:9f:ab: 7a:f7:92:b7:0f:91:c7:24:06:c3:5a:39:56:db:73: d1:3c:0b:e8:ef:a5:44:35:03:14:f5:d3:01:45:67: 6b:04:cd:60:18:c5:9e:af:47:bc:59:83:06:f6:da: 60:b3:f0:ad:d5:09:45:55:48:94:7a:fa:ef:cd:a1: a4:8a:2a:07:55:4b:5f:e7:59:2a:03:12:03:ff:c7: 55:87:89:a6:b0:1a:ce:91:c4:32:2b:0e:69:01:cd: 9e:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:2B:D3:CC:97:BD:46:34:E0:8E:A1:4F:1B:62:4B:74:7E:E4:72:5A X509v3 Authority Key Identifier: keyid:44:8B:D9:71:A3:06:AB:03:63:99:E7:16:DC:22:1C:A3:38:F5:8B:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIvZcaMGqwNjmecW3CIcozj1i1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:6a:ec:e3:7c:b8:78:b5:9d:92:5e:90:e5:7d:fa:6b:cb:56: 26:c4:e6:f3:70:da:38:b3:21:c5:c2:ab:bc:7c:de:89:b5:01: 46:05:f6:a1:54:f9:3a:0b:a7:84:91:7d:db:09:18:99:e7:58: 4e:fe:61:f1:1f:f7:91:ef:36:f4:0f:7e:2a:8e:6e:2a:38:5b: 44:31:11:0f:ac:63:4d:48:14:8a:af:ef:72:a2:c8:34:4d:08: 79:57:f3:28:25:f6:7f:0b:e6:b1:bb:c5:1b:f1:b0:47:c0:8c: d1:58:ed:33:94:05:13:9e:47:61:39:6a:57:03:a3:af:20:0b: 92:5b:d5:95:ac:7c:dd:01:e3:80:a0:82:2f:3a:f3:28:7c:e1: b3:f7:c6:ef:7e:7e:e7:ff:e6:3c:47:92:f3:85:2d:f4:5a:e1: 9a:2c:41:cc:17:ae:b0:1d:ce:cf:c8:3b:6b:03:e6:b9:f4:aa: d9:76:79:ef:48:80:30:0e:90:9d:63:d9:bd:d2:96:ef:09:77: c7:55:32:e5:00:e7:9b:e2:21:bb:1c:14:a5:54:0e:5a:d1:ef: bf:d2:9d:00:fe:d9:fd:c9:6e:62:f9:56:db:2f:13:a1:51:53: 94:1e:2b:29:53:01:ff:e1:9d:f1:a3:69:26:36:1c:21:b7:2c: ef:38:c2:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFRMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAxRDUxMTAvBgNVBAUTKDQ0OEJEOTcxQTMwNkFCMDM2Mzk5RTcxNkRDMjIxQ0Ez MzhGNThCNTkwHhcNMjUwNTMwMTcwMzM5WhcNMjUwNjA2MTcwMzM5WjAYMRYwFAYD VQQDEw02ODM5ZTRlYi1lMjg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0TL/fGf6zuxD3zTuznTSFbV7STOoSTpXMCRSNC9I7e7Ll4scQach1BjAAOtX 7ua9WiKWe+gIrXZZ8be/OKjAklZp4wIuDaRyUNa8HICU/CfZd26Cur/60/0chbMB AvDMeZ7GQ68dZrJL6x056LmHyf68XKWkZvd7Qz4Tha7kEhNFOUlSDHMNNqndzQJr hxBgswd49hDERrI8Dng8KDoflcMdn6t695K3D5HHJAbDWjlW23PRPAvo76VENQMU 9dMBRWdrBM1gGMWer0e8WYMG9tpgs/Ct1QlFVUiUevrvzaGkiioHVUtf51kqAxID /8dVh4mmsBrOkcQyKw5pAc2elQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK0r08yX vUY04I6hTxtiS3R+5HJaMB8GA1UdIwQYMBaAFESL2XGjBqsDY5nnFtwiHKM49YtZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDFENS9ENEJFMDBENDYz RTUxMUU4QjVDRkU0MUFDNEY5QUUwMi9SSXZaY2FNR3F3TmptZWNXM0NJY296ajFp MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JJdlpjYU1HcXdOam1lY1czQ0ljb3pqMWkxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDFENS9ENEJFMDBENDYzRTUxMUU4QjVDRkU0MUFDNEY5QUUwMi9SSXZaY2FNR3F3 TmptZWNXM0NJY296ajFpMWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfauzjfLh4tZ2SXpDlffpry1YmxObzcNo4syHFwqu8fN6JtQFGBfah VPk6C6eEkX3bCRiZ51hO/mHxH/eR7zb0D34qjm4qOFtEMREPrGNNSBSKr+9yosg0 TQh5V/MoJfZ/C+axu8Ub8bBHwIzRWO0zlAUTnkdhOWpXA6OvIAuSW9WVrHzdAeOA oIIvOvMofOGz98bvfn7n/+Y8R5LzhS30WuGaLEHMF66wHc7PyDtrA+a59KrZdnnv SIAwDpCdY9m90pbvCXfHVTLlAOeb4iG7HBSlVA5a0e+/0p0A/tn9yW5i+VbbLxOh UVOUHispUwH/4Z3xo2kmNhwhtyzvOMKG -----END CERTIFICATE-----Generated at Sat May 31 16:31:22 2025 by rpki-client