$ rpki-client -vvf rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft File: 36hgRQpvzrHG57jU_1SxVBobabM.mft (raw, json) Hash identifier: 00hQVS0S+aTPiLjthsFVt5YSaAjZbK5euOmXZPsTbRw= Subject key identifier: 17:13:2D:41:B7:87:95:B7:19:D5:90:4D:0B:90:08:3E:F5:F9:F3:48 Authority key identifier: DF:A8:60:45:0A:6F:CE:B1:C6:E7:B8:D4:FF:54:B1:54:1A:1B:69:B3 Certificate issuer: /CN=A91534B8/serialNumber=DFA860450A6FCEB1C6E7B8D4FF54B1541A1B69B3 Certificate serial: 029A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft Manifest number: 0292 Signing time: Tue 03 Jun 2025 01:53:27 +0000 Manifest this update: Tue 03 Jun 2025 01:53:26 +0000 Manifest next update: Tue 10 Jun 2025 01:53:26 +0000 Files and hashes: 1: 36hgRQpvzrHG57jU_1SxVBobabM.crl (hash: B1sUHiYEl4n/afOBrrvuGg0/2J7kkKUA7lKKE84fiRw=) 2: 56C4B5083DF511ED98215F18C4F9AE02.roa (hash: u+f2WuZi/RfejSsKb+UJ5iop6uONOfiC5gYEcHsbs6w=) 3: B0FA33FE6F9611ED8A672F69C4F9AE02.roa (hash: YDAiAdPjFYhBL5YjXoGqzzo8vheOfOc5VPFiiANGCJc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.crl rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 01:53:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 666 (0x29a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91534B8, serialNumber=DFA860450A6FCEB1C6E7B8D4FF54B1541A1B69B3 Validity Not Before: Jun 3 01:53:26 2025 GMT Not After : Jun 10 01:53:26 2025 GMT Subject: CN=683e5596-e76a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:4a:dc:32:77:ed:fd:5e:7a:55:a7:44:77:96: 01:c5:6c:2a:63:d0:bc:fd:5f:75:ec:a5:6f:89:f8: 7c:90:dc:57:7e:2b:42:fe:89:9d:65:49:72:51:e5: 6a:7f:ab:be:a7:99:e9:c1:4c:1b:f6:95:f1:99:e4: d2:d1:cd:9c:0f:d3:f2:c8:31:97:69:36:bc:9e:a9: 1a:ba:19:ee:36:09:b9:e1:ce:e0:b4:3f:9a:37:cd: 4e:3a:f2:f8:4d:b8:79:da:34:0b:b6:28:f8:66:dd: e7:01:6a:25:70:e6:98:a3:19:30:ff:10:e0:84:e1: 9f:8f:86:ea:80:be:d0:9c:4b:77:fc:68:52:97:52: b9:a5:c7:cd:51:3e:8f:fa:97:1a:02:d0:21:75:d4: f6:3f:a4:7f:77:31:76:4e:d8:05:e8:11:5e:6b:98: 18:6f:bd:52:d4:e6:ab:e5:a1:5d:c6:d1:97:79:c7: f6:03:2d:36:ce:ce:70:e7:a3:cb:a1:f4:34:bd:10: ea:51:1e:50:52:ec:93:f4:27:fb:67:50:b9:3a:c6: bd:07:35:29:8f:c3:42:e4:ea:70:c7:e1:82:2a:95: 6d:81:de:08:b1:73:9e:01:b1:3d:a2:5a:aa:05:8c: 65:63:51:17:91:6b:9d:c2:da:17:a2:a1:87:00:8f: 5b:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:13:2D:41:B7:87:95:B7:19:D5:90:4D:0B:90:08:3E:F5:F9:F3:48 X509v3 Authority Key Identifier: keyid:DF:A8:60:45:0A:6F:CE:B1:C6:E7:B8:D4:FF:54:B1:54:1A:1B:69:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:95:ff:bb:a5:78:48:5b:57:2f:78:e8:f9:83:6a:e0:55:59: 9e:c7:9d:f9:68:df:fa:02:28:65:a9:fb:38:c5:dc:e5:90:6f: 83:45:99:ab:f5:ea:9a:bd:99:13:09:b6:f7:a4:d2:ca:df:74: 1f:7b:69:b8:ee:59:6b:4e:3a:ad:15:0a:72:ea:b1:02:07:34: 53:ee:ad:6f:2d:aa:54:57:dd:28:1f:41:c6:4f:d8:7e:4a:97: 43:c2:c6:5c:fd:03:33:0f:36:0c:ae:5b:1b:48:cb:a3:07:c0: 57:c6:db:52:df:56:d3:b6:a0:24:0c:ec:91:de:6d:8d:6f:25: 63:a6:d0:c3:b5:c2:f0:b5:0c:51:ea:5b:a9:09:75:f9:09:8c: 10:59:ef:cc:b2:31:7a:8a:d8:ef:19:cb:ef:30:3d:89:4b:6b: 17:26:b6:f4:8a:b4:66:70:35:2d:eb:b6:13:97:b8:d7:42:ab: af:3b:e3:7e:be:12:b8:0f:7e:70:00:70:12:b6:b1:f4:15:d1: d3:a6:9c:71:3a:fd:3b:53:b9:37:ef:fc:24:c2:f4:31:2e:7f: cf:d1:84:3f:e7:9b:01:72:ca:b1:fe:83:7e:69:3e:21:45:6b: a0:e9:b7:8c:7b:95:62:e6:65:c8:50:76:5f:fc:37:41:26:ae: ad:e9:ef:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0QjgxMTAvBgNVBAUTKERGQTg2MDQ1MEE2RkNFQjFDNkU3QjhENEZGNTRCMTU0 MUExQjY5QjMwHhcNMjUwNjAzMDE1MzI2WhcNMjUwNjEwMDE1MzI2WjAYMRYwFAYD VQQDEw02ODNlNTU5Ni1lNzZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq0rcMnft/V56VadEd5YBxWwqY9C8/V917KVvifh8kNxXfitC/omdZUlyUeVq f6u+p5npwUwb9pXxmeTS0c2cD9PyyDGXaTa8nqkauhnuNgm54c7gtD+aN81OOvL4 Tbh52jQLtij4Zt3nAWolcOaYoxkw/xDghOGfj4bqgL7QnEt3/GhSl1K5pcfNUT6P +pcaAtAhddT2P6R/dzF2TtgF6BFea5gYb71S1Oar5aFdxtGXecf2Ay02zs5w56PL ofQ0vRDqUR5QUuyT9Cf7Z1C5Osa9BzUpj8NC5Opwx+GCKpVtgd4IsXOeAbE9olqq BYxlY1EXkWudwtoXoqGHAI9bVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBcTLUG3 h5W3GdWQTQuQCD71+fNIMB8GA1UdIwQYMBaAFN+oYEUKb86xxue41P9UsVQaG2mz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzRCOC85RjAzQkI2MDA5 NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8zNmhnUlFwdnpySEc1N2pVXzFTeFZCb2Jh Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzM2aGdSUXB2enJIRzU3alVfMVN4VkJvYmFiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzRCOC85RjAzQkI2MDA5NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8zNmhnUlFwdnpy SEc1N2pVXzFTeFZCb2JhYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqlf+7pXhIW1cveOj5g2rgVVmex535aN/6Aihlqfs4xdzlkG+DRZmr 9eqavZkTCbb3pNLK33Qfe2m47llrTjqtFQpy6rECBzRT7q1vLapUV90oH0HGT9h+ SpdDwsZc/QMzDzYMrlsbSMujB8BXxttS31bTtqAkDOyR3m2NbyVjptDDtcLwtQxR 6lupCXX5CYwQWe/MsjF6itjvGcvvMD2JS2sXJrb0irRmcDUt67YTl7jXQquvO+N+ vhK4D35wAHAStrH0FdHTppxxOv07U7k37/wkwvQxLn/P0YQ/55sBcsqx/oN+aT4h RWug6beMe5Vi5mXIUHZf/DdBJq6t6e+8 -----END CERTIFICATE-----Generated at Tue Jun 3 23:55:41 2025 by rpki-client