$ rpki-client -vvf rpki.apnic.net/member_repository/A91549ED/B7714B96091811EB95FA2737C4F9AE02/aIuwWV9ZW3EeAkUKzuOybBE7eS8.mft File: aIuwWV9ZW3EeAkUKzuOybBE7eS8.mft (raw, json) Hash identifier: pFHVXsRLyGsZFWaD56n5MNWN8m5LddvW1hkUDFhQ34c= Subject key identifier: 1E:84:4E:DC:D1:02:9E:2E:A7:66:5C:22:3F:DF:ED:9F:A8:6D:B1:BF Authority key identifier: 68:8B:B0:59:5F:59:5B:71:1E:02:45:0A:CE:E3:B2:6C:11:3B:79:2F Certificate issuer: /CN=A91549ED/serialNumber=688BB0595F595B711E02450ACEE3B26C113B792F Certificate serial: 07A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIuwWV9ZW3EeAkUKzuOybBE7eS8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91549ED/B7714B96091811EB95FA2737C4F9AE02/aIuwWV9ZW3EeAkUKzuOybBE7eS8.mft Manifest number: 0799 Signing time: Fri 30 May 2025 21:33:31 +0000 Manifest this update: Fri 30 May 2025 21:33:31 +0000 Manifest next update: Fri 06 Jun 2025 21:33:31 +0000 Files and hashes: 1: aIuwWV9ZW3EeAkUKzuOybBE7eS8.crl (hash: uKJRc6JOu2KRVyP6Pu7lxwbHQSJnzf0Me8d4ZUOJD0k=) 2: 89B3D06E0F9111EBA9B90727C4F9AE02.roa (hash: nNeDg/wlklIxGFoighizLl95GENL1V1dEvF0FUrVfns=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91549ED/B7714B96091811EB95FA2737C4F9AE02/aIuwWV9ZW3EeAkUKzuOybBE7eS8.crl rsync://rpki.apnic.net/member_repository/A91549ED/B7714B96091811EB95FA2737C4F9AE02/aIuwWV9ZW3EeAkUKzuOybBE7eS8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIuwWV9ZW3EeAkUKzuOybBE7eS8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1953 (0x7a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91549ED, serialNumber=688BB0595F595B711E02450ACEE3B26C113B792F Validity Not Before: May 30 21:33:31 2025 GMT Not After : Jun 6 21:33:31 2025 GMT Subject: CN=683a242b-5c98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:94:e3:fa:b4:c2:d5:35:0e:b3:aa:5d:d8:2c: 77:fc:76:8d:b3:d5:2d:82:44:1a:b0:c6:c8:09:01: 91:40:91:16:cf:d2:84:83:98:e6:98:1a:79:42:21: 43:5e:bc:23:47:70:55:87:d1:49:92:af:0b:8a:7f: ba:66:ba:9b:63:41:21:88:4e:b1:89:43:0c:5f:11: cb:b9:15:40:9b:48:bd:bf:e0:29:2d:80:2a:0e:09: 5f:96:91:6d:73:6e:11:3a:a8:eb:7e:9e:1c:57:0e: 3c:1a:db:52:f9:5c:f7:4e:ee:5c:a8:83:7c:c3:b9: 22:06:aa:85:f5:c7:24:c3:b8:d8:21:1f:8a:71:ba: 43:db:e1:7f:2f:94:ff:a2:a1:95:7d:a0:03:63:09: b3:7a:bf:83:92:23:1e:e2:df:6a:8d:14:48:f3:9e: da:af:9d:4c:36:b9:1d:7a:d8:7a:a1:d1:e4:bf:e7: b3:6b:af:3d:77:15:dd:d2:97:09:5b:4e:d3:53:d8: cc:3e:50:cf:01:07:82:50:12:3a:af:02:a1:ce:6f: a5:f8:43:fc:20:28:97:96:a1:81:d9:a8:9f:74:c7: a3:e1:62:b2:a5:20:41:b0:71:f1:97:40:3b:b9:9e: 02:da:1d:32:3e:af:f5:37:f2:fa:9a:57:a7:b7:d4: d8:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:84:4E:DC:D1:02:9E:2E:A7:66:5C:22:3F:DF:ED:9F:A8:6D:B1:BF X509v3 Authority Key Identifier: keyid:68:8B:B0:59:5F:59:5B:71:1E:02:45:0A:CE:E3:B2:6C:11:3B:79:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91549ED/B7714B96091811EB95FA2737C4F9AE02/aIuwWV9ZW3EeAkUKzuOybBE7eS8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIuwWV9ZW3EeAkUKzuOybBE7eS8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91549ED/B7714B96091811EB95FA2737C4F9AE02/aIuwWV9ZW3EeAkUKzuOybBE7eS8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:b4:3f:a3:ae:a0:2e:c9:39:31:21:8d:e5:0b:a0:ab:0d:23: 76:04:f6:c5:db:3b:9e:bf:4e:00:fb:30:0d:c9:e5:11:21:99: c9:18:e2:b5:17:39:29:c6:7b:38:4d:e4:8c:ff:8b:93:b2:33: 07:54:1f:d0:19:1c:76:53:d8:e3:33:39:c0:85:f8:df:07:52: b5:54:4b:c3:9d:ec:1e:58:f0:04:d4:fb:fe:fd:d8:36:97:82: c1:fd:db:59:5a:09:87:8c:d1:0f:6a:bf:99:7e:18:db:69:c9: 50:26:5c:ec:95:ca:ca:ac:88:21:74:4f:a5:f1:84:47:cb:49: 65:b4:10:0c:0a:53:fe:e0:00:10:b0:66:50:95:1d:c9:31:e2: 7a:37:6b:16:f0:fc:54:b9:cc:c8:06:f9:1e:f0:be:63:a2:f1: 8a:44:74:68:d2:cd:c2:57:df:b1:49:32:9a:be:dd:2a:17:23: 17:24:6b:fd:eb:1f:ff:69:62:3b:2f:1f:ff:d7:7b:c9:8e:a1: e0:9b:18:98:8b:b2:d3:34:6e:c1:82:05:5e:e7:64:7c:27:8f: 06:71:5e:c2:04:d7:4c:34:5c:67:50:44:ac:fe:2a:ad:d7:38: fd:37:46:0b:ac:2a:09:2d:2e:6b:f4:f2:c9:d4:0b:74:a3:57: fa:55:58:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ5RUQxMTAvBgNVBAUTKDY4OEJCMDU5NUY1OTVCNzExRTAyNDUwQUNFRTNCMjZD MTEzQjc5MkYwHhcNMjUwNTMwMjEzMzMxWhcNMjUwNjA2MjEzMzMxWjAYMRYwFAYD VQQDEw02ODNhMjQyYi01Yzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApJTj+rTC1TUOs6pd2Cx3/HaNs9UtgkQasMbICQGRQJEWz9KEg5jmmBp5QiFD XrwjR3BVh9FJkq8Lin+6ZrqbY0EhiE6xiUMMXxHLuRVAm0i9v+ApLYAqDglflpFt c24ROqjrfp4cVw48GttS+Vz3Tu5cqIN8w7kiBqqF9cckw7jYIR+KcbpD2+F/L5T/ oqGVfaADYwmzer+DkiMe4t9qjRRI857ar51MNrkdeth6odHkv+eza689dxXd0pcJ W07TU9jMPlDPAQeCUBI6rwKhzm+l+EP8ICiXlqGB2aifdMej4WKypSBBsHHxl0A7 uZ4C2h0yPq/1N/L6mlent9TYBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB6ETtzR Ap4up2ZcIj/f7Z+obbG/MB8GA1UdIwQYMBaAFGiLsFlfWVtxHgJFCs7jsmwRO3kv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDlFRC9CNzcxNEI5NjA5 MTgxMUVCOTVGQTI3MzdDNEY5QUUwMi9hSXV3V1Y5WlczRWVBa1VLenVPeWJCRTdl UzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FJdXdXVjlaVzNFZUFrVUt6dU95YkJFN2VTOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDlFRC9CNzcxNEI5NjA5MTgxMUVCOTVGQTI3MzdDNEY5QUUwMi9hSXV3V1Y5Wlcz RWVBa1VLenVPeWJCRTdlUzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4tD+jrqAuyTkxIY3lC6CrDSN2BPbF2zuev04A+zANyeURIZnJGOK1 Fzkpxns4TeSM/4uTsjMHVB/QGRx2U9jjMznAhfjfB1K1VEvDneweWPAE1Pv+/dg2 l4LB/dtZWgmHjNEPar+ZfhjbaclQJlzslcrKrIghdE+l8YRHy0lltBAMClP+4AAQ sGZQlR3JMeJ6N2sW8PxUuczIBvke8L5jovGKRHRo0s3CV9+xSTKavt0qFyMXJGv9 6x//aWI7Lx//13vJjqHgmxiYi7LTNG7BggVe52R8J48GcV7CBNdMNFxnUESs/iqt 1zj9N0YLrCoJLS5r9PLJ1At0o1f6VVh2 -----END CERTIFICATE-----Generated at Sat May 31 15:31:50 2025 by rpki-client