$ rpki-client -vvf rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft File: AflcxfCmuelnxvjzbH9k1CRLrHI.mft (raw, json) Hash identifier: 35Zko5gXNFWndj6SR3sa6+/JzuVkeOUITIFz5qIJaUE= Subject key identifier: DB:B3:3C:45:81:46:F5:56:68:5C:CE:51:6E:0E:E3:79:10:E8:1D:94 Authority key identifier: 01:F9:5C:C5:F0:A6:B9:E9:67:C6:F8:F3:6C:7F:64:D4:24:4B:AC:72 Certificate issuer: /CN=A9169451/serialNumber=01F95CC5F0A6B9E967C6F8F36C7F64D4244BAC72 Certificate serial: 0208 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft Manifest number: 0205 Signing time: Sat 31 May 2025 02:12:28 +0000 Manifest this update: Sat 31 May 2025 02:12:27 +0000 Manifest next update: Sat 07 Jun 2025 02:12:27 +0000 Files and hashes: 1: AflcxfCmuelnxvjzbH9k1CRLrHI.crl (hash: B6YflflnluGhClqbXJFwnFxeBmDpaw51OjE1WNZhFyA=) 2: 0C1EB10A3A5011ED8B4A2570C4F9AE02.roa (hash: 8tU0+bWbTseOr25wJKvheZneGGhgRMUkg1uHcFDydtY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.crl rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:12:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 520 (0x208) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169451, serialNumber=01F95CC5F0A6B9E967C6F8F36C7F64D4244BAC72 Validity Not Before: May 31 02:12:27 2025 GMT Not After : Jun 7 02:12:27 2025 GMT Subject: CN=683a658b-cf8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e9:f5:20:cd:35:8c:8d:69:63:88:a3:d2:34: b7:53:16:da:5f:17:cd:2c:0b:66:5c:2b:f2:3f:28: 3d:12:f9:e6:c7:f6:c9:e3:9d:ad:aa:c8:2c:3a:2b: ed:69:50:bf:44:5b:47:80:e5:73:c8:46:49:f3:33: e5:bd:5c:1f:da:f0:e0:02:96:d6:8b:75:af:ba:30: 57:31:30:16:ff:1a:d7:b7:b5:0a:f0:13:e4:4a:79: 98:c1:c1:2e:46:c8:47:d8:77:7d:40:c3:ac:17:26: 0a:c6:02:a9:de:95:50:29:2f:d4:a1:3c:cd:9e:1d: 6e:d3:4b:ac:8e:f6:ea:26:ac:c4:c9:a1:fe:bd:7f: d3:62:6d:68:72:4d:1b:99:2a:94:c1:19:11:d0:e1: 92:44:75:29:44:46:6a:80:d7:0e:f0:59:01:50:0b: c8:05:c0:b3:58:6c:80:cf:a2:da:50:02:f5:7e:31: 2b:71:de:ec:95:8b:ad:15:d2:5c:19:69:72:70:8c: b4:54:23:c3:0e:b9:43:00:2b:eb:67:00:dc:53:04: d5:3d:83:70:32:1b:46:ef:3c:99:c4:ee:29:b1:77: 8b:15:ba:27:65:9a:d2:06:d4:bd:3a:a3:ee:3d:ac: 3e:39:dc:5e:e0:61:93:89:1f:cb:90:2c:a6:61:96: 6e:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:B3:3C:45:81:46:F5:56:68:5C:CE:51:6E:0E:E3:79:10:E8:1D:94 X509v3 Authority Key Identifier: keyid:01:F9:5C:C5:F0:A6:B9:E9:67:C6:F8:F3:6C:7F:64:D4:24:4B:AC:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:bd:66:ff:17:74:97:f6:28:ed:d0:9a:19:a5:60:44:c1:bd: cb:ad:98:72:3b:6f:2a:5e:75:83:12:22:6e:67:3c:64:33:f4: 8c:e7:82:f4:1e:e2:71:28:9f:93:f8:af:65:b3:86:c9:2d:1b: 7f:e6:2e:46:21:c3:93:2e:63:18:3a:eb:91:fe:ca:38:bb:ea: 97:ba:56:41:ab:b2:c7:88:16:7f:a8:37:a2:d9:41:df:f7:19: 7b:83:03:b9:b1:00:ee:20:8d:d9:da:6f:62:3f:43:34:19:bf: 9c:69:43:aa:7d:e2:0d:d4:40:ef:8b:31:bc:e6:bc:cb:a4:bd: 1b:79:36:72:28:0d:c7:db:92:6b:89:7a:00:b1:43:94:7d:06: 7d:99:1b:18:cd:da:7d:22:e6:de:d2:a5:75:96:f1:2b:cf:76: 3d:55:39:3a:b3:9a:13:e1:e8:38:d0:e8:26:06:a2:f9:d0:84: db:4e:59:11:60:a7:59:ba:f9:59:cd:27:76:2f:f8:81:94:66: c2:aa:e9:48:6e:ef:ad:40:16:d1:7c:77:4c:f7:eb:fc:a3:60: 65:59:53:e0:60:9a:f5:65:b8:19:6a:0e:9f:2d:d7:1b:db:35: 8f:4c:d8:8c:20:db:8f:4b:ad:a8:5f:77:6c:3e:2d:d0:e7:49: 51:2f:9a:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAggwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk0NTExMTAvBgNVBAUTKDAxRjk1Q0M1RjBBNkI5RTk2N0M2RjhGMzZDN0Y2NEQ0 MjQ0QkFDNzIwHhcNMjUwNTMxMDIxMjI3WhcNMjUwNjA3MDIxMjI3WjAYMRYwFAYD VQQDEw02ODNhNjU4Yi1jZjhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOn1IM01jI1pY4ij0jS3UxbaXxfNLAtmXCvyPyg9Evnmx/bJ452tqsgsOivt aVC/RFtHgOVzyEZJ8zPlvVwf2vDgApbWi3WvujBXMTAW/xrXt7UK8BPkSnmYwcEu RshH2Hd9QMOsFyYKxgKp3pVQKS/UoTzNnh1u00usjvbqJqzEyaH+vX/TYm1ock0b mSqUwRkR0OGSRHUpREZqgNcO8FkBUAvIBcCzWGyAz6LaUAL1fjErcd7slYutFdJc GWlycIy0VCPDDrlDACvrZwDcUwTVPYNwMhtG7zyZxO4psXeLFbonZZrSBtS9OqPu Paw+Odxe4GGTiR/LkCymYZZuXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNuzPEWB RvVWaFzOUW4O43kQ6B2UMB8GA1UdIwQYMBaAFAH5XMXwprnpZ8b482x/ZNQkS6xy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTQ1MS83MURCNjdENDNB NEQxMUVEOTAwREUyNkVDNEY5QUUwMi9BZmxjeGZDbXVlbG54dmp6Ykg5azFDUkxy SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FmbGN4ZkNtdWVsbnh2anpiSDlrMUNSTHJISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTQ1MS83MURCNjdENDNBNEQxMUVEOTAwREUyNkVDNEY5QUUwMi9BZmxjeGZDbXVl bG54dmp6Ykg5azFDUkxySEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6vWb/F3SX9ijt0JoZpWBEwb3LrZhyO28qXnWDEiJuZzxkM/SM54L0 HuJxKJ+T+K9ls4bJLRt/5i5GIcOTLmMYOuuR/so4u+qXulZBq7LHiBZ/qDei2UHf 9xl7gwO5sQDuII3Z2m9iP0M0Gb+caUOqfeIN1EDvizG85rzLpL0beTZyKA3H25Jr iXoAsUOUfQZ9mRsYzdp9Iube0qV1lvErz3Y9VTk6s5oT4eg40OgmBqL50ITbTlkR YKdZuvlZzSd2L/iBlGbCqulIbu+tQBbRfHdM9+v8o2BlWVPgYJr1ZbgZag6fLdcb 2zWPTNiMINuPS62oX3dsPi3Q50lRL5pf -----END CERTIFICATE-----Generated at Sat May 31 17:53:11 2025 by rpki-client