$ rpki-client -vvf rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft File: tWQnMiZdQL91ypSp7IEZIRwbmzI.mft (raw, json) Hash identifier: 74iskK8DKSiIffMk+ktCg1kPEp4cN1WWn01fXy4S7II= Subject key identifier: 0A:74:DD:7B:F6:89:C3:96:78:5E:F8:E4:95:82:47:13:35:B8:B7:D1 Authority key identifier: B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 Certificate issuer: /CN=A916C128/serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Certificate serial: 2C2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft Manifest number: 2B85 Signing time: Sat 31 May 2025 15:31:46 +0000 Manifest this update: Sat 31 May 2025 15:31:46 +0000 Manifest next update: Sat 07 Jun 2025 15:31:46 +0000 Files and hashes: 1: tWQnMiZdQL91ypSp7IEZIRwbmzI.crl (hash: w3R9HG+NGbNzHfwhGP5toVYbqkhX8q72ZSNtk23cwYA=) 2: 13461F60ABDC11EDAE837666C4F9AE02.roa (hash: cw0PqwBBK0RHpksVvzPS62Y/XzIKpQmwvX5oJ3Ga1Uc=) 3: E0CC928CABDE11ED954F5C84C4F9AE02.roa (hash: G/2ljlZXzsuc6fmr+LrsxDu437pL1+BbINl7CakOHNg=) 4: DF821D20ABDE11ED954F5C84C4F9AE02.roa (hash: ZzwjjjV43983S9z3YZGjXBw9c3x4QvReAm0radZl0Rc=) 5: 4462F034F0EC11EB9D0B176AC4F9AE02.roa (hash: iJX8QvRtMVBhv+UXxylmDNIfKvmMzmtMROe4rMBXyWI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:23:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11306 (0x2c2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C128, serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Validity Not Before: May 31 15:31:46 2025 GMT Not After : Jun 7 15:31:46 2025 GMT Subject: CN=683b20e2-9a9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:6d:27:c1:fb:9c:c8:b0:38:2b:c0:05:2d:c2: ff:71:8e:a6:5a:62:a6:bf:86:dc:35:fb:07:0b:59: 2a:9a:eb:f1:a2:94:5d:f4:97:ae:ef:6d:0a:d8:a0: 4d:63:f6:88:18:0e:a7:73:f8:94:80:ba:bd:32:80: ea:f4:1d:37:8c:4c:37:ad:c0:69:10:42:72:89:ea: a9:3d:39:05:3f:e5:79:6a:fe:64:f9:55:1b:16:04: 84:71:c4:fe:8b:40:3b:28:e4:f0:88:83:1e:8e:d1: d8:f0:0d:f1:e3:40:a9:c5:02:1a:53:d1:4a:4b:ac: b3:f5:62:39:9d:2c:db:70:29:39:f2:17:9d:84:78: 24:73:87:d9:85:06:36:e7:96:ed:61:ed:58:67:45: 12:c3:1f:5e:9f:f3:d0:25:53:a9:ce:2c:22:39:c8: b6:1f:b6:da:1c:cb:61:6d:32:b8:7e:b0:e3:e8:02: 7e:43:dd:be:a1:87:22:f1:fc:e7:a3:32:47:0f:41: 1f:84:0f:56:83:9e:81:44:42:a4:2e:b5:fe:98:03: 40:b7:c3:5a:f0:6a:04:36:54:fa:72:0b:9e:55:36: f1:aa:4b:21:1f:7e:35:8a:b9:39:f9:bd:b4:83:21: 19:fa:97:4b:46:8f:ac:14:62:d0:f7:bc:fa:c0:03: 38:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:74:DD:7B:F6:89:C3:96:78:5E:F8:E4:95:82:47:13:35:B8:B7:D1 X509v3 Authority Key Identifier: keyid:B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:a4:67:f6:62:55:34:52:aa:0d:c3:b4:dd:b3:a0:30:33:33: b7:14:a2:f1:09:ef:c5:63:89:75:64:1f:11:08:3e:e4:8e:00: f0:30:9b:bf:ad:63:56:6e:17:bb:91:64:e1:e0:c0:18:0a:51: a8:11:29:33:70:42:38:de:42:88:e2:07:f2:8c:c5:04:53:2a: 9e:ce:05:1f:92:76:61:2e:42:0e:a6:43:96:90:b3:a2:04:ec: eb:02:75:ab:05:87:7a:fd:af:ee:38:2e:67:02:4f:b6:11:16: cd:96:bf:00:ea:9e:fb:19:3d:a5:b0:90:56:4d:73:74:d3:7c: 98:d3:46:fa:d0:8c:38:a5:4b:c1:d2:28:29:1f:d6:d1:19:cf: c8:36:55:20:56:82:13:53:1a:06:83:6e:0b:62:f6:43:6b:59: 7f:87:44:b0:32:2c:8a:97:8b:88:42:55:f4:cf:16:bf:e1:94: 3f:fd:f4:f6:9c:65:c0:4b:d0:9b:58:22:50:28:fe:1c:d6:c7: 04:e9:60:84:0d:6c:1b:91:dc:e7:7a:9e:34:d5:d1:64:5a:bc: b9:a2:5e:2d:d8:b5:4d:31:9d:ab:22:1b:93:d1:17:6f:be:ce: e0:c5:d7:96:d4:09:97:22:2e:76:22:45:98:b5:85:58:63:c4: 6f:68:b4:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLCowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMxMjgxMTAvBgNVBAUTKEI1NjQyNzMyMjY1RDQwQkY3NUNBOTRBOUVDODExOTIx MUMxQjlCMzIwHhcNMjUwNTMxMTUzMTQ2WhcNMjUwNjA3MTUzMTQ2WjAYMRYwFAYD VQQDEw02ODNiMjBlMi05YTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr20nwfucyLA4K8AFLcL/cY6mWmKmv4bcNfsHC1kqmuvxopRd9Jeu720K2KBN Y/aIGA6nc/iUgLq9MoDq9B03jEw3rcBpEEJyieqpPTkFP+V5av5k+VUbFgSEccT+ i0A7KOTwiIMejtHY8A3x40CpxQIaU9FKS6yz9WI5nSzbcCk58hedhHgkc4fZhQY2 55btYe1YZ0USwx9en/PQJVOpziwiOci2H7baHMthbTK4frDj6AJ+Q92+oYci8fzn ozJHD0EfhA9Wg56BREKkLrX+mANAt8Na8GoENlT6cgueVTbxqkshH341irk5+b20 gyEZ+pdLRo+sFGLQ97z6wAM4ZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAp03Xv2 icOWeF745JWCRxM1uLfRMB8GA1UdIwQYMBaAFLVkJzImXUC/dcqUqeyBGSEcG5sy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzEyOC82NjRBOUJDQUZB NkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFMOTF5cFNwN0lFWklSd2Jt ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RXUW5NaVpkUUw5MXlwU3A3SUVaSVJ3Ym16SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzEyOC82NjRBOUJDQUZBNkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFM OTF5cFNwN0lFWklSd2JtekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPpGf2YlU0UqoNw7Tds6AwMzO3FKLxCe/FY4l1ZB8RCD7kjgDwMJu/ rWNWbhe7kWTh4MAYClGoESkzcEI43kKI4gfyjMUEUyqezgUfknZhLkIOpkOWkLOi BOzrAnWrBYd6/a/uOC5nAk+2ERbNlr8A6p77GT2lsJBWTXN003yY00b60Iw4pUvB 0igpH9bRGc/INlUgVoITUxoGg24LYvZDa1l/h0SwMiyKl4uIQlX0zxa/4ZQ//fT2 nGXAS9CbWCJQKP4c1scE6WCEDWwbkdznep401dFkWry5ol4t2LVNMZ2rIhuT0Rdv vs7gxdeW1AmXIi52IkWYtYVYY8RvaLSx -----END CERTIFICATE-----Generated at Sat May 31 17:14:39 2025 by rpki-client