$ rpki-client -vvf rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft File: g1KnNOghRPMixQtyik92WjPXIlY.mft (raw, json) Hash identifier: t3cVVQ2RzA611exYtCT0du6Ap+4fSuZK+SRzOl5vvic= Subject key identifier: 71:29:0E:52:EF:99:05:8D:77:03:C4:5F:6E:CB:9A:0C:11:BD:BB:EC Authority key identifier: 83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56 Certificate issuer: /CN=A917357E/serialNumber=8352A734E82144F322C50B728A4F765A33D72256 Certificate serial: 0229 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft Manifest number: 0644 Signing time: Sat 31 May 2025 00:30:37 +0000 Manifest this update: Sat 31 May 2025 00:30:36 +0000 Manifest next update: Sat 07 Jun 2025 00:30:36 +0000 Files and hashes: 1: g1KnNOghRPMixQtyik92WjPXIlY.crl (hash: 1Ofol0cUzqMfpnUaPFgZXiEvoM3+2zq6S8lxPqgnR98=) 2: 21E1440A1E7711EFB69BE070C4F9AE02.roa (hash: 6xK46XhJtyZvl0GV6Tg9wg5kNg7cdtZOaQsNEIc5Pf4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:30:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 553 (0x229) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917357E, serialNumber=8352A734E82144F322C50B728A4F765A33D72256 Validity Not Before: May 31 00:30:36 2025 GMT Not After : Jun 7 00:30:36 2025 GMT Subject: CN=683a4dac-3206 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:13:33:ff:30:39:c8:d5:1e:4c:99:07:0f:a9: ee:0d:d8:83:6c:86:6c:93:5e:74:32:46:e6:f5:37: 01:9d:84:91:a7:ab:71:ad:f8:6e:37:e0:82:f7:c3: af:87:40:b9:a3:03:d3:99:f5:34:81:30:b9:97:38: 76:4d:32:ab:d8:26:6d:85:85:1b:50:42:ca:82:a7: a4:3b:34:d3:91:42:27:dd:5e:08:07:03:55:ea:2e: a1:94:e6:8e:55:d9:31:de:28:3a:dc:d7:d0:24:5e: a5:0e:46:e4:a1:24:d3:a4:59:59:db:d5:79:89:aa: e2:a5:8f:51:b2:8a:7b:88:26:83:1e:91:44:2d:f9: 68:fc:f0:79:fd:62:b3:4b:c4:d9:44:d1:a2:68:fb: 66:68:e4:43:fa:3e:24:71:fa:79:e7:6c:33:74:e5: c6:d1:3f:72:85:25:3a:4a:93:84:d5:67:c6:87:ed: 51:9e:e8:e5:44:0e:e3:e8:70:2e:05:88:b7:f1:b6: 4f:13:e5:ea:bb:ec:95:38:44:30:f2:b0:8f:d5:06: 56:7b:5d:6e:0c:85:29:0f:8e:81:07:1e:9b:32:6f: 85:fc:87:6f:9e:39:5d:42:b4:aa:6d:22:be:5a:63: 59:8b:a4:91:1a:17:82:38:e9:d7:be:04:ec:34:0c: e0:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:29:0E:52:EF:99:05:8D:77:03:C4:5F:6E:CB:9A:0C:11:BD:BB:EC X509v3 Authority Key Identifier: keyid:83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:cc:e9:50:af:09:35:ba:59:7c:36:77:f8:2b:f0:fa:51:4f: 42:b9:24:2b:88:9f:0f:7c:06:05:4b:3f:79:70:8b:c3:b2:59: c6:ee:a6:1f:55:75:6e:16:10:e3:42:6d:b9:66:c4:f8:c4:bc: cf:bf:17:05:c2:8c:31:36:9f:03:fd:a1:39:00:ec:79:b1:a1: 29:6d:5a:38:01:45:75:84:62:0f:63:31:83:34:e9:df:47:31: 28:5f:71:c6:98:6a:23:c6:a0:b0:79:6c:cc:8a:3c:03:d4:5b: 8f:7a:1b:11:fe:fb:53:de:db:36:6c:63:cf:23:a9:78:4f:5d: 27:06:56:50:7c:8c:dc:0f:45:2b:af:20:66:b7:2d:32:de:45: 71:6e:6d:0f:61:ac:62:c5:4a:74:7e:8c:48:6d:4b:c7:74:4f: 16:c0:f9:87:39:74:e4:82:6f:07:c2:ac:d4:cc:f4:35:7a:5c: a9:26:23:06:03:e0:1a:79:2f:0c:3f:f7:fa:85:1b:dc:c5:fb: c9:a1:6d:d8:b0:3f:17:f9:1c:5b:94:99:bd:c0:f2:08:1d:b0: b7:16:7b:65:08:cc:d4:01:37:58:3f:36:1d:2a:98:ac:30:99: 10:1f:e7:8c:3e:ea:5d:29:9b:21:d5:1c:33:69:cc:2b:a9:8e: cf:ba:90:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAikwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1N0UxMTAvBgNVBAUTKDgzNTJBNzM0RTgyMTQ0RjMyMkM1MEI3MjhBNEY3NjVB MzNENzIyNTYwHhcNMjUwNTMxMDAzMDM2WhcNMjUwNjA3MDAzMDM2WjAYMRYwFAYD VQQDEw02ODNhNGRhYy0zMjA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApBMz/zA5yNUeTJkHD6nuDdiDbIZsk150Mkbm9TcBnYSRp6txrfhuN+CC98Ov h0C5owPTmfU0gTC5lzh2TTKr2CZthYUbUELKgqekOzTTkUIn3V4IBwNV6i6hlOaO Vdkx3ig63NfQJF6lDkbkoSTTpFlZ29V5iaripY9Rsop7iCaDHpFELflo/PB5/WKz S8TZRNGiaPtmaORD+j4kcfp552wzdOXG0T9yhSU6SpOE1WfGh+1RnujlRA7j6HAu BYi38bZPE+Xqu+yVOEQw8rCP1QZWe11uDIUpD46BBx6bMm+F/IdvnjldQrSqbSK+ WmNZi6SRGheCOOnXvgTsNAzgTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHEpDlLv mQWNdwPEX27LmgwRvbvsMB8GA1UdIwQYMBaAFINSpzToIUTzIsULcopPdloz1yJW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzU3RS82MDJENzZEODVE NzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9nMUtuTk9naFJQTWl4UXR5aWs5MldqUFhJ bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2cxS25OT2doUlBNaXhRdHlpazkyV2pQWElsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzU3RS82MDJENzZEODVENzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9nMUtuTk9naFJQ TWl4UXR5aWs5MldqUFhJbFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbzOlQrwk1ull8Nnf4K/D6UU9CuSQriJ8PfAYFSz95cIvDslnG7qYf VXVuFhDjQm25ZsT4xLzPvxcFwowxNp8D/aE5AOx5saEpbVo4AUV1hGIPYzGDNOnf RzEoX3HGmGojxqCweWzMijwD1FuPehsR/vtT3ts2bGPPI6l4T10nBlZQfIzcD0Ur ryBmty0y3kVxbm0PYaxixUp0foxIbUvHdE8WwPmHOXTkgm8HwqzUzPQ1elypJiMG A+AaeS8MP/f6hRvcxfvJoW3YsD8X+RxblJm9wPIIHbC3FntlCMzUATdYPzYdKpis MJkQH+eMPupdKZsh1RwzacwrqY7PupA7 -----END CERTIFICATE-----Generated at Sat May 31 17:46:25 2025 by rpki-client