$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft File: 1jZSRQ6nVZE88xr8-popIaSK4aQ.mft (raw, json) Hash identifier: FLIElL9UEiQESa5afq12zBqjYluIr7NTrl3xOs/7QDk= Subject key identifier: 8A:B4:33:79:5B:18:30:88:23:47:CF:7B:04:01:36:45:2F:FE:6B:FA Authority key identifier: D6:36:52:45:0E:A7:55:91:3C:F3:1A:FC:FA:9A:29:21:A4:8A:E1:A4 Certificate issuer: /CN=A917BB1B/serialNumber=D63652450EA755913CF31AFCFA9A2921A48AE1A4 Certificate serial: 03EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1jZSRQ6nVZE88xr8-popIaSK4aQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft Manifest number: 03E7 Signing time: Sat 31 May 2025 00:43:45 +0000 Manifest this update: Sat 31 May 2025 00:43:45 +0000 Manifest next update: Sat 07 Jun 2025 00:43:45 +0000 Files and hashes: 1: 1jZSRQ6nVZE88xr8-popIaSK4aQ.crl (hash: xRoXwoG/Y9rDTPlHG6Mmf8E2NcMzavUK9UtzVPq278o=) 2: E69DB7E67F7911EC86DE4B56C4F9AE02.roa (hash: SCsr6a/OxC+h0TbqqqQWA1WP6sx9Kte4TE8O/kgTqE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.crl rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1jZSRQ6nVZE88xr8-popIaSK4aQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:43:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1006 (0x3ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB1B, serialNumber=D63652450EA755913CF31AFCFA9A2921A48AE1A4 Validity Not Before: May 31 00:43:45 2025 GMT Not After : Jun 7 00:43:45 2025 GMT Subject: CN=683a50c1-d074 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:51:21:d3:36:34:89:04:50:9a:02:ec:ae:d9: a6:a8:03:83:ca:f8:9a:b8:2b:b3:24:d7:7e:74:20: 30:88:2b:94:06:52:0f:b3:d3:ec:62:59:c5:f7:34: 19:07:ac:52:0f:1b:a3:cd:8b:51:06:f7:73:8e:c5: a9:12:b6:a8:53:de:23:29:96:46:1b:b5:47:72:50: a7:d9:85:f8:8e:d8:90:81:b7:55:06:16:86:90:d0: 2a:8e:3d:c0:29:5b:6e:83:ff:6f:d0:e0:41:e4:9a: fe:c1:83:3a:ef:3c:46:8e:9f:35:df:99:97:12:fc: 76:c0:d3:3a:99:ac:b2:6d:b4:1e:1d:2b:46:97:e5: 46:bf:1a:aa:b5:73:aa:ff:79:7d:8f:b7:5e:a7:e0: ac:4f:46:da:2e:49:94:0b:b7:50:8d:fe:e5:01:0a: b7:75:1b:91:87:c2:45:2c:f7:ad:3a:c3:8f:18:eb: 20:69:22:54:26:cc:5b:bf:ff:c4:23:b5:a0:18:99: 26:c3:da:35:3e:80:b5:aa:fa:64:55:0e:b3:45:89: bc:8b:21:b5:0a:c7:c3:89:64:37:70:45:82:4b:ac: eb:06:5b:7b:28:74:8f:87:ff:6b:af:73:16:0e:ca: 69:f1:1d:07:5c:6e:ea:b9:f8:69:2f:78:1f:f2:40: d2:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:B4:33:79:5B:18:30:88:23:47:CF:7B:04:01:36:45:2F:FE:6B:FA X509v3 Authority Key Identifier: keyid:D6:36:52:45:0E:A7:55:91:3C:F3:1A:FC:FA:9A:29:21:A4:8A:E1:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1jZSRQ6nVZE88xr8-popIaSK4aQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:02:b5:8e:c6:20:d0:c2:85:de:d1:59:fa:69:a0:09:f6:40: 71:73:63:75:84:fa:1f:5f:8a:44:0f:3a:fb:0a:8b:18:41:f5: 1e:b1:f2:c5:c2:f1:88:38:9b:6f:56:46:0d:21:28:20:35:a2: 51:8f:b8:86:0e:b2:04:fe:3c:95:33:ce:87:ab:8d:88:49:fc: 70:21:92:3c:58:0b:23:9f:0e:57:64:67:24:d2:b9:64:ef:39: d5:fd:84:fd:6d:f8:40:c1:d6:fb:87:30:57:fe:96:9e:d7:c3: 95:27:7f:56:b9:38:f6:37:8b:75:ff:3f:27:ae:e7:36:c1:25: 82:af:65:ef:94:de:75:70:90:df:c0:83:6c:9f:3b:e0:39:24: e3:63:a3:a0:41:c0:af:a5:ef:7a:b2:f3:41:0d:ba:ea:e0:46: dc:7a:b9:c5:ac:5c:3c:4b:2e:de:87:36:7c:1c:6a:50:ba:1d: c0:3e:6f:7d:24:95:80:9a:e4:2d:c3:79:c0:05:6f:4c:4b:d6: 79:d1:a9:85:11:dc:8f:76:14:ac:87:b3:e8:71:d8:0a:3c:1b: d3:79:e2:31:0c:9c:91:52:bf:af:48:27:f9:72:dd:84:0b:40: ba:52:e5:bf:f3:86:00:66:9e:a9:92:06:39:35:f0:44:df:66: ce:53:b7:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCMUIxMTAvBgNVBAUTKEQ2MzY1MjQ1MEVBNzU1OTEzQ0YzMUFGQ0ZBOUEyOTIx QTQ4QUUxQTQwHhcNMjUwNTMxMDA0MzQ1WhcNMjUwNjA3MDA0MzQ1WjAYMRYwFAYD VQQDEw02ODNhNTBjMS1kMDc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA41Eh0zY0iQRQmgLsrtmmqAODyviauCuzJNd+dCAwiCuUBlIPs9PsYlnF9zQZ B6xSDxujzYtRBvdzjsWpEraoU94jKZZGG7VHclCn2YX4jtiQgbdVBhaGkNAqjj3A KVtug/9v0OBB5Jr+wYM67zxGjp8135mXEvx2wNM6mayybbQeHStGl+VGvxqqtXOq /3l9j7dep+CsT0baLkmUC7dQjf7lAQq3dRuRh8JFLPetOsOPGOsgaSJUJsxbv//E I7WgGJkmw9o1PoC1qvpkVQ6zRYm8iyG1CsfDiWQ3cEWCS6zrBlt7KHSPh/9rr3MW Dspp8R0HXG7qufhpL3gf8kDSQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIq0M3lb GDCII0fPewQBNkUv/mv6MB8GA1UdIwQYMBaAFNY2UkUOp1WRPPMa/PqaKSGkiuGk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkIxQi9EOUI5Qzg4QzdG MzYxMUVDQTkwQkNBM0FDNEY5QUUwMi8xalpTUlE2blZaRTg4eHI4LXBvcElhU0s0 YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFqWlNSUTZuVlpFODh4cjgtcG9wSWFTSzRhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkIxQi9EOUI5Qzg4QzdGMzYxMUVDQTkwQkNBM0FDNEY5QUUwMi8xalpTUlE2blZa RTg4eHI4LXBvcElhU0s0YVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaArWOxiDQwoXe0Vn6aaAJ9kBxc2N1hPofX4pEDzr7CosYQfUesfLF wvGIOJtvVkYNISggNaJRj7iGDrIE/jyVM86Hq42ISfxwIZI8WAsjnw5XZGck0rlk 7znV/YT9bfhAwdb7hzBX/pae18OVJ39WuTj2N4t1/z8nruc2wSWCr2XvlN51cJDf wINsnzvgOSTjY6OgQcCvpe96svNBDbrq4EbcernFrFw8Sy7ehzZ8HGpQuh3APm99 JJWAmuQtw3nABW9MS9Z50amFEdyPdhSsh7PocdgKPBvTeeIxDJyRUr+vSCf5ct2E C0C6UuW/84YAZp6pkgY5NfBE32bOU7cY -----END CERTIFICATE-----Generated at Sat May 31 17:07:42 2025 by rpki-client