$ rpki-client -vvf rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft File: B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft (raw, json) Hash identifier: bgyvIu9svPXYJut+ia3h1esMCv3M8kszMe9PIi7w52M= Subject key identifier: BD:36:34:FA:35:C4:D9:DA:79:D0:22:89:78:B2:D2:FB:D9:4E:7E:2C Authority key identifier: 07:8B:4A:80:D1:DF:E6:C0:52:53:3A:AD:B1:95:34:AC:59:A3:95:4B Certificate issuer: /CN=A917C5E0/serialNumber=078B4A80D1DFE6C052533AADB19534AC59A3954B Certificate serial: 99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft Manifest number: 97 Signing time: Sat 31 May 2025 05:53:51 +0000 Manifest this update: Sat 31 May 2025 05:53:51 +0000 Manifest next update: Sat 07 Jun 2025 05:53:51 +0000 Files and hashes: 1: B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl (hash: 8+xDCqTGtUBPb5jRV05aEiQv7Ua6oGxunfJM76oqYHM=) 2: 335E880A5A1811EFB08E4F38C4F9AE02.roa (hash: uB7Em80PKGY4uO2oMYJtskRF61M8oMXLAmFb1PjEp7E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:53:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C5E0, serialNumber=078B4A80D1DFE6C052533AADB19534AC59A3954B Validity Not Before: May 31 05:53:51 2025 GMT Not After : Jun 7 05:53:51 2025 GMT Subject: CN=683a996f-281d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:02:99:5e:8b:68:3e:4d:84:24:d4:ee:61:cd: 63:f5:28:ee:b9:74:d8:a4:02:53:47:a6:4f:68:ae: 87:27:03:c0:54:19:a0:31:18:ef:41:c5:01:75:85: 30:5a:b6:26:f4:85:a5:0b:60:2a:da:c9:05:d5:45: e3:d8:13:ec:5b:ce:34:f6:f1:d6:cb:90:d1:b8:e4: b2:06:fb:8f:96:36:7d:32:ae:c7:14:47:69:56:ba: cc:2d:01:81:8f:c6:4b:22:59:1c:ef:c8:77:25:7a: 66:2b:9d:0d:8b:fe:a7:a1:d4:c4:6a:01:2d:0f:60: b5:7d:e0:44:03:41:1d:07:f7:fb:8b:9f:81:c5:77: b7:bd:10:70:71:51:d6:97:a2:cf:4d:5b:5f:42:4c: 78:c6:a1:86:f0:fc:09:6f:d1:a5:8c:f3:dc:23:e0: d7:03:7f:68:16:a8:e7:f7:e0:75:c9:52:7b:e2:21: 60:e7:11:0e:40:e1:b8:ce:af:89:8f:87:73:f2:e6: 9a:76:f1:3d:06:1b:4f:cc:61:10:1f:d8:51:59:7b: 92:92:a4:f6:b6:2a:2c:8b:78:86:45:e9:72:c0:0e: 35:dd:82:45:ab:f1:b0:4f:26:aa:c8:66:9f:23:19: 04:bc:64:74:c5:89:97:de:7d:ff:95:42:bc:7a:39: c2:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:36:34:FA:35:C4:D9:DA:79:D0:22:89:78:B2:D2:FB:D9:4E:7E:2C X509v3 Authority Key Identifier: keyid:07:8B:4A:80:D1:DF:E6:C0:52:53:3A:AD:B1:95:34:AC:59:A3:95:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:28:51:d8:0c:9c:62:ed:17:c1:72:0b:cb:0e:95:8e:98:ca: bd:c1:24:f3:ef:1c:f3:66:0c:6c:ae:f8:44:c6:07:78:f7:5e: 96:90:fd:24:89:89:02:d1:4c:4c:1f:0b:b3:6e:52:45:33:a8: df:43:ee:a8:d0:d0:7b:a5:9b:0f:a4:9c:f0:8c:dc:c5:43:54: 60:5c:6a:bb:ce:6d:c4:ea:28:2d:83:d3:8a:51:40:3e:66:ce: fc:88:47:e9:56:31:38:99:17:5b:e4:14:2f:7e:8f:6e:9d:f7: 24:94:15:e7:6b:3d:b6:3c:a9:c8:95:3a:7b:00:56:a4:1f:9a: 6c:9b:51:3b:0e:5c:b0:71:5a:90:a6:13:da:67:ff:31:a8:d1: bf:ec:cf:35:fd:31:bf:f6:eb:0f:75:d4:cb:2c:ad:5c:1d:fb: 12:ac:93:ee:3c:fa:77:bc:7b:1c:01:0f:15:f5:6e:15:0e:3e: a9:39:88:da:a6:ce:de:1b:05:87:a7:58:20:aa:ff:64:19:a8: 4b:66:56:7b:01:ca:83:2f:25:26:0c:45:2b:ff:79:c8:ec:8a: b0:12:30:0f:e6:ab:18:9c:bb:8e:78:02:cf:2c:40:26:93:f2: 2d:2b:5e:fc:83:bb:1c:b7:47:cc:6f:55:cd:4e:ba:34:a1:85: 1f:fc:a2:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M1RTAxMTAvBgNVBAUTKDA3OEI0QTgwRDFERkU2QzA1MjUzM0FBREIxOTUzNEFD NTlBMzk1NEIwHhcNMjUwNTMxMDU1MzUxWhcNMjUwNjA3MDU1MzUxWjAYMRYwFAYD VQQDEw02ODNhOTk2Zi0yODFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAowKZXotoPk2EJNTuYc1j9SjuuXTYpAJTR6ZPaK6HJwPAVBmgMRjvQcUBdYUw WrYm9IWlC2Aq2skF1UXj2BPsW8409vHWy5DRuOSyBvuPljZ9Mq7HFEdpVrrMLQGB j8ZLIlkc78h3JXpmK50Ni/6nodTEagEtD2C1feBEA0EdB/f7i5+BxXe3vRBwcVHW l6LPTVtfQkx4xqGG8PwJb9GljPPcI+DXA39oFqjn9+B1yVJ74iFg5xEOQOG4zq+J j4dz8uaadvE9BhtPzGEQH9hRWXuSkqT2tiosi3iGRelywA413YJFq/GwTyaqyGaf IxkEvGR0xYmX3n3/lUK8ejnC5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL02NPo1 xNnaedAiiXiy0vvZTn4sMB8GA1UdIwQYMBaAFAeLSoDR3+bAUlM6rbGVNKxZo5VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzVFMC84NzIwQUIxODVB MTcxMUVGQUEyMkE3MjlDNEY5QUUwMi9CNHRLZ05IZjVzQlNVenF0c1pVMHJGbWps VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I0dEtnTkhmNXNCU1V6cXRzWlUwckZtamxVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzVFMC84NzIwQUIxODVBMTcxMUVGQUEyMkE3MjlDNEY5QUUwMi9CNHRLZ05IZjVz QlNVenF0c1pVMHJGbWpsVXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/KFHYDJxi7RfBcgvLDpWOmMq9wSTz7xzzZgxsrvhExgd4916WkP0k iYkC0UxMHwuzblJFM6jfQ+6o0NB7pZsPpJzwjNzFQ1RgXGq7zm3E6igtg9OKUUA+ Zs78iEfpVjE4mRdb5BQvfo9unfcklBXnaz22PKnIlTp7AFakH5psm1E7DlywcVqQ phPaZ/8xqNG/7M81/TG/9usPddTLLK1cHfsSrJPuPPp3vHscAQ8V9W4VDj6pOYja ps7eGwWHp1ggqv9kGahLZlZ7AcqDLyUmDEUr/3nI7IqwEjAP5qsYnLuOeALPLEAm k/ItK178g7sct0fMb1XNTro0oYUf/KL+ -----END CERTIFICATE-----Generated at Sat May 31 17:51:40 2025 by rpki-client