$ rpki-client -vvf rpki.apnic.net/member_repository/A919D530/5E55F656406411EFA3C5B827C4F9AE02/guQjhs0B-IaA3TAN-_-ittLn5OY.mft File: guQjhs0B-IaA3TAN-_-ittLn5OY.mft (raw, json) Hash identifier: 2ERikxC33Uw2hXZitX1aPxeYioqGutXLEcJlmBtkEYY= Subject key identifier: 6E:D4:52:B4:81:D4:77:5D:FB:4C:B9:D6:70:25:88:15:13:B0:50:E3 Authority key identifier: 82:E4:23:86:CD:01:F8:86:80:DD:30:0D:FB:FF:A2:B6:D2:E7:E4:E6 Certificate issuer: /CN=A919D530/serialNumber=82E42386CD01F88680DD300DFBFFA2B6D2E7E4E6 Certificate serial: AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/guQjhs0B-IaA3TAN-_-ittLn5OY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D530/5E55F656406411EFA3C5B827C4F9AE02/guQjhs0B-IaA3TAN-_-ittLn5OY.mft Manifest number: A8 Signing time: Sat 31 May 2025 05:44:12 +0000 Manifest this update: Sat 31 May 2025 05:44:11 +0000 Manifest next update: Sat 07 Jun 2025 05:44:11 +0000 Files and hashes: 1: guQjhs0B-IaA3TAN-_-ittLn5OY.crl (hash: WRP/K6VTayzgdhqTiO5L9exCeF43UQFhaIGk2owiWdU=) 2: A48F17F6406411EF96445E28C4F9AE02.roa (hash: dU6ZhGBTE9jsEZ9VkhD8M1OiGZ+Y8waNKYfclqDZAjs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D530/5E55F656406411EFA3C5B827C4F9AE02/guQjhs0B-IaA3TAN-_-ittLn5OY.crl rsync://rpki.apnic.net/member_repository/A919D530/5E55F656406411EFA3C5B827C4F9AE02/guQjhs0B-IaA3TAN-_-ittLn5OY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/guQjhs0B-IaA3TAN-_-ittLn5OY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:44:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 171 (0xab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D530, serialNumber=82E42386CD01F88680DD300DFBFFA2B6D2E7E4E6 Validity Not Before: May 31 05:44:11 2025 GMT Not After : Jun 7 05:44:11 2025 GMT Subject: CN=683a972c-d00f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:7b:c8:4c:a3:ef:f8:b4:ed:d5:84:59:ab:45: 40:26:f7:4e:ad:6a:1c:1c:a0:a5:38:99:5e:f9:14: 96:6b:90:96:0b:08:70:6f:da:9e:29:c7:a6:01:fd: 4d:71:65:3c:68:63:88:94:79:29:2c:c2:b0:d0:f7: d4:8e:6d:1a:e4:25:13:37:ea:46:a8:e8:57:fd:ff: 1c:6d:1b:09:f8:1d:76:ae:1a:ce:64:ba:f8:60:07: ed:8d:97:96:14:af:90:3a:ba:04:23:30:d0:90:8b: 08:eb:7c:0f:80:09:e8:36:a9:88:01:9e:4b:12:36: dd:7b:14:08:e7:f3:9f:46:3a:29:9b:6f:e8:ad:4a: 91:c2:0b:e1:f6:d2:80:9f:75:c9:97:4e:1f:bc:70: a4:99:9b:76:5c:9c:c7:1b:17:6e:ed:68:7d:31:60: ee:2f:54:a9:d8:c8:43:87:3c:d1:8c:fc:c4:d0:e5: 2a:b8:c3:e9:56:0c:57:35:7b:ca:47:01:00:44:a5: d6:58:3b:05:b5:36:f9:2c:c2:c7:81:7a:16:9d:00: 3e:af:fe:7d:97:ed:74:36:d6:3a:d6:e7:e7:4a:14: 22:df:ae:37:22:61:bd:eb:04:9d:bf:44:70:62:b6: 38:4b:9b:75:e8:95:17:64:a0:b5:67:a2:49:09:b7: 1e:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:D4:52:B4:81:D4:77:5D:FB:4C:B9:D6:70:25:88:15:13:B0:50:E3 X509v3 Authority Key Identifier: keyid:82:E4:23:86:CD:01:F8:86:80:DD:30:0D:FB:FF:A2:B6:D2:E7:E4:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D530/5E55F656406411EFA3C5B827C4F9AE02/guQjhs0B-IaA3TAN-_-ittLn5OY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/guQjhs0B-IaA3TAN-_-ittLn5OY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D530/5E55F656406411EFA3C5B827C4F9AE02/guQjhs0B-IaA3TAN-_-ittLn5OY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:07:1a:d5:08:57:08:a5:2f:b1:3a:bf:8e:f9:f7:1c:bc:82: 89:fa:3c:04:48:75:ce:b8:df:13:3a:26:86:f5:cb:b1:a5:8c: 67:2a:e2:a9:e9:d7:29:75:ce:5e:70:b1:d6:bf:5b:c5:fd:85: 49:ad:0d:7b:a5:b0:20:b6:7f:cb:fb:b0:d6:5c:5d:e0:c7:1a: 07:e2:58:3c:b1:b9:d1:9c:46:97:90:66:36:0e:89:1e:38:82: c8:35:77:27:ff:50:d4:78:eb:25:bf:a1:01:82:4d:3f:82:5f: 33:1f:68:38:1e:b1:ae:54:9d:4c:06:d1:08:ae:c7:c3:a3:3c: ac:85:00:6d:0b:52:8a:6a:13:a1:72:28:27:cf:98:32:38:2a: d9:a1:d9:03:ac:cc:3d:6c:86:f4:19:60:5c:43:c8:d1:32:8c: 03:02:ee:4b:66:ee:8d:66:2b:0f:44:97:5e:0c:9a:38:3d:b2: d1:8c:d9:d5:d6:df:46:2c:df:44:66:f1:7f:c3:9f:3d:af:50: d8:fc:31:31:0e:ff:46:35:79:42:fa:d0:a6:a7:48:61:4d:de: 26:c3:5f:74:fc:9e:82:9f:fa:57:b2:cb:f7:e0:40:44:ba:42: 03:0d:87:e5:c9:c0:2c:93:62:03:a1:6a:5f:f7:44:33:20:a3: 4e:48:ba:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ1MzAxMTAvBgNVBAUTKDgyRTQyMzg2Q0QwMUY4ODY4MEREMzAwREZCRkZBMkI2 RDJFN0U0RTYwHhcNMjUwNTMxMDU0NDExWhcNMjUwNjA3MDU0NDExWjAYMRYwFAYD VQQDEw02ODNhOTcyYy1kMDBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnnvITKPv+LTt1YRZq0VAJvdOrWocHKClOJle+RSWa5CWCwhwb9qeKcemAf1N cWU8aGOIlHkpLMKw0PfUjm0a5CUTN+pGqOhX/f8cbRsJ+B12rhrOZLr4YAftjZeW FK+QOroEIzDQkIsI63wPgAnoNqmIAZ5LEjbdexQI5/OfRjopm2/orUqRwgvh9tKA n3XJl04fvHCkmZt2XJzHGxdu7Wh9MWDuL1Sp2MhDhzzRjPzE0OUquMPpVgxXNXvK RwEARKXWWDsFtTb5LMLHgXoWnQA+r/59l+10NtY61ufnShQi3643ImG96wSdv0Rw YrY4S5t16JUXZKC1Z6JJCbce+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG7UUrSB 1Hdd+0y51nAliBUTsFDjMB8GA1UdIwQYMBaAFILkI4bNAfiGgN0wDfv/orbS5+Tm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDUzMC81RTU1RjY1NjQw NjQxMUVGQTNDNUI4MjdDNEY5QUUwMi9ndVFqaHMwQi1JYUEzVEFOLV8taXR0TG41 T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d1UWpoczBCLUlhQTNUQU4tXy1pdHRMbjVPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDUzMC81RTU1RjY1NjQwNjQxMUVGQTNDNUI4MjdDNEY5QUUwMi9ndVFqaHMwQi1J YUEzVEFOLV8taXR0TG41T1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlBxrVCFcIpS+xOr+O+fccvIKJ+jwESHXOuN8TOiaG9cuxpYxnKuKp 6dcpdc5ecLHWv1vF/YVJrQ17pbAgtn/L+7DWXF3gxxoH4lg8sbnRnEaXkGY2Doke OILINXcn/1DUeOslv6EBgk0/gl8zH2g4HrGuVJ1MBtEIrsfDozyshQBtC1KKahOh cignz5gyOCrZodkDrMw9bIb0GWBcQ8jRMowDAu5LZu6NZisPRJdeDJo4PbLRjNnV 1t9GLN9EZvF/w589r1DY/DExDv9GNXlC+tCmp0hhTd4mw190/J6Cn/pXssv34EBE ukIDDYflycAsk2IDoWpf90QzIKNOSLrg -----END CERTIFICATE-----Generated at Sat May 31 16:59:27 2025 by rpki-client