$ rpki-client -vvf rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft File: U73ibYJfZ3-axChvmmdmH1xJtWk.mft (raw, json) Hash identifier: j9MUtYM5iJebMNSIH6q2MbOB6/L42mS8WgljEqg6/A0= Subject key identifier: D6:B8:EB:CD:D6:0D:BC:8D:AA:53:62:9E:3B:FE:67:66:1B:72:CD:6D Authority key identifier: 53:BD:E2:6D:82:5F:67:7F:9A:C4:28:6F:9A:67:66:1F:5C:49:B5:69 Certificate issuer: /CN=A919E1AE/serialNumber=53BDE26D825F677F9AC4286F9A67661F5C49B569 Certificate serial: 0923 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft Manifest number: 08FF Signing time: Fri 30 May 2025 20:40:40 +0000 Manifest this update: Fri 30 May 2025 20:40:39 +0000 Manifest next update: Fri 06 Jun 2025 20:40:39 +0000 Files and hashes: 1: U73ibYJfZ3-axChvmmdmH1xJtWk.crl (hash: NXp9RpDiLVe9BAeiG6i2SzwzyR2nn0CVqrke4u33UmQ=) 2: C8DC6BD8EBF311EEAD0C015FC4F9AE02.roa (hash: 3oeXEUMIEBjXRFoc1DLoAMciKLclx2Q5gkQ/3FvZFh4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.crl rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:40:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2339 (0x923) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E1AE, serialNumber=53BDE26D825F677F9AC4286F9A67661F5C49B569 Validity Not Before: May 30 20:40:39 2025 GMT Not After : Jun 6 20:40:39 2025 GMT Subject: CN=683a17c7-67ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:14:5b:e6:e4:fe:5f:d2:95:7c:4b:06:b6:6f: f8:f1:b7:c9:6e:93:50:ee:9f:48:b7:f2:96:1f:3f: 68:d0:90:7c:17:a2:8f:1b:1b:63:fb:b9:11:f2:75: 39:da:6e:52:ff:d2:20:5a:22:16:a0:33:37:98:c7: a2:9d:78:53:a0:42:40:9d:08:c9:10:ae:bd:5f:9d: 72:09:ba:9a:90:bf:59:43:fe:bc:85:96:5a:fb:00: 40:e9:80:49:9c:2c:22:d7:43:ed:83:f0:3e:f4:15: 0b:b0:44:68:93:5c:41:17:f9:f7:75:5f:3c:20:05: d6:d8:04:5f:c9:01:ea:52:c7:a7:b8:ff:30:13:99: 3f:31:af:47:6f:d2:89:90:3e:c6:6e:06:7a:8a:93: 48:cb:de:a5:d4:a2:77:7c:59:37:30:18:94:f4:20: ff:12:14:5e:20:75:a4:f8:b4:8e:0c:27:f0:be:78: 64:15:20:7d:60:27:bc:8a:2c:ef:dd:bc:01:4a:02: d3:f6:51:15:82:78:e2:53:39:31:94:85:a5:b0:26: ab:80:c2:1e:57:0d:ed:d6:ca:fd:33:57:02:eb:7d: 6d:97:9f:b0:6c:b9:d1:05:54:30:65:70:38:05:5e: bb:8e:45:ec:d3:3c:50:5a:58:d2:7f:93:c8:39:f7: c6:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:B8:EB:CD:D6:0D:BC:8D:AA:53:62:9E:3B:FE:67:66:1B:72:CD:6D X509v3 Authority Key Identifier: keyid:53:BD:E2:6D:82:5F:67:7F:9A:C4:28:6F:9A:67:66:1F:5C:49:B5:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:34:f2:01:12:e9:78:72:9e:10:27:b6:c2:69:e3:a6:ef:5b: e6:91:8e:b9:a3:1a:af:67:f7:71:22:59:43:b0:04:d7:94:62: 37:ae:2c:a6:18:d7:48:de:2c:49:7a:80:45:49:77:d2:f0:39: 76:1e:25:4d:35:74:42:bd:4c:27:3c:05:e7:e4:40:65:03:88: b7:51:7f:69:4b:90:97:5a:76:3d:af:3f:fc:89:62:3d:c6:15: f0:47:4c:62:24:b5:db:46:0b:43:95:fc:b1:3e:38:12:97:c8: 2c:d8:52:64:3f:b1:e1:51:f1:76:4a:69:69:49:36:5c:32:8b: 69:32:a5:08:be:8d:3c:72:00:92:2d:e7:1f:0e:66:0b:fd:a3: 90:64:99:5d:8f:25:64:f1:f1:76:07:c8:16:bf:06:e4:47:57: 79:52:50:ca:3c:0d:c0:5c:03:f8:19:d4:a4:ba:35:52:82:95: 51:6d:05:99:9d:88:18:3d:25:36:f8:f8:dd:4a:d2:a8:ca:fc: ea:57:96:17:aa:9f:c6:09:ce:5b:1e:91:ca:05:79:84:a1:a9: 65:ac:f7:a8:16:33:dc:ea:c8:02:8b:13:2c:3b:5e:2d:4f:58: 12:93:f0:50:93:68:aa:e7:46:e5:72:13:f3:91:7d:4d:41:2e: 61:42:53:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCSMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUUxQUUxMTAvBgNVBAUTKDUzQkRFMjZEODI1RjY3N0Y5QUM0Mjg2RjlBNjc2NjFG NUM0OUI1NjkwHhcNMjUwNTMwMjA0MDM5WhcNMjUwNjA2MjA0MDM5WjAYMRYwFAYD VQQDEw02ODNhMTdjNy02N2ZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnRRb5uT+X9KVfEsGtm/48bfJbpNQ7p9It/KWHz9o0JB8F6KPGxtj+7kR8nU5 2m5S/9IgWiIWoDM3mMeinXhToEJAnQjJEK69X51yCbqakL9ZQ/68hZZa+wBA6YBJ nCwi10Ptg/A+9BULsERok1xBF/n3dV88IAXW2ARfyQHqUsenuP8wE5k/Ma9Hb9KJ kD7GbgZ6ipNIy96l1KJ3fFk3MBiU9CD/EhReIHWk+LSODCfwvnhkFSB9YCe8iizv 3bwBSgLT9lEVgnjiUzkxlIWlsCargMIeVw3t1sr9M1cC631tl5+wbLnRBVQwZXA4 BV67jkXs0zxQWljSf5PIOffGEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNa4683W DbyNqlNinjv+Z2Ybcs1tMB8GA1UdIwQYMBaAFFO94m2CX2d/msQob5pnZh9cSbVp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTFBRS9CNDBCQjFCOEIx MkUxMUVBOUE5NUI1NkFDNEY5QUUwMi9VNzNpYllKZlozLWF4Q2h2bW1kbUgxeEp0 V2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U3M2liWUpmWjMtYXhDaHZtbWRtSDF4SnRXay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTFBRS9CNDBCQjFCOEIxMkUxMUVBOUE5NUI1NkFDNEY5QUUwMi9VNzNpYllKZloz LWF4Q2h2bW1kbUgxeEp0V2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0NPIBEul4cp4QJ7bCaeOm71vmkY65oxqvZ/dxIllDsATXlGI3riym GNdI3ixJeoBFSXfS8Dl2HiVNNXRCvUwnPAXn5EBlA4i3UX9pS5CXWnY9rz/8iWI9 xhXwR0xiJLXbRgtDlfyxPjgSl8gs2FJkP7HhUfF2SmlpSTZcMotpMqUIvo08cgCS LecfDmYL/aOQZJldjyVk8fF2B8gWvwbkR1d5UlDKPA3AXAP4GdSkujVSgpVRbQWZ nYgYPSU2+PjdStKoyvzqV5YXqp/GCc5bHpHKBXmEoallrPeoFjPc6sgCixMsO14t T1gSk/BQk2iq50blchPzkX1NQS5hQlNA -----END CERTIFICATE-----Generated at Sat May 31 17:42:43 2025 by rpki-client