$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft File: h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft (raw, json) Hash identifier: QzIOzBr/bhIHeGITX2SUdDVflDOBUM+ieAKS90GJxFQ= Subject key identifier: CA:FA:03:C5:61:B4:9D:B6:35:A5:D8:BC:16:1C:5B:8F:FA:AF:B3:E9 Authority key identifier: 87:69:B9:52:F9:C8:00:67:57:92:9F:06:99:7C:DE:5B:1E:44:8F:14 Certificate issuer: /CN=A91A5030/serialNumber=8769B952F9C8006757929F06997CDE5B1E448F14 Certificate serial: 260C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft Manifest number: 25F9 Signing time: Fri 30 May 2025 15:52:27 +0000 Manifest this update: Fri 30 May 2025 15:52:26 +0000 Manifest next update: Fri 06 Jun 2025 15:52:26 +0000 Files and hashes: 1: h2m5UvnIAGdXkp8GmXzeWx5EjxQ.crl (hash: U3I236qGm6ELbj4YMD8A7qR7TzQGainXU69WQH101HE=) 2: 764601EE6A7A11EFAF10EC37C4F9AE02.roa (hash: wlnyKHrlK/WWGM/sWHlA6+OjLcmqJ1sU/DSuQx9lYJQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.crl rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 15:52:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9740 (0x260c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5030, serialNumber=8769B952F9C8006757929F06997CDE5B1E448F14 Validity Not Before: May 30 15:52:26 2025 GMT Not After : Jun 6 15:52:26 2025 GMT Subject: CN=6839d43a-0783 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:24:5c:1f:a6:dc:d1:d8:84:01:65:34:10:72: 36:45:83:31:1f:ad:85:fb:52:8e:b7:b6:38:d7:33: 7f:90:e6:10:82:f3:4a:ef:5b:69:90:08:32:fc:cd: 1a:81:03:45:8d:1e:de:77:7a:20:41:1b:d7:82:88: 29:45:d2:82:2e:b9:b0:20:a6:08:f3:08:b2:7a:51: 6f:db:ca:a7:6b:cb:3e:64:20:30:82:58:7d:76:c6: 01:27:fb:d2:ef:94:24:b0:e6:eb:ae:c6:eb:da:9b: 6f:33:55:84:a0:d4:24:8c:29:73:85:1a:6c:6e:6e: ce:0e:39:5b:c6:1c:26:13:9a:df:50:ea:eb:99:be: 80:57:8b:87:85:e2:c1:73:18:be:26:0a:f0:c6:f0: e8:6a:1b:50:b1:28:eb:91:b2:6e:82:97:be:b0:60: 44:de:42:94:35:92:50:6d:53:7a:c8:a9:7b:12:0f: ee:35:7b:58:be:0b:94:52:d5:26:78:9c:11:f6:47: db:2b:0d:93:27:6a:88:84:85:5e:f8:7d:49:24:5b: fa:7f:72:56:d0:6b:ef:b8:f7:58:4c:2b:2f:14:ac: 63:82:8f:9c:8c:74:11:76:59:2f:d4:2f:f2:43:61: 50:e0:c1:5f:a3:e6:95:ed:0d:52:d0:9e:cb:ba:3b: df:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:FA:03:C5:61:B4:9D:B6:35:A5:D8:BC:16:1C:5B:8F:FA:AF:B3:E9 X509v3 Authority Key Identifier: keyid:87:69:B9:52:F9:C8:00:67:57:92:9F:06:99:7C:DE:5B:1E:44:8F:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:55:a9:1b:a4:1c:23:cd:70:bb:e3:d9:0b:23:b4:91:2d:3f: 69:28:f5:42:55:63:ac:c8:96:3f:53:f0:d7:f7:e4:5d:9e:22: 20:26:49:20:94:d4:99:fd:85:77:d1:de:69:2a:2f:1f:e6:d2: 6e:af:47:56:4a:cd:92:e9:9a:a1:9c:e2:20:c6:91:6e:de:9d: 3e:2d:a4:bc:f2:88:30:13:f6:c2:65:80:15:d0:b0:8a:e0:e4: 1b:5c:83:98:28:c1:b8:7f:fe:64:6a:61:56:9b:a7:f4:de:b1: a6:55:be:e5:65:5b:d7:e7:38:94:8f:42:28:29:81:b1:28:6c: d5:29:70:22:97:e1:ce:f5:c2:8e:00:a6:80:29:c2:df:9b:2d: 5d:27:d0:23:64:68:8b:79:a7:24:39:d4:f3:63:2b:e4:6c:13: 4a:9d:67:ee:ff:56:10:f2:25:bf:c9:2c:1a:96:54:b3:0c:cd: ae:76:42:59:ec:36:2b:83:0c:f3:e5:b8:ea:40:9f:2e:24:90: 51:1e:2d:63:0b:d5:00:90:87:5f:7d:45:b9:4c:0e:2e:29:e9: 62:67:dc:64:5b:c2:87:ca:a4:70:03:f3:d2:f7:c1:d3:d0:fb: e6:2d:5c:1e:59:a3:e6:35:ac:be:49:c0:3a:33:d0:17:fe:22: 29:41:45:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJgwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUwMzAxMTAvBgNVBAUTKDg3NjlCOTUyRjlDODAwNjc1NzkyOUYwNjk5N0NERTVC MUU0NDhGMTQwHhcNMjUwNTMwMTU1MjI2WhcNMjUwNjA2MTU1MjI2WjAYMRYwFAYD VQQDEw02ODM5ZDQzYS0wNzgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1iRcH6bc0diEAWU0EHI2RYMxH62F+1KOt7Y41zN/kOYQgvNK71tpkAgy/M0a gQNFjR7ed3ogQRvXgogpRdKCLrmwIKYI8wiyelFv28qna8s+ZCAwglh9dsYBJ/vS 75QksObrrsbr2ptvM1WEoNQkjClzhRpsbm7ODjlbxhwmE5rfUOrrmb6AV4uHheLB cxi+JgrwxvDoahtQsSjrkbJugpe+sGBE3kKUNZJQbVN6yKl7Eg/uNXtYvguUUtUm eJwR9kfbKw2TJ2qIhIVe+H1JJFv6f3JW0GvvuPdYTCsvFKxjgo+cjHQRdlkv1C/y Q2FQ4MFfo+aV7Q1S0J7LujvfYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMr6A8Vh tJ22NaXYvBYcW4/6r7PpMB8GA1UdIwQYMBaAFIdpuVL5yABnV5KfBpl83lseRI8U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTAzMC9DRTZBM0YxMEZE MkExMUU0Qjc0RkVBNDJDNEY5QUUwMi9oMm01VXZuSUFHZFhrcDhHbVh6ZVd4NUVq eFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gybTVVdm5JQUdkWGtwOEdtWHplV3g1RWp4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTAzMC9DRTZBM0YxMEZEMkExMUU0Qjc0RkVBNDJDNEY5QUUwMi9oMm01VXZuSUFH ZFhrcDhHbVh6ZVd4NUVqeFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeVakbpBwjzXC749kLI7SRLT9pKPVCVWOsyJY/U/DX9+RdniIgJkkg lNSZ/YV30d5pKi8f5tJur0dWSs2S6ZqhnOIgxpFu3p0+LaS88ogwE/bCZYAV0LCK 4OQbXIOYKMG4f/5kamFWm6f03rGmVb7lZVvX5ziUj0IoKYGxKGzVKXAil+HO9cKO AKaAKcLfmy1dJ9AjZGiLeackOdTzYyvkbBNKnWfu/1YQ8iW/ySwallSzDM2udkJZ 7DYrgwzz5bjqQJ8uJJBRHi1jC9UAkIdffUW5TA4uKeliZ9xkW8KHyqRwA/PS98HT 0PvmLVweWaPmNay+ScA6M9AX/iIpQUVt -----END CERTIFICATE-----Generated at Sat May 31 16:49:12 2025 by rpki-client