$ rpki-client -vvf rpki.apnic.net/member_repository/A91B075B/44A13B4E4C1011ECA5D2A94FC4F9AE02/lT7Cob5wJZ5qL9nOjUg72b0a4z8.mft File: lT7Cob5wJZ5qL9nOjUg72b0a4z8.mft (raw, json) Hash identifier: NPk9Ch6OCX8sWrzGD3JRD7lJjrLhDbpjKBawiBuHR6E= Subject key identifier: 8D:2A:67:EA:0B:CF:63:33:F3:EA:08:70:18:46:18:67:8E:09:31:84 Authority key identifier: 95:3E:C2:A1:BE:70:25:9E:6A:2F:D9:CE:8D:48:3B:D9:BD:1A:E3:3F Certificate issuer: /CN=A91B075B/serialNumber=953EC2A1BE70259E6A2FD9CE8D483BD9BD1AE33F Certificate serial: 046A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lT7Cob5wJZ5qL9nOjUg72b0a4z8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B075B/44A13B4E4C1011ECA5D2A94FC4F9AE02/lT7Cob5wJZ5qL9nOjUg72b0a4z8.mft Manifest number: 0466 Signing time: Sat 31 May 2025 00:20:15 +0000 Manifest this update: Sat 31 May 2025 00:20:15 +0000 Manifest next update: Sat 07 Jun 2025 00:20:15 +0000 Files and hashes: 1: lT7Cob5wJZ5qL9nOjUg72b0a4z8.crl (hash: Sr/vWYLNjSGSBfpgZ8jvbu/eLhgee7P/nXy1puo7xYs=) 2: 85A82A144C1311ECB5708257C4F9AE02.roa (hash: dphkC3ssGJ+iIglODQswGH04mVygF6iWdjby9ZvopB8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B075B/44A13B4E4C1011ECA5D2A94FC4F9AE02/lT7Cob5wJZ5qL9nOjUg72b0a4z8.crl rsync://rpki.apnic.net/member_repository/A91B075B/44A13B4E4C1011ECA5D2A94FC4F9AE02/lT7Cob5wJZ5qL9nOjUg72b0a4z8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lT7Cob5wJZ5qL9nOjUg72b0a4z8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:20:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1130 (0x46a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B075B, serialNumber=953EC2A1BE70259E6A2FD9CE8D483BD9BD1AE33F Validity Not Before: May 31 00:20:15 2025 GMT Not After : Jun 7 00:20:15 2025 GMT Subject: CN=683a4b3f-8d0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:46:14:3a:0d:36:90:0f:eb:bd:f8:fe:cc:28: 1c:08:01:8c:e2:93:3f:e5:f6:cc:98:f4:42:0f:50: 45:96:48:8a:94:d8:a8:53:e0:be:0b:9c:de:05:fc: e8:35:a2:00:71:11:b8:c3:ec:7f:08:98:8d:78:a8: 00:16:1d:57:10:ed:74:e7:01:85:c2:79:13:8a:4b: af:08:11:d7:7d:0f:a5:c6:c9:c0:a5:cd:7d:35:6c: 8a:bd:02:40:fd:2e:c0:82:51:c5:b9:1a:16:ec:ef: 7c:c5:a3:7a:d4:59:11:1c:36:15:dc:67:42:be:74: b6:5b:b1:36:5d:e3:92:9f:2a:38:bd:29:00:75:5a: 7e:f3:38:94:93:67:41:38:42:c7:e2:13:11:01:07: 9e:5e:3c:69:43:f9:3c:67:53:6d:3d:79:43:5a:3d: ee:35:4f:ec:5a:b7:de:87:0f:45:b2:9a:56:7a:b6: d1:69:48:eb:68:9c:1a:6c:15:c5:5e:c6:6a:50:e5: 03:4a:08:e8:e5:fa:fa:c3:4d:d9:f8:ea:ee:8c:a4: 88:ab:6f:1d:f5:42:8b:68:95:0d:8d:25:43:47:47: 75:89:84:ae:06:e6:95:13:42:86:a9:8a:78:13:f4: ae:ed:10:89:66:64:ac:51:d7:a0:69:19:da:38:14: ef:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:2A:67:EA:0B:CF:63:33:F3:EA:08:70:18:46:18:67:8E:09:31:84 X509v3 Authority Key Identifier: keyid:95:3E:C2:A1:BE:70:25:9E:6A:2F:D9:CE:8D:48:3B:D9:BD:1A:E3:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B075B/44A13B4E4C1011ECA5D2A94FC4F9AE02/lT7Cob5wJZ5qL9nOjUg72b0a4z8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lT7Cob5wJZ5qL9nOjUg72b0a4z8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B075B/44A13B4E4C1011ECA5D2A94FC4F9AE02/lT7Cob5wJZ5qL9nOjUg72b0a4z8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:18:05:70:85:c6:da:07:7b:12:64:8b:a5:5f:bc:a1:84:58: fd:49:9f:2d:26:58:82:79:5c:c5:0d:b7:be:4a:b4:0d:a2:1e: 71:10:33:17:9b:d4:de:17:07:9d:1e:4b:e6:d3:64:42:ae:d9: 55:27:ec:bd:80:cf:42:44:57:92:33:00:8f:43:0e:4d:0f:c8: 4c:51:18:00:77:13:8d:34:9a:26:90:3c:86:c6:b1:bc:fd:09: 37:8a:19:d0:7e:0b:fd:ff:7b:1a:cb:25:4d:3f:bc:4d:af:d2: 5b:22:b0:80:87:96:8c:93:4f:33:cc:e6:88:4f:f4:08:86:25: 9f:02:e7:33:61:8a:da:55:a5:4b:1a:4e:2e:09:7f:e9:46:e0: 60:88:f7:77:77:45:0d:28:dc:f6:4b:82:3f:81:c2:9c:98:9f: 09:86:3a:64:9d:00:76:44:8f:e3:17:52:32:c0:18:2f:cc:52: 4c:7f:c7:d9:b0:1d:a4:91:9a:b7:89:66:68:ab:3c:fb:9b:a1: 4e:56:db:3d:74:a4:b1:21:96:28:c9:80:f8:62:72:d3:27:ac: 10:85:7f:1c:fa:b1:c4:1a:69:be:bc:c8:94:e5:fc:7b:b6:d6: 90:8d:aa:76:e7:84:ab:4e:ad:1a:fe:95:13:99:91:f7:46:c2: 13:4a:f3:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA3NUIxMTAvBgNVBAUTKDk1M0VDMkExQkU3MDI1OUU2QTJGRDlDRThENDgzQkQ5 QkQxQUUzM0YwHhcNMjUwNTMxMDAyMDE1WhcNMjUwNjA3MDAyMDE1WjAYMRYwFAYD VQQDEw02ODNhNGIzZi04ZDBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp0YUOg02kA/rvfj+zCgcCAGM4pM/5fbMmPRCD1BFlkiKlNioU+C+C5zeBfzo NaIAcRG4w+x/CJiNeKgAFh1XEO105wGFwnkTikuvCBHXfQ+lxsnApc19NWyKvQJA /S7AglHFuRoW7O98xaN61FkRHDYV3GdCvnS2W7E2XeOSnyo4vSkAdVp+8ziUk2dB OELH4hMRAQeeXjxpQ/k8Z1NtPXlDWj3uNU/sWrfehw9FsppWerbRaUjraJwabBXF XsZqUOUDSgjo5fr6w03Z+OrujKSIq28d9UKLaJUNjSVDR0d1iYSuBuaVE0KGqYp4 E/Su7RCJZmSsUdegaRnaOBTvXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI0qZ+oL z2Mz8+oIcBhGGGeOCTGEMB8GA1UdIwQYMBaAFJU+wqG+cCWeai/Zzo1IO9m9GuM/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDc1Qi80NEExM0I0RTRD MTAxMUVDQTVEMkE5NEZDNEY5QUUwMi9sVDdDb2I1d0paNXFMOW5PalVnNzJiMGE0 ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xUN0NvYjV3Slo1cUw5bk9qVWc3MmIwYTR6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDc1Qi80NEExM0I0RTRDMTAxMUVDQTVEMkE5NEZDNEY5QUUwMi9sVDdDb2I1d0pa NXFMOW5PalVnNzJiMGE0ejgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwGAVwhcbaB3sSZIulX7yhhFj9SZ8tJliCeVzFDbe+SrQNoh5xEDMX m9TeFwedHkvm02RCrtlVJ+y9gM9CRFeSMwCPQw5ND8hMURgAdxONNJomkDyGxrG8 /Qk3ihnQfgv9/3sayyVNP7xNr9JbIrCAh5aMk08zzOaIT/QIhiWfAuczYYraVaVL Gk4uCX/pRuBgiPd3d0UNKNz2S4I/gcKcmJ8JhjpknQB2RI/jF1IywBgvzFJMf8fZ sB2kkZq3iWZoqzz7m6FOVts9dKSxIZYoyYD4YnLTJ6wQhX8c+rHEGmm+vMiU5fx7 ttaQjap254SrTq0a/pUTmZH3RsITSvN7 -----END CERTIFICATE-----Generated at Sat May 31 15:29:58 2025 by rpki-client