$ rpki-client -vvf rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/votHM7Guikc2t-kTJzPWVAkePSs.mft File: votHM7Guikc2t-kTJzPWVAkePSs.mft (raw, json) Hash identifier: NmLyoOZxyYUNMIFiLWAfFpVhxZXTds4zW8Umrai/aMc= Subject key identifier: 19:EF:20:72:25:67:34:6C:0F:A4:AF:AC:F0:F6:7B:93:DC:AE:4F:AC Authority key identifier: BE:8B:47:33:B1:AE:8A:47:36:B7:E9:13:27:33:D6:54:09:1E:3D:2B Certificate issuer: /CN=A91B23D9/serialNumber=BE8B4733B1AE8A4736B7E9132733D654091E3D2B Certificate serial: 50 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/votHM7Guikc2t-kTJzPWVAkePSs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/votHM7Guikc2t-kTJzPWVAkePSs.mft Manifest number: 4E Signing time: Sun 01 Jun 2025 07:00:13 +0000 Manifest this update: Sun 01 Jun 2025 07:00:12 +0000 Manifest next update: Sun 08 Jun 2025 07:00:12 +0000 Files and hashes: 1: votHM7Guikc2t-kTJzPWVAkePSs.crl (hash: 2E1nWEyjYUuyn59dZ2TLGkUmWgGuRwnkhQR1TSxr4oE=) 2: A3815188C9D211EFB961F44DC4F9AE02.roa (hash: q3EE6bhQvO1jqMvzi5TnaMDMrsSHuVeWmQU0kCxzZeQ=) 3: 63817B3AC9D211EFBC6F934DC4F9AE02.roa (hash: +20O4NUWPTxqKeXepVeDCO/g+GXNSbJwYfdmkDR6B2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/votHM7Guikc2t-kTJzPWVAkePSs.crl rsync://rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/votHM7Guikc2t-kTJzPWVAkePSs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/votHM7Guikc2t-kTJzPWVAkePSs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 07:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 80 (0x50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B23D9, serialNumber=BE8B4733B1AE8A4736B7E9132733D654091E3D2B Validity Not Before: Jun 1 07:00:12 2025 GMT Not After : Jun 8 07:00:12 2025 GMT Subject: CN=683bfa7c-995e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c6:0a:b6:d6:57:04:99:99:b0:c2:8d:db:e3: 35:b6:64:a2:f9:0b:ea:46:88:93:3d:cc:d8:58:b6: 18:20:be:fe:96:2c:af:a3:6a:0b:8d:f6:35:49:f2: 5b:6a:a4:85:99:65:6b:5a:11:49:20:84:12:cd:73: 8f:8d:40:7a:25:68:dc:1f:ce:08:76:88:a9:45:bf: 0a:c5:b6:09:18:cb:88:55:a8:df:b1:df:fb:c4:d7: 12:fa:f0:02:18:44:9f:b7:97:60:70:79:32:49:36: 9d:0e:23:77:87:41:1d:da:8e:2c:53:5b:8d:e3:2b: 49:f5:a9:6f:04:04:2e:2e:db:fb:ba:f7:2d:24:8e: c0:ed:04:30:71:05:2e:11:e5:ed:db:82:31:39:3b: 40:e2:4e:eb:e5:28:b1:95:92:4e:2c:5b:9d:cc:05: 28:60:68:7b:0d:e4:fe:5e:0f:d6:bd:c9:a4:e0:7b: 27:d8:85:05:8f:01:ae:43:bd:6d:18:81:21:35:97: b7:7f:16:b5:9f:cb:ae:3f:d4:18:83:0f:22:1e:e1: e6:de:7b:a4:68:c5:f5:84:49:f8:1b:a6:a6:7a:d5: c0:29:11:c9:98:a6:48:3d:d4:37:d2:09:24:b5:27: a9:6f:cb:1f:89:6a:4a:f2:d8:63:0c:fd:e9:cc:04: 39:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:EF:20:72:25:67:34:6C:0F:A4:AF:AC:F0:F6:7B:93:DC:AE:4F:AC X509v3 Authority Key Identifier: keyid:BE:8B:47:33:B1:AE:8A:47:36:B7:E9:13:27:33:D6:54:09:1E:3D:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/votHM7Guikc2t-kTJzPWVAkePSs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/votHM7Guikc2t-kTJzPWVAkePSs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/votHM7Guikc2t-kTJzPWVAkePSs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:5d:d9:1e:92:74:75:7b:46:8c:7d:27:33:22:92:62:a1:ea: 7f:ef:52:98:50:b9:1c:1c:04:dc:24:75:ab:1f:99:e0:7e:71: bc:84:c1:0f:12:ef:3c:5a:c8:1d:aa:39:24:32:f4:2c:03:9d: 33:63:ba:82:ab:31:47:9d:cf:70:19:65:04:15:5f:b1:67:6c: 8d:05:72:95:7f:7f:bc:4d:94:7f:7a:ff:5a:2b:d8:fb:ec:b2: 19:75:d8:fe:41:88:55:43:8b:da:ef:09:3e:e3:23:26:c6:dc: 99:fc:64:82:3f:b3:0b:01:62:e9:3c:68:22:9c:63:b8:f4:91: c3:8b:77:46:72:98:08:83:1e:17:45:4b:bc:a6:c1:0f:cf:70: 10:af:eb:de:a9:76:79:50:48:21:d4:3f:7f:0c:ab:e2:37:13: 78:47:4c:c9:66:2d:50:4c:13:ea:c0:ca:5f:73:22:3e:e9:65: e3:9a:0a:87:89:71:75:a0:60:e6:60:e2:a3:51:79:e7:aa:6c: 02:d7:8e:fd:2e:74:51:e0:13:48:18:78:1e:d2:44:1d:64:c9: 7a:b6:15:b5:f2:79:46:83:99:f5:01:60:f3:1a:98:7b:10:f7: 5b:cc:2a:37:ab:a8:8f:90:22:07:31:6f:a4:9b:2f:4b:0e:d6: 02:42:be:da -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MjNEOTExMC8GA1UEBRMoQkU4QjQ3MzNCMUFFOEE0NzM2QjdFOTEzMjczM0Q2NTQw OTFFM0QyQjAeFw0yNTA2MDEwNzAwMTJaFw0yNTA2MDgwNzAwMTJaMBgxFjAUBgNV BAMTDTY4M2JmYTdjLTk5NWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtxgq21lcEmZmwwo3b4zW2ZKL5C+pGiJM9zNhYthggvv6WLK+jaguN9jVJ8ltq pIWZZWtaEUkghBLNc4+NQHolaNwfzgh2iKlFvwrFtgkYy4hVqN+x3/vE1xL68AIY RJ+3l2BweTJJNp0OI3eHQR3ajixTW43jK0n1qW8EBC4u2/u69y0kjsDtBDBxBS4R 5e3bgjE5O0DiTuvlKLGVkk4sW53MBShgaHsN5P5eD9a9yaTgeyfYhQWPAa5DvW0Y gSE1l7d/FrWfy64/1BiDDyIe4ebee6RoxfWESfgbpqZ61cApEcmYpkg91DfSCSS1 J6lvyx+Jakry2GMM/enMBDlvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUGe8gciVn NGwPpK+s8PZ7k9yuT6wwHwYDVR0jBBgwFoAUvotHM7Guikc2t+kTJzPWVAkePSsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIyM0Q5LzdCOEJENkNDQzlE MTExRUY5NzVCREM0QkM0RjlBRTAyL3ZvdEhNN0d1aWtjMnQta1RKelBXVkFrZVBT cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdm90SE03R3Vpa2MydC1rVEp6UFdWQWtlUFNzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIy M0Q5LzdCOEJENkNDQzlEMTExRUY5NzVCREM0QkM0RjlBRTAyL3ZvdEhNN0d1aWtj MnQta1RKelBXVkFrZVBTcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAdd2R6SdHV7Rox9JzMikmKh6n/vUphQuRwcBNwkdasfmeB+cbyEwQ8S 7zxayB2qOSQy9CwDnTNjuoKrMUedz3AZZQQVX7FnbI0FcpV/f7xNlH96/1or2Pvs shl12P5BiFVDi9rvCT7jIybG3Jn8ZII/swsBYuk8aCKcY7j0kcOLd0ZymAiDHhdF S7ymwQ/PcBCv696pdnlQSCHUP38Mq+I3E3hHTMlmLVBME+rAyl9zIj7pZeOaCoeJ cXWgYOZg4qNReeeqbALXjv0udFHgE0gYeB7SRB1kyXq2FbXyeUaDmfUBYPMamHsQ 91vMKjerqI+QIgcxb6SbL0sO1gJCvto= -----END CERTIFICATE-----Generated at Mon Jun 2 19:52:33 2025 by rpki-client