$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft File: iHgvgx82npb5eaJYXPJzyRbHtP0.mft (raw, json) Hash identifier: /mXOjp+qJ2OhpBXRjRV3FrQ2UL/G46v2i5Jge5ItomI= Subject key identifier: 10:1D:F8:F8:CF:0E:45:62:BF:80:7B:CE:AE:6A:75:98:1D:F2:B0:BA Authority key identifier: 88:78:2F:83:1F:36:9E:96:F9:79:A2:58:5C:F2:73:C9:16:C7:B4:FD Certificate issuer: /CN=A91B65E6/serialNumber=88782F831F369E96F979A2585CF273C916C7B4FD Certificate serial: 068B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft Manifest number: 067D Signing time: Fri 30 May 2025 22:33:50 +0000 Manifest this update: Fri 30 May 2025 22:33:50 +0000 Manifest next update: Fri 06 Jun 2025 22:33:50 +0000 Files and hashes: 1: iHgvgx82npb5eaJYXPJzyRbHtP0.crl (hash: swupo4ao1GdjftEKlACmd7PVRmx59NPLvAdQs5ynRsc=) 2: 0F425E96346711EFA663CD51C4F9AE02.roa (hash: QRognwJk9AvzC5yneK2dgTuODW0yL1x1QHdbXzDSYZ0=) 3: 2BC67A2A346711EF9EEB0F52C4F9AE02.roa (hash: JEn605s5uj7twYN8vhMjV/lhtaUfRkimlGOAUbH9hfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.crl rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:33:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1675 (0x68b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65E6, serialNumber=88782F831F369E96F979A2585CF273C916C7B4FD Validity Not Before: May 30 22:33:50 2025 GMT Not After : Jun 6 22:33:50 2025 GMT Subject: CN=683a324e-6e7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c7:8f:aa:29:ad:50:2f:92:3e:34:1c:c2:85: 42:d3:c2:bb:12:da:88:81:32:c0:56:a3:77:43:3f: 53:b1:04:7c:26:11:cb:02:c9:db:9c:04:80:f0:aa: ae:69:29:a8:3a:8d:53:01:1e:14:3a:f3:19:0c:5e: 6f:20:72:8c:6d:07:ff:4f:fd:b7:11:f7:52:55:51: 6c:ff:49:0e:99:c5:0a:df:e2:10:73:67:7a:b7:ce: 34:a2:ae:c4:ad:9d:86:e3:5f:f1:75:dc:77:43:52: 38:bd:d5:2a:0a:c9:83:a0:22:26:21:8c:ad:8e:37: 68:97:56:14:1a:43:b8:a0:d8:a1:83:e7:06:4d:4b: 04:34:9e:13:fe:6a:22:ca:a3:83:30:dc:df:ef:3c: 5e:3d:76:55:e2:77:1c:4e:21:69:9f:1a:43:8d:01: 99:06:09:c2:c7:62:8b:91:1b:97:48:7e:2a:5e:ba: 39:ba:45:88:45:4e:2f:45:38:1f:b1:cf:9c:0d:94: de:cf:97:80:8d:4f:a2:6b:21:a2:84:87:c0:df:92: 4d:99:3b:a9:bc:03:1d:ea:4e:a7:30:a9:7f:d6:5d: 6d:5b:dc:b7:3b:26:47:43:76:f0:52:8b:1a:ea:ca: d5:88:d3:3a:76:b4:12:86:e2:8b:ad:6a:39:48:a5: 3a:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:1D:F8:F8:CF:0E:45:62:BF:80:7B:CE:AE:6A:75:98:1D:F2:B0:BA X509v3 Authority Key Identifier: keyid:88:78:2F:83:1F:36:9E:96:F9:79:A2:58:5C:F2:73:C9:16:C7:B4:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:19:53:16:b0:ac:41:90:cf:11:89:ad:ea:3b:af:6f:92:e6: b7:8c:5c:11:d5:81:29:21:17:1a:55:43:d1:87:fd:35:ec:32: 96:c1:25:35:5d:98:80:9b:45:9c:24:43:eb:1e:86:bf:f7:d2: aa:fa:9a:12:75:8d:c7:2f:42:2d:c6:c5:f9:2b:63:77:c6:3e: b8:3b:24:67:f8:65:72:18:0a:85:2e:3f:e2:b7:c4:bd:5e:59: e4:79:9d:a3:3f:ff:6e:35:e2:09:a7:3c:0a:ed:3b:3e:1b:e7: 5c:6b:34:42:ce:8e:7e:2e:35:39:0d:77:6e:d0:f3:99:92:0d: 49:21:de:2a:c8:2a:c0:ca:1a:ab:82:0a:ba:d4:9b:be:21:6a: 8a:16:61:ec:87:58:6b:c3:de:19:58:ad:8a:04:5a:f8:5a:17: c1:c6:4f:c8:5b:1a:ee:2b:49:2c:de:12:0b:df:cd:5a:7a:5a: 40:d9:80:cb:d4:61:6d:1b:0a:21:9b:ec:7a:16:c1:d7:0d:d8: 10:ec:5d:d1:4a:f4:81:c8:9e:49:98:64:e9:c7:9d:b7:8a:2c: 6d:3b:65:ea:47:c0:fb:44:dd:7c:68:71:c0:23:6a:a2:59:76: 72:95:33:35:7c:bd:a7:ac:2b:c3:2b:85:84:78:34:bc:88:c6: f8:4a:04:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1RTYxMTAvBgNVBAUTKDg4NzgyRjgzMUYzNjlFOTZGOTc5QTI1ODVDRjI3M0M5 MTZDN0I0RkQwHhcNMjUwNTMwMjIzMzUwWhcNMjUwNjA2MjIzMzUwWjAYMRYwFAYD VQQDEw02ODNhMzI0ZS02ZTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8ePqimtUC+SPjQcwoVC08K7EtqIgTLAVqN3Qz9TsQR8JhHLAsnbnASA8Kqu aSmoOo1TAR4UOvMZDF5vIHKMbQf/T/23EfdSVVFs/0kOmcUK3+IQc2d6t840oq7E rZ2G41/xddx3Q1I4vdUqCsmDoCImIYytjjdol1YUGkO4oNihg+cGTUsENJ4T/moi yqODMNzf7zxePXZV4nccTiFpnxpDjQGZBgnCx2KLkRuXSH4qXro5ukWIRU4vRTgf sc+cDZTez5eAjU+iayGihIfA35JNmTupvAMd6k6nMKl/1l1tW9y3OyZHQ3bwUosa 6srViNM6drQShuKLrWo5SKU6zQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBAd+PjP DkViv4B7zq5qdZgd8rC6MB8GA1UdIwQYMBaAFIh4L4MfNp6W+XmiWFzyc8kWx7T9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVFNi84N0QxRUQwNjdB ODcxMUVCOTA4RUJENjNDNEY5QUUwMi9pSGd2Z3g4Mm5wYjVlYUpZWFBKenlSYkh0 UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lIZ3ZneDgybnBiNWVhSllYUEp6eVJiSHRQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjVFNi84N0QxRUQwNjdBODcxMUVCOTA4RUJENjNDNEY5QUUwMi9pSGd2Z3g4Mm5w YjVlYUpZWFBKenlSYkh0UDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnGVMWsKxBkM8Ria3qO69vkua3jFwR1YEpIRcaVUPRh/017DKWwSU1 XZiAm0WcJEPrHoa/99Kq+poSdY3HL0ItxsX5K2N3xj64OyRn+GVyGAqFLj/it8S9 XlnkeZ2jP/9uNeIJpzwK7Ts+G+dcazRCzo5+LjU5DXdu0POZkg1JId4qyCrAyhqr ggq61Ju+IWqKFmHsh1hrw94ZWK2KBFr4WhfBxk/IWxruK0ks3hIL381aelpA2YDL 1GFtGwohm+x6FsHXDdgQ7F3RSvSByJ5JmGTpx523iixtO2XqR8D7RN18aHHAI2qi WXZylTM1fL2nrCvDK4WEeDS8iMb4SgQz -----END CERTIFICATE-----Generated at Sat May 31 16:33:12 2025 by rpki-client