$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.mft File: 09eD7kxpu1Bj-1z1smKLx77DdIo.mft (raw, json) Hash identifier: vTcJXmH04xlLQb4wVMEt7tg0tn75fY/jr+tQGIp3GEk= Subject key identifier: 5E:47:2D:25:75:F2:D6:15:8E:16:08:A0:54:07:C4:8F:DC:FB:92:3B Authority key identifier: D3:D7:83:EE:4C:69:BB:50:63:FB:5C:F5:B2:62:8B:C7:BE:C3:74:8A Certificate issuer: /CN=A91B9A77/serialNumber=D3D783EE4C69BB5063FB5CF5B2628BC7BEC3748A Certificate serial: 81 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/09eD7kxpu1Bj-1z1smKLx77DdIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.mft Manifest number: 81 Signing time: Sun 01 Jun 2025 01:51:12 +0000 Manifest this update: Sun 01 Jun 2025 01:51:12 +0000 Manifest next update: Sun 08 Jun 2025 01:51:12 +0000 Files and hashes: 1: 09eD7kxpu1Bj-1z1smKLx77DdIo.crl (hash: GJCg+DjLoJjTR7ECALYX140kfjk2TFt5HhtSrJZxVAc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.crl rsync://rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/09eD7kxpu1Bj-1z1smKLx77DdIo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 01:51:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 129 (0x81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9A77, serialNumber=D3D783EE4C69BB5063FB5CF5B2628BC7BEC3748A Validity Not Before: Jun 1 01:51:12 2025 GMT Not After : Jun 8 01:51:12 2025 GMT Subject: CN=683bb210-dfd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:6c:4c:fe:ce:9b:8a:a0:78:f4:94:85:d4:16: af:5c:f2:41:64:ea:3e:01:17:f4:9e:d7:d7:f2:d0: 04:cf:bb:b6:62:82:61:c9:fe:42:70:49:c3:0c:97: 63:94:d8:f6:5a:99:c1:28:b7:31:8f:70:d5:7f:b2: 10:1f:b0:6a:80:77:19:80:6d:b0:52:4c:e2:62:24: 14:ec:f2:ac:06:38:e5:e6:5a:6c:d3:06:d2:da:b8: 2d:3e:2a:25:ab:80:54:1e:1c:52:f4:cc:a7:34:b7: e6:10:05:84:d0:08:e7:da:7b:c8:64:e4:fa:9d:b8: 79:12:81:dd:d4:c8:d3:7c:53:f9:26:a7:92:72:b1: ab:6d:f8:af:0c:63:f3:6f:7d:34:dc:b9:9f:b2:69: e3:03:93:32:6c:ad:13:18:30:e1:66:1b:ef:f7:78: aa:7d:ac:d6:ba:e4:7f:c5:79:6b:f8:37:6f:15:4e: 78:f1:48:cf:7e:50:68:7a:55:a4:3d:11:e4:88:86: d0:6e:98:ba:61:2a:56:36:83:26:07:0a:8d:b6:12: 4f:0f:71:c8:5a:a3:44:13:85:43:49:5f:2b:db:60: db:65:dd:35:6c:71:77:04:d4:40:af:72:61:64:92: 9b:42:52:8a:01:57:da:23:0b:07:b4:aa:78:99:c6: 3a:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:47:2D:25:75:F2:D6:15:8E:16:08:A0:54:07:C4:8F:DC:FB:92:3B X509v3 Authority Key Identifier: keyid:D3:D7:83:EE:4C:69:BB:50:63:FB:5C:F5:B2:62:8B:C7:BE:C3:74:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/09eD7kxpu1Bj-1z1smKLx77DdIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:40:0d:1c:00:65:c5:64:b7:62:58:43:7c:06:6f:cb:34:c8: 82:0c:00:35:a7:b7:ef:18:9a:bd:af:a9:72:bc:73:bb:d0:43: 00:33:3e:f7:86:ef:e4:e2:96:dd:90:5d:a8:1c:0e:f5:95:23: a0:d4:1e:90:ba:16:6e:7d:cc:ba:1a:3b:38:d3:e6:7c:43:50: d5:44:c2:d5:62:41:ce:d1:6a:66:78:39:4e:da:81:e7:61:62: 19:fe:bb:76:8a:79:40:80:19:00:6a:38:c3:9a:7c:cb:49:57: 6f:49:94:f1:dc:73:45:fd:30:f9:78:9c:81:06:85:d4:ae:0f: 5b:42:3a:1a:4c:1e:77:a3:96:1e:c2:c7:e7:e7:43:59:44:86: 39:78:c5:08:02:3f:28:45:f0:72:2d:31:89:3c:f2:c9:18:bd: 88:3d:0a:71:6c:00:86:62:60:1c:e0:74:f3:d0:0c:f2:e1:56: 3b:02:82:6b:e8:41:37:04:90:d7:8f:4e:83:15:dd:ef:40:90: 45:96:e6:d6:d5:81:da:8b:ba:86:5f:f1:fd:52:80:b0:79:43: ab:4b:96:3a:19:5f:ec:50:1f:03:68:5a:6e:57:f4:45:3b:9d: a7:8f:69:0b:da:94:6e:d5:c9:c7:cf:e5:2f:20:1a:71:8e:ef: 04:af:e7:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlBNzcxMTAvBgNVBAUTKEQzRDc4M0VFNEM2OUJCNTA2M0ZCNUNGNUIyNjI4QkM3 QkVDMzc0OEEwHhcNMjUwNjAxMDE1MTEyWhcNMjUwNjA4MDE1MTEyWjAYMRYwFAYD VQQDEw02ODNiYjIxMC1kZmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0GxM/s6biqB49JSF1BavXPJBZOo+ARf0ntfX8tAEz7u2YoJhyf5CcEnDDJdj lNj2WpnBKLcxj3DVf7IQH7BqgHcZgG2wUkziYiQU7PKsBjjl5lps0wbS2rgtPiol q4BUHhxS9MynNLfmEAWE0Ajn2nvIZOT6nbh5EoHd1MjTfFP5JqeScrGrbfivDGPz b3003LmfsmnjA5MybK0TGDDhZhvv93iqfazWuuR/xXlr+DdvFU548UjPflBoelWk PRHkiIbQbpi6YSpWNoMmBwqNthJPD3HIWqNEE4VDSV8r22DbZd01bHF3BNRAr3Jh ZJKbQlKKAVfaIwsHtKp4mcY6zwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF5HLSV1 8tYVjhYIoFQHxI/c+5I7MB8GA1UdIwQYMBaAFNPXg+5MabtQY/tc9bJii8e+w3SK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUE3Ny9BQjg1MzQ0MDdB M0YxMUVGQTFDMEUwMTZDNEY5QUUwMi8wOWVEN2t4cHUxQmotMXoxc21LTHg3N0Rk SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzA5ZUQ3a3hwdTFCai0xejFzbUtMeDc3RGRJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUE3Ny9BQjg1MzQ0MDdBM0YxMUVGQTFDMEUwMTZDNEY5QUUwMi8wOWVEN2t4cHUx QmotMXoxc21LTHg3N0RkSW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUQA0cAGXFZLdiWEN8Bm/LNMiCDAA1p7fvGJq9r6lyvHO70EMAMz73 hu/k4pbdkF2oHA71lSOg1B6QuhZufcy6Gjs40+Z8Q1DVRMLVYkHO0WpmeDlO2oHn YWIZ/rt2inlAgBkAajjDmnzLSVdvSZTx3HNF/TD5eJyBBoXUrg9bQjoaTB53o5Ye wsfn50NZRIY5eMUIAj8oRfByLTGJPPLJGL2IPQpxbACGYmAc4HTz0Azy4VY7AoJr 6EE3BJDXj06DFd3vQJBFlubW1YHai7qGX/H9UoCweUOrS5Y6GV/sUB8DaFpuV/RF O52nj2kL2pRu1cnHz+UvIBpxju8Er+f0 -----END CERTIFICATE-----Generated at Mon Jun 2 20:18:06 2025 by rpki-client