$ rpki-client -vvf rpki.apnic.net/member_repository/A91C064C/683C9D98672D11EE9C809F12C4F9AE02/r8MXR2fk6vxN7g9JJaHGXNxZ-io.mft File: r8MXR2fk6vxN7g9JJaHGXNxZ-io.mft (raw, json) Hash identifier: nY048yQ6H5kBlgluit4aB2FZUOY9Izff+P5U//Gkkzo= Subject key identifier: 33:01:52:E8:DD:47:65:BB:20:FC:96:91:B2:DC:7F:3F:17:4F:A7:5C Authority key identifier: AF:C3:17:47:67:E4:EA:FC:4D:EE:0F:49:25:A1:C6:5C:DC:59:FA:2A Certificate issuer: /CN=A91C064C/serialNumber=AFC3174767E4EAFC4DEE0F4925A1C65CDC59FA2A Certificate serial: 0138 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r8MXR2fk6vxN7g9JJaHGXNxZ-io.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C064C/683C9D98672D11EE9C809F12C4F9AE02/r8MXR2fk6vxN7g9JJaHGXNxZ-io.mft Manifest number: 0134 Signing time: Sat 31 May 2025 04:08:53 +0000 Manifest this update: Sat 31 May 2025 04:08:53 +0000 Manifest next update: Sat 07 Jun 2025 04:08:53 +0000 Files and hashes: 1: r8MXR2fk6vxN7g9JJaHGXNxZ-io.crl (hash: pR8sngLpIU+oKmTF90Bd8KCDaZSvPqBPev5YUwNtiZc=) 2: 583FA34E672E11EEB31AC02CC4F9AE02.roa (hash: UDY5XZZpboPOe4PuKIjoZcv8Z+maPhsL8V3N8OWNJu4=) 3: 810B798472CC11EEA1A5574DC4F9AE02.roa (hash: QxDb9utS5i/B8urK72tRRFJFcT0cVUwBUSamNqzNfT0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C064C/683C9D98672D11EE9C809F12C4F9AE02/r8MXR2fk6vxN7g9JJaHGXNxZ-io.crl rsync://rpki.apnic.net/member_repository/A91C064C/683C9D98672D11EE9C809F12C4F9AE02/r8MXR2fk6vxN7g9JJaHGXNxZ-io.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r8MXR2fk6vxN7g9JJaHGXNxZ-io.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:08:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 312 (0x138) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C064C, serialNumber=AFC3174767E4EAFC4DEE0F4925A1C65CDC59FA2A Validity Not Before: May 31 04:08:53 2025 GMT Not After : Jun 7 04:08:53 2025 GMT Subject: CN=683a80d5-93f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:07:22:94:38:99:3b:fa:c9:e7:c3:9e:77:8e: 26:61:ef:5d:d2:e6:6c:aa:1c:38:c9:19:9c:9a:88: 7f:44:0f:5f:65:e1:a5:51:93:91:0b:ce:fe:ab:42: 2b:e0:0b:fa:97:1c:3b:43:83:67:34:3e:db:3b:f2: eb:2a:36:f0:b7:be:87:93:ad:d4:d3:9b:57:95:d2: d3:c0:6e:75:00:5e:ee:86:45:1f:f0:13:49:00:e6: bd:de:97:f2:8c:f1:6b:7c:e5:3a:b9:3d:8d:01:e9: 9e:ed:c6:3a:95:93:2c:b2:84:67:49:e8:18:fe:4d: 31:17:41:75:a2:ee:02:ea:a4:33:02:2c:95:5a:fc: 6f:02:5a:54:72:46:4e:4c:24:f3:90:88:69:9c:c1: b8:69:5a:ce:c2:1b:c0:b7:44:0d:8f:68:ae:21:f4: 35:99:96:3e:7a:14:c7:4b:89:c9:d7:bb:eb:52:ff: e5:56:1a:8b:80:bf:cb:99:de:7f:51:03:9b:72:52: c6:3a:76:88:b3:a4:66:d3:82:f9:51:dc:7e:dc:62: 99:97:2c:b1:73:63:b3:f0:fd:42:b3:27:26:30:2f: 7c:7c:71:78:dd:4d:fe:54:c2:60:fb:da:35:49:65: 87:4f:5e:45:97:4e:e4:8a:dd:12:a7:c9:7f:76:01: ab:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:01:52:E8:DD:47:65:BB:20:FC:96:91:B2:DC:7F:3F:17:4F:A7:5C X509v3 Authority Key Identifier: keyid:AF:C3:17:47:67:E4:EA:FC:4D:EE:0F:49:25:A1:C6:5C:DC:59:FA:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C064C/683C9D98672D11EE9C809F12C4F9AE02/r8MXR2fk6vxN7g9JJaHGXNxZ-io.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r8MXR2fk6vxN7g9JJaHGXNxZ-io.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C064C/683C9D98672D11EE9C809F12C4F9AE02/r8MXR2fk6vxN7g9JJaHGXNxZ-io.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:88:d9:9b:47:b0:93:2e:04:a5:d8:7e:31:53:82:7f:8f:d0: 31:b5:d0:75:67:ba:97:bb:a0:e8:de:cc:32:33:55:f8:d5:50: ea:a9:db:47:c6:38:1b:b9:bf:59:95:8a:cb:48:fb:b4:cb:a1: 99:a1:1d:be:b4:df:92:58:3c:ee:47:ab:49:d2:59:01:b6:71: 3a:78:c6:32:89:2f:7f:ce:ae:20:01:f6:cf:e6:ee:bc:8d:fe: 33:ec:36:bf:ec:a4:02:50:21:66:fc:f9:c3:66:03:c8:9a:c0: e1:20:f6:d2:d8:2b:1b:2c:ed:a4:30:f8:65:3f:fb:64:14:81: b6:8d:b6:75:c1:53:bc:1e:6e:a7:26:b2:26:c0:43:7c:8d:97: 34:51:27:29:ee:4e:97:7c:fc:75:42:ca:5e:66:89:c7:21:c7: 70:75:49:db:aa:a9:76:69:53:20:1d:92:53:39:25:f5:21:e9: ed:1b:c5:12:01:9c:57:f3:1f:d5:72:0c:f8:ea:39:54:6a:d8: 8e:2a:7e:2e:26:30:44:9f:6f:f0:06:5f:73:59:93:ac:ad:ce: d6:92:e9:44:58:8a:89:d3:7b:03:7d:64:3d:0d:c8:ab:61:93: b4:c7:20:1c:e8:e8:4c:46:24:f1:99:89:7c:6e:62:9a:d2:be: e4:ac:63:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzA2NEMxMTAvBgNVBAUTKEFGQzMxNzQ3NjdFNEVBRkM0REVFMEY0OTI1QTFDNjVD REM1OUZBMkEwHhcNMjUwNTMxMDQwODUzWhcNMjUwNjA3MDQwODUzWjAYMRYwFAYD VQQDEw02ODNhODBkNS05M2Y0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnAcilDiZO/rJ58Oed44mYe9d0uZsqhw4yRmcmoh/RA9fZeGlUZORC87+q0Ir 4Av6lxw7Q4NnND7bO/LrKjbwt76Hk63U05tXldLTwG51AF7uhkUf8BNJAOa93pfy jPFrfOU6uT2NAeme7cY6lZMssoRnSegY/k0xF0F1ou4C6qQzAiyVWvxvAlpUckZO TCTzkIhpnMG4aVrOwhvAt0QNj2iuIfQ1mZY+ehTHS4nJ17vrUv/lVhqLgL/Lmd5/ UQObclLGOnaIs6Rm04L5Udx+3GKZlyyxc2Oz8P1CsycmMC98fHF43U3+VMJg+9o1 SWWHT15Fl07kit0Sp8l/dgGrWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDMBUujd R2W7IPyWkbLcfz8XT6dcMB8GA1UdIwQYMBaAFK/DF0dn5Or8Te4PSSWhxlzcWfoq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDY0Qy82ODNDOUQ5ODY3 MkQxMUVFOUM4MDlGMTJDNEY5QUUwMi9yOE1YUjJmazZ2eE43ZzlKSmFIR1hOeFot aW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I4TVhSMmZrNnZ4TjdnOUpKYUhHWE54Wi1pby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDY0Qy82ODNDOUQ5ODY3MkQxMUVFOUM4MDlGMTJDNEY5QUUwMi9yOE1YUjJmazZ2 eE43ZzlKSmFIR1hOeFotaW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBliNmbR7CTLgSl2H4xU4J/j9AxtdB1Z7qXu6Do3swyM1X41VDqqdtH xjgbub9ZlYrLSPu0y6GZoR2+tN+SWDzuR6tJ0lkBtnE6eMYyiS9/zq4gAfbP5u68 jf4z7Da/7KQCUCFm/PnDZgPImsDhIPbS2CsbLO2kMPhlP/tkFIG2jbZ1wVO8Hm6n JrImwEN8jZc0UScp7k6XfPx1QspeZonHIcdwdUnbqql2aVMgHZJTOSX1IentG8US AZxX8x/Vcgz46jlUatiOKn4uJjBEn2/wBl9zWZOsrc7WkulEWIqJ03sDfWQ9Dcir YZO0xyAc6OhMRiTxmYl8bmKa0r7krGNS -----END CERTIFICATE-----Generated at Sat May 31 16:38:58 2025 by rpki-client