$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft File: rdlBjw-bVfO3N2oJPbEdutOu_sg.mft (raw, json) Hash identifier: JD/KH7P7LEszcsoHmRtdFUKQnp6ZMxfWdik1Ij9GVz4= Subject key identifier: 51:B1:0B:36:F0:F4:5A:49:B2:6D:6F:56:3C:6D:BC:F7:B1:60:40:03 Authority key identifier: AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 Certificate issuer: /CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Certificate serial: 0EEF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft Manifest number: 0DE7 Signing time: Fri 04 Apr 2025 18:10:32 +0000 Manifest this update: Fri 04 Apr 2025 18:10:31 +0000 Manifest next update: Fri 11 Apr 2025 18:10:31 +0000 Files and hashes: 1: rdlBjw-bVfO3N2oJPbEdutOu_sg.crl (hash: j5KJ9vf5wzBLOBY0s6DTTnsb//CaRxl40s5I7CqJv8U=) 2: C735E33E1CB511EAB25B4768C4F9AE02.roa (hash: gyfd8yfpcrsdUm362X9/UdNM3mZBfttbTMqza0Depgs=) 3: 59C7E67C77CC11EAB764ED34C4F9AE02.roa (hash: EzmlYDIYm1xOfkY9Xnj3Z3SdpIMp5IBIa3y1OFN4eK4=) 4: 8C9FFE4C0F2F11EE85C26C11C4F9AE02.roa (hash: j4EoNG6mPHnfhB1j42qxfNdNciMiEtrw2eJw4okWk0c=) 5: 1B88FC66823D11EC8E3CB427C4F9AE02.roa (hash: mn3sE8XpKvVWd9UbJMQ1OKNZuj9ls9xZNaLI7yAeig4=) 6: 2C3F5F0C1CB711EAAA03506DC4F9AE02.roa (hash: bNiaBxLSaec5WOSjMopZEcGaxVMAzUvwIFjDNwtzIXo=) 7: E79C4936420D11EC89D7C163C4F9AE02.roa (hash: GZEHbZPKjeuR0ecqQm5rnrjDlAtA7+UPoWqGJrdoIkc=) 8: 5767371863FE11ED9287A15DC4F9AE02.roa (hash: oY+VNIYm0USRIF9LRQZNByIqrfk1xxWzvrlMrRPwh5M=) 9: B3B97C46510311EDA562C34DC4F9AE02.roa (hash: jtYt/pU+ooAIkmhjTmjyuCh451/edjbb8L7BPLMNm/A=) 10: 0134DE8CC77211EC9B377B2DC4F9AE02.roa (hash: ZJYPWa1zVWtxLs6YCjscQz9YmQ7dtlau1Mnxy99zbcE=) 11: 849EBBA60CCA11ED97820077C4F9AE02.roa (hash: GSV2og2vZfzpYKFvoDWTGBKAz8dr3rumZNKGGO3jHY0=) 12: B86FBE4A2E3611EB84E66039C4F9AE02.roa (hash: sLEtAwDgKICVdyB7EW9vv5iaJ4c0aSu+tPvZcmtVPKg=) 13: AB2FDD4CA56911EA8F159D7BC4F9AE02.roa (hash: 5W1NfRExr5L2qQL5H136NrVKGoHwAdTpjf3o+jUw4fM=) 14: 27F85F401B0811EEA3313C43C4F9AE02.roa (hash: lKd14RCSyU2vrCrtMJxPKeMYKMqLc77HXu+4PUEXtJI=) 15: 8B0EC9621D0611EDBAB65333C4F9AE02.roa (hash: hncV0VkKM0GHDpxNiR5xutYPqnkMPO9a8qqBVzFUIdw=) 16: 3949DB48056711F09B0C9329C4F9AE02.roa (hash: U4MBST0cKb6RFa7OBRmsAZWClvdETmVq86pgqwAZx3A=) 17: FB9C6A1A77CA11EA95ECC830C4F9AE02.roa (hash: Skuyc2fGs1BUBmTdceynpQf5LoH1L9ZLvXMgJ7JollU=) 18: 624A8CB0A75211EDB46F8967C4F9AE02.roa (hash: H2lEK0K0kQYeTrVqMlmr1093uk7p/5P20OC6SGdaiQI=) 19: 640C18A214AD11EEAA685687C4F9AE02.roa (hash: rUC7HAYZSDdTVk9lHvd/Wl7kYoqQUYqgnEKO2kEnvDw=) 20: DA05FC5C58A311EC952D4D56C4F9AE02.roa (hash: FQj+ZVLFAzitzpiwqDx7ibMG/ct51yOTa3qwsRqg/wY=) 21: 706D3EA4140211EB87D7320FC4F9AE02.roa (hash: a/CArtNqj+X7FLzknDiVLBMQF895RFRrNOFXjFmjzNk=) 22: AE9742429B5711EB8E3BEB19C4F9AE02.roa (hash: IgmSu1xooZkjMSIy5UaMn0KJuSc5PeG/UAY2iz4v00A=) 23: 5A4C001A77CC11EAB764ED34C4F9AE02.roa (hash: ynz+ZXVYon6qCCwSg68HnlbJgsz7oHMRryvXyKUGv9g=) 24: 6ACBF170CC4C11ED8B54A36FC4F9AE02.roa (hash: PNn4hloLWsO3US5KtLsv/gJGCuFiAV7h2ZsPkySZuPM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:10:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3823 (0xeef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0 Validity Not Before: Apr 4 18:10:31 2025 GMT Not After : Apr 11 18:10:31 2025 GMT Subject: CN=67f02098-6637 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:b0:9a:ff:4d:b1:56:07:b0:6e:f4:aa:f6:91: de:60:82:7a:4a:dc:34:fb:52:a9:14:61:5c:00:1c: b9:89:c5:a1:6c:b6:af:cb:00:34:d8:2f:c0:3a:43: c4:cf:fe:1f:e9:99:cd:7e:11:6c:01:4d:6e:5c:df: 1e:0c:6a:b3:80:8c:b2:9e:85:bf:06:9a:d6:dd:0e: 52:db:37:f7:8f:5d:fe:b8:2c:ae:4a:63:5d:30:77: 65:5c:4f:c3:cd:c1:29:f0:67:f2:27:32:5f:91:a2: a3:a9:dc:00:7b:e1:2c:c0:3f:8a:3f:b2:39:7a:75: b8:ef:da:6a:50:53:03:05:15:90:25:41:66:a2:96: 2f:27:6e:78:87:93:d1:ee:bb:24:f9:56:29:b9:f5: d7:3a:c7:7b:21:e3:7a:c5:dc:64:33:44:28:65:a4: a7:69:9e:a5:03:98:c1:b2:47:aa:94:79:87:16:cf: 0f:b2:cf:78:d9:70:9c:22:60:e4:33:ef:dc:bc:3e: c9:3d:c4:a4:66:d8:08:55:f9:a3:3e:fa:12:df:ef: 52:6e:a7:f1:b2:e0:5c:04:5d:44:cf:13:91:ec:df: 0e:b8:63:16:87:46:d8:8d:2e:b4:2d:0c:29:5f:9a: 56:2d:c0:4f:6b:af:19:9f:83:bb:41:c1:f6:10:e2: e9:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:B1:0B:36:F0:F4:5A:49:B2:6D:6F:56:3C:6D:BC:F7:B1:60:40:03 X509v3 Authority Key Identifier: keyid:AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:2d:fa:d0:09:ba:02:99:24:3b:cb:86:0f:09:25:30:6b:57: d9:12:dd:74:e2:7b:c9:f9:5d:e0:92:f8:ed:00:b1:83:20:5e: 5b:b2:c8:55:a3:fa:3e:ba:54:33:b9:1b:57:b8:e2:f3:a8:28: b3:fc:4b:5b:fc:43:ad:0c:d2:ac:06:0a:81:a3:53:84:42:72: ec:a8:a9:94:76:e1:f2:1c:50:a9:78:23:21:f0:e1:e8:79:c0: f6:ef:be:8b:a6:6e:dc:53:9b:a8:62:b6:88:e9:6b:93:37:56: bd:4c:77:77:cc:e1:85:0c:50:d3:23:53:32:5d:a3:d5:2d:9c: 7c:fd:f6:6e:c2:13:68:b4:08:1d:d4:83:1c:25:9f:70:16:fa: 29:22:75:d9:f5:9c:03:87:56:4c:57:4c:e2:be:c7:c5:b3:13: 98:d4:9c:7f:d8:35:b5:31:8a:05:27:c2:0a:ce:79:9e:80:cd: d4:49:a9:08:0d:89:ca:65:99:ca:cd:06:c5:22:9a:0f:f9:69: 7a:a1:9c:26:a1:b9:9b:03:e5:a3:f0:54:ad:00:df:14:d5:1e: 9c:31:61:a9:37:8d:93:a4:c0:15:ab:60:db:93:58:11:d8:4d: a3:42:41:20:ec:08:d2:c8:02:df:39:f6:23:1e:56:0f:51:91: d5:4a:ab:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDu8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKEFERDk0MThGMEY5QjU1RjNCNzM3NkEwOTNEQjExREJB RDNBRUZFQzgwHhcNMjUwNDA0MTgxMDMxWhcNMjUwNDExMTgxMDMxWjAYMRYwFAYD VQQDEw02N2YwMjA5OC02NjM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5bCa/02xVgewbvSq9pHeYIJ6Stw0+1KpFGFcABy5icWhbLavywA02C/AOkPE z/4f6ZnNfhFsAU1uXN8eDGqzgIyynoW/BprW3Q5S2zf3j13+uCyuSmNdMHdlXE/D zcEp8GfyJzJfkaKjqdwAe+EswD+KP7I5enW479pqUFMDBRWQJUFmopYvJ254h5PR 7rsk+VYpufXXOsd7IeN6xdxkM0QoZaSnaZ6lA5jBskeqlHmHFs8Pss942XCcImDk M+/cvD7JPcSkZtgIVfmjPvoS3+9SbqfxsuBcBF1EzxOR7N8OuGMWh0bYjS60LQwp X5pWLcBPa68Zn4O7QcH2EOLpPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFGxCzbw 9FpJsm1vVjxtvPexYEADMB8GA1UdIwQYMBaAFK3ZQY8Pm1XztzdqCT2xHbrTrv7I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xRDY2RDQ4NkQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9yZGxCanctYlZmTzNOMm9KUGJFZHV0T3Vf c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JkbEJqdy1iVmZPM04yb0pQYkVkdXRPdV9zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkZBMC8xRDY2RDQ4NkQ4Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9yZGxCanctYlZm TzNOMm9KUGJFZHV0T3Vfc2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7LfrQCboCmSQ7y4YPCSUwa1fZEt104nvJ+V3gkvjtALGDIF5bsshV o/o+ulQzuRtXuOLzqCiz/Etb/EOtDNKsBgqBo1OEQnLsqKmUduHyHFCpeCMh8OHo ecD2776Lpm7cU5uoYraI6WuTN1a9THd3zOGFDFDTI1MyXaPVLZx8/fZuwhNotAgd 1IMcJZ9wFvopInXZ9ZwDh1ZMV0zivsfFsxOY1Jx/2DW1MYoFJ8IKznmegM3USakI DYnKZZnKzQbFIpoP+Wl6oZwmobmbA+Wj8FStAN8U1R6cMWGpN42TpMAVq2Dbk1gR 2E2jQkEg7AjSyALfOfYjHlYPUZHVSqu5 -----END CERTIFICATE-----Generated at Sun Apr 6 06:05:36 2025 by rpki-client