$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft File: -Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft (raw, json) Hash identifier: uD5C98qZnHjP+5UdLoCqzE7W+5yLZLmwAhskmtzff80= Subject key identifier: F3:5D:10:C0:BE:CA:03:0B:E2:5F:A3:31:F3:46:11:F6:7C:33:2A:A2 Authority key identifier: F9:1A:3A:98:31:43:84:C4:03:A8:FF:22:A4:53:BC:A1:A3:BA:6C:D8 Certificate issuer: /CN=A91D3102/serialNumber=F91A3A98314384C403A8FF22A453BCA1A3BA6CD8 Certificate serial: 2DD8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft Manifest number: 2DC0 Signing time: Sat 31 May 2025 15:28:37 +0000 Manifest this update: Sat 31 May 2025 15:28:36 +0000 Manifest next update: Sat 07 Jun 2025 15:28:36 +0000 Files and hashes: 1: -Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl (hash: ja/f4+UiLgmhzVNYlmEeAn5t65UBafTheYEqQQ4sZYE=) 2: 611D8094B13D11E59299870AC4F9AE02.roa (hash: Ge8zFlpjpqEtuKQN0h56H1Urr1O0D0HMkBD9jJfCPmM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:28:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11736 (0x2dd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3102, serialNumber=F91A3A98314384C403A8FF22A453BCA1A3BA6CD8 Validity Not Before: May 31 15:28:36 2025 GMT Not After : Jun 7 15:28:36 2025 GMT Subject: CN=683b2025-6db2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d2:e8:04:e3:d1:de:8f:59:20:c6:d7:54:83: 66:dc:26:c2:b4:0f:4b:eb:6d:4c:af:64:4b:d1:5a: 2b:08:d9:51:db:fe:9c:12:53:fc:ad:08:67:10:16: 17:a2:a4:03:e5:6e:2f:ee:2d:da:e9:8e:62:cf:f8: 09:37:f4:f6:12:9e:c5:bd:86:f1:6b:d7:ae:fe:ab: 0b:92:de:df:90:51:24:1e:1d:53:35:50:5e:f8:a3: 0d:c9:f0:4b:41:7f:06:89:25:c5:7c:f6:b6:1b:43: 48:fa:bc:86:ea:97:17:0b:26:f1:30:2e:d3:da:2d: e0:4f:24:85:63:06:45:24:20:26:96:ee:ca:08:f9: 29:73:24:fb:44:02:3e:d6:1e:be:17:d1:c4:20:ee: 40:89:0e:60:f4:18:a9:9f:75:c0:3f:15:0f:37:46: 43:49:62:24:6e:f7:90:a9:78:48:b2:ce:c7:d0:58: e4:94:7e:4b:64:c4:e4:40:89:b8:63:05:0e:e7:ea: 5c:c2:6b:c8:bf:da:b9:7c:75:bd:64:28:e5:97:86: 1c:fd:d7:69:eb:cf:5b:bc:4f:73:64:3b:c1:c6:fa: b3:64:41:54:60:e2:73:7b:4f:b2:21:29:ff:68:01: 2d:b3:1a:1c:f3:9a:a1:a7:32:9b:e7:67:1b:0f:d1: 9f:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:5D:10:C0:BE:CA:03:0B:E2:5F:A3:31:F3:46:11:F6:7C:33:2A:A2 X509v3 Authority Key Identifier: keyid:F9:1A:3A:98:31:43:84:C4:03:A8:FF:22:A4:53:BC:A1:A3:BA:6C:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:3f:f0:ff:55:94:72:36:49:eb:96:08:a7:c0:35:45:65:6a: 3d:4e:c6:96:fb:75:2a:8e:15:f2:14:ca:b8:46:a3:36:2d:df: fb:57:7b:d1:e8:b5:77:b6:a2:17:4a:ac:73:c9:cb:ff:8f:31: 6d:35:31:09:92:78:3a:ce:23:cc:83:73:43:d6:54:28:a7:3a: f9:47:79:bd:48:05:ba:4b:24:3c:a7:53:9e:e9:01:34:7b:10: 03:67:a8:3a:0f:0d:36:36:71:66:5b:ac:f5:54:e5:c9:13:51: 1b:bc:92:77:4e:72:b9:41:22:b0:1a:e2:af:cc:26:c8:77:86: f2:02:57:f2:af:49:78:27:ea:0b:58:65:f2:f8:f6:7f:df:0c: cc:1c:cc:4d:7f:70:00:d1:a8:27:49:a9:7a:30:be:87:6d:d0: d5:72:4e:a2:fa:f6:11:83:33:28:cd:aa:15:fc:bc:4f:cb:34: ae:68:79:21:8e:8f:af:01:9a:63:6a:a1:f3:91:ff:27:48:61: d3:1e:4d:db:7d:c9:d5:0d:e5:6a:da:d8:3d:eb:85:45:78:8f: e6:27:4f:e5:cc:3a:a0:5f:af:81:c8:d9:1e:5b:16:17:29:64: ef:b9:dd:ce:18:61:52:20:0f:75:48:c1:12:a8:72:7c:ed:88: 12:da:86:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxMDIxMTAvBgNVBAUTKEY5MUEzQTk4MzE0Mzg0QzQwM0E4RkYyMkE0NTNCQ0Ex QTNCQTZDRDgwHhcNMjUwNTMxMTUyODM2WhcNMjUwNjA3MTUyODM2WjAYMRYwFAYD VQQDEw02ODNiMjAyNS02ZGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxNLoBOPR3o9ZIMbXVINm3CbCtA9L621Mr2RL0VorCNlR2/6cElP8rQhnEBYX oqQD5W4v7i3a6Y5iz/gJN/T2Ep7FvYbxa9eu/qsLkt7fkFEkHh1TNVBe+KMNyfBL QX8GiSXFfPa2G0NI+ryG6pcXCybxMC7T2i3gTySFYwZFJCAmlu7KCPkpcyT7RAI+ 1h6+F9HEIO5AiQ5g9Bipn3XAPxUPN0ZDSWIkbveQqXhIss7H0FjklH5LZMTkQIm4 YwUO5+pcwmvIv9q5fHW9ZCjll4Yc/ddp689bvE9zZDvBxvqzZEFUYOJze0+yISn/ aAEtsxoc85qhpzKb52cbD9GfCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPNdEMC+ ygML4l+jMfNGEfZ8MyqiMB8GA1UdIwQYMBaAFPkaOpgxQ4TEA6j/IqRTvKGjumzY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzEwMi9ENEFFRTJDODc2 OEUxMUUzOTlBOTU3NDU1OTExRUEzMi8tUm82bURGRGhNUURxUDhpcEZPOG9hTzZi TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1SbzZtREZEaE1RRHFQOGlwRk84b2FPNmJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzEwMi9ENEFFRTJDODc2OEUxMUUzOTlBOTU3NDU1OTExRUEzMi8tUm82bURGRGhN UURxUDhpcEZPOG9hTzZiTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAP/D/VZRyNknrlginwDVFZWo9TsaW+3UqjhXyFMq4RqM2Ld/7V3vR 6LV3tqIXSqxzycv/jzFtNTEJkng6ziPMg3ND1lQopzr5R3m9SAW6SyQ8p1Oe6QE0 exADZ6g6Dw02NnFmW6z1VOXJE1EbvJJ3TnK5QSKwGuKvzCbId4byAlfyr0l4J+oL WGXy+PZ/3wzMHMxNf3AA0agnSal6ML6HbdDVck6i+vYRgzMozaoV/LxPyzSuaHkh jo+vAZpjaqHzkf8nSGHTHk3bfcnVDeVq2tg964VFeI/mJ0/lzDqgX6+ByNkeWxYX KWTvud3OGGFSIA91SMESqHJ87YgS2obH -----END CERTIFICATE-----Generated at Sat May 31 17:47:46 2025 by rpki-client