$ rpki-client -vvf rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft File: sGfGu3DfDcBM5398jXZwakn2y4U.mft (raw, json) Hash identifier: J1dOdNxmU5kc9A7NcgntsaRbfF5cfhyuhTF9OAj/eTs= Subject key identifier: 85:03:20:C7:14:8E:00:81:BA:65:88:42:65:98:0D:8D:7C:76:87:43 Authority key identifier: B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85 Certificate issuer: /CN=A91D366A/serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85 Certificate serial: 027E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft Manifest number: 0257 Signing time: Sat 31 May 2025 02:08:35 +0000 Manifest this update: Sat 31 May 2025 02:08:35 +0000 Manifest next update: Sat 07 Jun 2025 02:08:34 +0000 Files and hashes: 1: sGfGu3DfDcBM5398jXZwakn2y4U.crl (hash: 7JBuN6m113A33Iw3MI5H1j1Fsg4Cvcf8zAYwV/0KTBM=) 2: 0F1BFF983C6411F08247312EC4F9AE02.roa (hash: 8qUuDVndIDg2NrEC8AKM8tdD0/103K09L9Yt7oBaFMM=) 3: E309B1883C9711EF88C2B284C4F9AE02.roa (hash: w51TUZ9aKXo3NJmk6dhABfqfugO3+EeHqPsN7Ek6pSc=) 4: D6D1A360323911F0BDA2E834C4F9AE02.roa (hash: QqcsybSo4IYcyiaXsqo+jWTeq4K18MPbnynQPtbdI+c=) 5: 6E41DE08310A11F0AC8DF544C4F9AE02.roa (hash: 1rvs0GBAuHrNAHdvsK+LkWPhncBagdhoXnnxzRRg5HA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:08:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 638 (0x27e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D366A, serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85 Validity Not Before: May 31 02:08:35 2025 GMT Not After : Jun 7 02:08:34 2025 GMT Subject: CN=683a64a3-4bf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:af:f1:66:fd:fd:21:9f:c1:0f:bf:82:9a:bc: 3a:88:bd:9a:40:6a:44:32:0d:fd:c0:2d:f9:25:4e: 5e:6f:09:7e:b6:dc:8d:ff:db:03:7e:08:35:a1:6a: 40:81:58:b7:69:67:93:23:94:ab:8e:e5:44:50:01: c2:8e:1d:de:90:a3:8b:63:c9:99:fa:1c:77:2f:2a: b7:f5:eb:0f:e3:69:2d:93:84:c4:72:35:6d:94:55: 02:e1:33:91:29:8b:af:17:1a:62:1f:76:40:65:47: 69:38:4e:de:a9:bf:70:a7:53:c8:6b:1a:ff:5b:ff: 0b:2c:62:d4:a1:93:3b:33:d2:d5:af:cb:6f:e8:4b: 60:cc:d6:35:ee:03:02:35:c7:3c:0e:d4:c3:77:b0: 62:16:bf:87:72:96:42:21:2f:d1:47:12:77:fe:db: ec:32:53:13:6e:cb:19:04:95:36:62:fc:77:72:28: 13:4f:4d:1a:ba:11:6e:df:7d:da:74:fc:7b:e9:99: ee:02:66:2c:90:d7:f8:96:68:10:41:f8:e4:9d:99: 85:ed:e7:d0:14:89:f3:16:d6:8c:63:4d:27:4f:23: 32:38:98:d7:21:16:aa:1f:b9:a8:c1:ac:e4:55:a1: ba:11:a0:54:25:8e:d4:3f:98:36:de:57:5f:2a:41: 9d:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:03:20:C7:14:8E:00:81:BA:65:88:42:65:98:0D:8D:7C:76:87:43 X509v3 Authority Key Identifier: keyid:B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:51:4a:0c:5a:1e:9f:f5:64:2e:fb:d9:86:86:21:6f:59:9a: fa:57:31:65:d7:11:fe:37:89:b3:60:cb:74:12:d2:52:75:aa: 81:cc:01:9f:f4:90:6d:14:9c:4a:0a:39:aa:e7:36:97:4f:a9: 51:99:8a:47:55:5c:74:ff:5f:36:53:15:a9:ec:71:58:09:d6: 08:94:bc:e4:5a:4c:01:a6:a7:57:40:bd:0d:51:8b:79:4f:c8: 75:3e:97:04:7b:e5:4e:07:ab:d9:f5:65:b6:12:a1:52:c9:35: 3e:bb:e6:97:8b:8a:24:c8:72:70:e1:26:b9:86:cd:c2:76:7f: d2:c6:86:80:fe:38:d2:74:68:1f:95:69:db:f9:7f:25:4f:d5: 16:63:99:e4:aa:f3:b3:bc:f6:80:60:e4:83:7e:a9:1b:9d:2d: 69:02:ff:90:6f:56:d0:a6:69:cd:8e:48:40:82:82:ae:10:08: 1e:e3:68:3e:a6:d8:4c:ee:e9:00:2c:64:0d:62:b9:cd:2b:f7: 9d:3f:b3:38:d4:bb:fe:2b:f0:92:d5:5c:4a:5f:2a:9b:7e:24: 29:a2:a7:e9:f6:50:30:d4:92:91:b3:a5:e4:7c:e9:08:a9:07: 43:e1:68:a5:7c:41:a2:d1:1f:16:07:e1:2a:66:38:7e:d1:1c: 0d:34:06:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM2NkExMTAvBgNVBAUTKEIwNjdDNkJCNzBERjBEQzA0Q0U3N0Y3QzhENzY3MDZB NDlGNkNCODUwHhcNMjUwNTMxMDIwODM1WhcNMjUwNjA3MDIwODM0WjAYMRYwFAYD VQQDEw02ODNhNjRhMy00YmYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxK/xZv39IZ/BD7+Cmrw6iL2aQGpEMg39wC35JU5ebwl+ttyN/9sDfgg1oWpA gVi3aWeTI5SrjuVEUAHCjh3ekKOLY8mZ+hx3Lyq39esP42ktk4TEcjVtlFUC4TOR KYuvFxpiH3ZAZUdpOE7eqb9wp1PIaxr/W/8LLGLUoZM7M9LVr8tv6EtgzNY17gMC Ncc8DtTDd7BiFr+HcpZCIS/RRxJ3/tvsMlMTbssZBJU2Yvx3cigTT00auhFu333a dPx76ZnuAmYskNf4lmgQQfjknZmF7efQFInzFtaMY00nTyMyOJjXIRaqH7mowazk VaG6EaBUJY7UP5g23ldfKkGd8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIUDIMcU jgCBumWIQmWYDY18dodDMB8GA1UdIwQYMBaAFLBnxrtw3w3ATOd/fI12cGpJ9suF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzY2QS9FQzA5QUE0QTMw N0QxMUVEQTZDM0EyMTJDNEY5QUUwMi9zR2ZHdTNEZkRjQk01Mzk4alhad2FrbjJ5 NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NHZkd1M0RmRGNCTTUzOThqWFp3YWtuMnk0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzY2QS9FQzA5QUE0QTMwN0QxMUVEQTZDM0EyMTJDNEY5QUUwMi9zR2ZHdTNEZkRj Qk01Mzk4alhad2FrbjJ5NFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxUUoMWh6f9WQu+9mGhiFvWZr6VzFl1xH+N4mzYMt0EtJSdaqBzAGf 9JBtFJxKCjmq5zaXT6lRmYpHVVx0/182UxWp7HFYCdYIlLzkWkwBpqdXQL0NUYt5 T8h1PpcEe+VOB6vZ9WW2EqFSyTU+u+aXi4okyHJw4Sa5hs3Cdn/SxoaA/jjSdGgf lWnb+X8lT9UWY5nkqvOzvPaAYOSDfqkbnS1pAv+Qb1bQpmnNjkhAgoKuEAge42g+ pthM7ukALGQNYrnNK/edP7M41Lv+K/CS1VxKXyqbfiQpoqfp9lAw1JKRs6XkfOkI qQdD4WilfEGi0R8WB+EqZjh+0RwNNAaf -----END CERTIFICATE-----Generated at Sat May 31 17:11:29 2025 by rpki-client