$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft File: SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft (raw, json) Hash identifier: zJyAPpNKasDwvJCKqV31UVC4Cz1eKTZkSco3Flml60I= Subject key identifier: A5:AA:B0:44:61:13:5E:58:96:9F:54:A3:73:2D:C6:C1:97:B7:FB:9B Authority key identifier: 49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 Certificate issuer: /CN=A91DA10A/serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Certificate serial: 081E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft Manifest number: 07ED Signing time: Sat 31 May 2025 21:06:44 +0000 Manifest this update: Sat 31 May 2025 21:06:44 +0000 Manifest next update: Sat 07 Jun 2025 21:06:44 +0000 Files and hashes: 1: SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl (hash: m4PtrvdkXw8MUQwMyMWEfbtW48+9fLOx5c2Al8KRnXs=) 2: DDBCA666F18911EAA922EB1FC4F9AE02.roa (hash: wAmduclXNrZKRu8/pqGkayPdmVyxI/8+xrVLzFoQnO8=) 3: 2F220BBA95AA11ED84962E13C4F9AE02.roa (hash: tNP9+2nzm8wftPIS9csYEXaUq+mqRmQ5CYwfV6WquDE=) 4: 13279E2C124011ED9E430A4CC4F9AE02.roa (hash: 6ixsZ+U2NSefvVb36mPlfQcQ8GQSyjxzHzBxsc46ols=) 5: 67FF0960076911EF8569F157C4F9AE02.roa (hash: QiY4AYjpAOfJUKdo2bWSjao/45XX+9doU5egkrwqJ78=) 6: 42CC52ECC68111EFAE49FF5FC4F9AE02.roa (hash: jw0xm0XxEdyeTKSbIjmLJq8kg/lPA+5yh93w4gEj5Qo=) 7: 68C5CFBE076911EF8569F157C4F9AE02.roa (hash: StO4PQ6ffihfvooMv19fGDjAg2vQbPTwXqeeTRzTihQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 21:06:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2078 (0x81e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA10A, serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Validity Not Before: May 31 21:06:44 2025 GMT Not After : Jun 7 21:06:44 2025 GMT Subject: CN=683b6f64-45fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:51:45:09:8f:41:14:2c:e5:c5:d9:70:4c:25: bd:1f:93:81:00:c8:64:77:8a:e9:03:cd:81:7f:a2: b9:5f:0a:f8:63:ab:c9:97:7b:3a:4d:72:ab:6c:93: e1:6c:b2:36:64:3a:b6:36:57:19:33:98:c0:fa:30: ac:88:9b:86:4e:2c:99:45:a0:cf:84:fa:49:3b:4e: a5:31:06:c3:59:10:81:f8:3f:c0:c4:0c:b2:35:3e: be:c3:c0:96:c8:1b:e3:3b:6f:0a:46:7a:1d:92:a7: 01:96:bb:c2:9e:67:96:b6:68:f5:78:f8:60:7c:5a: 42:7e:13:7c:4f:40:b2:da:bd:80:3a:9a:8d:60:c9: 78:54:ce:94:61:0a:47:2f:00:01:48:02:42:35:51: 12:d3:39:92:43:9a:f2:10:5b:fb:d4:97:2e:45:1d: 9a:53:fa:67:b0:44:85:b7:4a:20:24:95:b5:24:48: 2a:17:58:3e:b4:d4:64:f0:e8:bd:7b:ba:22:3b:dc: b8:c9:dd:b5:94:3c:d2:93:80:76:a4:c8:d9:b5:2d: e9:2d:57:c3:a1:af:25:dc:53:d7:95:df:b9:a1:00: 73:6b:ca:f2:07:92:94:be:a8:ad:84:9a:0d:e5:66: 85:5a:86:ed:0a:1c:93:d8:c2:0b:2f:6c:cb:18:c9: 18:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:AA:B0:44:61:13:5E:58:96:9F:54:A3:73:2D:C6:C1:97:B7:FB:9B X509v3 Authority Key Identifier: keyid:49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:77:bf:2a:f1:b6:ea:89:7d:16:2e:40:97:f2:32:fd:b9:9d: e2:f1:1e:4a:c2:11:dc:93:79:a0:f5:dd:73:c6:67:a1:23:ab: 17:79:b9:fa:3e:7e:f8:6d:56:e4:78:5a:7f:ae:c1:53:e2:c4: 94:f5:b0:8c:09:50:0b:88:66:76:21:f1:d3:71:14:82:7a:1f: 05:6b:08:c2:5d:7e:d3:66:54:1a:27:30:2c:2c:09:1f:40:38: 42:d0:d6:83:ab:ee:3a:d7:fb:70:91:80:32:b8:63:f0:d9:b2: 9a:0e:12:79:d7:66:e9:2d:63:61:7e:53:ec:f5:99:52:f2:69: f8:c2:bf:5c:fa:44:67:83:60:d7:11:b9:3e:48:df:32:57:42: a8:a1:fa:db:bf:9d:37:c5:86:8a:2a:03:f8:01:fb:27:16:68: f4:cb:cf:5a:2b:2d:34:c7:e6:74:4e:99:46:f6:f6:b1:7d:36: 40:f8:8d:4b:21:e4:84:a4:6b:b1:1c:a9:d1:cc:d7:63:c9:b0: 85:cb:3d:1f:04:8b:0d:77:7c:bd:ee:f9:46:36:65:1f:23:b8: fe:3d:d5:91:8b:5c:81:01:c2:1f:79:b3:3a:3f:48:e0:6c:a5: 00:4f:96:7b:7e:54:48:e3:f5:e4:27:bd:0c:88:31:6a:b8:f6: e0:c2:44:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCB4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExMEExMTAvBgNVBAUTKDQ5QjVBNDY0NjNFM0EyQjcwQTMzNDQ2MDE0RUJGNDBF NUM5RUZFNzQwHhcNMjUwNTMxMjEwNjQ0WhcNMjUwNjA3MjEwNjQ0WjAYMRYwFAYD VQQDEw02ODNiNmY2NC00NWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7lFFCY9BFCzlxdlwTCW9H5OBAMhkd4rpA82Bf6K5Xwr4Y6vJl3s6TXKrbJPh bLI2ZDq2NlcZM5jA+jCsiJuGTiyZRaDPhPpJO06lMQbDWRCB+D/AxAyyNT6+w8CW yBvjO28KRnodkqcBlrvCnmeWtmj1ePhgfFpCfhN8T0Cy2r2AOpqNYMl4VM6UYQpH LwABSAJCNVES0zmSQ5ryEFv71JcuRR2aU/pnsESFt0ogJJW1JEgqF1g+tNRk8Oi9 e7oiO9y4yd21lDzSk4B2pMjZtS3pLVfDoa8l3FPXld+5oQBza8ryB5KUvqithJoN 5WaFWobtChyT2MILL2zLGMkYowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKWqsERh E15Ylp9Uo3MtxsGXt/ubMB8GA1UdIwQYMBaAFEm1pGRj46K3CjNEYBTr9A5cnv50 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEwQS9FMzQwMjA0Q0Yx ODcxMUVBQjk3MzRCMUNDNEY5QUUwMi9TYldrWkdQam9yY0tNMFJnRk92MERseWVf blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NiV2taR1Bqb3JjS00wUmdGT3YwRGx5ZV9uUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTEwQS9FMzQwMjA0Q0YxODcxMUVBQjk3MzRCMUNDNEY5QUUwMi9TYldrWkdQam9y Y0tNMFJnRk92MERseWVfblEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwd78q8bbqiX0WLkCX8jL9uZ3i8R5KwhHck3mg9d1zxmehI6sXebn6 Pn74bVbkeFp/rsFT4sSU9bCMCVALiGZ2IfHTcRSCeh8FawjCXX7TZlQaJzAsLAkf QDhC0NaDq+461/twkYAyuGPw2bKaDhJ512bpLWNhflPs9ZlS8mn4wr9c+kRng2DX Ebk+SN8yV0Koofrbv503xYaKKgP4AfsnFmj0y89aKy00x+Z0TplG9vaxfTZA+I1L IeSEpGuxHKnRzNdjybCFyz0fBIsNd3y97vlGNmUfI7j+PdWRi1yBAcIfebM6P0jg bKUAT5Z7flRI4/XkJ70MiDFquPbgwkRj -----END CERTIFICATE-----Generated at Mon Jun 2 06:37:11 2025 by rpki-client