$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft File: k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft (raw, json) Hash identifier: kYi9F+xMvc0Rqg6JmsBu25hJLO0WiVQdibLMmdO2VDA= Subject key identifier: 40:8E:46:B6:E4:DD:16:61:BF:37:97:96:4B:AD:B0:3D:79:EA:0C:22 Authority key identifier: 93:C4:D7:4D:18:F5:2C:EA:58:52:80:BB:33:12:F3:10:E1:20:C0:E9 Certificate issuer: /CN=A91E3D15/serialNumber=93C4D74D18F52CEA585280BB3312F310E120C0E9 Certificate serial: 13C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8TXTRj1LOpYUoC7MxLzEOEgwOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft Manifest number: 13AD Signing time: Sun 08 Jun 2025 16:52:13 +0000 Manifest this update: Sun 08 Jun 2025 16:52:13 +0000 Manifest next update: Sun 15 Jun 2025 16:52:13 +0000 Files and hashes: 1: k8TXTRj1LOpYUoC7MxLzEOEgwOk.crl (hash: bXPOmSRBLqdNxyq3eO4pr7Ak+0FEcGfd5dbPTzYNSQE=) 2: A04E05E42CE911EC8F99F486C4F9AE02.roa (hash: 4Bdu5c7KiVJ8qwTifJfb8PRfm9Z4srlRbM1n/IceWaU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.crl rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8TXTRj1LOpYUoC7MxLzEOEgwOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 16:52:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5063 (0x13c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3D15, serialNumber=93C4D74D18F52CEA585280BB3312F310E120C0E9 Validity Not Before: Jun 8 16:52:13 2025 GMT Not After : Jun 15 16:52:13 2025 GMT Subject: CN=6845bfbd-989f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:02:c3:d3:1a:da:5d:42:de:fc:43:97:ce:5f: 74:a3:20:e8:0b:35:f0:b9:7e:cc:3e:d9:b5:49:22: 2a:19:45:f0:18:28:1c:c8:0f:e2:8f:89:73:44:e8: 5f:91:19:df:9b:84:db:e7:76:3d:95:57:d5:b5:19: 62:ca:ed:8e:40:37:ed:55:9c:8e:6b:70:15:78:92: e3:1a:a5:03:1c:b8:de:fe:0d:c7:3f:35:04:52:2f: 56:ea:15:7b:c0:24:4c:e0:4a:50:03:79:6c:81:be: 0e:54:f2:5e:1e:1c:f8:04:f9:0c:40:da:0c:c5:c0: db:7a:ac:c0:f6:bc:b4:bc:84:4e:5f:b9:27:e0:82: 0f:6b:27:69:0e:9d:7c:2b:86:f9:c7:b0:a2:6d:eb: 3d:b0:31:df:95:fe:1f:a7:8c:56:ae:ce:d9:d6:6c: 80:af:9b:25:3c:52:e5:64:6c:3b:0d:0f:d7:85:30: ac:71:88:62:a8:ca:0e:80:6b:e0:75:52:e7:e9:31: 17:c0:3c:46:ad:94:c0:74:e9:52:d9:1d:b5:26:48: 32:e3:f7:97:5d:ba:fb:1a:9e:9c:15:9a:3f:1f:f7: ff:b2:8d:85:6e:4a:74:a5:5b:f1:8e:3e:40:09:67: 99:c1:ab:3d:63:44:29:3e:19:da:fa:61:5f:15:6d: ed:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:8E:46:B6:E4:DD:16:61:BF:37:97:96:4B:AD:B0:3D:79:EA:0C:22 X509v3 Authority Key Identifier: keyid:93:C4:D7:4D:18:F5:2C:EA:58:52:80:BB:33:12:F3:10:E1:20:C0:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8TXTRj1LOpYUoC7MxLzEOEgwOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:80:95:69:ca:ff:53:c1:f1:2a:ec:c8:41:21:67:ba:b9:c5: 55:42:0f:97:c9:fc:8b:af:ae:17:ba:97:c7:1a:dd:a9:5d:07: eb:05:6d:8c:f8:a4:b5:67:cc:24:22:f3:74:43:32:c6:a2:11: 22:c0:48:f1:4b:29:59:27:51:32:1e:d1:33:6b:8a:37:ea:0c: 14:27:8d:fc:58:05:2b:42:65:7a:81:0d:ff:3d:eb:e1:d7:7e: a0:6e:6e:66:20:69:fa:42:9a:b7:5a:c0:0e:85:bd:98:56:8b: 7a:42:b8:37:3d:9f:2d:ad:e1:2b:23:f6:9f:39:73:21:99:74: 27:30:af:98:66:da:ff:98:ef:41:cd:b9:76:4a:f8:52:7b:ee: 90:40:6d:5d:52:5b:f1:29:cc:66:f2:72:e3:56:ce:bc:e2:9a: f9:7d:2f:a9:68:03:56:e5:2d:ca:5a:8a:e0:70:1c:83:49:33: 27:03:22:7f:0d:ed:b2:2d:5e:62:72:5a:c5:f8:b0:07:2f:c4: 76:d3:ce:56:10:7a:b1:cb:97:4b:66:75:f4:0c:49:94:47:8d: d0:cc:a8:96:de:f9:44:a8:3d:57:06:15:c0:c5:3d:fd:d9:75: 4f:ae:80:e8:b0:d3:ac:e3:bc:d5:ef:1d:a9:22:84:7f:e7:42: 82:32:36:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE8cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNEMTUxMTAvBgNVBAUTKDkzQzRENzREMThGNTJDRUE1ODUyODBCQjMzMTJGMzEw RTEyMEMwRTkwHhcNMjUwNjA4MTY1MjEzWhcNMjUwNjE1MTY1MjEzWjAYMRYwFAYD VQQDEw02ODQ1YmZiZC05ODlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6QLD0xraXULe/EOXzl90oyDoCzXwuX7MPtm1SSIqGUXwGCgcyA/ij4lzROhf kRnfm4Tb53Y9lVfVtRliyu2OQDftVZyOa3AVeJLjGqUDHLje/g3HPzUEUi9W6hV7 wCRM4EpQA3lsgb4OVPJeHhz4BPkMQNoMxcDbeqzA9ry0vIROX7kn4IIPaydpDp18 K4b5x7Cibes9sDHflf4fp4xWrs7Z1myAr5slPFLlZGw7DQ/XhTCscYhiqMoOgGvg dVLn6TEXwDxGrZTAdOlS2R21Jkgy4/eXXbr7Gp6cFZo/H/f/so2Fbkp0pVvxjj5A CWeZwas9Y0QpPhna+mFfFW3tqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFECORrbk 3RZhvzeXlkutsD156gwiMB8GA1UdIwQYMBaAFJPE100Y9SzqWFKAuzMS8xDhIMDp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0QxNS83QzY4NUE4Mjk1 QjkxMUU4QTY4OEI2MEVDNEY5QUUwMi9rOFRYVFJqMUxPcFlVb0M3TXhMekVPRWd3 T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2s4VFhUUmoxTE9wWVVvQzdNeEx6RU9FZ3dPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0QxNS83QzY4NUE4Mjk1QjkxMUU4QTY4OEI2MEVDNEY5QUUwMi9rOFRYVFJqMUxP cFlVb0M3TXhMekVPRWd3T2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzgJVpyv9TwfEq7MhBIWe6ucVVQg+XyfyLr64XupfHGt2pXQfrBW2M +KS1Z8wkIvN0QzLGohEiwEjxSylZJ1EyHtEza4o36gwUJ438WAUrQmV6gQ3/Pevh 136gbm5mIGn6Qpq3WsAOhb2YVot6Qrg3PZ8treErI/afOXMhmXQnMK+YZtr/mO9B zbl2SvhSe+6QQG1dUlvxKcxm8nLjVs684pr5fS+paANW5S3KWorgcByDSTMnAyJ/ De2yLV5iclrF+LAHL8R2085WEHqxy5dLZnX0DEmUR43QzKiW3vlEqD1XBhXAxT39 2XVProDosNOs47zV7x2pIoR/50KCMjaH -----END CERTIFICATE-----Generated at Tue Jun 10 10:57:21 2025 by rpki-client