$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.mft File: 40OEBUdkAqOqj5h8OvoGkNlu1HQ.mft (raw, json) Hash identifier: MrTaaCASWLcxoi7xb9q6Gpz3YTF4K2sQ6tbGFQbTTTs= Subject key identifier: BB:A7:23:64:A3:13:6F:8A:33:F7:55:BB:9C:1A:12:38:F5:AC:75:06 Authority key identifier: E3:43:84:05:47:64:02:A3:AA:8F:98:7C:3A:FA:06:90:D9:6E:D4:74 Certificate issuer: /CN=A91E9406/serialNumber=E3438405476402A3AA8F987C3AFA0690D96ED474 Certificate serial: 0263 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40OEBUdkAqOqj5h8OvoGkNlu1HQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.mft Manifest number: 025E Signing time: Sat 31 May 2025 01:58:56 +0000 Manifest this update: Sat 31 May 2025 01:58:56 +0000 Manifest next update: Sat 07 Jun 2025 01:58:56 +0000 Files and hashes: 1: 40OEBUdkAqOqj5h8OvoGkNlu1HQ.crl (hash: 8j8sF606z9sQnd2DNev5RTosMqyZ+GvqtThANrnXQMc=) 2: F76D8A5C170D11EDA7EC2F87C4F9AE02.roa (hash: bEQWXluQGkjHtzXhhM0LUOXQhLNvUEvMyEXkpICCpAQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.crl rsync://rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40OEBUdkAqOqj5h8OvoGkNlu1HQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:58:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 611 (0x263) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9406, serialNumber=E3438405476402A3AA8F987C3AFA0690D96ED474 Validity Not Before: May 31 01:58:56 2025 GMT Not After : Jun 7 01:58:56 2025 GMT Subject: CN=683a6260-1436 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:27:a8:00:ba:b0:71:b2:66:0f:67:54:d1:fb: c6:f1:f6:94:72:9c:e2:db:4f:d4:f5:25:07:0b:50: 7d:8b:f1:fb:66:d5:30:2a:d5:66:3a:6c:ed:ea:f4: 78:e0:82:85:0c:2d:51:5c:b0:80:cd:c0:eb:bb:97: b5:7c:92:85:7d:1b:1e:8e:4d:77:12:0b:85:ed:d3: 1f:3e:e5:c4:81:f8:7b:7b:30:74:b8:14:4c:6f:d3: 7a:e9:cf:cd:ed:79:d9:45:ed:d7:a8:f3:a5:85:99: 73:24:79:87:4a:85:97:3a:96:d6:5e:5e:6d:6d:b2: 2a:32:1d:91:c3:bd:69:9b:6c:f0:97:60:bf:97:16: 9c:e9:9b:73:c4:18:b5:9c:7e:81:ed:4b:31:1a:d6: 32:4b:d2:db:32:66:a3:2f:31:f3:85:20:05:bb:27: a7:b6:30:17:01:fe:ba:15:af:82:ed:95:1e:d3:09: fc:72:3f:dd:f0:93:27:da:9d:66:86:89:d4:d2:99: 8a:ef:c2:64:41:55:91:fc:80:c4:f8:18:93:c2:62: 1e:b8:44:05:4e:43:0a:64:03:58:6d:fb:0b:f4:e3: e1:e6:25:6d:3e:75:e7:26:af:fe:05:5d:65:f1:aa: 22:6c:c3:43:fb:50:ff:7a:22:26:d4:ac:c5:b0:05: b2:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:A7:23:64:A3:13:6F:8A:33:F7:55:BB:9C:1A:12:38:F5:AC:75:06 X509v3 Authority Key Identifier: keyid:E3:43:84:05:47:64:02:A3:AA:8F:98:7C:3A:FA:06:90:D9:6E:D4:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40OEBUdkAqOqj5h8OvoGkNlu1HQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:ad:c6:78:70:31:88:ec:d5:15:20:a3:d7:e2:5c:d3:c0:52: 8e:fc:d1:50:38:93:47:9d:f5:82:89:ec:9a:c4:cc:d1:ae:34: 56:3c:cd:1e:54:59:ca:ce:35:4f:f4:09:f4:7a:3b:bb:29:4f: 4b:6c:1f:4b:19:77:14:32:df:31:78:73:fc:dd:72:2f:1d:2a: 99:75:9d:f0:a1:3d:76:b1:e9:1a:0c:53:ca:ff:f4:c4:04:48: 30:45:b7:12:af:ec:4d:e0:5a:ac:ef:4b:91:0e:20:3c:66:3d: 9e:46:a9:4a:d3:13:d2:e9:1a:f5:9d:db:e0:8b:71:bb:90:c2: b0:af:3f:22:69:cb:88:ca:51:30:d4:d0:d9:b3:fa:93:df:69: 18:a0:08:9b:99:1c:ef:60:2a:36:6a:43:0d:b7:96:1a:1a:b9: 25:3d:25:6d:06:15:fa:2d:75:34:8b:9c:4d:b5:92:4d:4e:e4: e7:9c:1a:ea:d8:fd:2e:50:dd:0b:da:a0:98:4f:08:03:b9:be: a4:fb:62:f3:d5:9f:d5:ad:0b:a1:66:33:a2:de:b9:56:8b:78: fa:3f:b0:64:5f:8d:51:3e:95:16:67:3c:ec:63:25:c0:05:b1: 87:1d:6d:d0:5e:c5:fa:da:90:6e:8e:72:9b:74:ab:21:4b:3e: 56:03:5f:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk0MDYxMTAvBgNVBAUTKEUzNDM4NDA1NDc2NDAyQTNBQThGOTg3QzNBRkEwNjkw RDk2RUQ0NzQwHhcNMjUwNTMxMDE1ODU2WhcNMjUwNjA3MDE1ODU2WjAYMRYwFAYD VQQDEw02ODNhNjI2MC0xNDM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArSeoALqwcbJmD2dU0fvG8faUcpzi20/U9SUHC1B9i/H7ZtUwKtVmOmzt6vR4 4IKFDC1RXLCAzcDru5e1fJKFfRsejk13EguF7dMfPuXEgfh7ezB0uBRMb9N66c/N 7XnZRe3XqPOlhZlzJHmHSoWXOpbWXl5tbbIqMh2Rw71pm2zwl2C/lxac6ZtzxBi1 nH6B7UsxGtYyS9LbMmajLzHzhSAFuyentjAXAf66Fa+C7ZUe0wn8cj/d8JMn2p1m honU0pmK78JkQVWR/IDE+BiTwmIeuEQFTkMKZANYbfsL9OPh5iVtPnXnJq/+BV1l 8aoibMND+1D/eiIm1KzFsAWyZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLunI2Sj E2+KM/dVu5waEjj1rHUGMB8GA1UdIwQYMBaAFONDhAVHZAKjqo+YfDr6BpDZbtR0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTQwNi85ODY4QTlGMDE3 MDkxMUVEQjZGODA4NjhDNEY5QUUwMi80ME9FQlVka0FxT3FqNWg4T3ZvR2tObHUx SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwT0VCVWRrQXFPcWo1aDhPdm9Ha05sdTFIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTQwNi85ODY4QTlGMDE3MDkxMUVEQjZGODA4NjhDNEY5QUUwMi80ME9FQlVka0Fx T3FqNWg4T3ZvR2tObHUxSFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSrcZ4cDGI7NUVIKPX4lzTwFKO/NFQOJNHnfWCieyaxMzRrjRWPM0e VFnKzjVP9An0eju7KU9LbB9LGXcUMt8xeHP83XIvHSqZdZ3woT12sekaDFPK//TE BEgwRbcSr+xN4Fqs70uRDiA8Zj2eRqlK0xPS6Rr1ndvgi3G7kMKwrz8iacuIylEw 1NDZs/qT32kYoAibmRzvYCo2akMNt5YaGrklPSVtBhX6LXU0i5xNtZJNTuTnnBrq 2P0uUN0L2qCYTwgDub6k+2Lz1Z/VrQuhZjOi3rlWi3j6P7BkX41RPpUWZzzsYyXA BbGHHW3QXsX62pBujnKbdKshSz5WA19Z -----END CERTIFICATE-----Generated at Sat May 31 17:07:41 2025 by rpki-client