$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft File: g86FOnpm6rnh8jNGcR09yX1XWXg.mft (raw, json) Hash identifier: zKfRvCSicjJ984UV3TavIrwc/nKsqugj/i/0ZbqxVnQ= Subject key identifier: D0:32:16:E9:5A:F9:A5:E5:A8:98:B4:F3:99:D8:49:3C:CB:D3:39:BA Authority key identifier: 83:CE:85:3A:7A:66:EA:B9:E1:F2:33:46:71:1D:3D:C9:7D:57:59:78 Certificate issuer: /CN=A91E9BC4/serialNumber=83CE853A7A66EAB9E1F23346711D3DC97D575978 Certificate serial: 0E36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft Manifest number: 0E2C Signing time: Fri 30 May 2025 17:58:01 +0000 Manifest this update: Fri 30 May 2025 17:58:01 +0000 Manifest next update: Fri 06 Jun 2025 17:58:01 +0000 Files and hashes: 1: g86FOnpm6rnh8jNGcR09yX1XWXg.crl (hash: 5v4tPrNPqYJTFlnTqskLBFNgCh7uWqGhNs3942FX4ms=) 2: 3B495FFCA46211E9B730310FC4F9AE02.roa (hash: pWiGa9e3CsBZCkEfjYxSv/AY6FwzKhNWqEBfC5Rt5as=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.crl rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:58:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3638 (0xe36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9BC4, serialNumber=83CE853A7A66EAB9E1F23346711D3DC97D575978 Validity Not Before: May 30 17:58:01 2025 GMT Not After : Jun 6 17:58:01 2025 GMT Subject: CN=6839f1a9-7e88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:5f:cc:a9:09:19:1e:2b:a6:ab:c3:f0:12:1b: fd:14:e7:2c:b1:49:8b:65:3d:a0:03:52:67:9f:8a: 6c:be:d5:96:59:6f:68:a2:90:3d:fa:78:f9:7c:69: 1e:81:6b:a7:23:65:11:ef:cc:11:60:87:5a:56:66: a8:b0:0a:2b:54:96:88:2b:87:0e:13:7b:d5:f3:c5: a8:6e:c9:59:67:ff:27:8e:32:53:ee:73:80:fc:98: 18:fc:39:1d:ff:fb:39:13:82:52:8f:7d:73:a9:44: 21:40:c9:28:c5:80:86:11:9d:99:c1:9f:5f:5f:03: 36:b3:b2:b2:25:e9:78:ab:95:e5:09:c9:2b:fa:0e: eb:d1:05:05:87:be:55:12:19:3d:f9:ce:30:25:ea: 22:09:b9:0c:57:62:6c:e7:c4:d6:99:87:1f:34:75: 67:d1:01:80:81:8a:08:5b:66:b0:79:b2:ae:56:63: a3:d5:8a:c8:cb:e4:47:f0:81:ac:f5:c8:6d:b4:a8: ea:2c:5e:87:91:ac:6b:06:9a:93:7f:69:99:37:2d: d8:ab:02:1e:9c:d5:7c:97:86:c6:3c:7b:da:e3:82: 7e:f0:85:f3:8c:b8:56:78:78:b3:5c:32:93:fa:7d: 86:2c:98:06:48:2e:7d:71:a8:50:7d:5e:92:5b:83: 6d:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:32:16:E9:5A:F9:A5:E5:A8:98:B4:F3:99:D8:49:3C:CB:D3:39:BA X509v3 Authority Key Identifier: keyid:83:CE:85:3A:7A:66:EA:B9:E1:F2:33:46:71:1D:3D:C9:7D:57:59:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:4d:63:9a:f6:25:10:59:cc:4c:9e:0b:c8:be:82:35:ec:e2: 59:be:72:d5:0d:c4:8a:b4:23:20:f2:88:bb:fc:b2:7e:d0:58: 04:c3:27:5c:38:a6:63:99:26:ef:7b:db:00:a3:69:c3:be:58: fc:e8:fc:40:07:32:16:f7:7d:6e:f3:69:e7:cb:a6:2f:73:d2: 67:c8:92:07:98:47:43:76:7c:ae:6f:aa:d2:21:2f:02:6c:b9: e1:3a:a1:66:f1:3e:74:57:0d:2e:27:77:64:08:0d:ca:42:5b: 3d:35:6b:1d:72:06:bd:9c:fc:76:dc:8c:af:51:57:57:8e:79: 99:82:b7:2c:3f:9b:39:7b:28:a2:9d:a9:88:0c:40:47:bd:fb: 6a:b3:cd:e3:eb:29:36:ca:f7:64:57:81:6d:40:ae:18:48:86: 8d:ec:02:4b:21:ac:73:2f:d6:e8:9d:a3:d2:ad:e9:f3:17:da: 1f:78:2e:da:2c:d0:ab:6f:6b:37:d0:a8:89:98:b3:a8:09:32: aa:63:3c:f9:31:c3:05:5e:cd:c1:2a:2c:db:46:1b:42:a9:d1: 0f:34:3f:88:44:82:c1:86:fc:32:bf:f6:1a:62:d3:83:52:e9: 6e:83:27:46:6d:7d:ab:26:67:97:9c:61:d5:28:02:76:2a:06: 8d:d0:81:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlCQzQxMTAvBgNVBAUTKDgzQ0U4NTNBN0E2NkVBQjlFMUYyMzM0NjcxMUQzREM5 N0Q1NzU5NzgwHhcNMjUwNTMwMTc1ODAxWhcNMjUwNjA2MTc1ODAxWjAYMRYwFAYD VQQDEw02ODM5ZjFhOS03ZTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0V/MqQkZHiumq8PwEhv9FOcssUmLZT2gA1Jnn4psvtWWWW9oopA9+nj5fGke gWunI2UR78wRYIdaVmaosAorVJaIK4cOE3vV88WobslZZ/8njjJT7nOA/JgY/Dkd //s5E4JSj31zqUQhQMkoxYCGEZ2ZwZ9fXwM2s7KyJel4q5XlCckr+g7r0QUFh75V Ehk9+c4wJeoiCbkMV2Js58TWmYcfNHVn0QGAgYoIW2awebKuVmOj1YrIy+RH8IGs 9chttKjqLF6HkaxrBpqTf2mZNy3YqwIenNV8l4bGPHva44J+8IXzjLhWeHizXDKT +n2GLJgGSC59cahQfV6SW4NtwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNAyFula +aXlqJi085nYSTzL0zm6MB8GA1UdIwQYMBaAFIPOhTp6Zuq54fIzRnEdPcl9V1l4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUJDNC85MkU4MjFGMEE0 NjAxMUU5ODEwQTVDMEJDNEY5QUUwMi9nODZGT25wbTZybmg4ak5HY1IwOXlYMVhX WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c4NkZPbnBtNnJuaDhqTkdjUjA5eVgxWFdYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUJDNC85MkU4MjFGMEE0NjAxMUU5ODEwQTVDMEJDNEY5QUUwMi9nODZGT25wbTZy bmg4ak5HY1IwOXlYMVhXWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkTWOa9iUQWcxMngvIvoI17OJZvnLVDcSKtCMg8oi7/LJ+0FgEwydc OKZjmSbve9sAo2nDvlj86PxABzIW931u82nny6Yvc9JnyJIHmEdDdnyub6rSIS8C bLnhOqFm8T50Vw0uJ3dkCA3KQls9NWsdcga9nPx23IyvUVdXjnmZgrcsP5s5eyii namIDEBHvftqs83j6yk2yvdkV4FtQK4YSIaN7AJLIaxzL9bonaPSrenzF9ofeC7a LNCrb2s30KiJmLOoCTKqYzz5McMFXs3BKizbRhtCqdEPND+IRILBhvwyv/YaYtOD UulugydGbX2rJmeXnGHVKAJ2KgaN0IHj -----END CERTIFICATE-----Generated at Sat May 31 17:51:37 2025 by rpki-client