$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft File: aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft (raw, json) Hash identifier: 24GJEt8ktDyWX3UOZo6Bsf07YB3RqYezANouBKlpVmU= Subject key identifier: 27:0F:20:59:14:9B:6F:59:88:C4:EA:BD:1D:D9:C7:16:DB:04:69:B9 Authority key identifier: 68:6A:00:57:16:4D:14:38:EC:59:58:6D:A8:BA:A5:46:5F:D8:29:C7 Certificate issuer: /CN=A91EA9BD/serialNumber=686A0057164D1438EC59586DA8BAA5465FD829C7 Certificate serial: 30B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft Manifest number: 30AD Signing time: Fri 30 May 2025 15:35:27 +0000 Manifest this update: Fri 30 May 2025 15:35:27 +0000 Manifest next update: Fri 06 Jun 2025 15:35:27 +0000 Files and hashes: 1: aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl (hash: 65uEi+1oFy/Ckzaff++CojRT6Pu7r6Ek1AHvSJASpKM=) 2: 93C0837AA52911EC9D2DAE83C4F9AE02.roa (hash: QijzfOAskdpqspHv2hl6DWJmVGpVIoUXprNfU2Pxi8k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 15:35:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12465 (0x30b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD, serialNumber=686A0057164D1438EC59586DA8BAA5465FD829C7 Validity Not Before: May 30 15:35:27 2025 GMT Not After : Jun 6 15:35:27 2025 GMT Subject: CN=6839d03f-1959 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:33:68:85:a2:fd:9f:87:6d:5c:15:54:94:d5: 8d:6f:ab:f2:92:11:40:bd:22:a6:66:a5:12:3e:8c: 6d:ec:b1:ca:5b:66:50:a2:37:6f:8a:4c:0a:04:3f: fd:9c:98:53:b7:b2:12:5b:81:c9:6b:4a:a5:8d:90: d5:fc:28:c9:6e:04:65:d9:ec:f8:7e:3a:b8:1c:18: 6a:cb:0d:53:82:4d:b3:b3:e1:d0:07:a7:75:0c:77: f4:00:77:47:cb:80:67:8b:c0:24:a5:f7:55:b0:e2: 72:a8:e2:fa:93:4b:e0:e7:df:67:11:4c:88:e3:65: 1d:26:ca:4d:2c:05:aa:e3:c4:42:e5:27:17:0f:5b: be:11:f4:04:f8:06:17:14:5e:6c:f7:46:43:c1:be: f9:ea:10:00:7e:7c:c5:fe:c1:ad:42:79:16:88:d6: 94:d4:f6:72:ed:e4:61:3b:1d:c9:e8:1f:47:2c:24: 71:07:87:74:59:d7:08:32:92:46:d8:ec:1a:5b:01: 5c:35:09:6c:c1:af:a7:21:eb:df:58:ef:70:63:34: c9:e5:98:a7:b2:30:ee:7e:43:c6:9b:df:75:83:23: 02:ef:8f:a0:2b:ec:7b:7c:fd:b2:5e:74:45:13:90: d4:b8:d6:62:29:0a:5b:90:09:df:96:6e:b1:3f:1d: be:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:0F:20:59:14:9B:6F:59:88:C4:EA:BD:1D:D9:C7:16:DB:04:69:B9 X509v3 Authority Key Identifier: keyid:68:6A:00:57:16:4D:14:38:EC:59:58:6D:A8:BA:A5:46:5F:D8:29:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:63:18:e1:82:bf:48:b8:5f:3b:99:61:8c:7d:4b:90:4e:20: 7d:4c:0e:7d:85:cf:8b:b1:13:db:50:77:1a:97:75:e4:44:75: 50:7b:45:eb:25:84:94:d0:98:38:34:c0:85:7d:a1:63:53:cf: c1:8b:3e:d5:a6:fc:23:fb:53:f2:56:31:8f:1a:8e:09:87:3f: e1:b2:49:4f:6f:67:37:c1:34:ce:13:e9:85:2c:fa:f7:0b:29: 13:7e:f5:7d:19:59:32:eb:0d:45:84:19:03:c9:03:91:89:4a: c3:05:61:6f:b1:15:12:36:75:4f:de:c0:cd:a1:e4:f0:68:cc: fa:4b:f3:fc:b2:cb:c0:50:41:ac:37:7b:4d:9d:78:25:f5:0b: 4b:95:97:4b:dc:a8:f6:cc:29:de:67:71:28:f6:16:a0:b9:c1: aa:09:33:d9:2a:7c:ff:71:aa:55:10:ef:9f:e5:61:1e:72:2f: b5:99:ed:88:b6:5a:4a:c9:98:75:f7:c5:de:d8:16:9f:25:53: c1:93:91:2e:3f:e3:fb:07:bf:0c:d9:4f:35:57:63:5f:12:3a: c3:34:d2:dd:f7:19:78:f0:5f:97:c2:e9:d2:d4:c0:2f:ca:3a: ab:ae:c2:ab:3e:0b:00:1d:20:89:23:a4:72:9f:dc:ec:15:4a: d7:ce:80:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKDY4NkEwMDU3MTY0RDE0MzhFQzU5NTg2REE4QkFBNTQ2 NUZEODI5QzcwHhcNMjUwNTMwMTUzNTI3WhcNMjUwNjA2MTUzNTI3WjAYMRYwFAYD VQQDEw02ODM5ZDAzZi0xOTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTNohaL9n4dtXBVUlNWNb6vykhFAvSKmZqUSPoxt7LHKW2ZQojdvikwKBD/9 nJhTt7ISW4HJa0qljZDV/CjJbgRl2ez4fjq4HBhqyw1Tgk2zs+HQB6d1DHf0AHdH y4Bni8AkpfdVsOJyqOL6k0vg599nEUyI42UdJspNLAWq48RC5ScXD1u+EfQE+AYX FF5s90ZDwb756hAAfnzF/sGtQnkWiNaU1PZy7eRhOx3J6B9HLCRxB4d0WdcIMpJG 2OwaWwFcNQlswa+nIevfWO9wYzTJ5ZinsjDufkPGm991gyMC74+gK+x7fP2yXnRF E5DUuNZiKQpbkAnflm6xPx2+AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCcPIFkU m29ZiMTqvR3ZxxbbBGm5MB8GA1UdIwQYMBaAFGhqAFcWTRQ47FlYbai6pUZf2CnH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wM0I4MEYzOERG NUMxMUUyOTcyQTk0Mjc1OTExRUEzMi9hR29BVnhaTkZEanNXVmh0cUxxbFJsX1lL Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FHb0FWeFpORkRqc1dWaHRxTHFsUmxfWUtjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlCRC8wM0I4MEYzOERGNUMxMUUyOTcyQTk0Mjc1OTExRUEzMi9hR29BVnhaTkZE anNXVmh0cUxxbFJsX1lLY2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLYxjhgr9IuF87mWGMfUuQTiB9TA59hc+LsRPbUHcal3XkRHVQe0Xr JYSU0Jg4NMCFfaFjU8/Biz7Vpvwj+1PyVjGPGo4Jhz/hsklPb2c3wTTOE+mFLPr3 CykTfvV9GVky6w1FhBkDyQORiUrDBWFvsRUSNnVP3sDNoeTwaMz6S/P8ssvAUEGs N3tNnXgl9QtLlZdL3Kj2zCneZ3Eo9hagucGqCTPZKnz/capVEO+f5WEeci+1me2I tlpKyZh198Xe2BafJVPBk5EuP+P7B78M2U81V2NfEjrDNNLd9xl48F+XwunS1MAv yjqrrsKrPgsAHSCJI6Ryn9zsFUrXzoAt -----END CERTIFICATE-----Generated at Sat May 31 16:33:10 2025 by rpki-client