$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft File: a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft (raw, json) Hash identifier: xHeOWjtftQWS85AjnbYMfuHfYPGiz/ea8y+BMCQezds= Subject key identifier: 2C:1E:5C:28:C1:74:6B:80:38:BD:FD:AC:A3:55:82:4C:57:70:AD:7B Authority key identifier: 6B:56:7C:84:3E:42:52:3E:0E:5B:64:F6:4A:0F:2A:E0:55:17:BB:70 Certificate issuer: /CN=A91EAE3D/serialNumber=6B567C843E42523E0E5B64F64A0F2AE05517BB70 Certificate serial: 147A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft Manifest number: 1466 Signing time: Mon 02 Jun 2025 17:06:50 +0000 Manifest this update: Mon 02 Jun 2025 17:06:49 +0000 Manifest next update: Mon 09 Jun 2025 17:06:49 +0000 Files and hashes: 1: a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl (hash: 2iITsxnC04X/uLQzn67BBzVZZcErP8/VphgptHEZLtg=) 2: F693F2689CB811EB97F77E14C4F9AE02.roa (hash: U3tQJQlcyfHM4FE2g1sFZHo1n5O210FCbrxqZ5WoAEg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 05:53:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5242 (0x147a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D, serialNumber=6B567C843E42523E0E5B64F64A0F2AE05517BB70 Validity Not Before: Jun 2 17:06:49 2025 GMT Not After : Jun 9 17:06:49 2025 GMT Subject: CN=683dda29-4c13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:bf:86:5b:07:5c:6d:a1:a1:2b:bb:28:a5:13: 36:b5:e3:60:15:ea:f7:8a:e0:b2:cb:5e:12:cd:7d: 8a:c0:b2:3e:d4:f4:85:1f:e5:6c:b0:25:10:3c:24: 26:cd:3e:d9:f4:11:7e:01:85:4f:e9:68:ad:10:52: 2b:cc:91:bf:be:5d:18:b0:9e:6b:24:46:20:f4:ae: ce:8d:4c:10:f0:39:5c:1f:6a:07:dc:19:d9:c0:78: 60:98:15:2c:a5:5d:9b:4c:72:b1:dd:f9:e0:01:a1: e7:bd:ce:c7:9a:61:76:1c:ec:e3:7f:fa:5a:eb:42: 6b:be:e6:86:67:8a:af:f7:e6:44:d6:8f:72:23:98: 5d:6e:3e:be:e0:60:8f:e7:ff:e3:a8:7c:83:a1:05: 38:6f:6b:5b:01:d3:74:d3:3c:4d:81:ad:86:d0:76: 87:05:5b:17:3f:aa:f7:0f:d2:9a:2e:c1:e6:51:ea: c8:d4:db:7d:bf:5c:2b:ce:f4:82:63:64:ad:90:40: 63:66:fa:95:2a:dd:e0:8e:08:07:bc:92:5b:5b:af: 5b:a3:88:6c:f6:59:7a:8c:d4:96:93:ae:e3:c6:0a: 42:b9:93:f0:00:6c:d5:6d:d7:c2:2e:5d:ef:81:fd: 5f:16:0b:64:9f:1d:39:da:2c:83:26:41:99:43:00: f4:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:1E:5C:28:C1:74:6B:80:38:BD:FD:AC:A3:55:82:4C:57:70:AD:7B X509v3 Authority Key Identifier: keyid:6B:56:7C:84:3E:42:52:3E:0E:5B:64:F6:4A:0F:2A:E0:55:17:BB:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:3d:a7:a9:15:f5:5d:04:9c:1d:58:21:31:dd:3c:73:d5:ee: 82:43:15:ec:a5:4d:0f:df:d6:d8:0d:f2:40:15:56:3e:80:5b: 1d:28:8c:ea:f2:69:62:54:d3:0a:8e:96:e2:60:bf:53:73:df: 42:28:da:54:95:ad:16:94:82:5b:b4:30:7e:d0:eb:23:4a:23: 09:d1:61:37:96:29:2e:9b:fd:9a:74:e8:ca:3f:30:33:f9:d5: 88:ab:8c:09:96:81:c3:81:17:bc:4d:a4:10:b8:05:0e:25:98: 56:dd:1d:92:a5:37:af:be:4c:5c:3b:a8:f2:2a:4a:a7:2b:98: 31:bf:28:c2:d5:ca:4a:6b:40:99:61:d2:b9:ea:2a:06:69:9a: 6b:22:5a:9c:54:23:bf:88:aa:f6:e9:e2:15:f6:7f:f2:62:0f: f6:29:50:aa:99:e2:99:d7:6f:03:3b:8d:06:e6:ae:c4:55:d8: 40:78:d2:ca:87:eb:e0:80:fb:ae:7b:cc:bd:3f:04:30:6b:df: 66:fd:56:3f:7c:fc:9f:c1:d0:49:d6:d0:1e:05:a6:42:f6:fc: 06:40:14:79:bc:c2:02:ca:28:e7:3c:83:03:05:dc:62:cd:3e: 74:66:56:00:b7:02:10:51:1b:76:5e:80:18:8b:0f:60:a7:da: ff:0e:c7:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFHowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKDZCNTY3Qzg0M0U0MjUyM0UwRTVCNjRGNjRBMEYyQUUw NTUxN0JCNzAwHhcNMjUwNjAyMTcwNjQ5WhcNMjUwNjA5MTcwNjQ5WjAYMRYwFAYD VQQDEw02ODNkZGEyOS00YzEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA17+GWwdcbaGhK7sopRM2teNgFer3iuCyy14SzX2KwLI+1PSFH+VssCUQPCQm zT7Z9BF+AYVP6WitEFIrzJG/vl0YsJ5rJEYg9K7OjUwQ8DlcH2oH3BnZwHhgmBUs pV2bTHKx3fngAaHnvc7HmmF2HOzjf/pa60JrvuaGZ4qv9+ZE1o9yI5hdbj6+4GCP 5//jqHyDoQU4b2tbAdN00zxNga2G0HaHBVsXP6r3D9KaLsHmUerI1Nt9v1wrzvSC Y2StkEBjZvqVKt3gjggHvJJbW69bo4hs9ll6jNSWk67jxgpCuZPwAGzVbdfCLl3v gf1fFgtknx052iyDJkGZQwD0TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCweXCjB dGuAOL39rKNVgkxXcK17MB8GA1UdIwQYMBaAFGtWfIQ+QlI+Dltk9koPKuBVF7tw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC84RUY0MkE0Njc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi9hMVo4aEQ1Q1VqNE9XMlQyU2c4cTRGVVh1 M0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ExWjhoRDVDVWo0T1cyVDJTZzhxNEZVWHUzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUUzRC84RUY0MkE0Njc1REUxMUU4QjcwNEEyNDZDNEY5QUUwMi9hMVo4aEQ1Q1Vq NE9XMlQyU2c4cTRGVVh1M0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyPaepFfVdBJwdWCEx3Txz1e6CQxXspU0P39bYDfJAFVY+gFsdKIzq 8mliVNMKjpbiYL9Tc99CKNpUla0WlIJbtDB+0OsjSiMJ0WE3likum/2adOjKPzAz +dWIq4wJloHDgRe8TaQQuAUOJZhW3R2SpTevvkxcO6jyKkqnK5gxvyjC1cpKa0CZ YdK56ioGaZprIlqcVCO/iKr26eIV9n/yYg/2KVCqmeKZ128DO40G5q7EVdhAeNLK h+vggPuue8y9PwQwa99m/VY/fPyfwdBJ1tAeBaZC9vwGQBR5vMICyijnPIMDBdxi zT50ZlYAtwIQURt2XoAYiw9gp9r/DsfZ -----END CERTIFICATE-----Generated at Mon Jun 2 19:24:50 2025 by rpki-client