$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft File: 1bm7ozBeiMAA9WKTnROLpQYieyo.mft (raw, json) Hash identifier: CKNAtzlidHp5e6Qd7TQlRapQjgE+vhJw63onttmkLl4= Subject key identifier: 49:5B:E7:12:73:BF:C0:40:5B:7C:C0:EE:B7:E2:99:78:0E:25:FA:66 Authority key identifier: D5:B9:BB:A3:30:5E:88:C0:00:F5:62:93:9D:13:8B:A5:06:22:7B:2A Certificate issuer: /CN=A91EAF4B/serialNumber=D5B9BBA3305E88C000F562939D138BA506227B2A Certificate serial: 0B08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft Manifest number: 0BE6 Signing time: Fri 30 May 2025 19:34:25 +0000 Manifest this update: Fri 30 May 2025 19:34:25 +0000 Manifest next update: Fri 06 Jun 2025 19:34:25 +0000 Files and hashes: 1: 1bm7ozBeiMAA9WKTnROLpQYieyo.crl (hash: aH6ex5CU10Khox94FiGafCHpzcI3/WxbO6tizAqPPD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.crl rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:34:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2824 (0xb08) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAF4B, serialNumber=D5B9BBA3305E88C000F562939D138BA506227B2A Validity Not Before: May 30 19:34:25 2025 GMT Not After : Jun 6 19:34:25 2025 GMT Subject: CN=683a0841-3098 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:fe:2a:33:8b:07:e9:94:06:8d:03:17:5a:e2: e9:a0:58:44:56:fb:3a:b4:c3:18:4e:e4:f3:11:ac: 21:55:29:b1:c6:2d:3d:f0:fb:5c:f5:81:f3:f4:ce: 4a:34:b7:e4:6c:3f:c5:bd:c5:99:3f:35:67:68:8c: 44:85:44:4e:00:93:60:e3:c5:06:00:78:ff:fe:79: 1d:c8:2f:15:79:ae:8c:55:ae:3f:d6:9c:23:6e:a1: 03:a9:fb:f4:70:4a:93:21:be:ba:60:06:a6:49:da: 1a:24:90:2f:ee:c8:59:86:51:ae:19:23:76:0d:c4: 7d:6d:da:ff:4a:40:a3:87:99:9b:f8:e8:6b:07:70: 89:15:e9:77:0c:2a:0b:c9:69:5f:1e:99:92:ac:d2: d1:10:f6:89:76:e6:08:3c:35:f4:eb:f6:7a:4e:96: d6:9a:c5:21:ca:dc:1e:d5:e2:95:7b:ed:9f:0b:a7: b5:a3:14:3b:74:40:55:72:35:d3:21:06:d2:bc:3a: 24:38:97:15:7a:1b:e0:ba:d4:9c:fe:30:a2:54:39: 61:73:f3:1f:dc:fd:c3:a0:d2:de:ff:c4:0e:e2:28: cb:60:e2:6f:d8:f3:79:05:f9:7d:5a:08:24:67:ac: e8:76:bc:14:7d:40:ce:26:c7:9a:9a:7d:a2:7e:88: 70:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:5B:E7:12:73:BF:C0:40:5B:7C:C0:EE:B7:E2:99:78:0E:25:FA:66 X509v3 Authority Key Identifier: keyid:D5:B9:BB:A3:30:5E:88:C0:00:F5:62:93:9D:13:8B:A5:06:22:7B:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:ea:15:56:23:24:3a:3f:45:39:fe:00:13:02:ee:26:fb:3e: 1e:48:34:78:2d:b2:b1:7b:2f:d7:3c:44:35:b3:e5:1a:20:de: 2c:22:7d:01:fe:cc:5e:fc:fe:27:cd:4c:ab:90:4d:6a:21:4e: 81:ac:56:09:11:59:f0:07:d5:37:0b:cb:77:1e:4a:a4:7b:0f: 74:6e:82:91:4e:dd:f8:b7:f0:ea:3d:13:e0:0d:79:fa:93:39: fc:f2:ad:1a:0c:94:c9:e6:0d:df:14:7f:0c:f8:20:a8:e2:9f: 5c:91:d4:26:da:29:22:d2:bd:ce:f6:8d:96:2b:8f:b6:3e:f8: be:0d:7e:c0:52:bc:50:e6:af:43:cc:f8:68:bc:69:5f:c2:5d: 5d:56:75:89:f7:a7:da:1b:93:70:a3:a2:ff:8e:55:f4:cf:70: b3:7b:f4:f1:fe:46:f6:d4:0a:d8:b3:47:e9:36:da:ba:c5:00: cd:a1:b8:ce:b0:14:78:06:d7:a6:c1:46:4a:28:a3:1f:9a:09: 62:28:b4:5b:9b:08:d8:81:f5:49:d1:95:71:54:ea:09:72:5e: 96:11:c1:dc:09:b0:56:34:87:c9:f5:f2:57:69:e1:e3:ab:3d: 99:d2:f2:5a:cd:46:6e:3d:f3:7f:ba:75:00:5d:da:21:71:38: c9:79:9a:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFGNEIxMTAvBgNVBAUTKEQ1QjlCQkEzMzA1RTg4QzAwMEY1NjI5MzlEMTM4QkE1 MDYyMjdCMkEwHhcNMjUwNTMwMTkzNDI1WhcNMjUwNjA2MTkzNDI1WjAYMRYwFAYD VQQDEw02ODNhMDg0MS0zMDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4f4qM4sH6ZQGjQMXWuLpoFhEVvs6tMMYTuTzEawhVSmxxi098Ptc9YHz9M5K NLfkbD/FvcWZPzVnaIxEhUROAJNg48UGAHj//nkdyC8Vea6MVa4/1pwjbqEDqfv0 cEqTIb66YAamSdoaJJAv7shZhlGuGSN2DcR9bdr/SkCjh5mb+OhrB3CJFel3DCoL yWlfHpmSrNLREPaJduYIPDX06/Z6TpbWmsUhytwe1eKVe+2fC6e1oxQ7dEBVcjXT IQbSvDokOJcVehvgutSc/jCiVDlhc/Mf3P3DoNLe/8QO4ijLYOJv2PN5Bfl9Wggk Z6zodrwUfUDOJseamn2ifohwywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFElb5xJz v8BAW3zA7rfimXgOJfpmMB8GA1UdIwQYMBaAFNW5u6MwXojAAPVik50Ti6UGInsq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUY0Qi84NDg1OEY2QTQ3 MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi8xYm03b3pCZWlNQUE5V0tUblJPTHBRWWll eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFibTdvekJlaU1BQTlXS1RuUk9McFFZaWV5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUY0Qi84NDg1OEY2QTQ3MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi8xYm03b3pCZWlN QUE5V0tUblJPTHBRWWlleW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAl6hVWIyQ6P0U5/gATAu4m+z4eSDR4LbKxey/XPEQ1s+UaIN4sIn0B /sxe/P4nzUyrkE1qIU6BrFYJEVnwB9U3C8t3Hkqkew90boKRTt34t/DqPRPgDXn6 kzn88q0aDJTJ5g3fFH8M+CCo4p9ckdQm2iki0r3O9o2WK4+2Pvi+DX7AUrxQ5q9D zPhovGlfwl1dVnWJ96faG5Nwo6L/jlX0z3Cze/Tx/kb21ArYs0fpNtq6xQDNobjO sBR4BtemwUZKKKMfmgliKLRbmwjYgfVJ0ZVxVOoJcl6WEcHcCbBWNIfJ9fJXaeHj qz2Z0vJazUZuPfN/unUAXdohcTjJeZrZ -----END CERTIFICATE-----Generated at Sat May 31 17:42:37 2025 by rpki-client