$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.mft File: 4deDfrzHqaTRdRZXhgR2OivQQnI.mft (raw, json) Hash identifier: OKHKvn1N04oxhpfFbu/H2EYsrvxttnNnwuo5AJwUNLY= Subject key identifier: C2:7D:1C:EF:0A:87:6D:41:8C:DA:96:BD:93:8D:D3:1B:8A:A3:31:79 Authority key identifier: E1:D7:83:7E:BC:C7:A9:A4:D1:75:16:57:86:04:76:3A:2B:D0:42:72 Certificate issuer: /CN=A91EE92F/serialNumber=E1D7837EBCC7A9A4D17516578604763A2BD04272 Certificate serial: 88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4deDfrzHqaTRdRZXhgR2OivQQnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.mft Manifest number: 86 Signing time: Sat 31 May 2025 06:09:35 +0000 Manifest this update: Sat 31 May 2025 06:09:35 +0000 Manifest next update: Sat 07 Jun 2025 06:09:35 +0000 Files and hashes: 1: 4deDfrzHqaTRdRZXhgR2OivQQnI.crl (hash: DRmmhUqAlQLJvXCtz5OxIY9d6ziJjF3+lUZTYcS7tnU=) 2: 2EC0897A740C11EFB881CE37C4F9AE02.roa (hash: jK7WeiMtYEjncK+3WbHQbUVCOX5jz02RAdo98TCxxKk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.crl rsync://rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4deDfrzHqaTRdRZXhgR2OivQQnI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:09:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE92F, serialNumber=E1D7837EBCC7A9A4D17516578604763A2BD04272 Validity Not Before: May 31 06:09:35 2025 GMT Not After : Jun 7 06:09:35 2025 GMT Subject: CN=683a9d1f-42c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:90:5f:b5:b9:4e:b2:87:cb:1f:7a:ce:fa:00: 86:11:a1:25:a7:fa:35:a5:fd:00:bc:a2:fc:2a:43: cc:cc:ea:4b:bb:11:fc:af:00:89:98:e1:24:7d:f2: 0b:33:62:28:38:86:a4:8b:f7:5d:4e:02:ee:a4:96: 51:d1:ff:75:a7:d0:49:1d:12:af:d9:18:b5:0c:f7: 92:22:97:0b:ec:ee:06:f0:55:06:b2:63:be:90:09: 0b:f2:41:8b:ad:71:fb:06:33:10:8a:c0:46:b1:5e: d6:d6:42:02:63:65:21:5a:84:58:eb:51:c1:7e:3f: 93:e4:77:f1:c0:05:63:dd:e7:d9:17:f4:6c:1e:ab: da:91:49:7c:37:f6:b0:21:6a:45:dd:1a:9a:f4:ee: af:46:fe:cd:e6:b6:1e:ff:e0:b7:1f:51:cc:3d:ae: 80:37:1a:0b:17:42:f8:bd:58:ad:3d:8b:43:6d:51: 91:51:05:31:9e:1e:74:c5:8d:d0:d3:18:21:1a:7b: 0b:c9:98:ca:53:23:79:8a:1e:9b:a3:a8:49:9f:fe: 1f:60:bc:a2:ab:89:a8:7b:ed:66:92:cd:b4:ce:b4: e1:fe:4c:fb:3c:c6:a6:02:0e:c4:09:f1:bd:f5:e8: 0e:a3:2f:2f:ae:01:ed:09:8b:85:3b:90:c3:50:18: 9d:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:7D:1C:EF:0A:87:6D:41:8C:DA:96:BD:93:8D:D3:1B:8A:A3:31:79 X509v3 Authority Key Identifier: keyid:E1:D7:83:7E:BC:C7:A9:A4:D1:75:16:57:86:04:76:3A:2B:D0:42:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4deDfrzHqaTRdRZXhgR2OivQQnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:1c:77:18:6f:0f:c1:1e:96:6d:98:43:35:e2:24:83:7b:08: 39:3c:ff:f1:08:e7:57:c7:c6:e9:a5:2e:98:a5:0c:e0:86:b9: 12:7e:5b:0b:37:ad:ad:01:89:3f:d7:d3:5b:33:71:3a:6c:fc: e6:56:e8:f8:ef:c5:f7:45:56:e6:2a:aa:e2:5b:27:ec:3b:04: 7f:b5:36:10:9c:44:77:b2:3e:1f:84:ce:7b:fc:94:a4:99:c7: 5a:d6:a9:8d:12:fa:31:3d:a2:28:66:61:eb:f5:32:e7:84:2a: 15:67:7b:b8:99:28:89:13:8d:27:26:32:14:8e:21:80:80:af: 0d:7f:b6:18:ad:10:1b:e8:f0:80:1a:b3:6f:ce:38:4f:11:e6: 26:04:8f:64:8e:32:4d:ee:82:26:f1:18:ef:7b:91:43:9c:c6: ba:13:df:01:da:bf:9d:38:9f:32:27:a9:74:0b:59:bb:99:ff: 0a:70:b5:c8:bf:2a:55:40:c3:32:f0:19:2a:b6:72:5b:83:59: 86:8b:3a:42:b7:0d:af:d4:9e:aa:4a:06:c7:05:db:de:93:35: ec:f9:82:23:1c:a8:e5:43:79:4c:4e:15:84:eb:48:ea:e6:fe: 6d:1e:86:8d:bd:ea:44:4a:49:b9:5b:01:f2:8b:bd:37:48:18: c3:5e:4b:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU5MkYxMTAvBgNVBAUTKEUxRDc4MzdFQkNDN0E5QTREMTc1MTY1Nzg2MDQ3NjNB MkJEMDQyNzIwHhcNMjUwNTMxMDYwOTM1WhcNMjUwNjA3MDYwOTM1WjAYMRYwFAYD VQQDEw02ODNhOWQxZi00MmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqZBftblOsofLH3rO+gCGEaElp/o1pf0AvKL8KkPMzOpLuxH8rwCJmOEkffIL M2IoOIaki/ddTgLupJZR0f91p9BJHRKv2Ri1DPeSIpcL7O4G8FUGsmO+kAkL8kGL rXH7BjMQisBGsV7W1kICY2UhWoRY61HBfj+T5HfxwAVj3efZF/RsHqvakUl8N/aw IWpF3Rqa9O6vRv7N5rYe/+C3H1HMPa6ANxoLF0L4vVitPYtDbVGRUQUxnh50xY3Q 0xghGnsLyZjKUyN5ih6bo6hJn/4fYLyiq4moe+1mks20zrTh/kz7PMamAg7ECfG9 9egOoy8vrgHtCYuFO5DDUBidXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMJ9HO8K h21BjNqWvZON0xuKozF5MB8GA1UdIwQYMBaAFOHXg368x6mk0XUWV4YEdjor0EJy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTkyRi8xQjI5MEI1RTc0 MEIxMUVGOUU5QzAzMzZDNEY5QUUwMi80ZGVEZnJ6SHFhVFJkUlpYaGdSMk9pdlFR bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRkZURmcnpIcWFUUmRSWlhoZ1IyT2l2UVFuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTkyRi8xQjI5MEI1RTc0MEIxMUVGOUU5QzAzMzZDNEY5QUUwMi80ZGVEZnJ6SHFh VFJkUlpYaGdSMk9pdlFRbkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHHHcYbw/BHpZtmEM14iSDewg5PP/xCOdXx8bppS6YpQzghrkSflsL N62tAYk/19NbM3E6bPzmVuj478X3RVbmKqriWyfsOwR/tTYQnER3sj4fhM57/JSk mcda1qmNEvoxPaIoZmHr9TLnhCoVZ3u4mSiJE40nJjIUjiGAgK8Nf7YYrRAb6PCA GrNvzjhPEeYmBI9kjjJN7oIm8Rjve5FDnMa6E98B2r+dOJ8yJ6l0C1m7mf8KcLXI vypVQMMy8BkqtnJbg1mGizpCtw2v1J6qSgbHBdvekzXs+YIjHKjlQ3lMThWE60jq 5v5tHoaNvepESkm5WwHyi703SBjDXku+ -----END CERTIFICATE-----Generated at Sat May 31 14:36:44 2025 by rpki-client