$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft File: mG5BZ9azgH9J98JgDWD5wmCacJY.mft (raw, json) Hash identifier: CTDVEbFnfqJ2h2LxCl4LqDIoVTg49UcuZLlyiFh7osw= Subject key identifier: 1B:2F:40:F1:4E:C4:D7:69:FA:01:72:F7:44:ED:AF:1C:37:2A:AA:63 Authority key identifier: 98:6E:41:67:D6:B3:80:7F:49:F7:C2:60:0D:60:F9:C2:60:9A:70:96 Certificate issuer: /CN=A91F3806/serialNumber=986E4167D6B3807F49F7C2600D60F9C2609A7096 Certificate serial: 0C23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mG5BZ9azgH9J98JgDWD5wmCacJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft Manifest number: 0C1D Signing time: Fri 30 May 2025 18:48:17 +0000 Manifest this update: Fri 30 May 2025 18:48:17 +0000 Manifest next update: Fri 06 Jun 2025 18:48:17 +0000 Files and hashes: 1: mG5BZ9azgH9J98JgDWD5wmCacJY.crl (hash: FLMskZ3E6Fttgr9mKocbNm0k0aIGRSI4b7w3/2zv8O0=) 2: 4E54AA4C0B7E11EA9D8BA43CC4F9AE02.roa (hash: w2KSsvNhZHM7vSx0ch62iXJXMI5bT8m3Td81LTUblUM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.crl rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mG5BZ9azgH9J98JgDWD5wmCacJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:48:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3107 (0xc23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3806, serialNumber=986E4167D6B3807F49F7C2600D60F9C2609A7096 Validity Not Before: May 30 18:48:17 2025 GMT Not After : Jun 6 18:48:17 2025 GMT Subject: CN=6839fd71-eccd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:39:d7:2c:1b:63:4a:c9:68:62:af:27:c5:ab: 21:55:a1:f6:39:2f:b1:d6:65:d8:2b:d7:7b:a7:1d: d0:72:95:08:02:a3:f5:d9:66:e6:90:a3:4b:59:f3: e8:df:c3:d6:ae:90:26:01:9e:ec:9b:8c:5f:53:c1: a8:51:73:e1:ae:13:97:31:59:28:39:e8:ab:a7:13: 37:3f:15:5b:05:d7:82:f4:ad:5c:0a:cb:3d:9b:8d: 92:78:cb:a2:c5:56:7e:86:41:a9:46:d4:0c:4d:19: c1:b5:07:d0:eb:d2:7a:9a:d7:6b:b8:a4:42:33:e9: df:0b:a5:80:5f:da:d1:83:de:03:8f:21:7f:32:64: 6e:29:e5:d5:11:ce:e6:f1:f0:82:17:80:c5:98:07: 85:d8:f3:0c:68:26:45:b8:1d:94:8e:dd:02:be:6f: 22:78:da:da:ed:0e:2c:ee:40:e7:f2:60:86:85:ef: e6:7f:11:37:1c:f3:c3:7f:12:c2:65:19:b3:80:4b: 53:79:01:be:17:28:80:bf:1b:72:f3:0d:5d:a6:c3: 38:51:57:c5:2e:bf:07:7e:62:17:1e:8f:2f:dc:e8: 38:b1:51:f7:2c:ed:d7:89:97:27:e8:f4:99:a1:ee: 30:f0:75:a4:99:5a:14:3d:7f:1e:ff:af:c1:df:cb: 78:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:2F:40:F1:4E:C4:D7:69:FA:01:72:F7:44:ED:AF:1C:37:2A:AA:63 X509v3 Authority Key Identifier: keyid:98:6E:41:67:D6:B3:80:7F:49:F7:C2:60:0D:60:F9:C2:60:9A:70:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mG5BZ9azgH9J98JgDWD5wmCacJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:5b:f6:33:20:32:65:6e:db:23:a7:53:5b:8c:70:38:57:e6: 7d:07:ae:9b:cd:c7:d7:d4:57:f4:89:ac:e8:3e:4e:42:fd:d1: 2e:78:41:df:0a:bf:12:6e:d6:98:50:4f:44:d6:04:91:83:cf: 29:6e:c9:fb:71:24:41:a9:b2:54:1c:26:b6:da:08:5c:94:c4: 46:12:c1:3d:b0:da:ab:a2:60:b8:0c:52:fe:84:ff:f7:2b:13: 56:4a:a2:35:20:ad:c2:78:48:8e:16:c5:00:90:a9:f8:c8:67: 6e:ca:5d:d8:bf:b5:1c:d4:8d:6b:45:c7:a5:64:16:35:59:8a: 01:4e:14:d4:83:9d:dc:63:8e:a5:ca:b2:ab:f5:52:9d:ed:d9: 98:b8:1d:19:dc:34:51:a4:72:12:df:75:9e:75:d1:af:40:31: 18:81:ca:63:0b:14:58:db:5c:a0:85:64:30:39:3e:73:0e:9d: c1:b9:9e:4a:e9:4e:1c:8a:5c:e2:41:b3:1b:4e:47:db:6a:73: 27:d5:3d:ae:5c:b3:61:c0:28:34:64:d0:a6:52:86:11:7b:b8: ae:51:48:20:a4:44:08:18:a7:79:ad:0c:a5:96:fd:37:df:bd: a9:8f:ba:e2:75:56:7d:2e:d6:03:5c:b8:14:c1:42:82:e9:93: 0d:ed:8d:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM4MDYxMTAvBgNVBAUTKDk4NkU0MTY3RDZCMzgwN0Y0OUY3QzI2MDBENjBGOUMy NjA5QTcwOTYwHhcNMjUwNTMwMTg0ODE3WhcNMjUwNjA2MTg0ODE3WjAYMRYwFAYD VQQDEw02ODM5ZmQ3MS1lY2NkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2znXLBtjSsloYq8nxashVaH2OS+x1mXYK9d7px3QcpUIAqP12WbmkKNLWfPo 38PWrpAmAZ7sm4xfU8GoUXPhrhOXMVkoOeirpxM3PxVbBdeC9K1cCss9m42SeMui xVZ+hkGpRtQMTRnBtQfQ69J6mtdruKRCM+nfC6WAX9rRg94DjyF/MmRuKeXVEc7m 8fCCF4DFmAeF2PMMaCZFuB2Ujt0Cvm8ieNra7Q4s7kDn8mCGhe/mfxE3HPPDfxLC ZRmzgEtTeQG+FyiAvxty8w1dpsM4UVfFLr8HfmIXHo8v3Og4sVH3LO3XiZcn6PSZ oe4w8HWkmVoUPX8e/6/B38t4AwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBsvQPFO xNdp+gFy90Ttrxw3KqpjMB8GA1UdIwQYMBaAFJhuQWfWs4B/SffCYA1g+cJgmnCW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzgwNi9CNDcyRkUyQTBC N0MxMUVBODA4M0U5MzZDNEY5QUUwMi9tRzVCWjlhemdIOUo5OEpnRFdENXdtQ2Fj SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21HNUJaOWF6Z0g5Sjk4SmdEV0Q1d21DYWNKWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzgwNi9CNDcyRkUyQTBCN0MxMUVBODA4M0U5MzZDNEY5QUUwMi9tRzVCWjlhemdI OUo5OEpnRFdENXdtQ2FjSlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXW/YzIDJlbtsjp1NbjHA4V+Z9B66bzcfX1Ff0iazoPk5C/dEueEHf Cr8SbtaYUE9E1gSRg88pbsn7cSRBqbJUHCa22ghclMRGEsE9sNqromC4DFL+hP/3 KxNWSqI1IK3CeEiOFsUAkKn4yGduyl3Yv7Uc1I1rRcelZBY1WYoBThTUg53cY46l yrKr9VKd7dmYuB0Z3DRRpHIS33WeddGvQDEYgcpjCxRY21yghWQwOT5zDp3BuZ5K 6U4cilziQbMbTkfbanMn1T2uXLNhwCg0ZNCmUoYRe7iuUUggpEQIGKd5rQyllv03 372pj7ridVZ9LtYDXLgUwUKC6ZMN7Y1e -----END CERTIFICATE-----Generated at Sat May 31 17:57:42 2025 by rpki-client