$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3D37/5EE9782ADCEE11ED8C38D031C4F9AE02/bPYEPvYahE8I4lOhk9XZRlSWJ50.mft File: bPYEPvYahE8I4lOhk9XZRlSWJ50.mft (raw, json) Hash identifier: k6OXncVlkwnjA6KGV1i9J1E6drar2Pwm3HY/cr9SlJg= Subject key identifier: 36:C6:C0:CB:5E:07:15:F5:33:2A:88:4F:F0:B4:88:1B:03:15:75:7B Authority key identifier: 6C:F6:04:3E:F6:1A:84:4F:08:E2:53:A1:93:D5:D9:46:54:96:27:9D Certificate issuer: /CN=A91F3D37/serialNumber=6CF6043EF61A844F08E253A193D5D9465496279D Certificate serial: 0190 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bPYEPvYahE8I4lOhk9XZRlSWJ50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3D37/5EE9782ADCEE11ED8C38D031C4F9AE02/bPYEPvYahE8I4lOhk9XZRlSWJ50.mft Manifest number: 018D Signing time: Sat 31 May 2025 03:13:00 +0000 Manifest this update: Sat 31 May 2025 03:12:59 +0000 Manifest next update: Sat 07 Jun 2025 03:12:59 +0000 Files and hashes: 1: bPYEPvYahE8I4lOhk9XZRlSWJ50.crl (hash: 8NYQlD15iOiOpDeACHhTVCnjnZcSYW3xe27AB2hBS8M=) 2: 6F67CF8CDCF111ED9828F232C4F9AE02.roa (hash: UUhAaQeYrl7H0iCSeqj7JAOZrw6JcIfsjlzbvaWf61k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3D37/5EE9782ADCEE11ED8C38D031C4F9AE02/bPYEPvYahE8I4lOhk9XZRlSWJ50.crl rsync://rpki.apnic.net/member_repository/A91F3D37/5EE9782ADCEE11ED8C38D031C4F9AE02/bPYEPvYahE8I4lOhk9XZRlSWJ50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bPYEPvYahE8I4lOhk9XZRlSWJ50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:12:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 400 (0x190) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3D37, serialNumber=6CF6043EF61A844F08E253A193D5D9465496279D Validity Not Before: May 31 03:12:59 2025 GMT Not After : Jun 7 03:12:59 2025 GMT Subject: CN=683a73bc-5470 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:7a:b9:1f:8e:7f:32:dd:86:02:37:63:84:56: 09:9c:b9:85:71:fe:f8:1a:5a:9f:4a:b6:5c:55:9d: e6:6d:e9:18:eb:5c:34:21:8d:4e:a2:2e:7a:8d:1a: d9:c3:ea:87:ab:df:e5:33:72:77:71:c7:f7:2a:49: 1a:a0:b1:d4:e4:b7:2b:af:98:81:bd:c8:22:f2:5f: 34:95:43:1c:39:ae:53:d5:c6:d0:6f:69:91:78:25: dc:89:ee:80:24:ff:b0:8d:7f:26:0c:a5:f5:33:1d: 6c:53:74:d6:01:1a:1a:b5:60:d6:22:de:ba:94:d2: 60:73:54:52:14:18:c5:5c:02:87:77:2f:e5:a6:ef: 0d:98:c1:71:71:23:86:5e:99:ac:01:6c:7b:b5:5e: ee:3c:48:08:df:ee:54:9f:39:20:16:ff:38:ce:eb: 74:6c:ff:c3:87:ae:d6:db:da:c4:65:2b:26:0a:42: 59:f2:a5:ca:66:27:3a:72:ff:24:10:be:30:38:eb: f9:f1:63:64:43:89:8a:6c:5e:7c:49:e7:9c:e1:a3: 34:1b:05:1f:f2:e7:56:d5:23:83:10:54:2e:33:5a: 07:28:a6:61:ba:34:bc:7a:e2:dc:1c:7c:76:33:b1: ae:34:34:2a:9e:d2:ac:b4:27:33:38:c5:27:46:e1: 00:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:C6:C0:CB:5E:07:15:F5:33:2A:88:4F:F0:B4:88:1B:03:15:75:7B X509v3 Authority Key Identifier: keyid:6C:F6:04:3E:F6:1A:84:4F:08:E2:53:A1:93:D5:D9:46:54:96:27:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3D37/5EE9782ADCEE11ED8C38D031C4F9AE02/bPYEPvYahE8I4lOhk9XZRlSWJ50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bPYEPvYahE8I4lOhk9XZRlSWJ50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3D37/5EE9782ADCEE11ED8C38D031C4F9AE02/bPYEPvYahE8I4lOhk9XZRlSWJ50.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:6f:61:42:d5:ed:d6:7f:8f:14:5f:41:a6:4d:74:76:14:51: 38:bd:01:43:4f:3d:e1:8e:3b:6e:ec:36:30:0f:63:83:09:f1: 4c:d1:ee:b0:b7:a2:2f:dd:74:55:f9:f9:41:b3:21:44:3a:90: 91:85:57:63:b6:a5:30:02:cc:a6:a5:d7:2b:8f:0f:4a:6d:8e: 31:76:e1:0b:81:2d:05:1b:f1:10:03:ed:8d:ac:f2:be:17:3f: f1:96:33:91:cc:b5:be:df:88:63:4d:b1:13:0f:31:5c:b4:94: 51:6d:d7:e2:93:f2:7e:11:1d:93:2e:98:16:95:58:b7:b9:d2: a7:30:2b:a6:75:82:1a:94:4d:ee:73:62:68:9a:4a:39:c8:f0: 43:2d:d5:2a:a9:3e:32:ee:3d:64:d0:86:2b:6b:ba:0a:36:a0: b5:a1:ef:1c:25:c7:15:f6:88:6b:6a:42:d3:23:6d:2d:e5:d9: eb:df:29:8b:6c:77:90:b7:95:12:27:84:22:93:31:5c:f3:7f: 93:47:fc:6e:0c:df:7d:5a:b7:f7:db:d4:65:9c:12:02:c5:7a: c6:92:0b:88:c0:f5:64:e0:dc:ec:30:9d:43:91:ed:73:12:7c: dc:e8:a2:bc:d2:c9:b6:56:a1:5a:06:a2:82:b8:dc:f8:60:be: 11:db:5c:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNEMzcxMTAvBgNVBAUTKDZDRjYwNDNFRjYxQTg0NEYwOEUyNTNBMTkzRDVEOTQ2 NTQ5NjI3OUQwHhcNMjUwNTMxMDMxMjU5WhcNMjUwNjA3MDMxMjU5WjAYMRYwFAYD VQQDEw02ODNhNzNiYy01NDcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA23q5H45/Mt2GAjdjhFYJnLmFcf74GlqfSrZcVZ3mbekY61w0IY1Ooi56jRrZ w+qHq9/lM3J3ccf3KkkaoLHU5Lcrr5iBvcgi8l80lUMcOa5T1cbQb2mReCXcie6A JP+wjX8mDKX1Mx1sU3TWARoatWDWIt66lNJgc1RSFBjFXAKHdy/lpu8NmMFxcSOG XpmsAWx7tV7uPEgI3+5UnzkgFv84zut0bP/Dh67W29rEZSsmCkJZ8qXKZic6cv8k EL4wOOv58WNkQ4mKbF58Seec4aM0GwUf8udW1SODEFQuM1oHKKZhujS8euLcHHx2 M7GuNDQqntKstCczOMUnRuEAYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDbGwMte BxX1MyqIT/C0iBsDFXV7MB8GA1UdIwQYMBaAFGz2BD72GoRPCOJToZPV2UZUlied MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0QzNy81RUU5NzgyQURD RUUxMUVEOEMzOEQwMzFDNEY5QUUwMi9iUFlFUHZZYWhFOEk0bE9oazlYWlJsU1dK NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JQWUVQdllhaEU4STRsT2hrOVhaUmxTV0o1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0QzNy81RUU5NzgyQURDRUUxMUVEOEMzOEQwMzFDNEY5QUUwMi9iUFlFUHZZYWhF OEk0bE9oazlYWlJsU1dKNTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYb2FC1e3Wf48UX0GmTXR2FFE4vQFDTz3hjjtu7DYwD2ODCfFM0e6w t6Iv3XRV+flBsyFEOpCRhVdjtqUwAsympdcrjw9KbY4xduELgS0FG/EQA+2NrPK+ Fz/xljORzLW+34hjTbETDzFctJRRbdfik/J+ER2TLpgWlVi3udKnMCumdYIalE3u c2Jomko5yPBDLdUqqT4y7j1k0IYra7oKNqC1oe8cJccV9ohrakLTI20t5dnr3ymL bHeQt5USJ4QikzFc83+TR/xuDN99Wrf329RlnBICxXrGkguIwPVk4NzsMJ1Dke1z Enzc6KK80sm2VqFaBqKCuNz4YL4R21xs -----END CERTIFICATE-----Generated at Sat May 31 16:29:34 2025 by rpki-client