$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft File: g8kBUb4XghT8FnWDNNO21Sd6PL8.mft (raw, json) Hash identifier: KnccxK+bfBy7JpF/7ozM8Xn59lANjNboCCyalHMEoT0= Subject key identifier: 96:7E:6F:42:3F:92:18:E8:3D:04:79:8D:D1:4D:A7:11:4E:94:63:B4 Authority key identifier: 83:C9:01:51:BE:17:82:14:FC:16:75:83:34:D3:B6:D5:27:7A:3C:BF Certificate issuer: /CN=A91F4091/serialNumber=83C90151BE178214FC16758334D3B6D5277A3CBF Certificate serial: C1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft Manifest number: BF Signing time: Tue 03 Jun 2025 06:05:25 +0000 Manifest this update: Tue 03 Jun 2025 06:05:25 +0000 Manifest next update: Tue 10 Jun 2025 06:05:25 +0000 Files and hashes: 1: g8kBUb4XghT8FnWDNNO21Sd6PL8.crl (hash: om20/zwLQWlxLivvKzs5U2LqiY/0+LMtUk38qOKrZHM=) 2: 1E110D7E1DA011EFBC90D55EC4F9AE02.roa (hash: YulPvT0hM25YZIDv5KjG+XciSXVC4OQirSgi0X2f6Hc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.crl rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 06:05:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4091, serialNumber=83C90151BE178214FC16758334D3B6D5277A3CBF Validity Not Before: Jun 3 06:05:25 2025 GMT Not After : Jun 10 06:05:25 2025 GMT Subject: CN=683e90a5-22c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:23:c7:26:25:9e:63:42:40:d3:3b:79:24:9f: d3:0e:95:fd:aa:bf:e6:f7:96:ba:e5:3e:6d:aa:51: b7:99:3d:71:57:27:02:68:26:1c:61:8b:88:e7:b7: 84:cf:70:32:a2:ca:d5:12:69:56:24:99:8d:07:de: d3:e1:be:a0:52:11:bb:01:6a:6c:b9:dc:92:01:c5: aa:02:1b:d8:42:a1:37:1f:70:f3:f8:50:3e:b9:f3: 25:82:7c:f8:69:e1:28:17:84:b5:c2:ae:3d:37:d2: 10:d5:0b:7c:4a:4b:3b:7d:40:3c:20:e4:b2:fd:8f: ec:d4:89:d9:f0:b7:99:90:64:38:7e:c6:37:1a:f1: d4:8b:50:fd:ce:3a:69:d1:c7:8f:03:8e:60:c7:f8: c4:aa:28:18:d8:be:0e:84:40:72:db:63:90:05:9a: 6a:69:37:39:3b:6d:58:67:f7:6c:b3:11:c0:b7:40: f2:4e:36:b7:7b:0b:d8:21:5f:4b:68:44:87:99:85: a9:39:b8:95:c3:86:b1:3b:81:17:e7:8a:30:9e:7a: 05:46:cf:e1:16:a1:28:be:5b:7b:e3:17:37:7f:ef: e2:bc:00:b5:7f:1e:94:f9:9d:e2:50:70:d0:6c:68: e0:e8:8a:2c:af:6a:08:20:51:27:94:1f:c4:93:c9: 39:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:7E:6F:42:3F:92:18:E8:3D:04:79:8D:D1:4D:A7:11:4E:94:63:B4 X509v3 Authority Key Identifier: keyid:83:C9:01:51:BE:17:82:14:FC:16:75:83:34:D3:B6:D5:27:7A:3C:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:2a:f1:73:33:29:bb:19:ac:63:6d:7e:2e:cf:14:d9:7d:01: 65:7e:de:9e:73:45:86:2d:15:78:33:9e:a9:f0:5f:57:a8:3f: 18:42:e2:3e:63:bc:28:77:86:dc:f3:df:56:a7:5f:7f:d5:a0: 02:f2:a6:e3:8a:45:5f:9a:b4:ab:6f:c1:2f:04:d1:fb:da:82: 33:dc:cf:f2:92:8b:19:02:cf:59:c8:80:c5:d1:3e:11:43:ad: bf:f5:a4:4b:f1:7a:f1:62:aa:85:6e:0d:ea:1f:40:26:81:b4: 5b:71:79:71:4b:38:f4:07:6a:fe:f9:8a:5b:21:c1:01:d2:52: 56:b7:8f:07:17:76:36:04:43:ac:d0:b2:ac:f7:ec:28:a3:49: 76:f8:cd:64:9e:8c:8d:b6:2a:54:5a:3c:fa:c5:b5:fb:10:b5: f5:c6:ef:c2:e3:f1:aa:cf:e2:17:b5:a9:e4:2f:b1:c5:16:e9: 8e:dd:fb:3b:a8:80:eb:5c:5b:74:29:c1:8f:5d:6f:5f:a8:35: 84:46:55:2e:ed:7a:f1:a4:55:27:67:6e:64:3d:a1:23:d5:59: 80:71:84:b2:bd:17:e7:4f:f4:69:05:b2:af:a5:55:80:e9:dc: 59:44:1c:5f:3f:02:f9:3d:c0:1c:74:a0:81:8b:dd:19:59:68: 9c:dc:9f:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQwOTExMTAvBgNVBAUTKDgzQzkwMTUxQkUxNzgyMTRGQzE2NzU4MzM0RDNCNkQ1 Mjc3QTNDQkYwHhcNMjUwNjAzMDYwNTI1WhcNMjUwNjEwMDYwNTI1WjAYMRYwFAYD VQQDEw02ODNlOTBhNS0yMmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApCPHJiWeY0JA0zt5JJ/TDpX9qr/m95a65T5tqlG3mT1xVycCaCYcYYuI57eE z3AyosrVEmlWJJmNB97T4b6gUhG7AWpsudySAcWqAhvYQqE3H3Dz+FA+ufMlgnz4 aeEoF4S1wq49N9IQ1Qt8Sks7fUA8IOSy/Y/s1InZ8LeZkGQ4fsY3GvHUi1D9zjpp 0cePA45gx/jEqigY2L4OhEBy22OQBZpqaTc5O21YZ/dssxHAt0DyTja3ewvYIV9L aESHmYWpObiVw4axO4EX54ownnoFRs/hFqEovlt74xc3f+/ivAC1fx6U+Z3iUHDQ bGjg6Iosr2oIIFEnlB/Ek8k5/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJZ+b0I/ khjoPQR5jdFNpxFOlGO0MB8GA1UdIwQYMBaAFIPJAVG+F4IU/BZ1gzTTttUnejy/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDA5MS81QTExNkJBQTFE OUQxMUVGQTEwRjJEM0FDNEY5QUUwMi9nOGtCVWI0WGdoVDhGbldETk5PMjFTZDZQ TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c4a0JVYjRYZ2hUOEZuV0ROTk8yMVNkNlBMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDA5MS81QTExNkJBQTFEOUQxMUVGQTEwRjJEM0FDNEY5QUUwMi9nOGtCVWI0WGdo VDhGbldETk5PMjFTZDZQTDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAKvFzMym7GaxjbX4uzxTZfQFlft6ec0WGLRV4M56p8F9XqD8YQuI+ Y7wod4bc899Wp19/1aAC8qbjikVfmrSrb8EvBNH72oIz3M/ykosZAs9ZyIDF0T4R Q62/9aRL8XrxYqqFbg3qH0AmgbRbcXlxSzj0B2r++YpbIcEB0lJWt48HF3Y2BEOs 0LKs9+woo0l2+M1knoyNtipUWjz6xbX7ELX1xu/C4/Gqz+IXtankL7HFFumO3fs7 qIDrXFt0KcGPXW9fqDWERlUu7XrxpFUnZ25kPaEj1VmAcYSyvRfnT/RpBbKvpVWA 6dxZRBxfPwL5PcAcdKCBi90ZWWic3J8z -----END CERTIFICATE-----Generated at Tue Jun 3 23:43:08 2025 by rpki-client