$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBEFA/172546BC0B3711F08C239863C4F9AE02/x8206hgWXlmC0KkZ_0f3JnbgUHM.mft File: x8206hgWXlmC0KkZ_0f3JnbgUHM.mft (raw, json) Hash identifier: acNq8ficmIa9yJYggNP/mr1U44gOeJPDLO+g8YDSdig= Subject key identifier: 64:96:6A:5A:F0:78:32:42:0D:71:46:98:72:60:EC:7F:0C:6A:53:6F Authority key identifier: C7:CD:B4:EA:18:16:5E:59:82:D0:A9:19:FF:47:F7:26:76:E0:50:73 Certificate issuer: /CN=A91FBEFA/serialNumber=C7CDB4EA18165E5982D0A919FF47F72676E05073 Certificate serial: 22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8206hgWXlmC0KkZ_0f3JnbgUHM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBEFA/172546BC0B3711F08C239863C4F9AE02/x8206hgWXlmC0KkZ_0f3JnbgUHM.mft Manifest number: 22 Signing time: Sat 31 May 2025 07:25:55 +0000 Manifest this update: Sat 31 May 2025 07:25:55 +0000 Manifest next update: Sat 07 Jun 2025 07:25:55 +0000 Files and hashes: 1: x8206hgWXlmC0KkZ_0f3JnbgUHM.crl (hash: ZstTLkpl6edx2PFOigosKcqOMleztMr/B7d9dDXCBao=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBEFA/172546BC0B3711F08C239863C4F9AE02/x8206hgWXlmC0KkZ_0f3JnbgUHM.crl rsync://rpki.apnic.net/member_repository/A91FBEFA/172546BC0B3711F08C239863C4F9AE02/x8206hgWXlmC0KkZ_0f3JnbgUHM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8206hgWXlmC0KkZ_0f3JnbgUHM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:25:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBEFA, serialNumber=C7CDB4EA18165E5982D0A919FF47F72676E05073 Validity Not Before: May 31 07:25:55 2025 GMT Not After : Jun 7 07:25:55 2025 GMT Subject: CN=683aaf03-1040 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:1d:c6:9f:d3:75:0e:51:e8:e0:fd:e1:a8:2c: a5:68:a3:f3:ef:10:d9:fa:f6:40:7b:66:e2:d4:54: 03:83:a7:71:2c:e5:ce:46:2f:59:c5:41:ad:c3:c1: 09:42:61:2a:4b:7f:77:49:ad:66:e7:d9:8f:69:7b: e4:7e:be:83:74:a2:fc:ac:de:ba:f8:3a:f8:e0:96: d2:12:92:e1:e3:13:f9:64:b0:06:a1:6f:5c:e6:40: 7c:e2:3b:4a:7b:4a:e4:16:bf:e2:58:f9:8f:69:6c: ea:3e:e4:08:dd:74:c1:72:36:c7:18:3f:f9:97:a3: 37:4e:46:a7:a3:a4:31:98:d1:93:bb:1a:58:3e:b1: 7c:ae:bc:64:8a:1d:5a:b2:1d:bc:b7:d7:8f:dc:d1: 87:0c:48:49:84:4a:02:ce:98:f6:67:83:6e:bc:aa: 37:04:7d:8b:3d:10:a1:82:4c:74:65:94:53:49:0b: 11:8a:f9:4a:2a:17:29:61:1c:83:65:40:00:84:ea: 69:ba:78:c7:a9:bf:eb:78:48:88:24:16:2e:25:fe: a4:43:71:25:04:67:03:ee:6b:36:75:db:b4:73:cf: 05:90:6b:68:a0:cf:f6:2d:24:c9:35:18:17:28:27: 61:4a:b0:81:90:b8:15:16:32:bf:f5:03:bd:f3:82: 6e:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:96:6A:5A:F0:78:32:42:0D:71:46:98:72:60:EC:7F:0C:6A:53:6F X509v3 Authority Key Identifier: keyid:C7:CD:B4:EA:18:16:5E:59:82:D0:A9:19:FF:47:F7:26:76:E0:50:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBEFA/172546BC0B3711F08C239863C4F9AE02/x8206hgWXlmC0KkZ_0f3JnbgUHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8206hgWXlmC0KkZ_0f3JnbgUHM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBEFA/172546BC0B3711F08C239863C4F9AE02/x8206hgWXlmC0KkZ_0f3JnbgUHM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:0f:ec:1e:72:ea:30:9e:58:60:5f:e0:1b:90:75:2f:3a:c3: 14:06:50:ed:25:1e:f1:79:eb:e1:0a:c9:73:64:cb:ff:8c:63: de:63:f9:94:46:a2:18:5e:1e:b5:23:10:7a:57:8c:fa:ff:c5: 66:67:cd:ee:4c:2e:4f:34:b7:65:26:71:04:b9:4b:50:2d:0c: c7:87:ea:7f:6f:d2:a5:5c:99:be:6e:33:e0:55:61:c3:3a:a5: eb:61:41:e1:1f:8f:04:42:ce:5d:e0:09:96:1f:0f:71:46:66: 53:d7:9d:d2:42:a8:cb:41:40:5d:ff:03:9f:1f:ef:7e:30:93: 3d:d7:15:c5:22:a0:cc:60:80:80:6a:10:72:d7:78:3f:08:63: 77:d9:b2:a6:65:cd:a3:67:b6:ee:80:53:7d:73:4d:cd:70:a7: 36:75:7c:f4:de:ca:b9:58:b3:dd:21:ef:26:0d:69:98:8c:dd: 6f:14:c4:cf:6a:7b:63:db:45:fd:f2:0b:dd:17:1b:3d:b3:80: 4a:6f:9c:c1:36:a8:f8:69:49:e4:37:aa:3d:96:e3:2c:01:40: 3e:2d:5d:d1:4d:4f:97:ee:65:12:ab:60:47:f3:2b:41:a2:14: c0:80:d3:48:54:c3:58:49:5c:47:6a:c6:68:aa:a0:4c:4b:0e: 8e:87:3a:9c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QkVGQTExMC8GA1UEBRMoQzdDREI0RUExODE2NUU1OTgyRDBBOTE5RkY0N0Y3MjY3 NkUwNTA3MzAeFw0yNTA1MzEwNzI1NTVaFw0yNTA2MDcwNzI1NTVaMBgxFjAUBgNV BAMTDTY4M2FhZjAzLTEwNDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMHcaf03UOUejg/eGoLKVoo/PvENn69kB7ZuLUVAODp3Es5c5GL1nFQa3DwQlC YSpLf3dJrWbn2Y9pe+R+voN0ovys3rr4OvjgltISkuHjE/lksAahb1zmQHziO0p7 SuQWv+JY+Y9pbOo+5AjddMFyNscYP/mXozdORqejpDGY0ZO7Glg+sXyuvGSKHVqy Hby314/c0YcMSEmESgLOmPZng268qjcEfYs9EKGCTHRllFNJCxGK+UoqFylhHINl QACE6mm6eMepv+t4SIgkFi4l/qRDcSUEZwPuazZ127RzzwWQa2igz/YtJMk1GBco J2FKsIGQuBUWMr/1A73zgm4xAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZJZqWvB4 MkINcUaYcmDsfwxqU28wHwYDVR0jBBgwFoAUx8206hgWXlmC0KkZ/0f3JnbgUHMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZCRUZBLzE3MjU0NkJDMEIz NzExRjA4QzIzOTg2M0M0RjlBRTAyL3g4MjA2aGdXWGxtQzBLa1pfMGYzSm5iZ1VI TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveDgyMDZoZ1dYbG1DMEtrWl8wZjNKbmJnVUhNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZC RUZBLzE3MjU0NkJDMEIzNzExRjA4QzIzOTg2M0M0RjlBRTAyL3g4MjA2aGdXWGxt QzBLa1pfMGYzSm5iZ1VITS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFkP7B5y6jCeWGBf4BuQdS86wxQGUO0lHvF56+EKyXNky/+MY95j+ZRG ohheHrUjEHpXjPr/xWZnze5MLk80t2UmcQS5S1AtDMeH6n9v0qVcmb5uM+BVYcM6 pethQeEfjwRCzl3gCZYfD3FGZlPXndJCqMtBQF3/A58f734wkz3XFcUioMxggIBq EHLXeD8IY3fZsqZlzaNntu6AU31zTc1wpzZ1fPTeyrlYs90h7yYNaZiM3W8UxM9q e2PbRf3yC90XGz2zgEpvnME2qPhpSeQ3qj2W4ywBQD4tXdFNT5fuZRKrYEfzK0Gi FMCA00hUw1hJXEdqxmiqoExLDo6HOpw= -----END CERTIFICATE-----Generated at Sat May 31 15:42:05 2025 by rpki-client