$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDBE8/9D363178152B11EB9BD4EB46C4F9AE02/81QJOUhm-0CKDRiOC30AzFpzlI4.mft File: 81QJOUhm-0CKDRiOC30AzFpzlI4.mft (raw, json) Hash identifier: OCmwXY14Wo5aa1GOWU1GjqoHymK4tIlPWROYbcU/1Vs= Subject key identifier: 83:05:92:78:F6:FB:D9:EA:A5:C0:5C:47:80:A9:B9:C9:02:58:FD:4F Authority key identifier: F3:54:09:39:48:66:FB:40:8A:0D:18:8E:0B:7D:00:CC:5A:73:94:8E Certificate issuer: /CN=A91FDBE8/serialNumber=F35409394866FB408A0D188E0B7D00CC5A73948E Certificate serial: 0793 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/81QJOUhm-0CKDRiOC30AzFpzlI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDBE8/9D363178152B11EB9BD4EB46C4F9AE02/81QJOUhm-0CKDRiOC30AzFpzlI4.mft Manifest number: 0785 Signing time: Fri 30 May 2025 21:42:47 +0000 Manifest this update: Fri 30 May 2025 21:42:47 +0000 Manifest next update: Fri 06 Jun 2025 21:42:47 +0000 Files and hashes: 1: 81QJOUhm-0CKDRiOC30AzFpzlI4.crl (hash: u7qMN5cqj9o1EafPevfgjZLqBcQkgLXGYOyvnhslwQw=) 2: 06F011A2134B11F0AA41F90AC4F9AE02.roa (hash: YTvlEQrf2/CpKkJlEJSGtIQ8Px/n8vlq3KbTCRS5T8Q=) 3: 407DD9CED09211EE843A0F22C4F9AE02.roa (hash: DYjETZSzXLPZu6k/scGKmt/lU3UqCl+3wtEbXL9L8Pg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDBE8/9D363178152B11EB9BD4EB46C4F9AE02/81QJOUhm-0CKDRiOC30AzFpzlI4.crl rsync://rpki.apnic.net/member_repository/A91FDBE8/9D363178152B11EB9BD4EB46C4F9AE02/81QJOUhm-0CKDRiOC30AzFpzlI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/81QJOUhm-0CKDRiOC30AzFpzlI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:42:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1939 (0x793) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDBE8, serialNumber=F35409394866FB408A0D188E0B7D00CC5A73948E Validity Not Before: May 30 21:42:47 2025 GMT Not After : Jun 6 21:42:47 2025 GMT Subject: CN=683a2657-0eaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:03:00:7e:57:dc:e2:84:5e:27:51:27:ff:19: 03:47:4b:41:03:4b:71:06:3d:e5:0d:e2:d1:08:3d: f3:ee:10:22:f7:42:13:d5:36:b6:3f:b6:58:9e:da: 82:50:3a:55:fa:92:c5:d2:27:bf:30:86:37:04:29: 42:eb:d5:a2:ca:a7:d1:d1:73:fc:89:b6:ea:0a:06: 1e:2d:12:04:ff:47:dc:46:4e:b0:59:4d:38:07:ca: 52:ec:b3:08:b9:58:af:b2:f8:5a:65:b1:ed:b1:be: ab:96:53:b1:6a:80:63:6f:8e:f5:bf:55:5c:a7:5e: 0f:75:da:c9:86:e1:ee:67:1c:1a:ea:87:7d:de:45: 11:60:b3:c1:5b:88:be:85:0f:d8:fa:f1:43:30:37: 5a:2a:55:f9:e5:b0:2f:f0:d6:2a:fd:ca:37:bc:1d: b8:30:0b:c2:69:76:40:ce:e4:d8:07:60:de:51:f3: 4d:b6:e1:41:cc:41:d0:5f:b2:f5:89:93:37:a4:2a: 61:2f:e2:f8:ae:3f:0c:b6:75:3c:c7:1d:75:29:18: 94:77:9b:d4:cb:f7:2e:46:de:f6:fd:10:b8:94:ea: ae:ec:5c:c0:25:bc:75:85:7e:f0:55:24:81:f4:ea: ef:e4:17:25:1f:02:00:ab:8f:f8:51:9c:0d:06:ea: eb:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:05:92:78:F6:FB:D9:EA:A5:C0:5C:47:80:A9:B9:C9:02:58:FD:4F X509v3 Authority Key Identifier: keyid:F3:54:09:39:48:66:FB:40:8A:0D:18:8E:0B:7D:00:CC:5A:73:94:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDBE8/9D363178152B11EB9BD4EB46C4F9AE02/81QJOUhm-0CKDRiOC30AzFpzlI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/81QJOUhm-0CKDRiOC30AzFpzlI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDBE8/9D363178152B11EB9BD4EB46C4F9AE02/81QJOUhm-0CKDRiOC30AzFpzlI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:a6:aa:fa:dd:0f:a5:50:e2:dd:2f:6d:ef:83:79:ad:24:11: 65:41:ca:f2:6a:0b:a5:d3:ed:cf:60:ca:83:6c:25:fd:48:8d: d8:29:90:ca:df:91:56:35:1c:31:83:0f:e1:11:66:b4:d0:fb: 5c:0e:04:ca:86:23:aa:02:91:b8:60:43:8a:0b:68:b4:fd:de: fe:5c:db:71:53:41:3a:49:14:a5:cc:12:22:99:ed:93:a8:cb: ea:50:7c:e6:cf:e8:df:45:dd:78:7b:16:d5:47:cf:09:91:df: 14:95:b7:19:7a:3b:af:ae:d3:46:91:7e:99:5d:0a:c2:3e:09: 41:db:09:a3:a9:ee:5a:e1:7b:f5:0d:18:99:e5:4f:f0:22:77: 3a:41:6b:e8:fc:b8:bc:4e:c4:19:d5:f5:54:ab:12:9d:e3:54: 24:94:29:aa:7f:09:04:80:b7:41:9a:2c:f6:ff:db:fb:06:ca: 23:3f:fb:53:52:dd:17:48:2e:0b:ec:0e:8f:3a:97:e5:4a:02: c1:b3:68:0a:26:6e:1b:dd:f5:e6:e4:e9:f5:e4:b5:5e:b7:44: d8:33:52:9b:0a:ff:cc:8e:b1:2b:a8:d3:8e:08:ed:e9:b7:54: 36:1a:93:90:01:c7:f6:48:a3:f7:cd:fe:8e:1d:43:7b:60:86: 52:2d:d7:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRCRTgxMTAvBgNVBAUTKEYzNTQwOTM5NDg2NkZCNDA4QTBEMTg4RTBCN0QwMEND NUE3Mzk0OEUwHhcNMjUwNTMwMjE0MjQ3WhcNMjUwNjA2MjE0MjQ3WjAYMRYwFAYD VQQDEw02ODNhMjY1Ny0wZWFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqAMAflfc4oReJ1En/xkDR0tBA0txBj3lDeLRCD3z7hAi90IT1Ta2P7ZYntqC UDpV+pLF0ie/MIY3BClC69WiyqfR0XP8ibbqCgYeLRIE/0fcRk6wWU04B8pS7LMI uVivsvhaZbHtsb6rllOxaoBjb471v1Vcp14PddrJhuHuZxwa6od93kURYLPBW4i+ hQ/Y+vFDMDdaKlX55bAv8NYq/co3vB24MAvCaXZAzuTYB2DeUfNNtuFBzEHQX7L1 iZM3pCphL+L4rj8MtnU8xx11KRiUd5vUy/cuRt72/RC4lOqu7FzAJbx1hX7wVSSB 9Orv5BclHwIAq4/4UZwNBurr3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIMFknj2 +9nqpcBcR4CpuckCWP1PMB8GA1UdIwQYMBaAFPNUCTlIZvtAig0Yjgt9AMxac5SO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREJFOC85RDM2MzE3ODE1 MkIxMUVCOUJENEVCNDZDNEY5QUUwMi84MVFKT1VobS0wQ0tEUmlPQzMwQXpGcHps STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzgxUUpPVWhtLTBDS0RSaU9DMzBBekZwemxJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REJFOC85RDM2MzE3ODE1MkIxMUVCOUJENEVCNDZDNEY5QUUwMi84MVFKT1VobS0w Q0tEUmlPQzMwQXpGcHpsSTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCepqr63Q+lUOLdL23vg3mtJBFlQcryagul0+3PYMqDbCX9SI3YKZDK 35FWNRwxgw/hEWa00PtcDgTKhiOqApG4YEOKC2i0/d7+XNtxU0E6SRSlzBIime2T qMvqUHzmz+jfRd14exbVR88Jkd8UlbcZejuvrtNGkX6ZXQrCPglB2wmjqe5a4Xv1 DRiZ5U/wInc6QWvo/Li8TsQZ1fVUqxKd41QklCmqfwkEgLdBmiz2/9v7BsojP/tT Ut0XSC4L7A6POpflSgLBs2gKJm4b3fXm5On15LVet0TYM1KbCv/MjrErqNOOCO3p t1Q2GpOQAcf2SKP3zf6OHUN7YIZSLddp -----END CERTIFICATE-----Generated at Sat May 31 16:49:05 2025 by rpki-client