$ rpki-client -vvf rpki.apnic.net/member_repository/A912527F/BCFDAFCC10DD11ED80AA2485C4F9AE02/N5vU53MvGo0cOyItt3c8HBVBn0I.mft File: N5vU53MvGo0cOyItt3c8HBVBn0I.mft (raw, json) Hash identifier: oQFbhdBNj6ZG7VLDYtr2xgM2cj5rIpb31HbbPQrG7N0= Subject key identifier: FE:CB:06:1D:40:9D:C8:08:86:BF:F7:B9:D4:DB:97:1D:2F:EA:1D:F8 Authority key identifier: 37:9B:D4:E7:73:2F:1A:8D:1C:3B:22:2D:B7:77:3C:1C:15:41:9F:42 Certificate issuer: /CN=A912527F/serialNumber=379BD4E7732F1A8D1C3B222DB7773C1C15419F42 Certificate serial: 027A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N5vU53MvGo0cOyItt3c8HBVBn0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912527F/BCFDAFCC10DD11ED80AA2485C4F9AE02/N5vU53MvGo0cOyItt3c8HBVBn0I.mft Manifest number: 0276 Signing time: Sun 15 Jun 2025 01:24:11 +0000 Manifest this update: Sun 15 Jun 2025 01:24:10 +0000 Manifest next update: Sun 22 Jun 2025 01:24:10 +0000 Files and hashes: 1: N5vU53MvGo0cOyItt3c8HBVBn0I.crl (hash: 01D92hqy5waQaC5QicpmFeilrwq7GdNYEOqxHHl16ZU=) 2: BE0481A4EFA111ED87AD1F0BC4F9AE02.roa (hash: NQf56Uj9m/23kHcMdcevpS6JxvdYxcKJxC0qqxSbed4=) 3: 2C257150DBCA11EF920CC12BC4F9AE02.roa (hash: bsnKJQWxF5UUZ+STFoaUleWe8G1krXm9q3cPKIQEWa4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912527F/BCFDAFCC10DD11ED80AA2485C4F9AE02/N5vU53MvGo0cOyItt3c8HBVBn0I.crl rsync://rpki.apnic.net/member_repository/A912527F/BCFDAFCC10DD11ED80AA2485C4F9AE02/N5vU53MvGo0cOyItt3c8HBVBn0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N5vU53MvGo0cOyItt3c8HBVBn0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 01:24:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 634 (0x27a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912527F, serialNumber=379BD4E7732F1A8D1C3B222DB7773C1C15419F42 Validity Not Before: Jun 15 01:24:10 2025 GMT Not After : Jun 22 01:24:10 2025 GMT Subject: CN=684e20ba-506b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:4d:08:16:55:18:4a:49:3c:c2:5d:b0:32:b9: ca:f9:57:0a:5f:44:af:8b:0d:8c:bf:a8:80:95:92: 29:fa:38:27:5d:15:ae:88:fe:ea:30:06:fe:bf:08: ab:2b:58:f0:a0:93:78:1b:49:1d:76:16:c5:39:56: da:bb:93:da:c7:43:94:5d:96:a3:ff:af:18:20:95: 70:da:4f:71:91:35:23:0e:b6:2a:6c:63:a2:be:02: 61:12:7f:96:2c:07:d8:6c:15:08:e1:bb:71:9d:dd: c1:85:b4:d1:e3:ed:d5:1f:28:50:2d:d2:04:70:58: 56:66:db:2c:eb:c9:cb:d9:02:a3:73:76:61:dc:cc: 36:ea:02:90:10:39:e8:0d:0f:d5:52:68:c3:6e:48: 32:46:28:a3:ab:07:f4:81:ec:31:b1:80:05:46:b1: 2e:a8:08:4d:d2:4d:3e:ad:9e:9a:94:ef:d0:92:d1: 9d:92:ac:e9:d6:7c:b2:9d:16:ce:0e:f8:a2:65:ff: 9d:71:d0:6d:fd:55:7e:29:84:90:b8:7f:54:a5:01: 16:f4:3a:f2:fd:df:ed:f8:f7:95:ce:09:7d:0e:34: 35:61:58:b4:3d:ad:00:57:bf:bd:17:94:f0:05:3a: f5:03:fe:03:af:ac:1c:f5:d2:19:4f:51:06:dd:cf: c8:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:CB:06:1D:40:9D:C8:08:86:BF:F7:B9:D4:DB:97:1D:2F:EA:1D:F8 X509v3 Authority Key Identifier: keyid:37:9B:D4:E7:73:2F:1A:8D:1C:3B:22:2D:B7:77:3C:1C:15:41:9F:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912527F/BCFDAFCC10DD11ED80AA2485C4F9AE02/N5vU53MvGo0cOyItt3c8HBVBn0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N5vU53MvGo0cOyItt3c8HBVBn0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912527F/BCFDAFCC10DD11ED80AA2485C4F9AE02/N5vU53MvGo0cOyItt3c8HBVBn0I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:2e:ca:d6:c0:80:42:5b:85:75:66:3d:7b:6a:1a:7d:83:ab: 70:38:7c:52:45:9c:c0:ae:06:ce:01:8d:47:9b:5a:3f:a2:b4: 75:32:7c:03:df:d7:f5:31:66:74:e3:83:b7:b9:98:3b:45:d8: 96:b9:88:44:8f:aa:7a:b4:de:a3:7a:e5:9f:d5:ad:bf:f0:9d: 09:2d:58:fd:24:16:16:bd:35:b3:5e:78:45:79:8a:77:08:1c: 94:5d:34:79:47:11:09:28:08:20:07:a9:8a:f9:f7:a1:ae:9f: 51:6b:a5:90:c7:2f:89:e3:7d:b5:3f:ba:9f:a5:5c:cf:a0:f6: 56:9c:9f:e8:99:d4:7c:d7:e8:39:f3:bb:f8:49:e6:08:b0:00: c3:c0:fb:22:f2:10:90:42:ec:c8:3d:21:ca:76:c3:83:0c:7a: b6:b2:f7:0c:b3:56:68:ef:62:75:8e:fa:0a:82:fa:dd:69:6e: b7:1b:b3:bc:b1:21:7d:fc:93:45:90:8a:34:1d:1b:78:a5:e7: b5:86:6e:10:f2:a3:23:3f:20:ed:e5:af:66:2e:d6:9b:d0:1a: 6c:5c:53:0b:58:82:75:98:1e:4d:23:b3:9b:14:c6:2c:79:e1: 09:93:62:9f:34:b8:13:3f:65:c4:5a:4b:aa:c5:56:9f:49:2e: 35:6e:0f:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjUyN0YxMTAvBgNVBAUTKDM3OUJENEU3NzMyRjFBOEQxQzNCMjIyREI3NzczQzFD MTU0MTlGNDIwHhcNMjUwNjE1MDEyNDEwWhcNMjUwNjIyMDEyNDEwWjAYMRYwFAYD VQQDEw02ODRlMjBiYS01MDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuU0IFlUYSkk8wl2wMrnK+VcKX0Sviw2Mv6iAlZIp+jgnXRWuiP7qMAb+vwir K1jwoJN4G0kddhbFOVbau5Pax0OUXZaj/68YIJVw2k9xkTUjDrYqbGOivgJhEn+W LAfYbBUI4btxnd3BhbTR4+3VHyhQLdIEcFhWZtss68nL2QKjc3Zh3Mw26gKQEDno DQ/VUmjDbkgyRiijqwf0gewxsYAFRrEuqAhN0k0+rZ6alO/QktGdkqzp1nyynRbO DviiZf+dcdBt/VV+KYSQuH9UpQEW9Dry/d/t+PeVzgl9DjQ1YVi0Pa0AV7+9F5Tw BTr1A/4Dr6wc9dIZT1EG3c/IVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP7LBh1A ncgIhr/3udTblx0v6h34MB8GA1UdIwQYMBaAFDeb1OdzLxqNHDsiLbd3PBwVQZ9C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTI3Ri9CQ0ZEQUZDQzEw REQxMUVEODBBQTI0ODVDNEY5QUUwMi9ONXZVNTNNdkdvMGNPeUl0dDNjOEhCVkJu MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL041dlU1M012R28wY095SXR0M2M4SEJWQm4wSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTI3Ri9CQ0ZEQUZDQzEwREQxMUVEODBBQTI0ODVDNEY5QUUwMi9ONXZVNTNNdkdv MGNPeUl0dDNjOEhCVkJuMEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtLsrWwIBCW4V1Zj17ahp9g6twOHxSRZzArgbOAY1Hm1o/orR1MnwD 39f1MWZ044O3uZg7RdiWuYhEj6p6tN6jeuWf1a2/8J0JLVj9JBYWvTWzXnhFeYp3 CByUXTR5RxEJKAggB6mK+fehrp9Ra6WQxy+J4321P7qfpVzPoPZWnJ/omdR81+g5 87v4SeYIsADDwPsi8hCQQuzIPSHKdsODDHq2svcMs1Zo72J1jvoKgvrdaW63G7O8 sSF9/JNFkIo0HRt4pee1hm4Q8qMjPyDt5a9mLtab0BpsXFMLWIJ1mB5NI7ObFMYs eeEJk2KfNLgTP2XEWkuqxVafSS41bg95 -----END CERTIFICATE-----Generated at Sun Jun 15 07:10:01 2025 by rpki-client