$ rpki-client -vvf rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft File: mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft (raw, json) Hash identifier: Z6XaIZM2Jjnl13ktMjfpd7CwBzhNtQ9yMC3+WSbTupE= Subject key identifier: 50:EB:C0:5F:D1:4D:6E:CB:4D:13:C2:C2:5D:BF:A3:84:88:55:56:54 Authority key identifier: 99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 Certificate issuer: /CN=A9130F4B/serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Certificate serial: 1024 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft Manifest number: 0FEF Signing time: Tue 06 May 2025 17:31:11 +0000 Manifest this update: Tue 06 May 2025 17:31:11 +0000 Manifest next update: Tue 13 May 2025 17:31:11 +0000 Files and hashes: 1: mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl (hash: E5ekSzR6yQv8HYyRut9spRyE7q21AGRFZ18alv6/QLI=) 2: 64BBCC50909D11ED9EA9867FC4F9AE02.roa (hash: mhCrCLIryxh44WtZLA41qeaUSE+ipopXbFtA9uM/L9M=) 3: B38547B48C1811ED95522F3EC4F9AE02.roa (hash: HXSaiv/+h3LslBJCo/sEGl2BDqm+Kqjgd7hBF3MDYrc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 17:31:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4132 (0x1024) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130F4B, serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Validity Not Before: May 6 17:31:11 2025 GMT Not After : May 13 17:31:11 2025 GMT Subject: CN=681a475f-35f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:2c:cd:4e:49:9f:1f:b8:05:ba:c2:8b:20:09: 68:69:47:fb:87:c1:a5:f8:38:1f:bb:e7:f4:cd:76: f1:ad:c2:0c:db:16:6f:f5:67:09:58:81:ee:b1:32: 8b:73:4d:a8:b3:62:67:a3:fc:87:da:a8:43:d2:75: b7:83:ed:ad:33:9f:c2:0a:f9:21:fa:20:4a:a7:c2: 8c:db:4d:9b:a8:d6:e0:eb:f5:83:e9:a6:a4:44:72: c5:93:4c:14:6b:a3:bc:ab:e5:27:d8:9e:dc:0b:92: 67:cd:ec:83:a9:3e:61:ce:bf:c2:08:65:40:3f:06: 53:e9:df:71:bd:30:6c:07:d5:38:9a:46:2c:ad:91: cd:9c:7a:e2:68:c0:44:6f:0c:cc:71:8b:e1:b2:6e: 5b:9d:31:e7:bf:64:38:1c:fe:57:11:08:76:d4:3a: d5:72:c6:8e:ea:9c:06:bb:41:35:23:18:c0:51:32: 4c:95:0e:b6:71:47:2f:41:5d:8c:db:8f:48:a5:96: b0:9c:c9:b2:ca:13:39:90:14:2a:a5:89:12:71:a2: 23:e8:39:a3:ad:5f:a3:1b:20:2c:66:35:65:25:4d: 90:fc:12:be:e2:e6:9e:26:74:7c:c2:5c:8e:62:a6: 35:5e:f0:5c:03:40:a1:7d:87:93:4a:bb:a3:10:6e: ab:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:EB:C0:5F:D1:4D:6E:CB:4D:13:C2:C2:5D:BF:A3:84:88:55:56:54 X509v3 Authority Key Identifier: keyid:99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:6a:81:62:e1:fb:75:a7:ad:ec:80:62:e2:f8:e4:61:fd:66: d3:dc:c3:5d:7c:81:70:9c:ba:bf:b8:51:8b:a2:9f:35:67:38: 65:d1:ec:2b:e6:10:96:e1:0c:fa:fe:5f:e7:a2:b1:4a:65:e2: 03:1a:80:84:ea:25:65:99:3a:23:5f:db:c6:88:b9:4f:c4:0f: 42:c5:10:67:76:9d:e1:e5:29:2b:12:0a:59:af:8f:5f:2f:71: 04:60:44:3b:65:6b:c4:f3:6e:b7:76:20:c3:7b:aa:d2:93:95: 44:d3:1b:ed:78:59:b5:e0:e6:c7:d5:ce:4c:1b:fe:c5:26:54: 53:51:a9:a3:b8:d9:0f:d2:83:dc:0c:09:75:c9:a4:32:46:74: 20:67:19:4d:c0:50:60:ec:ab:8f:e9:01:61:c4:47:55:5f:0f: 7d:68:cc:15:6e:39:b8:5c:b2:f8:39:ed:75:ee:4c:a0:68:61: b0:3d:38:c0:4f:5b:61:5e:11:25:84:17:4f:47:d7:1d:ba:86: 82:97:24:86:09:ac:81:9b:d9:77:aa:e8:d9:67:f7:99:19:a8: 40:59:03:c2:e8:06:81:f7:93:f2:af:79:8d:46:2d:a0:09:ee: 1c:0c:5e:d6:1f:cf:25:7f:de:10:a2:67:bd:c2:3e:db:9c:75: 33:62:55:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICECQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBGNEIxMTAvBgNVBAUTKDk5MzBEMEZGRUI4NzA3MDFCNEU4RUI0REIzQzA4NjYy MzNGQzVCNTAwHhcNMjUwNTA2MTczMTExWhcNMjUwNTEzMTczMTExWjAYMRYwFAYD VQQDEw02ODFhNDc1Zi0zNWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7yzNTkmfH7gFusKLIAloaUf7h8Gl+Dgfu+f0zXbxrcIM2xZv9WcJWIHusTKL c02os2Jno/yH2qhD0nW3g+2tM5/CCvkh+iBKp8KM202bqNbg6/WD6aakRHLFk0wU a6O8q+Un2J7cC5JnzeyDqT5hzr/CCGVAPwZT6d9xvTBsB9U4mkYsrZHNnHriaMBE bwzMcYvhsm5bnTHnv2Q4HP5XEQh21DrVcsaO6pwGu0E1IxjAUTJMlQ62cUcvQV2M 249IpZawnMmyyhM5kBQqpYkScaIj6DmjrV+jGyAsZjVlJU2Q/BK+4uaeJnR8wlyO YqY1XvBcA0ChfYeTSrujEG6rWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFDrwF/R TW7LTRPCwl2/o4SIVVZUMB8GA1UdIwQYMBaAFJkw0P/rhwcBtOjrTbPAhmIz/FtQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEY0Qi81NzcyQUEzMDU0 RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3RzA2T3ROczhDR1lqUDhX MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21URFFfLXVIQndHMDZPdE5zOENHWWpQOFcxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MEY0Qi81NzcyQUEzMDU0RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3 RzA2T3ROczhDR1lqUDhXMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOaoFi4ft1p63sgGLi+ORh/WbT3MNdfIFwnLq/uFGLop81Zzhl0ewr 5hCW4Qz6/l/norFKZeIDGoCE6iVlmTojX9vGiLlPxA9CxRBndp3h5SkrEgpZr49f L3EEYEQ7ZWvE8263diDDe6rSk5VE0xvteFm14ObH1c5MG/7FJlRTUamjuNkP0oPc DAl1yaQyRnQgZxlNwFBg7KuP6QFhxEdVXw99aMwVbjm4XLL4Oe117kygaGGwPTjA T1thXhElhBdPR9cduoaClySGCayBm9l3qujZZ/eZGahAWQPC6AaB95Pyr3mNRi2g Ce4cDF7WH88lf94Qome9wj7bnHUzYlV9 -----END CERTIFICATE-----Generated at Wed May 7 11:12:58 2025 by rpki-client