$ rpki-client -vvf rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/kSbv5Q1eO1Mf7uRUmrML_npUVQc.mft File: kSbv5Q1eO1Mf7uRUmrML_npUVQc.mft (raw, json) Hash identifier: QQmDx02gWYc6ZhLAh9jyyFJgBbkbKxuMMXR/rvUeziw= Subject key identifier: AE:A0:B8:DF:40:43:55:D1:56:DD:4E:6F:0F:6C:89:4D:0A:EA:AC:AF Authority key identifier: 91:26:EF:E5:0D:5E:3B:53:1F:EE:E4:54:9A:B3:0B:FE:7A:54:55:07 Certificate issuer: /CN=A917F4D3/serialNumber=9126EFE50D5E3B531FEEE4549AB30BFE7A545507 Certificate serial: 01E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSbv5Q1eO1Mf7uRUmrML_npUVQc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/kSbv5Q1eO1Mf7uRUmrML_npUVQc.mft Manifest number: 01E3 Signing time: Fri 13 Jun 2025 01:42:08 +0000 Manifest this update: Fri 13 Jun 2025 01:42:08 +0000 Manifest next update: Fri 20 Jun 2025 01:42:08 +0000 Files and hashes: 1: kSbv5Q1eO1Mf7uRUmrML_npUVQc.crl (hash: ddAeABavFb+sCRkyNqp4cxGWah8bleHD0vIGFO+SRGA=) 2: 32091726626D11ED87BDAC82C4F9AE02.roa (hash: hbdkOUT0eBQ98Cc0oj/9P37h6+6Kubs6FMec8+3wPTM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/kSbv5Q1eO1Mf7uRUmrML_npUVQc.crl rsync://rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/kSbv5Q1eO1Mf7uRUmrML_npUVQc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSbv5Q1eO1Mf7uRUmrML_npUVQc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 01:42:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 486 (0x1e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F4D3, serialNumber=9126EFE50D5E3B531FEEE4549AB30BFE7A545507 Validity Not Before: Jun 13 01:42:08 2025 GMT Not After : Jun 20 01:42:08 2025 GMT Subject: CN=684b81f0-e095 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:bc:2c:ac:f3:3e:21:4c:72:95:df:85:31:16: 02:a4:ff:aa:0e:04:b6:50:34:59:11:42:fc:b4:56: 46:50:6a:ce:51:64:1c:e3:ad:72:0a:9b:a8:0d:cb: 2a:a6:f7:c6:9c:1f:44:80:bd:7b:c3:c2:09:16:0e: 8d:b4:1b:09:60:86:d4:c3:a2:d5:dd:9e:49:0d:c0: e7:b6:99:90:17:92:ae:51:31:22:e0:64:44:c3:f5: fd:4e:97:45:cc:48:da:90:45:91:8c:f7:75:77:4a: 81:f5:56:b7:4c:1a:5e:43:f3:0d:99:f9:ab:e7:11: 39:25:30:8d:d4:f8:5c:38:f3:8f:44:df:ce:07:e4: 58:2b:72:57:20:dc:bd:7d:7e:a0:f2:27:8b:68:4e: 9c:e3:f7:a1:88:56:13:67:96:31:76:64:1d:6f:03: 15:7d:af:c5:52:2e:46:57:82:35:80:38:5a:29:8f: f9:7e:3b:93:d0:ff:f7:c3:44:46:85:59:99:b3:fe: 4e:38:81:11:80:64:c4:e6:d8:ef:08:76:6b:fd:68: fe:43:8d:ed:66:cf:78:f2:2c:a7:a0:05:35:c3:15: df:42:f7:34:97:81:7d:c5:aa:fd:27:21:87:b5:37: 33:4e:56:04:79:f8:a3:1e:cb:87:12:27:a8:81:40: 58:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:A0:B8:DF:40:43:55:D1:56:DD:4E:6F:0F:6C:89:4D:0A:EA:AC:AF X509v3 Authority Key Identifier: keyid:91:26:EF:E5:0D:5E:3B:53:1F:EE:E4:54:9A:B3:0B:FE:7A:54:55:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/kSbv5Q1eO1Mf7uRUmrML_npUVQc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSbv5Q1eO1Mf7uRUmrML_npUVQc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/kSbv5Q1eO1Mf7uRUmrML_npUVQc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:1f:93:d5:ea:37:f9:ce:52:35:ca:a7:23:31:53:3c:f2:88: 29:8e:e6:76:9d:1f:d1:2c:e1:39:43:1d:87:2a:f8:64:5c:75: 4b:fc:64:69:dd:f6:07:94:0d:35:99:8f:01:48:91:8d:ae:4a: 76:4f:fd:20:fe:fe:5e:19:d5:79:48:fd:a0:c0:53:bd:d7:d3: 77:22:84:a3:47:74:4a:d9:33:ab:c9:25:14:94:b9:79:84:19: ed:15:db:19:f9:9c:a7:00:e8:b8:22:c9:19:73:d1:ed:43:3c: 1f:e4:a1:9c:01:0b:9d:8b:c6:d5:f7:e4:65:2e:1a:24:87:9b: ac:31:d6:41:46:81:be:a5:58:1e:e2:58:ce:6c:0c:f4:e9:cd: 1e:80:20:2f:ea:a6:13:f5:27:18:cd:83:5f:94:07:ba:42:99: 35:15:8d:91:31:e9:a4:d6:24:92:5a:89:2b:bb:29:28:a7:61: 4d:43:b7:bc:cc:bf:bb:38:b2:11:d5:8d:e9:9a:0e:29:91:ad: 30:1d:89:4e:d7:8a:14:02:78:ed:0f:ce:31:42:59:c0:90:0b: 7f:02:d5:11:6e:59:ea:a6:ab:43:9c:aa:8b:00:77:44:0e:9f: 43:e4:b3:e1:03:ad:21:f8:46:92:dd:82:be:02:56:40:0b:93: ea:da:b3:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y0RDMxMTAvBgNVBAUTKDkxMjZFRkU1MEQ1RTNCNTMxRkVFRTQ1NDlBQjMwQkZF N0E1NDU1MDcwHhcNMjUwNjEzMDE0MjA4WhcNMjUwNjIwMDE0MjA4WjAYMRYwFAYD VQQDEw02ODRiODFmMC1lMDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4bwsrPM+IUxyld+FMRYCpP+qDgS2UDRZEUL8tFZGUGrOUWQc461yCpuoDcsq pvfGnB9EgL17w8IJFg6NtBsJYIbUw6LV3Z5JDcDntpmQF5KuUTEi4GREw/X9TpdF zEjakEWRjPd1d0qB9Va3TBpeQ/MNmfmr5xE5JTCN1PhcOPOPRN/OB+RYK3JXINy9 fX6g8ieLaE6c4/ehiFYTZ5YxdmQdbwMVfa/FUi5GV4I1gDhaKY/5fjuT0P/3w0RG hVmZs/5OOIERgGTE5tjvCHZr/Wj+Q43tZs948iynoAU1wxXfQvc0l4F9xar9JyGH tTczTlYEefijHsuHEieogUBYSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK6guN9A Q1XRVt1Obw9siU0K6qyvMB8GA1UdIwQYMBaAFJEm7+UNXjtTH+7kVJqzC/56VFUH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjREMy82ODAzNEM2ODYy NjYxMUVEODI0MkM3ODZDNEY5QUUwMi9rU2J2NVExZU8xTWY3dVJVbXJNTF9ucFVW UWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tTYnY1UTFlTzFNZjd1UlVtck1MX25wVVZRYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjREMy82ODAzNEM2ODYyNjYxMUVEODI0MkM3ODZDNEY5QUUwMi9rU2J2NVExZU8x TWY3dVJVbXJNTF9ucFVWUWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCH5PV6jf5zlI1yqcjMVM88ogpjuZ2nR/RLOE5Qx2HKvhkXHVL/GRp 3fYHlA01mY8BSJGNrkp2T/0g/v5eGdV5SP2gwFO919N3IoSjR3RK2TOrySUUlLl5 hBntFdsZ+ZynAOi4IskZc9HtQzwf5KGcAQudi8bV9+RlLhokh5usMdZBRoG+pVge 4ljObAz06c0egCAv6qYT9ScYzYNflAe6Qpk1FY2RMemk1iSSWokruykop2FNQ7e8 zL+7OLIR1Y3pmg4pka0wHYlO14oUAnjtD84xQlnAkAt/AtURblnqpqtDnKqLAHdE Dp9D5LPhA60h+EaS3YK+AlZAC5Pq2rPn -----END CERTIFICATE-----Generated at Sat Jun 14 19:06:22 2025 by rpki-client