$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft File: b8Lt8MURUqO-wRSaG9su2yk8nZU.mft (raw, json) Hash identifier: MtMlQUrADG87ocXYJe83E6n02kw/cEWto3s8ZRXWNX4= Subject key identifier: D1:99:6F:A4:5A:82:39:DE:B7:6B:2E:3A:A3:BD:17:41:09:D3:09:E9 Authority key identifier: 6F:C2:ED:F0:C5:11:52:A3:BE:C1:14:9A:1B:DB:2E:DB:29:3C:9D:95 Certificate issuer: /CN=A91AA28B/serialNumber=6FC2EDF0C51152A3BEC1149A1BDB2EDB293C9D95 Certificate serial: 0D65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft Manifest number: 0D3A Signing time: Sat 14 Jun 2025 17:56:51 +0000 Manifest this update: Sat 14 Jun 2025 17:56:51 +0000 Manifest next update: Sat 21 Jun 2025 17:56:51 +0000 Files and hashes: 1: b8Lt8MURUqO-wRSaG9su2yk8nZU.crl (hash: 25cAowJKZaKioRr1BCNxFDm14BXRMwjG0Tplpt5G4mo=) 2: 4DD0C31C0E2011F0A0825648C4F9AE02.roa (hash: 8r7MWVk5x8o1qlWsJdhw0htq1GLcuT7GZDff98YKUWg=) 3: 11815E36135311EE94A8A114C4F9AE02.roa (hash: 4RiRLEUaqFnMyzAxg+jhTtVSLZnRrw+D1OLV5ZjDtiE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.crl rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:13:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3429 (0xd65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA28B, serialNumber=6FC2EDF0C51152A3BEC1149A1BDB2EDB293C9D95 Validity Not Before: Jun 14 17:56:51 2025 GMT Not After : Jun 21 17:56:51 2025 GMT Subject: CN=684db7e3-1c5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:69:6b:85:95:2f:a8:80:65:9b:05:13:3d:63: fe:b9:dc:92:85:64:fa:a2:ce:bd:d6:e6:bb:25:c3: 3f:5e:e9:f0:c3:70:14:6e:98:4c:b9:75:a9:54:30: 8c:9a:d8:3b:dd:78:9d:7b:28:f7:13:bc:48:53:f2: bd:7e:ea:6d:0a:62:a3:74:e2:c3:96:f1:47:56:eb: 3d:6a:f8:c7:a3:68:19:e3:02:7f:96:72:11:8b:9a: b7:67:3b:a9:90:18:6a:14:cc:68:0f:e6:81:d8:42: 4c:02:a7:d4:11:f9:a0:49:2a:3e:dd:52:d3:cf:5e: 6a:b2:69:48:ef:a6:b0:54:d3:7f:00:7d:12:82:bb: b4:96:da:b8:8a:d9:85:c1:d9:4f:83:5e:04:8d:95: 8e:36:db:fd:44:b4:f1:8e:61:4d:88:02:9c:40:a9: e2:ae:51:0a:84:fd:62:46:74:b1:84:7a:d6:37:66: ca:7b:8a:9a:5c:77:0f:2c:30:14:a4:52:5b:39:ef: d1:44:17:02:f1:ef:19:66:2b:be:a5:06:f3:1c:38: b4:f8:50:e8:85:b7:6e:dc:82:c2:2f:0f:ca:41:ec: 3e:28:d8:9f:70:d8:7c:bd:58:97:da:8f:4e:6a:c9: 8f:53:f8:8a:f8:da:10:d0:4a:a7:84:b5:61:26:cb: 8b:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:99:6F:A4:5A:82:39:DE:B7:6B:2E:3A:A3:BD:17:41:09:D3:09:E9 X509v3 Authority Key Identifier: keyid:6F:C2:ED:F0:C5:11:52:A3:BE:C1:14:9A:1B:DB:2E:DB:29:3C:9D:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:1e:af:f1:ef:f0:04:82:e7:af:23:dd:c8:08:22:de:29:ac: f2:44:9f:5e:e1:00:bb:ce:37:e5:b2:8a:4a:6b:2b:cc:67:2c: 51:5e:33:f9:e1:25:0d:ff:68:5a:a0:0f:cd:d0:06:2a:cb:4c: d8:58:e6:96:3c:f6:d5:8b:f5:b4:3a:71:cb:ae:11:be:e8:20: bd:cd:5d:a2:a0:59:3b:70:39:25:c8:a0:42:6f:96:fc:d0:39: 52:77:a4:97:1f:ab:d8:bc:4a:0f:80:91:29:d8:04:e3:32:05: 2c:b8:6a:c1:de:fc:61:25:3f:0f:dd:83:4a:b8:01:bb:38:e6: ef:b5:c0:e9:8c:df:7f:bf:79:72:71:e5:00:06:a6:20:42:7d: ff:30:65:6a:47:2b:b1:77:79:d3:aa:7e:24:2b:0d:0a:0f:49: d3:75:cd:c2:9e:c5:44:29:a1:4b:68:23:3f:c5:e4:f1:64:21: 7d:c5:c4:aa:9b:e7:2c:f6:e0:6b:0f:86:aa:a4:78:f6:d8:df: 80:5d:9e:dc:97:bf:10:70:12:85:6e:f0:2b:33:e6:12:f7:7b: a5:3c:01:00:f4:86:8e:34:40:83:d2:42:a7:b4:f4:30:ac:b0: cc:13:d2:22:0c:5c:7b:53:7a:e2:99:e1:52:1f:87:d1:94:3b: 12:2c:86:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUEyOEIxMTAvBgNVBAUTKDZGQzJFREYwQzUxMTUyQTNCRUMxMTQ5QTFCREIyRURC MjkzQzlEOTUwHhcNMjUwNjE0MTc1NjUxWhcNMjUwNjIxMTc1NjUxWjAYMRYwFAYD VQQDEw02ODRkYjdlMy0xYzVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6mlrhZUvqIBlmwUTPWP+udyShWT6os691ua7JcM/Xunww3AUbphMuXWpVDCM mtg73Xideyj3E7xIU/K9fuptCmKjdOLDlvFHVus9avjHo2gZ4wJ/lnIRi5q3Zzup kBhqFMxoD+aB2EJMAqfUEfmgSSo+3VLTz15qsmlI76awVNN/AH0Sgru0ltq4itmF wdlPg14EjZWONtv9RLTxjmFNiAKcQKnirlEKhP1iRnSxhHrWN2bKe4qaXHcPLDAU pFJbOe/RRBcC8e8ZZiu+pQbzHDi0+FDohbdu3ILCLw/KQew+KNifcNh8vViX2o9O asmPU/iK+NoQ0EqnhLVhJsuLCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNGZb6Ra gjnet2suOqO9F0EJ0wnpMB8GA1UdIwQYMBaAFG/C7fDFEVKjvsEUmhvbLtspPJ2V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTI4Qi8xRTAyNjRBQURC QzgxMUU5QkVBOTEwNTFDNEY5QUUwMi9iOEx0OE1VUlVxTy13UlNhRzlzdTJ5azhu WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I4THQ4TVVSVXFPLXdSU2FHOXN1MnlrOG5aVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTI4Qi8xRTAyNjRBQURCQzgxMUU5QkVBOTEwNTFDNEY5QUUwMi9iOEx0OE1VUlVx Ty13UlNhRzlzdTJ5azhuWlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2Hq/x7/AEguevI93ICCLeKazyRJ9e4QC7zjflsopKayvMZyxRXjP5 4SUN/2haoA/N0AYqy0zYWOaWPPbVi/W0OnHLrhG+6CC9zV2ioFk7cDklyKBCb5b8 0DlSd6SXH6vYvEoPgJEp2ATjMgUsuGrB3vxhJT8P3YNKuAG7OObvtcDpjN9/v3ly ceUABqYgQn3/MGVqRyuxd3nTqn4kKw0KD0nTdc3CnsVEKaFLaCM/xeTxZCF9xcSq m+cs9uBrD4aqpHj22N+AXZ7cl78QcBKFbvArM+YS93ulPAEA9IaONECD0kKntPQw rLDME9IiDFx7U3rimeFSH4fRlDsSLIbW -----END CERTIFICATE-----Generated at Sat Jun 14 19:25:54 2025 by rpki-client