$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft File: rdlBjw-bVfO3N2oJPbEdutOu_sg.mft (raw, json) Hash identifier: QcfuiCsJbGXywVzSUJ/DtX6M5h9UXYca1ABLYRGH6l0= Subject key identifier: 8D:AD:FA:38:62:9E:43:48:C3:FE:A7:A4:75:38:B1:4B:BD:1C:2B:95 Authority key identifier: AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 Certificate issuer: /CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Certificate serial: 0F10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft Manifest number: 0DFF Signing time: Thu 24 Apr 2025 18:01:32 +0000 Manifest this update: Thu 24 Apr 2025 18:01:32 +0000 Manifest next update: Thu 01 May 2025 18:01:32 +0000 Files and hashes: 1: rdlBjw-bVfO3N2oJPbEdutOu_sg.crl (hash: uGZev8kOseIrMsmntxAZN8ewXXExJ2po38WXco0GbO0=) 2: C735E33E1CB511EAB25B4768C4F9AE02.roa (hash: gyfd8yfpcrsdUm362X9/UdNM3mZBfttbTMqza0Depgs=) 3: 7FBDDAE21A9411F087D4BC86C4F9AE02.roa (hash: +Ezz1sJmRvUn7ofcNz6zucevlAunQnc+pNOTGGaRXs4=) 4: 59C7E67C77CC11EAB764ED34C4F9AE02.roa (hash: EzmlYDIYm1xOfkY9Xnj3Z3SdpIMp5IBIa3y1OFN4eK4=) 5: 8C9FFE4C0F2F11EE85C26C11C4F9AE02.roa (hash: j4EoNG6mPHnfhB1j42qxfNdNciMiEtrw2eJw4okWk0c=) 6: 1B88FC66823D11EC8E3CB427C4F9AE02.roa (hash: mn3sE8XpKvVWd9UbJMQ1OKNZuj9ls9xZNaLI7yAeig4=) 7: 2C3F5F0C1CB711EAAA03506DC4F9AE02.roa (hash: bNiaBxLSaec5WOSjMopZEcGaxVMAzUvwIFjDNwtzIXo=) 8: E79C4936420D11EC89D7C163C4F9AE02.roa (hash: GZEHbZPKjeuR0ecqQm5rnrjDlAtA7+UPoWqGJrdoIkc=) 9: B3B97C46510311EDA562C34DC4F9AE02.roa (hash: jtYt/pU+ooAIkmhjTmjyuCh451/edjbb8L7BPLMNm/A=) 10: 0134DE8CC77211EC9B377B2DC4F9AE02.roa (hash: ZJYPWa1zVWtxLs6YCjscQz9YmQ7dtlau1Mnxy99zbcE=) 11: 849EBBA60CCA11ED97820077C4F9AE02.roa (hash: GSV2og2vZfzpYKFvoDWTGBKAz8dr3rumZNKGGO3jHY0=) 12: B86FBE4A2E3611EB84E66039C4F9AE02.roa (hash: sLEtAwDgKICVdyB7EW9vv5iaJ4c0aSu+tPvZcmtVPKg=) 13: AB2FDD4CA56911EA8F159D7BC4F9AE02.roa (hash: 5W1NfRExr5L2qQL5H136NrVKGoHwAdTpjf3o+jUw4fM=) 14: 27F85F401B0811EEA3313C43C4F9AE02.roa (hash: lKd14RCSyU2vrCrtMJxPKeMYKMqLc77HXu+4PUEXtJI=) 15: 8B0EC9621D0611EDBAB65333C4F9AE02.roa (hash: hncV0VkKM0GHDpxNiR5xutYPqnkMPO9a8qqBVzFUIdw=) 16: 3949DB48056711F09B0C9329C4F9AE02.roa (hash: U4MBST0cKb6RFa7OBRmsAZWClvdETmVq86pgqwAZx3A=) 17: 624A8CB0A75211EDB46F8967C4F9AE02.roa (hash: H2lEK0K0kQYeTrVqMlmr1093uk7p/5P20OC6SGdaiQI=) 18: 640C18A214AD11EEAA685687C4F9AE02.roa (hash: rUC7HAYZSDdTVk9lHvd/Wl7kYoqQUYqgnEKO2kEnvDw=) 19: DA05FC5C58A311EC952D4D56C4F9AE02.roa (hash: FQj+ZVLFAzitzpiwqDx7ibMG/ct51yOTa3qwsRqg/wY=) 20: 706D3EA4140211EB87D7320FC4F9AE02.roa (hash: a/CArtNqj+X7FLzknDiVLBMQF895RFRrNOFXjFmjzNk=) 21: AE9742429B5711EB8E3BEB19C4F9AE02.roa (hash: IgmSu1xooZkjMSIy5UaMn0KJuSc5PeG/UAY2iz4v00A=) 22: 5A4C001A77CC11EAB764ED34C4F9AE02.roa (hash: ynz+ZXVYon6qCCwSg68HnlbJgsz7oHMRryvXyKUGv9g=) 23: 54AB633219D211F09C581262C4F9AE02.roa (hash: TW7LWSWDjilmokwKD8PcTDpey43GdF1QSznkCaq0KaE=) 24: 6ACBF170CC4C11ED8B54A36FC4F9AE02.roa (hash: PNn4hloLWsO3US5KtLsv/gJGCuFiAV7h2ZsPkySZuPM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:01:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3856 (0xf10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0, serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Validity Not Before: Apr 24 18:01:32 2025 GMT Not After : May 1 18:01:32 2025 GMT Subject: CN=680a7c7c-725c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:35:a0:39:3f:9e:0c:6e:5b:0d:5c:df:35:b7: 92:99:88:5c:4e:70:c2:73:8c:5d:26:64:23:ee:eb: 56:b7:a8:77:74:90:d5:bf:bc:e7:de:91:7c:cd:e5: d6:7e:85:f2:2e:d2:52:b5:5b:69:b3:b0:06:89:b0: d6:01:36:d7:d8:8b:8f:60:ea:a4:4b:01:59:32:55: 3a:ad:82:2b:7b:c0:35:de:25:ca:7c:78:b0:01:d0: 51:09:cd:59:b4:e3:e3:ee:66:a1:58:7a:1b:df:8c: 34:64:7a:24:c3:5b:0d:ed:0b:9d:1c:8e:9d:9d:8a: a0:eb:a5:80:bb:87:d2:5b:38:20:5f:bb:89:1d:26: 88:57:2f:b4:c3:4f:61:b2:f6:0d:7c:8a:c0:58:16: 1d:98:e8:bc:81:76:3a:7e:2f:a5:0a:0b:ee:47:30: 7c:39:53:e1:83:37:3a:93:d3:ee:33:dc:0e:b7:a9: 1e:23:81:70:7a:e2:8f:7d:f0:c8:aa:7c:4d:8d:70: 90:b1:35:75:46:12:e7:67:10:44:d9:f1:84:f2:a7: fa:b0:07:be:7e:db:a7:33:3a:4b:6a:7b:c4:da:d0: 12:28:8c:40:9a:bc:ee:87:0d:ab:7b:eb:74:38:88: e3:1f:73:74:32:fb:1d:6c:8f:e9:86:5b:3e:05:c2: 02:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:AD:FA:38:62:9E:43:48:C3:FE:A7:A4:75:38:B1:4B:BD:1C:2B:95 X509v3 Authority Key Identifier: keyid:AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:bd:61:d6:ce:bd:b5:87:e2:85:f9:41:04:62:e8:3f:0d:b4: 0d:f4:d3:df:f1:a9:3b:31:51:04:11:50:21:7a:f9:af:7c:f3: 65:91:f9:71:ec:80:da:b8:29:1a:3f:bc:59:11:d7:24:c8:00: d8:ab:40:b1:92:1f:f5:6a:8c:69:44:33:2c:b8:1d:3a:93:26: 88:82:be:a9:ae:aa:11:e3:10:ed:57:47:e5:44:de:66:0c:3b: 24:5f:19:f3:21:ff:88:3d:53:64:30:f7:5c:99:ef:b0:9c:48: cb:e6:31:70:6d:00:75:1a:96:bd:f9:5d:d8:d2:9c:82:af:f6: c1:f4:0f:a3:ab:68:83:7c:a0:7c:7a:b6:16:23:23:e8:59:df: f2:3c:e0:47:ca:e9:f0:b9:bd:09:bb:77:4d:df:04:16:cc:a6: 97:7d:67:a3:0a:5f:09:cb:e2:f5:10:93:64:c4:bb:8e:5e:0c: c0:5e:f1:f5:21:03:5e:85:11:56:1b:b1:ac:0e:9e:bb:1e:5d: ac:aa:0b:0d:09:40:fb:e9:47:ff:03:1d:66:eb:94:3b:ce:56: f2:29:bf:f5:f2:1a:96:58:7a:d5:26:97:3b:dc:4b:93:82:28: 9f:5f:e3:30:d2:be:33:a0:99:d6:0c:8c:d4:41:87:41:bf:3d: 5c:cb:d7:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDxAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKEFERDk0MThGMEY5QjU1RjNCNzM3NkEwOTNEQjExREJB RDNBRUZFQzgwHhcNMjUwNDI0MTgwMTMyWhcNMjUwNTAxMTgwMTMyWjAYMRYwFAYD VQQDEw02ODBhN2M3Yy03MjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6DWgOT+eDG5bDVzfNbeSmYhcTnDCc4xdJmQj7utWt6h3dJDVv7zn3pF8zeXW foXyLtJStVtps7AGibDWATbX2IuPYOqkSwFZMlU6rYIre8A13iXKfHiwAdBRCc1Z tOPj7mahWHob34w0ZHokw1sN7QudHI6dnYqg66WAu4fSWzggX7uJHSaIVy+0w09h svYNfIrAWBYdmOi8gXY6fi+lCgvuRzB8OVPhgzc6k9PuM9wOt6keI4FweuKPffDI qnxNjXCQsTV1RhLnZxBE2fGE8qf6sAe+ftunMzpLanvE2tASKIxAmrzuhw2re+t0 OIjjH3N0MvsdbI/phls+BcICQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI2t+jhi nkNIw/6npHU4sUu9HCuVMB8GA1UdIwQYMBaAFK3ZQY8Pm1XztzdqCT2xHbrTrv7I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xRDY2RDQ4NkQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9yZGxCanctYlZmTzNOMm9KUGJFZHV0T3Vf c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JkbEJqdy1iVmZPM04yb0pQYkVkdXRPdV9zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkZBMC8xRDY2RDQ4NkQ4Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9yZGxCanctYlZm TzNOMm9KUGJFZHV0T3Vfc2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXvWHWzr21h+KF+UEEYug/DbQN9NPf8ak7MVEEEVAhevmvfPNlkflx 7IDauCkaP7xZEdckyADYq0Cxkh/1aoxpRDMsuB06kyaIgr6prqoR4xDtV0flRN5m DDskXxnzIf+IPVNkMPdcme+wnEjL5jFwbQB1Gpa9+V3Y0pyCr/bB9A+jq2iDfKB8 erYWIyPoWd/yPOBHyunwub0Ju3dN3wQWzKaXfWejCl8Jy+L1EJNkxLuOXgzAXvH1 IQNehRFWG7GsDp67Hl2sqgsNCUD76Uf/Ax1m65Q7zlbyKb/18hqWWHrVJpc73EuT giifX+Mw0r4zoJnWDIzUQYdBvz1cy9f8 -----END CERTIFICATE-----Generated at Sat Apr 26 16:38:17 2025 by rpki-client