$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft File: 8dIEca4xiTbXk7RttEgiB9lyRYs.mft (raw, json) Hash identifier: NYCVCVSa/+S+/6xYAD5lsW1poeL0LlpQqEmSUJKQALQ= Subject key identifier: 1F:EE:DB:50:A8:9E:DB:A8:24:EB:F3:A7:55:F7:ED:60:BC:F1:6E:4A Authority key identifier: F1:D2:04:71:AE:31:89:36:D7:93:B4:6D:B4:48:22:07:D9:72:45:8B Certificate issuer: /CN=A91D8EAF/serialNumber=F1D20471AE318936D793B46DB4482207D972458B Certificate serial: 0C6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8dIEca4xiTbXk7RttEgiB9lyRYs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft Manifest number: 0C58 Signing time: Sat 14 Jun 2025 18:16:14 +0000 Manifest this update: Sat 14 Jun 2025 18:16:14 +0000 Manifest next update: Sat 21 Jun 2025 18:16:14 +0000 Files and hashes: 1: 8dIEca4xiTbXk7RttEgiB9lyRYs.crl (hash: MQ3ymkyoUMawjGbsb7d4xT1G10jai7DZvFZG1AEVxmY=) 2: F4C2F7F604FF11EABFF6E022C4F9AE02.roa (hash: hMRVZDPhI9uQhHlcLsQL6+B9hhuCOLqR+jjUlDn3sAQ=) 3: 168AD09A04EF11EA9060B76BC4F9AE02.roa (hash: s3U0q40HWyXJCTwtjWa8KKHr421/tnOx6JMPLRqROA8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.crl rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8dIEca4xiTbXk7RttEgiB9lyRYs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:16:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3179 (0xc6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8EAF, serialNumber=F1D20471AE318936D793B46DB4482207D972458B Validity Not Before: Jun 14 18:16:14 2025 GMT Not After : Jun 21 18:16:14 2025 GMT Subject: CN=684dbc6e-ecb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f8:1c:1d:c5:f1:69:52:1e:12:2b:d9:b2:f7: ec:e6:4f:1a:aa:06:b0:76:e1:ad:7f:a3:69:70:b9: 5b:39:70:e6:99:99:ce:ee:ac:45:75:f6:d2:4c:bd: b8:9f:3d:30:90:fe:fa:2e:3a:24:be:5c:7d:af:40: 98:b0:c3:23:cf:dc:bd:a2:ca:53:80:bb:07:a3:f0: 54:d3:37:10:7f:22:93:c1:53:bf:9d:3d:b2:01:ae: 0a:51:62:0f:13:43:62:fc:80:8c:e9:1d:eb:93:1e: a4:5a:eb:47:f6:84:f1:37:c3:79:ef:d6:a1:02:c4: 64:51:25:29:7d:13:67:ab:39:b0:7e:66:3b:11:4d: 89:50:73:81:c5:ec:d2:a3:c0:33:75:8f:61:3e:b9: 2d:6d:a3:f1:cd:c1:bc:0f:ea:7b:ba:20:a4:64:e0: bd:67:d1:d6:d6:23:e7:49:97:73:97:1f:13:df:c3: e4:ea:43:d3:73:ce:14:6d:92:9b:9d:32:f0:13:7c: 8c:13:23:4b:1d:f5:7e:29:bd:13:92:b6:af:5a:d5: f5:5d:bd:27:ae:9f:3c:3f:fe:9f:e5:c3:fd:43:af: 46:58:eb:3d:23:12:5f:52:fe:19:ad:17:14:65:4a: ff:63:c1:a9:85:49:59:1d:c1:8a:b7:d3:ed:9f:f1: da:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:EE:DB:50:A8:9E:DB:A8:24:EB:F3:A7:55:F7:ED:60:BC:F1:6E:4A X509v3 Authority Key Identifier: keyid:F1:D2:04:71:AE:31:89:36:D7:93:B4:6D:B4:48:22:07:D9:72:45:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8dIEca4xiTbXk7RttEgiB9lyRYs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:19:6f:fc:09:a9:72:75:00:d8:83:0d:b7:60:4f:ca:d7:35: 77:64:e5:8f:76:a3:d1:a4:4b:c1:1c:ff:af:10:da:5a:9b:57: c8:a2:2a:94:bc:a8:77:b8:ed:4e:9c:d8:13:1b:4b:aa:e7:0d: 22:e4:2d:88:08:db:b9:4b:d7:3f:bb:0b:09:b1:a6:42:34:03: 57:5b:f1:3d:26:87:15:e2:dc:98:70:da:db:e6:5c:b0:96:a8: de:e0:69:46:96:dc:89:b9:5d:7b:b5:fb:37:37:8b:9d:fd:f7: eb:8c:4f:2b:42:ba:bf:4e:fc:d7:8c:3a:2d:07:44:8f:03:2e: a0:a7:09:60:f6:91:94:68:72:1a:81:de:15:cf:7b:e0:6f:db: b4:81:3f:17:90:86:e8:46:36:32:e4:7e:17:ae:93:3c:42:c3: 55:24:ba:2a:67:8f:fb:c4:9a:3d:b2:47:4c:ad:00:1c:02:51: d2:5f:ba:5c:59:1d:36:c7:d3:0a:d3:3a:71:64:12:bf:25:7c: eb:c0:9e:b0:50:e9:6e:4c:94:b1:5b:56:57:bf:c3:3f:4e:41: 19:f9:32:6f:68:2b:52:f3:a3:09:f6:43:dc:d5:17:4d:b5:1f: e5:31:b0:12:f6:52:a2:ef:b0:c9:41:e1:66:e8:b5:1c:2c:8a: 22:a5:26:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhFQUYxMTAvBgNVBAUTKEYxRDIwNDcxQUUzMTg5MzZENzkzQjQ2REI0NDgyMjA3 RDk3MjQ1OEIwHhcNMjUwNjE0MTgxNjE0WhcNMjUwNjIxMTgxNjE0WjAYMRYwFAYD VQQDEw02ODRkYmM2ZS1lY2I0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsfgcHcXxaVIeEivZsvfs5k8aqgawduGtf6NpcLlbOXDmmZnO7qxFdfbSTL24 nz0wkP76Ljokvlx9r0CYsMMjz9y9ospTgLsHo/BU0zcQfyKTwVO/nT2yAa4KUWIP E0Ni/ICM6R3rkx6kWutH9oTxN8N579ahAsRkUSUpfRNnqzmwfmY7EU2JUHOBxezS o8AzdY9hPrktbaPxzcG8D+p7uiCkZOC9Z9HW1iPnSZdzlx8T38Pk6kPTc84UbZKb nTLwE3yMEyNLHfV+Kb0TkravWtX1Xb0nrp88P/6f5cP9Q69GWOs9IxJfUv4ZrRcU ZUr/Y8GphUlZHcGKt9Ptn/HaNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB/u21Co ntuoJOvzp1X37WC88W5KMB8GA1UdIwQYMBaAFPHSBHGuMYk215O0bbRIIgfZckWL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEVBRi8xMEIwRTNEMDA0 RUExMUVBQkVEQzgxNjFDNEY5QUUwMi84ZElFY2E0eGlUYlhrN1J0dEVnaUI5bHlS WXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhkSUVjYTR4aVRiWGs3UnR0RWdpQjlseVJZcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEVBRi8xMEIwRTNEMDA0RUExMUVBQkVEQzgxNjFDNEY5QUUwMi84ZElFY2E0eGlU YlhrN1J0dEVnaUI5bHlSWXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/GW/8CalydQDYgw23YE/K1zV3ZOWPdqPRpEvBHP+vENpam1fIoiqU vKh3uO1OnNgTG0uq5w0i5C2ICNu5S9c/uwsJsaZCNANXW/E9JocV4tyYcNrb5lyw lqje4GlGltyJuV17tfs3N4ud/ffrjE8rQrq/TvzXjDotB0SPAy6gpwlg9pGUaHIa gd4Vz3vgb9u0gT8XkIboRjYy5H4XrpM8QsNVJLoqZ4/7xJo9skdMrQAcAlHSX7pc WR02x9MK0zpxZBK/JXzrwJ6wUOluTJSxW1ZXv8M/TkEZ+TJvaCtS86MJ9kPc1RdN tR/lMbAS9lKi77DJQeFm6LUcLIoipSaV -----END CERTIFICATE-----Generated at Sun Jun 15 08:42:37 2025 by rpki-client