$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft File: mG5BZ9azgH9J98JgDWD5wmCacJY.mft (raw, json) Hash identifier: ntYZcnPDZtZyS2vXpSzKcHryqQeL0APLAJLjY4RvovM= Subject key identifier: 95:36:D8:01:84:7E:B6:14:73:6F:90:5E:FC:87:C5:D4:6E:54:5E:BE Authority key identifier: 98:6E:41:67:D6:B3:80:7F:49:F7:C2:60:0D:60:F9:C2:60:9A:70:96 Certificate issuer: /CN=A91F3806/serialNumber=986E4167D6B3807F49F7C2600D60F9C2609A7096 Certificate serial: 0C2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mG5BZ9azgH9J98JgDWD5wmCacJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft Manifest number: 0C24 Signing time: Thu 12 Jun 2025 18:26:33 +0000 Manifest this update: Thu 12 Jun 2025 18:26:33 +0000 Manifest next update: Thu 19 Jun 2025 18:26:33 +0000 Files and hashes: 1: mG5BZ9azgH9J98JgDWD5wmCacJY.crl (hash: mqUlk5JG373LDXuJxzhnVcajOnkwMiznXhjQQACrI4I=) 2: 4E54AA4C0B7E11EA9D8BA43CC4F9AE02.roa (hash: w2KSsvNhZHM7vSx0ch62iXJXMI5bT8m3Td81LTUblUM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.crl rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mG5BZ9azgH9J98JgDWD5wmCacJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 18:26:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3114 (0xc2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3806, serialNumber=986E4167D6B3807F49F7C2600D60F9C2609A7096 Validity Not Before: Jun 12 18:26:33 2025 GMT Not After : Jun 19 18:26:33 2025 GMT Subject: CN=684b1bd9-a44b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:34:4c:f6:6d:88:9b:20:da:a9:bb:0b:b0:81: a4:01:3e:9d:db:d8:c2:93:15:fc:7f:6c:67:31:b0: 5a:77:03:a9:7b:64:e5:47:98:07:1c:0c:e7:31:c9: 65:c1:ad:1f:62:1a:b0:8f:0e:4e:2e:ff:5e:6e:00: 50:3c:e5:2c:8f:6d:42:d9:3c:d9:a1:e4:d9:ff:a2: 74:af:23:a8:f2:fa:6a:37:06:65:87:c3:0f:64:01: c7:8f:49:9b:f1:15:a0:83:46:44:40:53:ba:4d:9c: 1a:59:63:7b:99:59:6d:78:eb:d5:49:d7:80:77:d2: dc:4b:74:e4:86:83:ef:ee:8c:8f:d5:c9:fc:f7:2e: 98:df:30:f5:44:b4:7a:10:0b:ae:0b:44:74:df:fa: d6:f0:dd:26:0a:06:3e:58:f5:0e:a5:e8:48:58:26: e8:fe:b4:31:fe:7d:91:44:e0:b0:5f:99:c7:80:d1: f3:0b:f3:72:68:59:53:82:4b:3e:15:ba:1e:9a:ce: 6c:c7:28:c2:31:30:8a:91:7f:34:38:68:33:f1:39: 06:8c:07:65:4a:c4:f5:52:29:f3:b3:ec:0c:c9:4c: 45:45:98:4f:04:16:5c:00:e8:bd:2d:85:c4:ba:31: ff:c2:8b:bf:b0:46:1c:33:3d:16:ad:b2:0e:b5:19: 2e:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:36:D8:01:84:7E:B6:14:73:6F:90:5E:FC:87:C5:D4:6E:54:5E:BE X509v3 Authority Key Identifier: keyid:98:6E:41:67:D6:B3:80:7F:49:F7:C2:60:0D:60:F9:C2:60:9A:70:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mG5BZ9azgH9J98JgDWD5wmCacJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:0a:a4:1b:7a:c4:d8:6a:25:cd:9f:28:7f:9e:f2:b7:22:a0: f1:f2:57:f4:bf:35:32:dc:dd:40:b5:c7:9d:62:4a:76:6c:a2: db:af:36:5d:d2:b4:f6:ef:1c:9b:41:ea:7f:e3:9e:07:2a:82: 96:d3:51:44:35:94:ef:06:3e:19:fe:ee:8b:a8:36:0e:7f:12: 8f:73:68:5c:08:3e:bb:8b:7f:49:b6:17:8f:fc:a8:e6:d2:75: 29:61:be:f6:15:84:40:d0:5c:dd:c4:d6:fc:1d:98:2c:1b:c3: bd:b3:19:41:c1:c9:e7:b4:4e:0d:38:02:ea:de:11:56:2f:fd: 89:d4:07:82:bf:9e:82:71:2b:e7:4e:47:56:be:2a:fc:72:f3: 3e:cd:14:76:30:0e:06:3a:25:0a:4e:60:3c:bb:3d:cc:b3:56: 27:8b:b0:f7:69:6c:74:1c:66:1b:b2:22:60:13:19:44:e8:17: e8:ec:68:93:52:8f:55:5e:07:23:3b:17:98:f2:ad:1f:94:db: a3:f1:11:ea:0e:02:7a:dd:5c:4c:bc:e6:cc:de:60:ef:79:ac: 49:0b:16:04:2e:7e:3e:7c:9c:2c:1e:5c:33:48:d8:61:96:07: d6:4a:2f:a8:89:ca:a4:4b:10:a0:0d:9f:03:37:25:aa:e0:eb: 6d:da:53:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM4MDYxMTAvBgNVBAUTKDk4NkU0MTY3RDZCMzgwN0Y0OUY3QzI2MDBENjBGOUMy NjA5QTcwOTYwHhcNMjUwNjEyMTgyNjMzWhcNMjUwNjE5MTgyNjMzWjAYMRYwFAYD VQQDEw02ODRiMWJkOS1hNDRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5jRM9m2ImyDaqbsLsIGkAT6d29jCkxX8f2xnMbBadwOpe2TlR5gHHAznMcll wa0fYhqwjw5OLv9ebgBQPOUsj21C2TzZoeTZ/6J0ryOo8vpqNwZlh8MPZAHHj0mb 8RWgg0ZEQFO6TZwaWWN7mVlteOvVSdeAd9LcS3TkhoPv7oyP1cn89y6Y3zD1RLR6 EAuuC0R03/rW8N0mCgY+WPUOpehIWCbo/rQx/n2RROCwX5nHgNHzC/NyaFlTgks+ Fboems5sxyjCMTCKkX80OGgz8TkGjAdlSsT1Uinzs+wMyUxFRZhPBBZcAOi9LYXE ujH/wou/sEYcMz0WrbIOtRkucwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJU22AGE frYUc2+QXvyHxdRuVF6+MB8GA1UdIwQYMBaAFJhuQWfWs4B/SffCYA1g+cJgmnCW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzgwNi9CNDcyRkUyQTBC N0MxMUVBODA4M0U5MzZDNEY5QUUwMi9tRzVCWjlhemdIOUo5OEpnRFdENXdtQ2Fj SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21HNUJaOWF6Z0g5Sjk4SmdEV0Q1d21DYWNKWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzgwNi9CNDcyRkUyQTBCN0MxMUVBODA4M0U5MzZDNEY5QUUwMi9tRzVCWjlhemdI OUo5OEpnRFdENXdtQ2FjSlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgCqQbesTYaiXNnyh/nvK3IqDx8lf0vzUy3N1AtcedYkp2bKLbrzZd 0rT27xybQep/454HKoKW01FENZTvBj4Z/u6LqDYOfxKPc2hcCD67i39JtheP/Kjm 0nUpYb72FYRA0FzdxNb8HZgsG8O9sxlBwcnntE4NOALq3hFWL/2J1AeCv56CcSvn TkdWvir8cvM+zRR2MA4GOiUKTmA8uz3Ms1Yni7D3aWx0HGYbsiJgExlE6Bfo7GiT Uo9VXgcjOxeY8q0flNuj8RHqDgJ63VxMvObM3mDveaxJCxYELn4+fJwsHlwzSNhh lgfWSi+oicqkSxCgDZ8DNyWq4Ott2lMT -----END CERTIFICATE-----Generated at Sat Jun 14 19:40:35 2025 by rpki-client