$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7334/7A4049DA744B11ECB9AA8D74C4F9AE02/jM5ORhldFXBPtWKTLgq2Kg65iiY.mft File: jM5ORhldFXBPtWKTLgq2Kg65iiY.mft (raw, json) Hash identifier: p6jBZz+n/4H5q6GjJHXuFz2ZN0ki1qFOgdCSAHRhCKo= Subject key identifier: F0:DD:62:FB:69:84:00:B2:4A:A2:42:7D:83:8E:55:FE:E4:62:8C:07 Authority key identifier: 8C:CE:4E:46:19:5D:15:70:4F:B5:62:93:2E:0A:B6:2A:0E:B9:8A:26 Certificate issuer: /CN=A91F7334/serialNumber=8CCE4E46195D15704FB562932E0AB62A0EB98A26 Certificate serial: 03FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jM5ORhldFXBPtWKTLgq2Kg65iiY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7334/7A4049DA744B11ECB9AA8D74C4F9AE02/jM5ORhldFXBPtWKTLgq2Kg65iiY.mft Manifest number: 03F1 Signing time: Fri 25 Apr 2025 00:16:38 +0000 Manifest this update: Fri 25 Apr 2025 00:16:38 +0000 Manifest next update: Fri 02 May 2025 00:16:38 +0000 Files and hashes: 1: jM5ORhldFXBPtWKTLgq2Kg65iiY.crl (hash: s6B1ywUZ58OrhakuwpvrlIGYPbHIQP/K+E9pWJvWFUw=) 2: 96F24818744F11ECBFE4A57DC4F9AE02.roa (hash: Jq+BJa5bIC2ga/tgIn6ID1FhPZxllAOIKx3OxJo/dLg=) 3: 8B8B954E6C9011ED9AAF427AC4F9AE02.roa (hash: h3fylE+2YBgfkc7GqGmNPtjnF3D2D39dQ6blUneghIY=) 4: 0B7C7B7C751311ECA43F7D3BC4F9AE02.roa (hash: Q81s5XKL5iVaVaoWayTQR37y4XfCEhNVP+1tJwtC+bU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7334/7A4049DA744B11ECB9AA8D74C4F9AE02/jM5ORhldFXBPtWKTLgq2Kg65iiY.crl rsync://rpki.apnic.net/member_repository/A91F7334/7A4049DA744B11ECB9AA8D74C4F9AE02/jM5ORhldFXBPtWKTLgq2Kg65iiY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jM5ORhldFXBPtWKTLgq2Kg65iiY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:16:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1022 (0x3fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7334, serialNumber=8CCE4E46195D15704FB562932E0AB62A0EB98A26 Validity Not Before: Apr 25 00:16:38 2025 GMT Not After : May 2 00:16:38 2025 GMT Subject: CN=680ad466-077e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:66:37:92:1a:db:3b:10:a1:cd:e5:ae:44:2e: 73:e6:5e:ff:f8:6b:43:3d:a1:16:de:7b:2e:59:f7: 26:40:8b:eb:69:88:3c:85:6a:7d:20:30:20:cf:80: ba:9e:44:ee:aa:96:ab:a7:23:b8:9c:bf:0d:5f:56: 1d:b8:64:15:5e:6a:be:a6:15:2e:e1:1f:73:c3:43: 9a:a3:52:80:62:72:18:d5:8f:2d:ae:2b:57:92:ae: 69:68:d2:21:c6:d8:7f:ad:ee:63:e9:ae:9b:47:1a: a7:6a:52:11:2a:37:8e:ec:57:6d:65:f1:14:79:5d: e5:f2:3d:62:ca:63:91:ad:44:75:63:d6:b0:3f:26: 4f:22:1f:f4:8e:13:d8:2a:4e:1a:14:90:83:d2:d1: a4:39:08:b7:84:65:d1:40:93:ad:6c:0c:bd:1d:a1: e7:c8:7d:9e:71:a3:0a:72:e3:77:0d:56:24:04:f8: 69:3c:2a:4f:b2:93:bf:b4:36:6e:ef:1c:bd:7e:7c: 73:06:0c:0c:a4:a6:85:aa:4c:d3:82:a0:2c:60:2d: 44:f3:45:7e:70:8b:c7:8b:7e:59:c4:32:7d:4e:04: 5f:37:51:76:eb:83:00:3f:36:a5:6b:9a:f4:e8:82: dd:29:0a:b1:88:28:7b:4d:4a:fe:01:60:af:3d:8b: c2:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:DD:62:FB:69:84:00:B2:4A:A2:42:7D:83:8E:55:FE:E4:62:8C:07 X509v3 Authority Key Identifier: keyid:8C:CE:4E:46:19:5D:15:70:4F:B5:62:93:2E:0A:B6:2A:0E:B9:8A:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7334/7A4049DA744B11ECB9AA8D74C4F9AE02/jM5ORhldFXBPtWKTLgq2Kg65iiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jM5ORhldFXBPtWKTLgq2Kg65iiY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7334/7A4049DA744B11ECB9AA8D74C4F9AE02/jM5ORhldFXBPtWKTLgq2Kg65iiY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:59:1a:4b:b4:d0:22:2d:f2:2b:b7:9a:5c:63:db:9f:ef:52: 0e:47:b1:38:80:0b:95:f2:16:27:ba:2a:e3:2e:7d:fd:a4:4b: 45:d8:cb:12:39:d0:47:10:8f:3b:ad:eb:6b:5d:00:ed:22:90: e9:38:d7:cb:c7:2f:3e:b9:eb:ef:70:bb:f3:f0:30:ba:32:ca: 59:3c:4e:30:37:b7:f7:12:e1:6b:62:8f:f5:4e:64:0a:6d:ef: 3a:52:ff:77:56:40:d9:91:cc:2f:f6:09:6a:b0:4c:e6:2e:54: e4:d0:48:dd:60:ba:36:77:4a:8d:fe:7d:89:75:20:69:96:45: a0:16:05:77:fe:f3:31:98:a3:aa:76:5f:1f:81:6a:c7:7e:72: 17:4c:b4:ba:9b:87:62:0d:35:5f:c5:b6:b8:93:50:81:c5:85: 8e:08:f6:a0:ca:a9:d9:03:ae:8e:7d:0e:38:a3:2f:0f:5c:aa: 82:10:0f:49:e4:48:3c:2c:fd:4d:fa:9d:af:9e:24:8d:d7:25: e4:13:3a:9d:34:b5:b1:a2:48:f0:03:8a:d2:ff:20:6f:b8:0c: 9e:4d:40:f8:06:44:8f:2c:df:9d:42:45:cf:e1:5f:84:d4:ee: 82:e8:04:fd:9d:24:8f:d0:cd:db:ee:20:94:0c:15:47:4f:c2: d7:2d:1d:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjczMzQxMTAvBgNVBAUTKDhDQ0U0RTQ2MTk1RDE1NzA0RkI1NjI5MzJFMEFCNjJB MEVCOThBMjYwHhcNMjUwNDI1MDAxNjM4WhcNMjUwNTAyMDAxNjM4WjAYMRYwFAYD VQQDEw02ODBhZDQ2Ni0wNzdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxWY3khrbOxChzeWuRC5z5l7/+GtDPaEW3nsuWfcmQIvraYg8hWp9IDAgz4C6 nkTuqparpyO4nL8NX1YduGQVXmq+phUu4R9zw0Oao1KAYnIY1Y8tritXkq5paNIh xth/re5j6a6bRxqnalIRKjeO7FdtZfEUeV3l8j1iymORrUR1Y9awPyZPIh/0jhPY Kk4aFJCD0tGkOQi3hGXRQJOtbAy9HaHnyH2ecaMKcuN3DVYkBPhpPCpPspO/tDZu 7xy9fnxzBgwMpKaFqkzTgqAsYC1E80V+cIvHi35ZxDJ9TgRfN1F264MAPzala5r0 6ILdKQqxiCh7TUr+AWCvPYvCGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPDdYvtp hACySqJCfYOOVf7kYowHMB8GA1UdIwQYMBaAFIzOTkYZXRVwT7Viky4KtioOuYom MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzMzNC83QTQwNDlEQTc0 NEIxMUVDQjlBQThENzRDNEY5QUUwMi9qTTVPUmhsZEZYQlB0V0tUTGdxMktnNjVp aVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pNNU9SaGxkRlhCUHRXS1RMZ3EyS2c2NWlpWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzMzNC83QTQwNDlEQTc0NEIxMUVDQjlBQThENzRDNEY5QUUwMi9qTTVPUmhsZEZY QlB0V0tUTGdxMktnNjVpaVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOWRpLtNAiLfIrt5pcY9uf71IOR7E4gAuV8hYnuirjLn39pEtF2MsS OdBHEI87retrXQDtIpDpONfLxy8+uevvcLvz8DC6MspZPE4wN7f3EuFrYo/1TmQK be86Uv93VkDZkcwv9glqsEzmLlTk0EjdYLo2d0qN/n2JdSBplkWgFgV3/vMxmKOq dl8fgWrHfnIXTLS6m4diDTVfxba4k1CBxYWOCPagyqnZA66OfQ44oy8PXKqCEA9J 5Eg8LP1N+p2vniSN1yXkEzqdNLWxokjwA4rS/yBvuAyeTUD4BkSPLN+dQkXP4V+E 1O6C6AT9nSSP0M3b7iCUDBVHT8LXLR3D -----END CERTIFICATE-----Generated at Sat Apr 26 13:47:02 2025 by rpki-client