$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft File: MhTiYKePfRZ36DATfBBlcwAxz2Y.mft (raw, json) Hash identifier: UrtM6K1DuqzTOSMc4j0jo1j6ZSoBwScPLsImp88jENo= Subject key identifier: 6F:5A:1C:38:42:54:14:5E:90:92:95:DF:77:F7:86:E1:EA:69:CB:D6 Authority key identifier: 32:14:E2:60:A7:8F:7D:16:77:E8:30:13:7C:10:65:73:00:31:CF:66 Certificate issuer: /CN=A91F8981/serialNumber=3214E260A78F7D1677E830137C1065730031CF66 Certificate serial: 90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft Manifest number: 8F Signing time: Fri 13 Jun 2025 05:23:08 +0000 Manifest this update: Fri 13 Jun 2025 05:23:08 +0000 Manifest next update: Fri 20 Jun 2025 05:23:08 +0000 Files and hashes: 1: MhTiYKePfRZ36DATfBBlcwAxz2Y.crl (hash: 4IN0UxfzSQr94X5SdX4Gfh1IZdP4cCjNGgCJK2RPTSo=) 2: D80D96066C7F11EF92105459C4F9AE02.roa (hash: 7pF3uHzaE+Wewnte+bG2KwxN3eFFLWjZ6eq6MYtYcWc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.crl rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:23:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8981, serialNumber=3214E260A78F7D1677E830137C1065730031CF66 Validity Not Before: Jun 13 05:23:08 2025 GMT Not After : Jun 20 05:23:08 2025 GMT Subject: CN=684bb5bc-f23d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a8:6a:af:77:bf:f3:b7:dc:6d:45:2e:7d:c9: 4d:96:bf:7d:7d:03:f0:2b:c6:20:3a:62:e5:a5:70: 81:d2:d5:94:c3:13:88:19:fd:37:6d:09:1f:9c:1c: d8:69:40:76:07:8c:64:96:db:0e:a0:53:40:61:70: 58:8f:a6:32:78:ab:ec:ff:b8:ba:09:4e:eb:a9:93: 2b:f5:2c:59:40:63:a6:aa:b0:ed:c5:2b:42:dc:86: 41:b2:9c:a7:ed:65:93:e0:d7:d2:5c:67:8e:e2:5c: 8b:d9:2a:d1:8b:39:18:29:e7:4a:8f:fb:5a:72:73: 84:e5:1c:b0:d6:80:27:4b:48:59:99:43:16:da:f1: e5:22:b5:c6:76:c7:10:ec:c5:22:c4:fd:5c:2c:b3: 47:6e:23:d2:7f:1d:7b:68:f0:2c:d6:1c:23:f4:f1: 04:01:b4:29:40:d3:90:b8:d1:cc:84:e4:24:04:8a: 75:44:36:72:b5:54:e9:e6:0f:89:67:8c:7b:3c:3d: ed:bc:cb:86:3b:c2:6e:00:9c:4b:e1:7f:ca:a4:e0: 91:ab:00:e2:b0:58:5a:70:e2:41:78:5c:35:85:8e: 13:80:6b:db:f9:51:1e:35:67:cc:e8:2c:66:da:a6: fd:a1:26:a3:27:46:c1:5b:03:73:9f:9f:98:01:f1: 6f:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:5A:1C:38:42:54:14:5E:90:92:95:DF:77:F7:86:E1:EA:69:CB:D6 X509v3 Authority Key Identifier: keyid:32:14:E2:60:A7:8F:7D:16:77:E8:30:13:7C:10:65:73:00:31:CF:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:a1:6f:1e:65:ef:47:de:b8:af:23:77:80:70:f2:8b:39:07: cb:8d:51:9e:61:05:f5:95:9f:7f:ca:db:45:af:8c:73:5e:7e: 56:cc:55:3b:8d:8a:f1:f4:f2:7d:1d:7f:b4:a3:c9:09:f7:a4: cf:a7:7e:4e:c3:1c:74:0c:14:a4:ef:65:cd:dd:42:12:b2:c1: 81:45:c7:d5:e8:c3:eb:cb:12:70:11:50:9c:95:3d:4c:9d:93: b0:aa:ba:6b:c3:14:5d:0a:c6:11:dd:2a:08:be:3e:96:c1:fb: d2:18:f5:09:f6:57:fb:0a:48:7e:63:a1:5a:3e:a7:0e:f2:e5: 54:66:64:d9:d7:3d:cd:ac:e6:12:7c:86:f6:ab:71:1f:ec:29: d7:16:76:79:08:d7:e7:87:9b:0e:04:c0:8c:d4:5a:9a:79:ca: 8e:51:dd:5f:42:cf:ef:7f:81:94:0e:ab:51:89:ef:2d:dd:9d: f1:14:33:fe:67:16:3d:32:d4:be:48:89:08:5c:3d:d7:cf:31: ae:0e:f6:3b:3c:18:e3:a5:c1:2f:f3:e7:27:b8:d5:fc:7d:33: 37:80:10:d8:2f:4b:12:c1:42:9a:68:bb:9f:51:f7:b8:ca:d9: e7:c1:d3:7f:5e:6e:97:d2:79:79:dd:06:6a:16:04:82:f9:ae: f5:e2:36:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5ODExMTAvBgNVBAUTKDMyMTRFMjYwQTc4RjdEMTY3N0U4MzAxMzdDMTA2NTcz MDAzMUNGNjYwHhcNMjUwNjEzMDUyMzA4WhcNMjUwNjIwMDUyMzA4WjAYMRYwFAYD VQQDEw02ODRiYjViYy1mMjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6hqr3e/87fcbUUufclNlr99fQPwK8YgOmLlpXCB0tWUwxOIGf03bQkfnBzY aUB2B4xkltsOoFNAYXBYj6YyeKvs/7i6CU7rqZMr9SxZQGOmqrDtxStC3IZBspyn 7WWT4NfSXGeO4lyL2SrRizkYKedKj/tacnOE5Ryw1oAnS0hZmUMW2vHlIrXGdscQ 7MUixP1cLLNHbiPSfx17aPAs1hwj9PEEAbQpQNOQuNHMhOQkBIp1RDZytVTp5g+J Z4x7PD3tvMuGO8JuAJxL4X/KpOCRqwDisFhacOJBeFw1hY4TgGvb+VEeNWfM6Cxm 2qb9oSajJ0bBWwNzn5+YAfFvxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG9aHDhC VBRekJKV33f3huHqacvWMB8GA1UdIwQYMBaAFDIU4mCnj30Wd+gwE3wQZXMAMc9m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODk4MS8yNzJCNEM3MDZD N0YxMUVGOTE0RDdENTdDNEY5QUUwMi9NaFRpWUtlUGZSWjM2REFUZkJCbGN3QXh6 MlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01oVGlZS2VQZlJaMzZEQVRmQkJsY3dBeHoyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODk4MS8yNzJCNEM3MDZDN0YxMUVGOTE0RDdENTdDNEY5QUUwMi9NaFRpWUtlUGZS WjM2REFUZkJCbGN3QXh6MlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtoW8eZe9H3rivI3eAcPKLOQfLjVGeYQX1lZ9/yttFr4xzXn5WzFU7 jYrx9PJ9HX+0o8kJ96TPp35Owxx0DBSk72XN3UISssGBRcfV6MPryxJwEVCclT1M nZOwqrprwxRdCsYR3SoIvj6WwfvSGPUJ9lf7Ckh+Y6FaPqcO8uVUZmTZ1z3NrOYS fIb2q3Ef7CnXFnZ5CNfnh5sOBMCM1FqaecqOUd1fQs/vf4GUDqtRie8t3Z3xFDP+ ZxY9MtS+SIkIXD3XzzGuDvY7PBjjpcEv8+cnuNX8fTM3gBDYL0sSwUKaaLufUfe4 ytnnwdN/Xm6X0nl53QZqFgSC+a714jYw -----END CERTIFICATE-----Generated at Sat Jun 14 17:45:39 2025 by rpki-client