$ rpki-client -vvf rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.mft File: Mh0Kt4oavjUafbeTINn_03KgjEU.mft (raw, json) Hash identifier: oqDh/PUYyKabqOnQKhKubK2V4X0+PwtYHmuTc/wMU5k= Subject key identifier: 02:36:E1:2C:FE:84:E3:E0:FD:6A:E2:F4:6E:AD:39:75:9E:0B:8B:59 Authority key identifier: 32:1D:0A:B7:8A:1A:BE:35:1A:7D:B7:93:20:D9:FF:D3:72:A0:8C:45 Certificate issuer: /CN=A9110FEF/serialNumber=321D0AB78A1ABE351A7DB79320D9FFD372A08C45 Certificate serial: 01FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mh0Kt4oavjUafbeTINn_03KgjEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.mft Manifest number: 01F4 Signing time: Tue 01 Jul 2025 02:56:05 +0000 Manifest this update: Tue 01 Jul 2025 02:56:04 +0000 Manifest next update: Tue 08 Jul 2025 02:56:04 +0000 Files and hashes: 1: Mh0Kt4oavjUafbeTINn_03KgjEU.crl (hash: ckaAPHZ914xFhZO6VFiAOaQ7gZIvUV2AqWDmhisJ5RM=) 2: 47DA361A3F8F11EF8FA3802DC4F9AE02.roa (hash: J1WS3Wr+Cq+Ya2W/A8acH4GDeK/tNPuqzs+ITQkHcD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.crl rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mh0Kt4oavjUafbeTINn_03KgjEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 02:56:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 508 (0x1fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110FEF, serialNumber=321D0AB78A1ABE351A7DB79320D9FFD372A08C45 Validity Not Before: Jul 1 02:56:04 2025 GMT Not After : Jul 8 02:56:04 2025 GMT Subject: CN=68634e45-abd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:cc:6a:3c:01:4b:26:5b:84:17:0d:fe:01:33: c6:c0:a6:d9:e5:b7:c3:90:bd:bc:ae:f9:ea:69:8a: f3:64:2b:48:79:e3:40:44:10:1d:c7:5d:88:6c:1a: 27:1c:d2:64:59:2b:7c:fc:7a:e7:3d:c5:09:f3:f3: 75:5d:fd:92:4e:c3:ef:4f:c8:ff:a2:fb:c3:77:c0: bf:78:0a:44:b2:05:07:3e:30:73:42:ab:c8:64:f8: fc:ff:73:af:a1:84:f2:bf:e9:fc:00:79:25:b8:a5: 11:77:96:36:d7:71:68:14:5f:a4:86:52:44:4e:6e: 23:96:bc:47:20:10:2a:d9:cd:7a:bc:36:03:46:2b: f1:f0:b3:df:fb:83:a0:89:16:e3:87:4f:1d:a9:e0: e5:09:7b:f7:b7:76:4c:12:3e:8e:80:94:91:aa:9c: f1:14:49:19:a9:4b:16:27:7e:90:25:46:be:26:20: 50:9d:15:66:22:16:bc:89:dd:d7:7a:45:9c:f1:af: 41:5f:e9:87:81:8f:45:88:78:05:71:6b:37:b5:ec: df:b1:f4:e0:14:13:fa:ed:33:9e:bd:61:ca:54:b6: b6:26:a7:04:84:25:47:ca:3d:86:6d:15:c5:6e:12: 67:bd:48:ac:b8:4d:6a:d0:d5:59:8c:fa:78:47:33: 2f:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:36:E1:2C:FE:84:E3:E0:FD:6A:E2:F4:6E:AD:39:75:9E:0B:8B:59 X509v3 Authority Key Identifier: keyid:32:1D:0A:B7:8A:1A:BE:35:1A:7D:B7:93:20:D9:FF:D3:72:A0:8C:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mh0Kt4oavjUafbeTINn_03KgjEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:54:f7:4c:e0:4e:49:43:f7:27:23:8a:f6:57:ad:99:07:b9: c9:30:19:02:a4:79:6f:03:5b:71:c3:fc:89:a7:ff:ab:1a:83: 5b:d2:65:62:77:ff:e7:79:8a:20:7f:79:a9:df:9a:5d:89:e5: 9a:07:5f:58:a9:58:86:ab:cb:ec:c7:8a:09:e5:5e:55:32:03: 7a:72:8a:5c:ef:d6:55:ac:bc:0d:bf:cd:83:07:2c:14:17:84: 07:17:f0:6a:91:0d:6d:b0:ee:c3:db:25:d6:87:42:86:d0:e6: 9a:49:4e:5b:24:65:c9:e4:cf:bc:51:ee:2a:98:cf:8d:38:39: 28:5f:f9:98:ce:8a:35:1e:7e:b8:02:f2:4a:a0:28:94:7f:c5: a0:1d:1c:4f:f4:13:04:d7:26:62:f1:50:d2:a1:1c:08:66:08: 7e:79:bd:b7:a7:ae:63:ef:82:59:30:43:75:91:d5:30:d0:e4: 8f:52:fa:07:fb:cb:a1:2d:60:ab:37:a2:79:5e:ff:56:24:6c: e7:0f:7d:ae:de:5a:55:d5:dd:46:e6:d4:b9:48:8f:49:64:40: 69:e2:e7:3b:9e:3c:ab:42:d6:0c:b6:ba:35:29:c9:79:4d:32: 76:bc:07:2c:84:e7:88:01:a0:21:31:16:35:c4:5e:0c:da:b1: 9b:9e:16:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBGRUYxMTAvBgNVBAUTKDMyMUQwQUI3OEExQUJFMzUxQTdEQjc5MzIwRDlGRkQz NzJBMDhDNDUwHhcNMjUwNzAxMDI1NjA0WhcNMjUwNzA4MDI1NjA0WjAYMRYwFAYD VQQDEw02ODYzNGU0NS1hYmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtMxqPAFLJluEFw3+ATPGwKbZ5bfDkL28rvnqaYrzZCtIeeNARBAdx12IbBon HNJkWSt8/HrnPcUJ8/N1Xf2STsPvT8j/ovvDd8C/eApEsgUHPjBzQqvIZPj8/3Ov oYTyv+n8AHkluKURd5Y213FoFF+khlJETm4jlrxHIBAq2c16vDYDRivx8LPf+4Og iRbjh08dqeDlCXv3t3ZMEj6OgJSRqpzxFEkZqUsWJ36QJUa+JiBQnRVmIha8id3X ekWc8a9BX+mHgY9FiHgFcWs3tezfsfTgFBP67TOevWHKVLa2JqcEhCVHyj2GbRXF bhJnvUisuE1q0NVZjPp4RzMvzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAI24Sz+ hOPg/Wri9G6tOXWeC4tZMB8GA1UdIwQYMBaAFDIdCreKGr41Gn23kyDZ/9NyoIxF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEZFRi9CMDM2M0Q2MDY0 RjUxMUVEODJCMDNDMTFDNEY5QUUwMi9NaDBLdDRvYXZqVWFmYmVUSU5uXzAzS2dq RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01oMEt0NG9hdmpVYWZiZVRJTm5fMDNLZ2pFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MEZFRi9CMDM2M0Q2MDY0RjUxMUVEODJCMDNDMTFDNEY5QUUwMi9NaDBLdDRvYXZq VWFmYmVUSU5uXzAzS2dqRVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgVPdM4E5JQ/cnI4r2V62ZB7nJMBkCpHlvA1txw/yJp/+rGoNb0mVi d//neYogf3mp35pdieWaB19YqViGq8vsx4oJ5V5VMgN6copc79ZVrLwNv82DBywU F4QHF/BqkQ1tsO7D2yXWh0KG0OaaSU5bJGXJ5M+8Ue4qmM+NODkoX/mYzoo1Hn64 AvJKoCiUf8WgHRxP9BME1yZi8VDSoRwIZgh+eb23p65j74JZMEN1kdUw0OSPUvoH +8uhLWCrN6J5Xv9WJGznD32u3lpV1d1G5tS5SI9JZEBp4uc7njyrQtYMtro1Kcl5 TTJ2vAcshOeIAaAhMRY1xF4M2rGbnhbr -----END CERTIFICATE-----Generated at Tue Jul 1 08:42:28 2025 by rpki-client