$ rpki-client -vvf rpki.apnic.net/member_repository/A911B22E/8BE10084379511EF87CFD64BC4F9AE02/-swzUrzjgChT2_SwQFJc_B4VLmA.mft File: -swzUrzjgChT2_SwQFJc_B4VLmA.mft (raw, json) Hash identifier: vfk8arcr/YwMJG0PJxERJ31QmhL2aePu/YaPETtxky8= Subject key identifier: 50:B5:C8:AE:15:65:9E:CB:9E:7E:33:0E:2C:2A:F2:30:AC:68:CD:04 Authority key identifier: FA:CC:33:52:BC:E3:80:28:53:DB:F4:B0:40:52:5C:FC:1E:15:2E:60 Certificate issuer: /CN=A911B22E/serialNumber=FACC3352BCE3802853DBF4B040525CFC1E152E60 Certificate serial: BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-swzUrzjgChT2_SwQFJc_B4VLmA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B22E/8BE10084379511EF87CFD64BC4F9AE02/-swzUrzjgChT2_SwQFJc_B4VLmA.mft Manifest number: BA Signing time: Tue 01 Jul 2025 06:31:44 +0000 Manifest this update: Tue 01 Jul 2025 06:31:44 +0000 Manifest next update: Tue 08 Jul 2025 06:31:44 +0000 Files and hashes: 1: -swzUrzjgChT2_SwQFJc_B4VLmA.crl (hash: BNLFS9edyyLb+Zxup29j3cKB6muAfVjotHIAzPdnELI=) 2: 164D3C32379711EF9ECC714EC4F9AE02.roa (hash: MwAJLA+u3nsJdB5hxYAQtsiYv2wQXxIJZHkWx14cyEw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B22E/8BE10084379511EF87CFD64BC4F9AE02/-swzUrzjgChT2_SwQFJc_B4VLmA.crl rsync://rpki.apnic.net/member_repository/A911B22E/8BE10084379511EF87CFD64BC4F9AE02/-swzUrzjgChT2_SwQFJc_B4VLmA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-swzUrzjgChT2_SwQFJc_B4VLmA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 06:31:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 187 (0xbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B22E, serialNumber=FACC3352BCE3802853DBF4B040525CFC1E152E60 Validity Not Before: Jul 1 06:31:44 2025 GMT Not After : Jul 8 06:31:44 2025 GMT Subject: CN=686380d0-d31b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:f8:a9:f6:52:28:40:52:75:d6:73:05:7c:fb: dc:67:59:cf:23:18:65:da:4f:31:9d:3c:d5:11:6e: eb:23:58:98:f0:a4:32:81:2c:ba:a6:2b:ed:7e:da: 3d:83:9c:bf:12:21:b9:5e:bc:e1:8b:19:1c:f3:ba: 45:ad:f2:e0:25:9e:30:f3:c0:28:72:f7:e8:16:e8: 8d:48:83:7b:6c:cd:00:ee:4e:25:86:90:05:d5:3c: cc:32:57:b4:db:f6:d7:7d:2f:90:c7:16:0b:7b:5a: 20:be:cb:05:b3:32:41:77:98:c7:f7:b7:f0:42:f9: 37:b2:f9:7c:43:dc:61:02:8f:44:3c:2e:c7:c3:8a: 0d:49:10:8c:30:47:dd:64:81:fb:41:ac:82:2e:c5: c0:f6:9c:e9:ba:af:55:f3:e6:9b:8c:c7:a9:b7:9f: 9c:d4:77:8b:57:67:59:2b:39:90:4a:2b:46:c0:ea: 90:4d:bf:b2:b0:1c:df:07:2f:d9:5b:c3:9f:c4:91: 59:a8:92:da:e9:fb:5f:94:29:bc:82:62:af:ab:3b: 93:01:3c:76:d5:92:59:7c:7b:6a:00:de:80:09:2f: c4:c6:e5:e9:fd:66:d9:24:76:31:55:2c:ed:0d:e6: fa:fe:a2:f7:f7:65:62:5c:1c:bb:c4:8c:1d:9a:24: 56:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:B5:C8:AE:15:65:9E:CB:9E:7E:33:0E:2C:2A:F2:30:AC:68:CD:04 X509v3 Authority Key Identifier: keyid:FA:CC:33:52:BC:E3:80:28:53:DB:F4:B0:40:52:5C:FC:1E:15:2E:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B22E/8BE10084379511EF87CFD64BC4F9AE02/-swzUrzjgChT2_SwQFJc_B4VLmA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-swzUrzjgChT2_SwQFJc_B4VLmA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B22E/8BE10084379511EF87CFD64BC4F9AE02/-swzUrzjgChT2_SwQFJc_B4VLmA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:15:d2:09:af:08:63:2e:6a:40:9e:83:b9:ab:22:bf:33:16: 3c:11:40:37:16:3f:71:70:0a:48:90:b2:5a:39:55:44:2b:cf: 4f:1f:9c:61:1a:11:63:2e:b9:8c:59:d0:e8:bd:ab:7a:66:02: fe:31:44:f1:e5:b8:7c:08:ac:39:b8:c1:c2:5f:14:eb:a7:7a: 9f:c9:72:89:f4:48:b5:85:71:88:ab:9a:4a:f6:49:f4:5c:00: 23:ce:30:9e:d6:fd:49:06:77:15:6e:a9:2e:63:5f:b1:31:a5: c9:cb:e7:ea:6b:97:45:fc:9f:e9:02:f3:16:9f:db:2e:32:58: 6e:dc:2c:dd:5c:0d:b3:7f:e9:4e:d2:b4:25:69:b0:81:32:a5: 0b:d3:c2:cc:64:93:4b:60:1e:0c:50:4f:27:62:94:29:69:63: dc:1b:1f:6b:43:8e:5c:73:3a:76:97:fb:bf:5f:46:80:f7:63: 15:68:96:32:b2:05:f1:f6:3b:49:b7:56:26:06:be:66:27:5c: b6:12:6f:4a:51:11:24:b1:8a:1d:aa:38:d9:98:e3:72:da:9b: e8:e9:6d:4c:95:99:7e:45:a6:45:87:6b:c5:38:a9:8f:e9:f3: f1:b4:b3:b7:07:5b:27:f4:fb:5f:9a:9e:e7:c3:c8:ef:ef:38: c5:47:00:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUIyMkUxMTAvBgNVBAUTKEZBQ0MzMzUyQkNFMzgwMjg1M0RCRjRCMDQwNTI1Q0ZD MUUxNTJFNjAwHhcNMjUwNzAxMDYzMTQ0WhcNMjUwNzA4MDYzMTQ0WjAYMRYwFAYD VQQDEw02ODYzODBkMC1kMzFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl/ip9lIoQFJ11nMFfPvcZ1nPIxhl2k8xnTzVEW7rI1iY8KQygSy6pivtfto9 g5y/EiG5Xrzhixkc87pFrfLgJZ4w88AocvfoFuiNSIN7bM0A7k4lhpAF1TzMMle0 2/bXfS+QxxYLe1ogvssFszJBd5jH97fwQvk3svl8Q9xhAo9EPC7Hw4oNSRCMMEfd ZIH7QayCLsXA9pzpuq9V8+abjMept5+c1HeLV2dZKzmQSitGwOqQTb+ysBzfBy/Z W8OfxJFZqJLa6ftflCm8gmKvqzuTATx21ZJZfHtqAN6ACS/ExuXp/WbZJHYxVSzt Deb6/qL392ViXBy7xIwdmiRWkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFC1yK4V ZZ7Lnn4zDiwq8jCsaM0EMB8GA1UdIwQYMBaAFPrMM1K844AoU9v0sEBSXPweFS5g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjIyRS84QkUxMDA4NDM3 OTUxMUVGODdDRkQ2NEJDNEY5QUUwMi8tc3d6VXJ6amdDaFQyX1N3UUZKY19CNFZM bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1zd3pVcnpqZ0NoVDJfU3dRRkpjX0I0VkxtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjIyRS84QkUxMDA4NDM3OTUxMUVGODdDRkQ2NEJDNEY5QUUwMi8tc3d6VXJ6amdD aFQyX1N3UUZKY19CNFZMbUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8FdIJrwhjLmpAnoO5qyK/MxY8EUA3Fj9xcApIkLJaOVVEK89PH5xh GhFjLrmMWdDovat6ZgL+MUTx5bh8CKw5uMHCXxTrp3qfyXKJ9Ei1hXGIq5pK9kn0 XAAjzjCe1v1JBncVbqkuY1+xMaXJy+fqa5dF/J/pAvMWn9suMlhu3CzdXA2zf+lO 0rQlabCBMqUL08LMZJNLYB4MUE8nYpQpaWPcGx9rQ45cczp2l/u/X0aA92MVaJYy sgXx9jtJt1YmBr5mJ1y2Em9KUREksYodqjjZmONy2pvo6W1MlZl+RaZFh2vFOKmP 6fPxtLO3B1sn9Ptfmp7nw8jv7zjFRwBK -----END CERTIFICATE-----Generated at Thu Jul 3 01:09:51 2025 by rpki-client