$ rpki-client -vvf rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft File: L4vvSDpBiuHAMSMIGG70zXskZuU.mft (raw, json) Hash identifier: dW/7j1K4vcnx27ZMoTt19uwuQTFaAnvgUHQCCdmv9j4= Subject key identifier: 46:EC:72:A1:58:97:3E:47:16:2A:0F:0A:E5:1C:0B:51:C0:0A:91:6B Authority key identifier: 2F:8B:EF:48:3A:41:8A:E1:C0:31:23:08:18:6E:F4:CD:7B:24:66:E5 Certificate issuer: /CN=A9125758/serialNumber=2F8BEF483A418AE1C0312308186EF4CD7B2466E5 Certificate serial: 023E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4vvSDpBiuHAMSMIGG70zXskZuU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft Manifest number: 023A Signing time: Thu 03 Jul 2025 02:17:14 +0000 Manifest this update: Thu 03 Jul 2025 02:17:13 +0000 Manifest next update: Thu 10 Jul 2025 02:17:13 +0000 Files and hashes: 1: L4vvSDpBiuHAMSMIGG70zXskZuU.crl (hash: 3ZzagFxQ3YgNkCC4+zaayooelCe16eY1RKxfhzPcN38=) 2: 117300B62CDB11EDB2E1DD0DC4F9AE02.roa (hash: SvlTkdhfP2Vy/Mu+17rsFwHULfYPp5POSAbZ7IEAOKw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.crl rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4vvSDpBiuHAMSMIGG70zXskZuU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:17:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 574 (0x23e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125758, serialNumber=2F8BEF483A418AE1C0312308186EF4CD7B2466E5 Validity Not Before: Jul 3 02:17:13 2025 GMT Not After : Jul 10 02:17:13 2025 GMT Subject: CN=6865e82a-8a6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:49:0f:13:eb:86:7e:72:b7:6e:19:b2:4c:95: ed:b4:02:79:40:a4:a8:c4:30:c6:b2:a8:92:15:28: 7e:ad:09:67:f4:8e:7f:28:95:cd:0f:e2:7c:2b:74: 04:76:65:39:01:6b:09:44:f1:63:e6:1b:a4:6c:ce: f5:ee:d1:af:1c:77:0c:a4:f9:a6:56:1e:19:7b:ca: 60:38:e7:00:5d:f2:40:14:bb:f8:07:92:04:0e:bf: a4:1d:0f:31:94:8e:50:a1:2d:59:17:e9:4a:84:dc: 78:f9:54:ee:63:cb:4f:59:3b:1f:92:2a:f9:e0:b9: ac:38:87:e7:10:85:5b:9f:8f:39:23:59:23:9e:d5: 6e:81:e1:90:1c:13:af:bf:30:b1:17:ff:7b:5f:39: 99:fb:c5:0e:27:e1:90:c0:97:60:fe:76:2f:64:da: a7:24:6e:dc:0f:eb:1d:29:87:0a:ff:a7:07:5a:c9: 2c:5c:5c:24:b4:5b:13:69:3e:e5:b2:6b:36:13:96: 23:00:01:7c:1d:0f:75:83:89:64:b0:06:50:cc:70: 3b:07:ab:18:4c:03:1a:68:f5:39:f0:69:15:4c:f7: 7b:90:04:d7:db:57:91:a6:c3:1f:9f:aa:f5:f8:d4: 58:19:93:73:b5:fe:96:c5:26:17:05:64:be:a4:8d: 3c:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:EC:72:A1:58:97:3E:47:16:2A:0F:0A:E5:1C:0B:51:C0:0A:91:6B X509v3 Authority Key Identifier: keyid:2F:8B:EF:48:3A:41:8A:E1:C0:31:23:08:18:6E:F4:CD:7B:24:66:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4vvSDpBiuHAMSMIGG70zXskZuU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:2a:9d:48:b2:af:7b:f3:15:ab:99:a9:d9:49:05:28:b7:78: 48:8c:ed:b9:d0:c0:52:92:dc:86:41:6a:83:5e:1f:3f:45:b4: 08:ad:13:fc:8c:e7:38:46:5e:8a:1f:98:62:39:e8:7f:aa:ad: 5e:22:58:87:de:39:46:d7:ea:84:aa:b3:31:c6:7b:29:b9:c7: 57:e2:60:af:cd:1a:95:07:83:85:f2:2c:0a:8b:4d:ee:b2:c5: a6:e4:24:15:97:63:5c:6a:65:9e:28:59:25:a8:b6:75:9e:94: 44:f0:08:50:bf:ce:c7:5a:d2:7d:23:cc:f4:52:28:ca:65:6e: d1:bc:ac:60:b5:7a:09:74:ac:04:63:d7:db:7c:d9:15:a9:ab: de:7c:4c:de:b1:bb:42:6a:1e:a6:94:55:37:33:53:3d:57:1d: d5:3c:ab:bd:08:99:a4:87:fe:73:e7:ef:c6:a0:9a:e6:90:4a: 3d:a0:8d:07:e9:4c:84:da:5d:68:8e:80:12:8d:e5:74:7d:a0: b0:b3:b1:ea:0a:f7:92:7f:3f:84:f1:12:8d:2e:b6:88:9f:9c: 98:bd:67:e5:0e:0b:40:a8:60:48:09:c9:21:69:74:60:21:37: ef:bf:e9:59:a5:16:25:0d:17:6c:30:68:33:02:b4:b1:9a:c4: 51:b9:71:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU3NTgxMTAvBgNVBAUTKDJGOEJFRjQ4M0E0MThBRTFDMDMxMjMwODE4NkVGNENE N0IyNDY2RTUwHhcNMjUwNzAzMDIxNzEzWhcNMjUwNzEwMDIxNzEzWjAYMRYwFAYD VQQDEw02ODY1ZTgyYS04YTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzkkPE+uGfnK3bhmyTJXttAJ5QKSoxDDGsqiSFSh+rQln9I5/KJXND+J8K3QE dmU5AWsJRPFj5hukbM717tGvHHcMpPmmVh4Ze8pgOOcAXfJAFLv4B5IEDr+kHQ8x lI5QoS1ZF+lKhNx4+VTuY8tPWTsfkir54LmsOIfnEIVbn485I1kjntVugeGQHBOv vzCxF/97XzmZ+8UOJ+GQwJdg/nYvZNqnJG7cD+sdKYcK/6cHWsksXFwktFsTaT7l sms2E5YjAAF8HQ91g4lksAZQzHA7B6sYTAMaaPU58GkVTPd7kATX21eRpsMfn6r1 +NRYGZNztf6WxSYXBWS+pI081QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEbscqFY lz5HFioPCuUcC1HACpFrMB8GA1UdIwQYMBaAFC+L70g6QYrhwDEjCBhu9M17JGbl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTc1OC83MUVCRTdDMjJD RDcxMUVEQjAyQjFEMTlDNEY5QUUwMi9MNHZ2U0RwQml1SEFNU01JR0c3MHpYc2ta dVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w0dnZTRHBCaXVIQU1TTUlHRzcwelhza1p1VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTc1OC83MUVCRTdDMjJDRDcxMUVEQjAyQjFEMTlDNEY5QUUwMi9MNHZ2U0RwQml1 SEFNU01JR0c3MHpYc2tadVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXKp1Isq978xWrmanZSQUot3hIjO250MBSktyGQWqDXh8/RbQIrRP8 jOc4Rl6KH5hiOeh/qq1eIliH3jlG1+qEqrMxxnspucdX4mCvzRqVB4OF8iwKi03u ssWm5CQVl2NcamWeKFklqLZ1npRE8AhQv87HWtJ9I8z0UijKZW7RvKxgtXoJdKwE Y9fbfNkVqavefEzesbtCah6mlFU3M1M9Vx3VPKu9CJmkh/5z5+/GoJrmkEo9oI0H 6UyE2l1ojoASjeV0faCws7HqCveSfz+E8RKNLraIn5yYvWflDgtAqGBICckhaXRg ITfvv+lZpRYlDRdsMGgzArSxmsRRuXEl -----END CERTIFICATE-----Generated at Thu Jul 3 12:22:51 2025 by rpki-client