$ rpki-client -vvf rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.mft File: 444NefP9KSMew_PjAp05P0MnfLM.mft (raw, json) Hash identifier: gs6y/plAh1JJLzoiFKJQrXH6MyvewKYUiILWG4L/gHQ= Subject key identifier: 0A:7D:6D:15:8E:E7:73:1F:CF:75:00:CB:2B:6E:1D:4C:3F:CF:CB:F6 Authority key identifier: E3:8E:0D:79:F3:FD:29:23:1E:C3:F3:E3:02:9D:39:3F:43:27:7C:B3 Certificate issuer: /CN=A9128298/serialNumber=E38E0D79F3FD29231EC3F3E3029D393F43277CB3 Certificate serial: 05F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/444NefP9KSMew_PjAp05P0MnfLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.mft Manifest number: 05F4 Signing time: Mon 30 Jun 2025 23:15:16 +0000 Manifest this update: Mon 30 Jun 2025 23:15:15 +0000 Manifest next update: Mon 07 Jul 2025 23:15:15 +0000 Files and hashes: 1: 444NefP9KSMew_PjAp05P0MnfLM.crl (hash: JGYYZO3r4HlRnjLJ06qxO5Up7fvx7CZnyVRkZi6pO6U=) 2: 832F7D72B20E11EBB73B4E2FC4F9AE02.roa (hash: RWzQvPuAa0dvfgKQkKzubYejP/LcFU0xMaFFgk+jNhQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.crl rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/444NefP9KSMew_PjAp05P0MnfLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 23:15:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1527 (0x5f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128298, serialNumber=E38E0D79F3FD29231EC3F3E3029D393F43277CB3 Validity Not Before: Jun 30 23:15:15 2025 GMT Not After : Jul 7 23:15:15 2025 GMT Subject: CN=68631a83-f1a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:89:6f:fe:b1:5f:de:f2:37:37:6d:98:a5:11: b3:bc:7d:42:33:6d:bd:7d:08:47:a8:80:dd:1b:aa: c2:d0:a8:0c:d2:88:ae:72:e2:9d:24:6b:4f:ad:dd: 30:dd:0b:ad:f6:9c:6e:d3:44:ad:29:1c:2a:c0:f3: 2e:72:68:e0:4b:d5:62:d5:3e:86:4c:d3:d0:9e:57: 80:a2:88:9e:af:17:93:d7:c6:6c:3a:74:82:ad:40: 53:7e:57:3a:28:f8:9b:18:fb:d3:f9:bb:1f:bf:db: 33:f6:cc:ec:91:8a:5a:75:d9:8c:d6:bf:f3:f9:7a: 28:15:e7:f1:72:f5:de:fa:0e:f0:96:0c:35:5b:44: d0:3f:1b:f0:ec:2f:64:29:b1:36:e3:b5:b0:3e:87: 34:57:5e:dd:44:09:10:5c:d5:77:62:e7:71:fe:1a: 12:be:b4:07:d9:c8:01:70:f6:89:40:49:60:41:35: 9a:2e:b5:c6:32:e0:5e:73:e1:b6:99:67:ff:37:52: 89:71:a5:8d:a9:ff:79:b8:58:dc:e4:76:45:9e:03: bb:df:84:b1:95:b8:c2:e2:cf:bd:34:46:c6:0d:33: a0:b6:72:a5:10:5c:b4:c5:2e:ee:bb:93:e9:16:c2: d9:68:e8:3e:d6:f4:a9:2a:32:e0:43:b4:36:eb:7d: e7:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:7D:6D:15:8E:E7:73:1F:CF:75:00:CB:2B:6E:1D:4C:3F:CF:CB:F6 X509v3 Authority Key Identifier: keyid:E3:8E:0D:79:F3:FD:29:23:1E:C3:F3:E3:02:9D:39:3F:43:27:7C:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/444NefP9KSMew_PjAp05P0MnfLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:88:4a:e2:6d:a8:7e:9e:4e:8f:89:7b:03:86:58:88:1e:a5: 2f:25:c5:8f:07:9f:6f:31:5e:b4:6c:cf:31:bc:59:77:bc:b8: b1:45:eb:f6:63:2e:bf:99:8e:ee:98:12:00:ed:e5:b3:cc:0f: a6:28:12:7f:81:8a:b1:8a:79:40:33:ef:0d:c1:79:0d:fe:8e: ba:cd:96:33:d3:89:4e:a7:29:38:45:74:3f:a8:8d:bb:1a:25: 38:57:46:fd:66:b6:90:28:f8:25:69:c1:16:84:cc:8f:af:3f: 99:6c:93:0e:24:33:4b:06:24:3c:17:92:c1:0f:1c:fb:47:17: 97:3d:50:cf:82:2d:c9:dc:47:c1:cf:39:5a:1a:b2:5e:7a:6f: 2d:e0:02:b1:60:2a:22:1c:b3:af:4a:f2:61:4c:e0:65:99:95: 1b:20:22:e2:6b:91:18:23:5c:68:19:6a:91:85:c7:1f:db:5e: 33:64:ed:2b:73:19:86:a6:3b:09:fb:fe:97:7e:57:bc:24:35: 82:36:9a:d9:d5:5c:35:11:ff:c0:a4:cd:af:40:90:fa:97:79: a2:7b:b0:b5:01:43:91:b4:9c:a0:5e:ec:d8:7d:d2:9b:ec:4e: f8:7e:8b:9d:92:e6:36:95:db:9a:61:19:34:cb:25:80:95:1d: db:d9:88:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjgyOTgxMTAvBgNVBAUTKEUzOEUwRDc5RjNGRDI5MjMxRUMzRjNFMzAyOUQzOTNG NDMyNzdDQjMwHhcNMjUwNjMwMjMxNTE1WhcNMjUwNzA3MjMxNTE1WjAYMRYwFAYD VQQDEw02ODYzMWE4My1mMWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqolv/rFf3vI3N22YpRGzvH1CM229fQhHqIDdG6rC0KgM0oiucuKdJGtPrd0w 3Qut9pxu00StKRwqwPMucmjgS9Vi1T6GTNPQnleAooierxeT18ZsOnSCrUBTflc6 KPibGPvT+bsfv9sz9szskYpaddmM1r/z+XooFefxcvXe+g7wlgw1W0TQPxvw7C9k KbE247WwPoc0V17dRAkQXNV3Yudx/hoSvrQH2cgBcPaJQElgQTWaLrXGMuBec+G2 mWf/N1KJcaWNqf95uFjc5HZFngO734SxlbjC4s+9NEbGDTOgtnKlEFy0xS7uu5Pp FsLZaOg+1vSpKjLgQ7Q2633nBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAp9bRWO 53Mfz3UAyytuHUw/z8v2MB8GA1UdIwQYMBaAFOOODXnz/SkjHsPz4wKdOT9DJ3yz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODI5OC83MjI0NzY2QUIy MEMxMUVCQUM4ODZBMkNDNEY5QUUwMi80NDROZWZQOUtTTWV3X1BqQXAwNVAwTW5m TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ0NE5lZlA5S1NNZXdfUGpBcDA1UDBNbmZMTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODI5OC83MjI0NzY2QUIyMEMxMUVCQUM4ODZBMkNDNEY5QUUwMi80NDROZWZQOUtT TWV3X1BqQXAwNVAwTW5mTE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2iEribah+nk6PiXsDhliIHqUvJcWPB59vMV60bM8xvFl3vLixRev2 Yy6/mY7umBIA7eWzzA+mKBJ/gYqxinlAM+8NwXkN/o66zZYz04lOpyk4RXQ/qI27 GiU4V0b9ZraQKPglacEWhMyPrz+ZbJMOJDNLBiQ8F5LBDxz7RxeXPVDPgi3J3EfB zzlaGrJeem8t4AKxYCoiHLOvSvJhTOBlmZUbICLia5EYI1xoGWqRhccf214zZO0r cxmGpjsJ+/6Xfle8JDWCNprZ1Vw1Ef/ApM2vQJD6l3mie7C1AUORtJygXuzYfdKb 7E74foudkuY2lduaYRk0yyWAlR3b2YjD -----END CERTIFICATE-----Generated at Wed Jul 2 16:11:30 2025 by rpki-client