$ rpki-client -vvf rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft File: xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft (raw, json) Hash identifier: t/pYal4zqItbpn/gatJ1GyUgmLf1Q3FV6g7P5nRJm3M= Subject key identifier: 3A:FA:FA:06:61:38:0C:7F:0F:14:5B:79:E7:31:FB:49:EE:96:2E:DB Authority key identifier: C5:45:25:E9:70:5B:D6:9D:61:42:4D:BE:E7:B0:49:3F:5F:D6:F0:A4 Certificate issuer: /CN=A912D1D5/serialNumber=C54525E9705BD69D61424DBEE7B0493F5FD6F0A4 Certificate serial: 01BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft Manifest number: 01B3 Signing time: Thu 03 Jul 2025 03:20:01 +0000 Manifest this update: Thu 03 Jul 2025 03:20:00 +0000 Manifest next update: Thu 10 Jul 2025 03:20:00 +0000 Files and hashes: 1: xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl (hash: Ps1mCr5ZOQJ733D5V5aqYY1TgvfTPUhBQYOyAh3LL/o=) 2: 19E19DA0E5CE11EDB697BC74C4F9AE02.roa (hash: 8oKi9g3FW28uCT296akypss1lnTC3S8VPwt27zeBIKU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 445 (0x1bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D1D5, serialNumber=C54525E9705BD69D61424DBEE7B0493F5FD6F0A4 Validity Not Before: Jul 3 03:20:00 2025 GMT Not After : Jul 10 03:20:00 2025 GMT Subject: CN=6865f6e0-cafd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e5:1e:9e:7a:22:16:10:ee:98:3e:87:a6:c7: d7:f2:ad:40:7e:57:00:df:33:b4:d4:6b:52:03:01: 9e:2f:42:22:7f:7e:7a:06:a2:f1:eb:1a:43:2e:f9: cb:51:3c:54:16:c3:1e:92:6a:fd:a1:c4:de:4b:d4: bc:06:fd:a0:26:29:bf:51:35:d1:44:ca:51:6c:a8: 70:aa:0c:30:b3:60:ce:ac:82:c5:55:47:8e:0f:a6: cd:b3:09:5f:06:c0:89:58:27:9b:bd:97:87:f0:11: 7e:1f:eb:95:2e:19:dd:1c:c6:ab:b2:07:77:c0:eb: 98:51:6a:a4:55:38:d6:ca:ba:56:31:9b:22:cb:70: 91:50:10:ad:f3:b1:9a:92:10:f0:8a:5e:5b:d0:65: 86:d0:1f:6c:99:5d:a8:36:1f:75:76:b5:af:18:ae: 8f:c5:4a:7d:d9:0d:2d:d8:41:ec:6e:42:b4:ea:07: a5:0c:23:76:77:6d:97:10:fe:39:38:5e:f9:f4:65: 38:f1:cd:47:b7:5f:11:a5:b5:2e:e1:37:3a:33:22: 3b:34:00:84:2e:00:8d:8e:05:a9:3a:53:9f:54:b2: 0e:c5:1a:3d:ae:ab:29:b7:be:f5:28:51:42:40:0f: 0b:bc:7c:9c:1b:a7:d5:5e:9d:51:77:40:4a:73:9f: 49:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:FA:FA:06:61:38:0C:7F:0F:14:5B:79:E7:31:FB:49:EE:96:2E:DB X509v3 Authority Key Identifier: keyid:C5:45:25:E9:70:5B:D6:9D:61:42:4D:BE:E7:B0:49:3F:5F:D6:F0:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:54:c1:3b:93:27:0e:01:f4:4f:31:70:ca:21:8d:cf:81:bd: 90:06:08:2e:44:19:72:5c:d3:e2:2b:3e:df:ca:ae:61:eb:5e: 94:38:8f:00:99:76:99:05:a0:88:f0:e2:d1:24:7e:8f:ce:f7: b5:f2:f4:48:78:e4:71:8b:91:36:58:15:01:13:f4:42:22:ef: 47:c0:67:a9:e0:d3:cf:1b:87:68:b5:4e:4b:9b:55:58:f8:44: 9f:57:91:d6:bc:31:fd:a3:b2:ec:d8:f3:cd:57:c0:c1:33:cd: 11:ea:f7:45:44:c1:a9:23:b3:89:a8:c9:ec:5e:67:10:3a:69: 7d:4b:c4:4b:73:d5:cc:d4:57:77:f4:d9:45:8b:79:48:67:b6: be:5a:86:7c:7a:47:76:e0:84:09:ae:6c:96:ab:42:24:80:a8: 9a:56:4d:8c:d7:3a:e3:7d:fb:3e:3b:b0:32:ff:39:3b:ab:28: 8a:2b:79:7d:42:b1:b5:35:e8:b0:d8:1d:c2:a5:b3:c0:76:8e: 8d:c3:b9:72:32:fb:02:23:1c:4b:dc:02:a5:ba:78:a3:27:22: 1a:c2:f3:44:60:7d:0d:a1:79:c3:5f:9a:93:7c:8b:5f:3a:12: 1f:9b:0e:a0:49:e8:70:79:20:2e:40:54:a5:48:fc:87:9a:b8: ff:1e:a3:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAb0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQxRDUxMTAvBgNVBAUTKEM1NDUyNUU5NzA1QkQ2OUQ2MTQyNERCRUU3QjA0OTNG NUZENkYwQTQwHhcNMjUwNzAzMDMyMDAwWhcNMjUwNzEwMDMyMDAwWjAYMRYwFAYD VQQDEw02ODY1ZjZlMC1jYWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyOUennoiFhDumD6HpsfX8q1AflcA3zO01GtSAwGeL0Iif356BqLx6xpDLvnL UTxUFsMekmr9ocTeS9S8Bv2gJim/UTXRRMpRbKhwqgwws2DOrILFVUeOD6bNswlf BsCJWCebvZeH8BF+H+uVLhndHMarsgd3wOuYUWqkVTjWyrpWMZsiy3CRUBCt87Ga khDwil5b0GWG0B9smV2oNh91drWvGK6PxUp92Q0t2EHsbkK06gelDCN2d22XEP45 OF759GU48c1Ht18RpbUu4Tc6MyI7NACELgCNjgWpOlOfVLIOxRo9rqspt771KFFC QA8LvHycG6fVXp1Rd0BKc59J/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDr6+gZh OAx/DxRbeecx+0nuli7bMB8GA1UdIwQYMBaAFMVFJelwW9adYUJNvuewST9f1vCk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDFENS8zNDMzNjFFRUND OEMxMUVEQTRDMUExNDNDNEY5QUUwMi94VVVsNlhCYjFwMWhRazItNTdCSlAxX1c4 S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hVVWw2WEJiMXAxaFFrMi01N0JKUDFfVzhLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDFENS8zNDMzNjFFRUNDOEMxMUVEQTRDMUExNDNDNEY5QUUwMi94VVVsNlhCYjFw MWhRazItNTdCSlAxX1c4S1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrVME7kycOAfRPMXDKIY3Pgb2QBgguRBlyXNPiKz7fyq5h616UOI8A mXaZBaCI8OLRJH6Pzve18vRIeORxi5E2WBUBE/RCIu9HwGep4NPPG4dotU5Lm1VY +ESfV5HWvDH9o7Ls2PPNV8DBM80R6vdFRMGpI7OJqMnsXmcQOml9S8RLc9XM1Fd3 9NlFi3lIZ7a+WoZ8ekd24IQJrmyWq0IkgKiaVk2M1zrjffs+O7Ay/zk7qyiKK3l9 QrG1Neiw2B3CpbPAdo6Nw7lyMvsCIxxL3AKlunijJyIawvNEYH0NoXnDX5qTfItf OhIfmw6gSehweSAuQFSlSPyHmrj/HqOk -----END CERTIFICATE-----Generated at Thu Jul 3 08:16:52 2025 by rpki-client