$ rpki-client -vvf rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft File: 7dKmloaGUlbJsP3da3FJZtU3jzM.mft (raw, json) Hash identifier: KED6/NaGj++xIOhe88XM5iR1d/zDD30jhO121JAEtv8= Subject key identifier: E5:BA:97:6D:57:48:0E:71:3D:C6:1E:02:B2:74:89:35:69:20:7C:F8 Authority key identifier: ED:D2:A6:96:86:86:52:56:C9:B0:FD:DD:6B:71:49:66:D5:37:8F:33 Certificate issuer: /CN=A912D3CB/serialNumber=EDD2A69686865256C9B0FDDD6B714966D5378F33 Certificate serial: 0A72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft Manifest number: 0A5D Signing time: Wed 02 Jul 2025 19:55:01 +0000 Manifest this update: Wed 02 Jul 2025 19:55:01 +0000 Manifest next update: Wed 09 Jul 2025 19:55:01 +0000 Files and hashes: 1: 7dKmloaGUlbJsP3da3FJZtU3jzM.crl (hash: 9Vs8OhPNQBhrxhx0QT1OYhvn1tWVPdFZ3/xhVqESjuE=) 2: 923B6404466B11EE8B37E13CC4F9AE02.roa (hash: horX5P75gumDA8WyF+ghzmHcSe0CjNBHMfSInHVl7ao=) 3: C2E32E34466B11EE988B243DC4F9AE02.roa (hash: hBn0Qcv2Wj2OFO1BXPRpxsQ8U4zswJ2i/kTyMm1Zr1Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.crl rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2674 (0xa72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D3CB, serialNumber=EDD2A69686865256C9B0FDDD6B714966D5378F33 Validity Not Before: Jul 2 19:55:01 2025 GMT Not After : Jul 9 19:55:01 2025 GMT Subject: CN=68658e95-d5c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a6:14:44:2c:08:4d:b9:e3:8f:a3:f4:f4:d0: 9e:15:29:09:b7:2a:03:70:f5:1b:9b:5a:53:06:b8: cc:cb:e8:f4:6e:4d:46:a5:9a:98:4f:00:08:e0:ec: 0e:85:5c:4b:e6:56:47:82:02:bf:69:2c:d6:02:2e: f0:48:c8:77:81:af:01:3d:f9:03:fc:7e:b2:4f:aa: 7a:b3:87:5e:f8:f7:bc:5a:57:34:66:60:42:78:ec: 2d:9c:c6:49:0c:d7:4b:4f:d9:2f:d8:b7:55:7b:a3: 65:70:69:a2:81:82:aa:d1:0e:6f:fb:cf:55:f6:af: a2:0d:52:13:13:e4:cf:b5:83:d4:09:6c:6e:17:5f: 8f:54:a9:8f:af:a0:98:47:06:af:30:b2:7a:13:54: 4c:ec:ff:67:a0:d2:4c:05:78:37:7e:ec:ce:f3:a5: 85:d9:0a:d2:5f:be:2e:7e:07:8f:c9:70:eb:ae:29: 74:9b:92:28:33:99:81:3f:18:72:05:24:58:31:70: 0e:ac:20:10:cb:d8:3d:98:a0:ea:f9:e1:17:90:9e: d5:ee:26:c7:79:ab:c6:65:70:e9:b7:0f:10:3b:0b: 26:df:5f:b6:4a:f2:81:70:67:09:89:37:df:19:d9: c5:6c:4d:a4:be:f3:50:f2:79:c0:5a:38:d8:0d:d6: 1c:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:BA:97:6D:57:48:0E:71:3D:C6:1E:02:B2:74:89:35:69:20:7C:F8 X509v3 Authority Key Identifier: keyid:ED:D2:A6:96:86:86:52:56:C9:B0:FD:DD:6B:71:49:66:D5:37:8F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:7f:8d:f0:37:41:6a:a6:42:ee:3e:ce:78:2f:53:ed:08:a5: 50:6f:d1:d4:5f:0b:2a:02:a9:33:2f:a5:33:96:40:cc:72:03: f6:6d:51:3a:59:b6:08:45:ca:7d:a9:f9:b7:6a:2f:5b:83:1e: b3:eb:de:f8:1c:5d:fe:10:62:83:b6:23:14:92:d4:fe:40:19: b6:c9:85:d2:e7:14:d6:cc:60:19:cc:dd:78:f9:15:0b:a0:e9: 1f:14:66:74:fd:6b:17:00:d4:fd:32:93:3b:e0:08:06:d9:0f: 97:b1:0b:cf:67:7e:4f:1b:87:e2:3b:d2:69:83:20:c0:c3:72: 03:4a:4d:f7:64:c6:08:86:01:d3:29:c3:60:66:47:19:06:c9: 8d:38:fc:c4:1e:51:fa:c1:97:70:9e:12:71:d3:84:6f:1a:a8: 17:76:c9:7c:c2:11:ff:38:4a:e7:1a:ca:32:bc:ef:6a:9a:64: e0:e9:3b:33:24:b9:b7:5e:7a:32:cd:79:54:da:6f:81:02:6f: 2d:a7:a4:00:ae:b6:f0:93:9e:1e:63:a6:be:ac:13:f7:36:82: 5f:6c:2a:c8:d2:5a:05:4d:e5:50:5b:26:96:ea:e8:24:12:41: e2:ae:95:d3:67:a7:39:e6:84:0a:55:4e:8a:43:3c:05:08:34: af:a1:86:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCnIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQzQ0IxMTAvBgNVBAUTKEVERDJBNjk2ODY4NjUyNTZDOUIwRkRERDZCNzE0OTY2 RDUzNzhGMzMwHhcNMjUwNzAyMTk1NTAxWhcNMjUwNzA5MTk1NTAxWjAYMRYwFAYD VQQDEw02ODY1OGU5NS1kNWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA06YURCwITbnjj6P09NCeFSkJtyoDcPUbm1pTBrjMy+j0bk1GpZqYTwAI4OwO hVxL5lZHggK/aSzWAi7wSMh3ga8BPfkD/H6yT6p6s4de+Pe8Wlc0ZmBCeOwtnMZJ DNdLT9kv2LdVe6NlcGmigYKq0Q5v+89V9q+iDVITE+TPtYPUCWxuF1+PVKmPr6CY RwavMLJ6E1RM7P9noNJMBXg3fuzO86WF2QrSX74ufgePyXDrril0m5IoM5mBPxhy BSRYMXAOrCAQy9g9mKDq+eEXkJ7V7ibHeavGZXDptw8QOwsm31+2SvKBcGcJiTff GdnFbE2kvvNQ8nnAWjjYDdYcRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOW6l21X SA5xPcYeArJ0iTVpIHz4MB8GA1UdIwQYMBaAFO3SppaGhlJWybD93WtxSWbVN48z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDNDQi9BOUE0MzlGQzY5 QjIxMUVBOTc3OURENDhDNEY5QUUwMi83ZEttbG9hR1VsYkpzUDNkYTNGSlp0VTNq ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdkS21sb2FHVWxiSnNQM2RhM0ZKWnRVM2p6TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDNDQi9BOUE0MzlGQzY5QjIxMUVBOTc3OURENDhDNEY5QUUwMi83ZEttbG9hR1Vs YkpzUDNkYTNGSlp0VTNqek0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtf43wN0FqpkLuPs54L1PtCKVQb9HUXwsqAqkzL6UzlkDMcgP2bVE6 WbYIRcp9qfm3ai9bgx6z6974HF3+EGKDtiMUktT+QBm2yYXS5xTWzGAZzN14+RUL oOkfFGZ0/WsXANT9MpM74AgG2Q+XsQvPZ35PG4fiO9JpgyDAw3IDSk33ZMYIhgHT KcNgZkcZBsmNOPzEHlH6wZdwnhJx04RvGqgXdsl8whH/OErnGsoyvO9qmmTg6Tsz JLm3XnoyzXlU2m+BAm8tp6QArrbwk54eY6a+rBP3NoJfbCrI0loFTeVQWyaW6ugk EkHirpXTZ6c55oQKVU6KQzwFCDSvoYZf -----END CERTIFICATE-----Generated at Fri Jul 4 06:54:31 2025 by rpki-client