$ rpki-client -vvf rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft File: D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft (raw, json) Hash identifier: IZC/+vqYwFK/PPBUCQS6thSNcvO79HuGSJlim6q3AQQ= Subject key identifier: 8C:B7:30:3D:08:F4:DE:BD:BB:80:EB:59:9B:43:5A:65:34:F0:EB:DB Authority key identifier: 0F:95:2A:27:EF:3E:F2:7C:EA:08:C5:7D:20:2A:38:06:9E:CB:58:40 Certificate issuer: /CN=A9132AEB/serialNumber=0F952A27EF3EF27CEA08C57D202A38069ECB5840 Certificate serial: 34B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft Manifest number: 34A9 Signing time: Wed 02 Jul 2025 15:10:39 +0000 Manifest this update: Wed 02 Jul 2025 15:10:37 +0000 Manifest next update: Wed 09 Jul 2025 15:10:37 +0000 Files and hashes: 1: D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl (hash: FQ7Y4y8tSeKGRzDUwdIxZuxWkzYrKIcP1+S1INiK8ck=) 2: 514DBDFC98C711EAA0CFE582C4F9AE02.roa (hash: i+oLVOiTvF13PBUoOa9UfIxFEQhcYfTJRD1Exsj8GIk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 15:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13497 (0x34b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132AEB, serialNumber=0F952A27EF3EF27CEA08C57D202A38069ECB5840 Validity Not Before: Jul 2 15:10:37 2025 GMT Not After : Jul 9 15:10:37 2025 GMT Subject: CN=68654bed-929b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:14:48:b3:b7:31:35:98:e4:14:9d:14:eb:a1: 0a:b9:14:5a:67:0a:f8:d0:13:6f:92:a2:ba:e3:53: 7a:d5:9e:99:a6:65:28:34:d2:af:ba:c0:fd:3e:ce: 88:55:03:b7:65:26:42:5b:21:fa:d2:2a:38:d1:bb: ac:40:2c:d5:c1:46:5f:35:d4:e5:b0:e7:42:6f:33: c9:c2:a1:a9:00:0e:48:20:72:53:09:e6:bc:2f:3a: 56:1c:b4:00:fe:9a:7a:9e:90:32:55:20:a0:68:b8: 93:97:49:ae:1c:34:99:20:89:75:4d:f6:43:e3:20: ca:b8:e4:91:a4:8d:8d:b8:28:23:ea:df:c4:2e:0d: 61:75:66:b7:d6:9e:bf:2b:36:25:f1:a0:4e:a6:c6: 86:f5:85:9f:2b:c9:24:00:17:ce:cd:40:82:65:9a: fb:17:62:36:e3:6c:18:f7:33:d3:67:95:33:56:58: 6e:bf:b9:9c:bf:d7:d1:b2:a9:61:4e:c8:29:23:bc: 51:3e:cc:7f:18:43:c7:dd:68:07:f9:15:64:15:aa: a9:39:43:6d:51:e7:40:3e:37:67:c3:d4:af:fa:eb: ca:c7:b8:76:e8:44:b7:19:1b:33:fb:ae:ca:4b:92: a4:87:eb:0a:bd:e3:8c:54:55:1e:ca:f1:1d:a2:57: a9:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:B7:30:3D:08:F4:DE:BD:BB:80:EB:59:9B:43:5A:65:34:F0:EB:DB X509v3 Authority Key Identifier: keyid:0F:95:2A:27:EF:3E:F2:7C:EA:08:C5:7D:20:2A:38:06:9E:CB:58:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:d7:05:1e:00:f2:03:52:19:9b:3e:16:db:30:d9:58:b9:ef: 31:12:7c:3f:c0:04:a7:13:d3:c9:bd:12:a8:63:0c:2c:55:cc: 0a:9a:c1:9b:75:0f:f6:22:1f:f5:f6:6c:de:96:a3:ca:53:65: eb:26:75:77:2c:0f:52:fc:23:65:63:95:3d:49:0e:ef:c1:bb: e9:39:36:2c:81:a2:b0:4f:ea:91:1d:1a:22:72:30:41:1d:47: b5:1d:dd:a2:c1:76:62:d1:eb:47:b3:57:9f:49:52:40:72:0a: bb:a3:2d:72:22:f5:a4:e6:86:87:e5:b0:dd:c5:c4:cd:6f:17: 72:3f:b7:9a:54:e0:b3:b3:25:7f:4e:8d:50:37:24:e4:86:08: 5b:44:69:c2:41:5e:c4:62:02:97:ff:b3:9e:5a:b3:35:ef:85: b2:ad:59:ad:07:03:7d:dc:1f:8c:d8:34:11:16:18:51:e4:99: 4c:89:08:34:ea:6b:2d:2e:ff:ad:bf:28:9d:50:da:78:0a:f3: 8f:d9:aa:92:3b:50:3e:50:b9:7e:55:af:e1:98:1a:55:f3:7f: 8e:b9:cc:42:4a:48:61:73:44:64:16:93:1b:ea:11:56:f6:50: b7:ad:d7:ab:0b:5f:69:4c:49:75:43:15:b5:b8:4c:87:6e:a5: 54:bd:bb:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJBRUIxMTAvBgNVBAUTKDBGOTUyQTI3RUYzRUYyN0NFQTA4QzU3RDIwMkEzODA2 OUVDQjU4NDAwHhcNMjUwNzAyMTUxMDM3WhcNMjUwNzA5MTUxMDM3WjAYMRYwFAYD VQQDEw02ODY1NGJlZC05MjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBRIs7cxNZjkFJ0U66EKuRRaZwr40BNvkqK641N61Z6ZpmUoNNKvusD9Ps6I VQO3ZSZCWyH60io40busQCzVwUZfNdTlsOdCbzPJwqGpAA5IIHJTCea8LzpWHLQA /pp6npAyVSCgaLiTl0muHDSZIIl1TfZD4yDKuOSRpI2NuCgj6t/ELg1hdWa31p6/ KzYl8aBOpsaG9YWfK8kkABfOzUCCZZr7F2I242wY9zPTZ5UzVlhuv7mcv9fRsqlh TsgpI7xRPsx/GEPH3WgH+RVkFaqpOUNtUedAPjdnw9Sv+uvKx7h26ES3GRsz+67K S5Kkh+sKveOMVFUeyvEdolepCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIy3MD0I 9N69u4DrWZtDWmU08OvbMB8GA1UdIwQYMBaAFA+VKifvPvJ86gjFfSAqOAaey1hA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkFFQi9FRjI5QkEyQTFE QTExMUUyODY4QjY4OTQwOEIwMkNEMi9ENVVxSi04LThuenFDTVY5SUNvNEJwN0xX RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q1VXFKLTgtOG56cUNNVjlJQ280QnA3TFdFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkFFQi9FRjI5QkEyQTFEQTExMUUyODY4QjY4OTQwOEIwMkNEMi9ENVVxSi04LThu enFDTVY5SUNvNEJwN0xXRUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB01wUeAPIDUhmbPhbbMNlYue8xEnw/wASnE9PJvRKoYwwsVcwKmsGb dQ/2Ih/19mzelqPKU2XrJnV3LA9S/CNlY5U9SQ7vwbvpOTYsgaKwT+qRHRoicjBB HUe1Hd2iwXZi0etHs1efSVJAcgq7oy1yIvWk5oaH5bDdxcTNbxdyP7eaVOCzsyV/ To1QNyTkhghbRGnCQV7EYgKX/7OeWrM174WyrVmtBwN93B+M2DQRFhhR5JlMiQg0 6mstLv+tvyidUNp4CvOP2aqSO1A+ULl+Va/hmBpV83+OucxCSkhhc0RkFpMb6hFW 9lC3rderC19pTEl1QxW1uEyHbqVUvbtL -----END CERTIFICATE-----Generated at Thu Jul 3 03:49:29 2025 by rpki-client