$ rpki-client -vvf rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.mft File: AXJLovQFMrfgjXIPTAlmQbShyMQ.mft (raw, json) Hash identifier: gZhCqrCHseXQJk6z8tJ7dferev51yEvt1aDP6udgLDs= Subject key identifier: 38:D8:0E:14:C2:9F:ED:0C:33:73:2B:8D:5C:4E:D9:5E:DF:BA:D5:21 Authority key identifier: 01:72:4B:A2:F4:05:32:B7:E0:8D:72:0F:4C:09:66:41:B4:A1:C8:C4 Certificate issuer: /CN=A9138271/serialNumber=01724BA2F40532B7E08D720F4C096641B4A1C8C4 Certificate serial: 04F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AXJLovQFMrfgjXIPTAlmQbShyMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.mft Manifest number: 04EC Signing time: Thu 03 Jul 2025 00:02:54 +0000 Manifest this update: Thu 03 Jul 2025 00:02:54 +0000 Manifest next update: Thu 10 Jul 2025 00:02:54 +0000 Files and hashes: 1: AXJLovQFMrfgjXIPTAlmQbShyMQ.crl (hash: QkohbwHzmkdjirXhsuWmFYVYtyGwIrG6UCJWWZCfGFw=) 2: BD4D8A2C1C4811ECBAA21A3CC4F9AE02.roa (hash: ACAwTbWxAFnsJHmx19kYwRZ2kYaKIODFxQCzfuXITvo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.crl rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AXJLovQFMrfgjXIPTAlmQbShyMQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:02:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1264 (0x4f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138271, serialNumber=01724BA2F40532B7E08D720F4C096641B4A1C8C4 Validity Not Before: Jul 3 00:02:54 2025 GMT Not After : Jul 10 00:02:54 2025 GMT Subject: CN=6865c8ae-d63e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:06:0a:6d:3c:15:42:77:b8:2b:43:89:70:7c: 94:54:2e:dd:bc:b9:68:c2:ad:1a:7c:48:e1:2c:38: 87:cc:1b:98:1c:d0:03:cb:29:fd:0c:ed:8f:f5:b8: a4:14:eb:25:2e:17:7d:22:0f:bd:eb:ef:83:1d:dc: 68:45:01:f1:8f:d4:d0:8a:f0:de:b2:36:be:90:60: 57:af:90:60:6d:4c:e5:12:63:a0:57:88:e1:dd:b3: ce:38:bf:23:f0:19:b1:d9:b2:e4:51:e6:0b:6e:b4: b8:2d:ba:f8:31:19:d2:7d:43:ff:0d:83:eb:42:42: b4:aa:1d:8a:ef:18:71:c7:51:36:ed:02:d6:33:bd: 72:93:12:e3:08:73:ed:65:76:4c:4e:77:4a:ff:62: 99:a1:a8:26:ea:5e:b6:fb:7c:21:73:ed:9c:d8:56: 57:87:1f:8c:fe:29:84:80:a3:16:42:73:52:f6:5d: 9e:7c:c1:bf:93:ae:ab:ec:a5:ec:5e:77:e0:b4:14: c1:54:83:7f:45:52:1b:5e:42:7e:71:94:5c:48:76: ab:e5:48:31:47:b6:36:8c:e0:47:2a:ca:45:55:11: d3:76:25:6c:b1:bc:1f:c0:0e:15:cd:e7:3d:eb:be: 87:e3:73:22:dc:c6:1b:a6:22:5d:1f:ad:1c:04:ea: 49:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:D8:0E:14:C2:9F:ED:0C:33:73:2B:8D:5C:4E:D9:5E:DF:BA:D5:21 X509v3 Authority Key Identifier: keyid:01:72:4B:A2:F4:05:32:B7:E0:8D:72:0F:4C:09:66:41:B4:A1:C8:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AXJLovQFMrfgjXIPTAlmQbShyMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:a8:16:bc:c2:d2:03:ce:71:31:a8:e5:f0:05:00:05:dd:5e: 23:d7:de:69:49:7a:29:5e:a5:b3:1b:eb:d0:b1:7f:b8:da:ef: 21:63:f8:ec:9d:9c:e0:16:42:b2:9d:25:21:b4:b4:2f:05:49: 94:1f:7f:51:72:1c:ca:fc:53:36:76:ba:4b:a9:8d:b9:32:e2: 80:19:ff:57:41:68:c5:a6:fe:e4:6d:ae:2a:e1:1d:57:cc:87: 1b:0f:33:9d:c5:35:2c:ca:59:11:e6:35:29:2c:62:7a:7a:44: 98:67:ff:bb:8c:69:89:aa:b5:8e:8f:89:3d:a8:94:90:2b:1d: ed:0f:e6:e7:cb:99:ad:56:f4:4e:2c:04:ec:f5:28:22:96:81: 8b:8a:ce:a0:b9:3f:7a:48:52:f1:f1:9b:ea:69:ff:ba:8a:eb: 70:be:a2:68:8f:f8:1f:4a:0d:c0:78:12:82:70:18:68:63:14: a4:03:d6:e4:43:e7:8f:b8:94:69:ff:2f:0f:f8:e3:ee:54:c8: 55:5d:b4:40:89:0d:b2:14:2f:e5:cf:95:a4:f7:41:1b:1e:b1: 1c:2d:34:ba:f8:33:a8:52:ae:31:83:4a:73:45:53:aa:ed:3c: f7:49:0d:97:e3:cb:a8:80:61:f5:f8:de:30:92:8a:81:12:23: d2:bb:00:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgyNzExMTAvBgNVBAUTKDAxNzI0QkEyRjQwNTMyQjdFMDhENzIwRjRDMDk2NjQx QjRBMUM4QzQwHhcNMjUwNzAzMDAwMjU0WhcNMjUwNzEwMDAwMjU0WjAYMRYwFAYD VQQDEw02ODY1YzhhZS1kNjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxQYKbTwVQne4K0OJcHyUVC7dvLlowq0afEjhLDiHzBuYHNADyyn9DO2P9bik FOslLhd9Ig+96++DHdxoRQHxj9TQivDesja+kGBXr5BgbUzlEmOgV4jh3bPOOL8j 8Bmx2bLkUeYLbrS4Lbr4MRnSfUP/DYPrQkK0qh2K7xhxx1E27QLWM71ykxLjCHPt ZXZMTndK/2KZoagm6l62+3whc+2c2FZXhx+M/imEgKMWQnNS9l2efMG/k66r7KXs XnfgtBTBVIN/RVIbXkJ+cZRcSHar5UgxR7Y2jOBHKspFVRHTdiVssbwfwA4Vzec9 676H43Mi3MYbpiJdH60cBOpJIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDjYDhTC n+0MM3MrjVxO2V7futUhMB8GA1UdIwQYMBaAFAFyS6L0BTK34I1yD0wJZkG0ocjE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODI3MS84MUY5RTJEMDFD NDQxMUVDOUIyRTZBNUZDNEY5QUUwMi9BWEpMb3ZRRk1yZmdqWElQVEFsbVFiU2h5 TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FYSkxvdlFGTXJmZ2pYSVBUQWxtUWJTaHlNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODI3MS84MUY5RTJEMDFDNDQxMUVDOUIyRTZBNUZDNEY5QUUwMi9BWEpMb3ZRRk1y ZmdqWElQVEFsbVFiU2h5TVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTqBa8wtIDznExqOXwBQAF3V4j195pSXopXqWzG+vQsX+42u8hY/js nZzgFkKynSUhtLQvBUmUH39RchzK/FM2drpLqY25MuKAGf9XQWjFpv7kba4q4R1X zIcbDzOdxTUsylkR5jUpLGJ6ekSYZ/+7jGmJqrWOj4k9qJSQKx3tD+bny5mtVvRO LATs9SgiloGLis6guT96SFLx8Zvqaf+6iutwvqJoj/gfSg3AeBKCcBhoYxSkA9bk Q+ePuJRp/y8P+OPuVMhVXbRAiQ2yFC/lz5Wk90EbHrEcLTS6+DOoUq4xg0pzRVOq 7Tz3SQ2X48uogGH1+N4wkoqBEiPSuwDj -----END CERTIFICATE-----Generated at Thu Jul 3 05:05:11 2025 by rpki-client