$ rpki-client -vvf rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft File: A2aKIfDwHwaydP2IzJ4KboPVX4U.mft (raw, json) Hash identifier: 3FIt3+Wslhiw5/ZGc8vCifD/OiAbP8gwmEcHN16Nd7s= Subject key identifier: 2A:E8:20:81:2B:4F:4D:BD:4D:DF:DE:CD:E5:38:32:F8:30:83:CF:14 Authority key identifier: 03:66:8A:21:F0:F0:1F:06:B2:74:FD:88:CC:9E:0A:6E:83:D5:5F:85 Certificate issuer: /CN=A9141620/serialNumber=03668A21F0F01F06B274FD88CC9E0A6E83D55F85 Certificate serial: 0763 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft Manifest number: 075C Signing time: Wed 02 Jul 2025 21:54:22 +0000 Manifest this update: Wed 02 Jul 2025 21:54:22 +0000 Manifest next update: Wed 09 Jul 2025 21:54:22 +0000 Files and hashes: 1: A2aKIfDwHwaydP2IzJ4KboPVX4U.crl (hash: /gwI5RIY4YiR5pUOTmpjWBs9lAvohtoGf7jpTHI3bN4=) 2: 5DDE6BC2293E11EB9DFA3C72C4F9AE02.roa (hash: dyvPcZxPt0csBuZZARHE9y3XiMCjfKdl2w86flcHLuE=) 3: 2C0DD994525511F0A544424DC4F9AE02.roa (hash: neek5srr+aWcWmnY+eA9qwIexbf1EgEc62zGldwiimQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.crl rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:35:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1891 (0x763) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141620, serialNumber=03668A21F0F01F06B274FD88CC9E0A6E83D55F85 Validity Not Before: Jul 2 21:54:22 2025 GMT Not After : Jul 9 21:54:22 2025 GMT Subject: CN=6865aa8e-3c19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:91:74:b9:62:7f:6b:71:16:59:1b:66:d8:99: 8f:57:e5:aa:56:39:10:82:50:4d:df:26:ea:08:64: b8:ce:aa:90:58:0f:d9:1c:36:a7:be:51:88:f9:f3: 23:a7:7c:7e:4c:d5:7e:e0:1b:1b:b9:f4:47:b1:a5: ff:1b:df:cc:7b:5e:df:ef:c8:06:4d:c1:f0:12:1e: 9e:38:c7:1e:b6:6d:b5:cf:ea:15:88:ae:3b:fe:d2: a8:11:86:5a:9a:e7:5a:29:1b:98:47:8f:71:51:50: 17:82:be:1f:00:20:94:0e:06:01:e7:ac:08:4e:6f: c2:ab:6f:36:0b:22:51:e3:df:1b:7e:16:9e:fd:34: ad:e3:0c:28:f4:b9:c9:1b:9b:cc:99:d3:d7:fb:a3: c8:a0:3d:a2:18:b1:ea:52:ba:92:9c:a3:64:42:0b: d0:ef:78:d1:6a:9e:fa:75:5c:b9:c8:37:0e:9b:c2: a1:74:07:dd:d5:5d:90:08:84:ec:55:16:f8:08:d5: 9b:e3:2e:45:1d:7d:a4:0e:73:5e:78:71:98:8b:07: a8:ff:96:b8:86:db:18:94:5d:63:2c:80:13:e6:b7: aa:54:78:e3:51:c3:d2:17:b2:c9:78:3d:93:c3:2c: 60:97:6d:34:9b:85:c3:d7:af:91:d0:41:8f:17:f7: ce:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:E8:20:81:2B:4F:4D:BD:4D:DF:DE:CD:E5:38:32:F8:30:83:CF:14 X509v3 Authority Key Identifier: keyid:03:66:8A:21:F0:F0:1F:06:B2:74:FD:88:CC:9E:0A:6E:83:D5:5F:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:1a:98:d1:06:45:26:8a:29:0d:39:dd:89:b9:c7:2d:9a:49: 5c:d3:fc:c4:68:53:19:f6:f2:a6:64:a8:8f:45:53:35:02:05: db:d1:b8:d4:6c:69:a6:f7:49:da:dc:78:27:e7:77:73:29:d9: ac:58:28:26:2b:80:c4:be:38:e3:01:74:76:81:df:45:4d:26: ff:ff:50:e3:55:8b:ac:22:3f:24:93:88:e7:9c:36:d0:8c:1a: a4:34:99:ff:47:f4:5c:58:a8:8c:9e:16:9e:09:3b:32:d3:ec: 6d:03:1b:06:46:92:d9:4a:bf:61:10:7b:79:d3:e3:19:c9:1d: 41:e4:a6:f0:1f:0b:61:4f:9d:d0:61:0f:41:be:b9:b1:73:4d: 12:ed:c2:ec:0d:3e:53:2d:aa:f9:74:2b:91:fb:2e:49:87:d3: af:3e:aa:a1:1e:71:25:fa:a3:b9:b8:37:05:13:95:00:40:03: 0b:41:76:c1:db:63:6f:4f:a9:64:2b:ce:dd:71:db:5b:3a:b9: 1c:25:8d:07:c2:ea:92:09:33:57:93:60:02:e4:0f:b5:fb:b2: ab:15:75:5f:a1:9e:c7:6f:6c:ae:32:53:58:18:3c:e3:7c:6e: 1e:6d:ad:25:2a:85:2b:ba:88:05:cd:29:fe:09:b5:0e:22:cd: 4a:99:62:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDE2MjAxMTAvBgNVBAUTKDAzNjY4QTIxRjBGMDFGMDZCMjc0RkQ4OENDOUUwQTZF ODNENTVGODUwHhcNMjUwNzAyMjE1NDIyWhcNMjUwNzA5MjE1NDIyWjAYMRYwFAYD VQQDEw02ODY1YWE4ZS0zYzE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4JF0uWJ/a3EWWRtm2JmPV+WqVjkQglBN3ybqCGS4zqqQWA/ZHDanvlGI+fMj p3x+TNV+4BsbufRHsaX/G9/Me17f78gGTcHwEh6eOMcetm21z+oViK47/tKoEYZa mudaKRuYR49xUVAXgr4fACCUDgYB56wITm/Cq282CyJR498bfhae/TSt4wwo9LnJ G5vMmdPX+6PIoD2iGLHqUrqSnKNkQgvQ73jRap76dVy5yDcOm8KhdAfd1V2QCITs VRb4CNWb4y5FHX2kDnNeeHGYiweo/5a4htsYlF1jLIAT5reqVHjjUcPSF7LJeD2T wyxgl200m4XD16+R0EGPF/fOmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCroIIEr T029Td/ezeU4Mvgwg88UMB8GA1UdIwQYMBaAFANmiiHw8B8GsnT9iMyeCm6D1V+F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTYyMC8yMTk4MTZBQTI5 M0QxMUVCQkZDMTQ3NzFDNEY5QUUwMi9BMmFLSWZEd0h3YXlkUDJJeko0S2JvUFZY NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EyYUtJZkR3SHdheWRQMkl6SjRLYm9QVlg0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTYyMC8yMTk4MTZBQTI5M0QxMUVCQkZDMTQ3NzFDNEY5QUUwMi9BMmFLSWZEd0h3 YXlkUDJJeko0S2JvUFZYNFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPGpjRBkUmiikNOd2Jucctmklc0/zEaFMZ9vKmZKiPRVM1AgXb0bjU bGmm90na3Hgn53dzKdmsWCgmK4DEvjjjAXR2gd9FTSb//1DjVYusIj8kk4jnnDbQ jBqkNJn/R/RcWKiMnhaeCTsy0+xtAxsGRpLZSr9hEHt50+MZyR1B5KbwHwthT53Q YQ9Bvrmxc00S7cLsDT5TLar5dCuR+y5Jh9OvPqqhHnEl+qO5uDcFE5UAQAMLQXbB 22NvT6lkK87dcdtbOrkcJY0HwuqSCTNXk2AC5A+1+7KrFXVfoZ7Hb2yuMlNYGDzj fG4eba0lKoUruogFzSn+CbUOIs1KmWKl -----END CERTIFICATE-----Generated at Wed Jul 2 23:28:39 2025 by rpki-client