$ rpki-client -vvf rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.mft File: vHDzdLcox7cRwkpoJ_dHekKyKk0.mft (raw, json) Hash identifier: msfPkSSOgnOW3GQuYe+nbUhfXPErgxruOjCZ48Dmzk4= Subject key identifier: A0:E0:B9:19:44:60:DA:46:13:2D:BE:51:52:06:52:D8:10:56:5D:CC Authority key identifier: BC:70:F3:74:B7:28:C7:B7:11:C2:4A:68:27:F7:47:7A:42:B2:2A:4D Certificate issuer: /CN=A9142A75/serialNumber=BC70F374B728C7B711C24A6827F7477A42B22A4D Certificate serial: 43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHDzdLcox7cRwkpoJ_dHekKyKk0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.mft Manifest number: 41 Signing time: Tue 01 Jul 2025 08:13:37 +0000 Manifest this update: Tue 01 Jul 2025 08:13:37 +0000 Manifest next update: Tue 08 Jul 2025 08:13:37 +0000 Files and hashes: 1: vHDzdLcox7cRwkpoJ_dHekKyKk0.crl (hash: j63iFunZYA1um9+qc0ShHDP8UzCb2s5Q1KJ6QC8fa7k=) 2: 3B69BCFAF53A11EF907A433EC4F9AE02.roa (hash: g53LMcn3iRdJAKtGtiImyfZixGirZg93i3IYIo94JAU=) 3: 6BD4BB16F83111EFBA64911FC4F9AE02.roa (hash: XvWuI1YoEga2y2ypcrjG1/r0tc+yszPXr1W996sUaXM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.crl rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHDzdLcox7cRwkpoJ_dHekKyKk0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:13:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142A75, serialNumber=BC70F374B728C7B711C24A6827F7477A42B22A4D Validity Not Before: Jul 1 08:13:37 2025 GMT Not After : Jul 8 08:13:37 2025 GMT Subject: CN=686398b1-34b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:16:ed:63:e7:81:22:d1:dd:c5:c7:03:2a:1d: 15:9c:c8:38:83:45:c6:d3:79:b2:a7:59:c0:35:cc: ba:20:df:cb:e8:82:d7:72:5b:be:7a:6b:3c:45:ae: b6:b7:8d:40:5f:95:c0:6d:11:21:97:73:60:8d:ce: 87:59:e3:3a:a6:e0:f3:84:5c:70:e2:24:50:4a:62: 77:79:c2:30:c8:97:75:ee:02:48:c7:a3:8a:c7:c5: 65:75:ba:f7:0d:0e:e9:45:41:da:11:a1:0a:98:ce: 47:08:96:69:e9:e8:9b:8a:9e:15:f5:66:8a:78:9e: 4d:5d:eb:15:10:d7:03:cf:dd:a8:b2:27:34:6f:35: 46:7f:0d:e8:ae:8a:31:59:c3:81:64:60:e6:5d:c1: 38:8c:00:ae:e6:fc:96:cc:fa:be:be:79:1b:d4:5e: 4f:25:b1:ab:84:6f:ed:ec:b0:37:dc:44:d4:28:0f: 9f:0e:fb:7b:04:c9:41:ea:ef:67:fd:65:d5:f3:cd: e0:4b:5c:b2:90:17:86:c9:61:c5:48:c2:fd:82:2f: 7f:cb:e7:f2:47:c6:96:06:cd:e4:31:0d:7c:8f:d9: a3:b6:d1:ce:79:47:3e:65:a1:77:49:59:d0:e5:9f: 19:85:cf:25:3c:ad:7c:23:2e:e6:42:e6:51:7e:5e: f1:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:E0:B9:19:44:60:DA:46:13:2D:BE:51:52:06:52:D8:10:56:5D:CC X509v3 Authority Key Identifier: keyid:BC:70:F3:74:B7:28:C7:B7:11:C2:4A:68:27:F7:47:7A:42:B2:2A:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHDzdLcox7cRwkpoJ_dHekKyKk0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:58:0c:f2:03:90:70:56:a3:ea:29:69:4d:4f:ec:a4:0a:0e: fe:59:37:fc:9c:36:a0:1e:e6:59:a9:0f:f8:aa:e2:51:48:74: 05:8b:08:df:b6:8d:9c:fb:93:e0:52:e7:22:93:eb:e2:ae:90: 0f:e0:55:f3:58:d1:fb:4a:54:52:44:19:9c:28:1a:f1:be:64: 10:cd:11:88:2a:10:b4:2d:0a:d9:e7:01:87:13:48:28:39:0c: b2:ee:47:1e:43:70:66:45:3c:33:25:ef:c8:5b:3f:5c:84:25: 4d:8c:c7:56:45:8f:7b:a9:72:c8:28:13:48:64:40:4f:7c:77: 8a:7c:10:d6:67:cf:d5:07:e8:a5:90:22:b1:ff:15:df:3a:b4: 78:ad:46:ab:a9:1b:4e:b2:f6:01:d0:06:84:2c:b8:f3:5a:16: d9:c0:c0:a6:89:42:30:de:24:9d:20:93:24:c1:44:18:3c:1c: 9c:72:d6:e1:5e:3a:ff:04:4a:8f:1b:01:c1:2b:8a:12:23:5f: 06:a9:d1:08:65:d0:9b:c9:4b:96:76:7d:ce:ba:c8:d4:0a:cd: a3:c5:6b:73:eb:57:c4:c3:03:66:de:61:b2:36:18:45:37:99: 87:ea:92:d9:f3:45:dc:fb:ac:35:be:58:ea:ff:48:76:f7:49: 3e:13:4d:44 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MkE3NTExMC8GA1UEBRMoQkM3MEYzNzRCNzI4QzdCNzExQzI0QTY4MjdGNzQ3N0E0 MkIyMkE0RDAeFw0yNTA3MDEwODEzMzdaFw0yNTA3MDgwODEzMzdaMBgxFjAUBgNV BAMTDTY4NjM5OGIxLTM0YjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYFu1j54Ei0d3FxwMqHRWcyDiDRcbTebKnWcA1zLog38vogtdyW756azxFrra3 jUBflcBtESGXc2CNzodZ4zqm4POEXHDiJFBKYnd5wjDIl3XuAkjHo4rHxWV1uvcN DulFQdoRoQqYzkcIlmnp6JuKnhX1Zop4nk1d6xUQ1wPP3aiyJzRvNUZ/DeiuijFZ w4FkYOZdwTiMAK7m/JbM+r6+eRvUXk8lsauEb+3ssDfcRNQoD58O+3sEyUHq72f9 ZdXzzeBLXLKQF4bJYcVIwv2CL3/L5/JHxpYGzeQxDXyP2aO20c55Rz5loXdJWdDl nxmFzyU8rXwjLuZC5lF+XvHZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUoOC5GURg 2kYTLb5RUgZS2BBWXcwwHwYDVR0jBBgwFoAUvHDzdLcox7cRwkpoJ/dHekKyKk0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyQTc1L0VGNUNENkRBRjUz OTExRUZCMDlGQzgzREM0RjlBRTAyL3ZIRHpkTGNveDdjUndrcG9KX2RIZWtLeUtr MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdkhEemRMY294N2NSd2twb0pfZEhla0t5S2swLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy QTc1L0VGNUNENkRBRjUzOTExRUZCMDlGQzgzREM0RjlBRTAyL3ZIRHpkTGNveDdj UndrcG9KX2RIZWtLeUtrMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEJYDPIDkHBWo+opaU1P7KQKDv5ZN/ycNqAe5lmpD/iq4lFIdAWLCN+2 jZz7k+BS5yKT6+KukA/gVfNY0ftKVFJEGZwoGvG+ZBDNEYgqELQtCtnnAYcTSCg5 DLLuRx5DcGZFPDMl78hbP1yEJU2Mx1ZFj3upcsgoE0hkQE98d4p8ENZnz9UH6KWQ IrH/Fd86tHitRqupG06y9gHQBoQsuPNaFtnAwKaJQjDeJJ0gkyTBRBg8HJxy1uFe Ov8ESo8bAcErihIjXwap0Qhl0JvJS5Z2fc66yNQKzaPFa3PrV8TDA2beYbI2GEU3 mYfqktnzRdz7rDW+WOr/SHb3ST4TTUQ= -----END CERTIFICATE-----Generated at Thu Jul 3 07:55:25 2025 by rpki-client