$ rpki-client -vvf rpki.apnic.net/member_repository/A914B1DB/365140EE431011EF868B2B81C4F9AE02/mcEG6H_h1kEa7HH4A5RiLIgaqtk.mft File: mcEG6H_h1kEa7HH4A5RiLIgaqtk.mft (raw, json) Hash identifier: D9zFRsY4vAzQnGKN3kO0BHGOZQGxGMEROQMhK4oxxGs= Subject key identifier: D4:CC:41:1B:36:A1:A4:24:DA:0B:CA:A2:75:13:17:64:A9:6F:FF:1E Authority key identifier: 99:C1:06:E8:7F:E1:D6:41:1A:EC:71:F8:03:94:62:2C:88:1A:AA:D9 Certificate issuer: /CN=A914B1DB/serialNumber=99C106E87FE1D6411AEC71F80394622C881AAAD9 Certificate serial: B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mcEG6H_h1kEa7HH4A5RiLIgaqtk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B1DB/365140EE431011EF868B2B81C4F9AE02/mcEG6H_h1kEa7HH4A5RiLIgaqtk.mft Manifest number: B4 Signing time: Thu 03 Jul 2025 06:08:50 +0000 Manifest this update: Thu 03 Jul 2025 06:08:49 +0000 Manifest next update: Thu 10 Jul 2025 06:08:49 +0000 Files and hashes: 1: mcEG6H_h1kEa7HH4A5RiLIgaqtk.crl (hash: L4MMJ1nv/uf7hSDjpZCJS4bx/zXeJt3b6Lrmz28tPDA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B1DB/365140EE431011EF868B2B81C4F9AE02/mcEG6H_h1kEa7HH4A5RiLIgaqtk.crl rsync://rpki.apnic.net/member_repository/A914B1DB/365140EE431011EF868B2B81C4F9AE02/mcEG6H_h1kEa7HH4A5RiLIgaqtk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mcEG6H_h1kEa7HH4A5RiLIgaqtk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B1DB, serialNumber=99C106E87FE1D6411AEC71F80394622C881AAAD9 Validity Not Before: Jul 3 06:08:49 2025 GMT Not After : Jul 10 06:08:49 2025 GMT Subject: CN=68661e72-b857 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:54:e1:63:72:01:5b:a8:24:47:69:8e:a7:0a: 2d:1e:ef:5e:c0:2d:9e:fe:59:c5:38:91:6e:e3:b6: f5:20:1b:81:19:f2:1e:2a:96:c2:99:a5:d3:7c:9a: 5b:73:c4:2f:3a:4e:09:ae:da:3c:2a:3f:72:d6:d8: 84:72:a9:b7:a2:af:ae:94:87:a7:7f:c6:9e:50:e0: f6:cb:c6:f4:da:cf:a3:da:25:ae:21:ec:36:1c:c2: e3:df:ee:6c:56:26:69:18:02:7c:78:4b:26:6f:4a: 77:2f:8f:a2:8a:db:d6:18:12:09:99:a2:f5:ff:ec: a7:a4:01:ce:36:78:ff:92:95:d8:d8:9c:c5:9d:34: b7:ca:7e:14:8c:aa:04:b5:8d:27:ff:ca:1e:89:d7: fb:87:e0:b5:0d:ba:8f:2e:7a:d8:93:4d:65:c7:fe: 1f:fe:c3:ad:54:71:09:f7:65:69:84:77:a7:4f:fa: a2:fb:4b:33:b3:db:47:4f:4b:75:5e:41:cc:62:e3: 99:25:8d:19:3e:4f:84:0c:ff:e6:3c:6b:2d:f2:da: a3:b0:d0:99:dc:1d:4e:f9:a1:22:4d:6b:ca:d3:44: 6b:8c:f1:5c:8a:df:aa:f5:55:61:52:f4:c7:8e:98: 09:cd:d0:82:6e:b3:41:bf:50:e7:f5:3e:97:71:93: 17:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:CC:41:1B:36:A1:A4:24:DA:0B:CA:A2:75:13:17:64:A9:6F:FF:1E X509v3 Authority Key Identifier: keyid:99:C1:06:E8:7F:E1:D6:41:1A:EC:71:F8:03:94:62:2C:88:1A:AA:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B1DB/365140EE431011EF868B2B81C4F9AE02/mcEG6H_h1kEa7HH4A5RiLIgaqtk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mcEG6H_h1kEa7HH4A5RiLIgaqtk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B1DB/365140EE431011EF868B2B81C4F9AE02/mcEG6H_h1kEa7HH4A5RiLIgaqtk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:cb:9f:b8:78:fb:00:bc:2f:e1:c5:4b:a5:76:8a:ec:d4:26: 59:62:86:dc:d1:22:21:be:1b:08:b9:75:b9:8a:7f:40:00:f5: 41:db:45:75:f6:d9:fe:66:99:b5:9d:cb:52:1e:45:5a:75:74: 80:1b:d0:43:67:11:2f:3b:82:6e:26:f3:3f:ac:81:91:c5:33: d7:f2:28:24:40:f5:d1:e6:f9:e5:1a:fe:17:df:fc:4b:3c:13: 78:93:1a:47:62:a1:1d:67:95:9c:ac:dd:4a:92:34:31:a9:24: e6:81:bf:7b:17:92:b6:3f:88:d7:e2:52:eb:cc:5d:44:12:a2: 41:e6:4d:12:7f:ac:ed:40:e1:4f:a9:1c:55:36:5c:b9:b3:19: 01:e2:a0:1e:55:a1:62:a9:74:1e:04:14:5c:03:bc:9f:f7:13: fe:b1:ea:cd:72:2b:16:30:e0:07:4d:fe:16:1d:a5:81:fb:ae: 27:c9:6c:8f:c7:63:08:f8:63:b8:70:65:3c:47:96:91:d5:6e: 04:c5:07:e8:4b:68:ce:d2:48:70:22:fd:c1:52:a0:41:3f:5d: 1e:d8:88:8c:0a:3f:66:05:f6:9d:66:81:0c:aa:04:5f:85:62: ff:e3:27:36:43:ab:95:97:9c:7e:74:d8:06:b4:fc:70:0b:d7: 51:cb:ae:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIxREIxMTAvBgNVBAUTKDk5QzEwNkU4N0ZFMUQ2NDExQUVDNzFGODAzOTQ2MjJD ODgxQUFBRDkwHhcNMjUwNzAzMDYwODQ5WhcNMjUwNzEwMDYwODQ5WjAYMRYwFAYD VQQDEw02ODY2MWU3Mi1iODU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzVThY3IBW6gkR2mOpwotHu9ewC2e/lnFOJFu47b1IBuBGfIeKpbCmaXTfJpb c8QvOk4Jrto8Kj9y1tiEcqm3oq+ulIenf8aeUOD2y8b02s+j2iWuIew2HMLj3+5s ViZpGAJ8eEsmb0p3L4+iitvWGBIJmaL1/+ynpAHONnj/kpXY2JzFnTS3yn4UjKoE tY0n/8oeidf7h+C1DbqPLnrYk01lx/4f/sOtVHEJ92VphHenT/qi+0szs9tHT0t1 XkHMYuOZJY0ZPk+EDP/mPGst8tqjsNCZ3B1O+aEiTWvK00RrjPFcit+q9VVhUvTH jpgJzdCCbrNBv1Dn9T6XcZMX2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNTMQRs2 oaQk2gvKonUTF2Spb/8eMB8GA1UdIwQYMBaAFJnBBuh/4dZBGuxx+AOUYiyIGqrZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjFEQi8zNjUxNDBFRTQz MTAxMUVGODY4QjJCODFDNEY5QUUwMi9tY0VHNkhfaDFrRWE3SEg0QTVSaUxJZ2Fx dGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21jRUc2SF9oMWtFYTdISDRBNVJpTElnYXF0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjFEQi8zNjUxNDBFRTQzMTAxMUVGODY4QjJCODFDNEY5QUUwMi9tY0VHNkhfaDFr RWE3SEg0QTVSaUxJZ2FxdGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNy5+4ePsAvC/hxUuldors1CZZYobc0SIhvhsIuXW5in9AAPVB20V1 9tn+Zpm1nctSHkVadXSAG9BDZxEvO4JuJvM/rIGRxTPX8igkQPXR5vnlGv4X3/xL PBN4kxpHYqEdZ5WcrN1KkjQxqSTmgb97F5K2P4jX4lLrzF1EEqJB5k0Sf6ztQOFP qRxVNly5sxkB4qAeVaFiqXQeBBRcA7yf9xP+serNcisWMOAHTf4WHaWB+64nyWyP x2MI+GO4cGU8R5aR1W4ExQfoS2jO0khwIv3BUqBBP10e2IiMCj9mBfadZoEMqgRf hWL/4yc2Q6uVl5x+dNgGtPxwC9dRy65/ -----END CERTIFICATE-----Generated at Thu Jul 3 07:57:57 2025 by rpki-client