$ rpki-client -vvf rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.mft File: nIFHHxiq7s35RafJF_2KiYXXw6w.mft (raw, json) Hash identifier: j1SSaRIrABsZE5AkRD2daY9jZIuRmJC0nEaScZ3xeMw= Subject key identifier: 0E:E0:CD:B4:85:93:40:05:A9:20:0B:62:39:10:79:BC:DC:9F:8D:7F Authority key identifier: 9C:81:47:1F:18:AA:EE:CD:F9:45:A7:C9:17:FD:8A:89:85:D7:C3:AC Certificate issuer: /CN=A914C33A/serialNumber=9C81471F18AAEECDF945A7C917FD8A8985D7C3AC Certificate serial: 2A9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIFHHxiq7s35RafJF_2KiYXXw6w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.mft Manifest number: 2A5F Signing time: Wed 02 Jul 2025 15:41:10 +0000 Manifest this update: Wed 02 Jul 2025 15:41:10 +0000 Manifest next update: Wed 09 Jul 2025 15:41:10 +0000 Files and hashes: 1: nIFHHxiq7s35RafJF_2KiYXXw6w.crl (hash: giWIRrAOrBOTOy6kmV3OLthTitLmt0yH0aLgdGzAjVM=) 2: FB405D86900E11EAA43BB21FC4F9AE02.roa (hash: xBHGq+I+gC6mBEO7iAqcoK3D8WpSvv5eSxXQn/j0Q60=) 3: 3118E43E966B11EAAA23047CC4F9AE02.roa (hash: gq6V0/TIcAAKvh2pY9bQTg3IwnYpN56MDdlGTWJZ3cM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.crl rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIFHHxiq7s35RafJF_2KiYXXw6w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 15:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10909 (0x2a9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C33A, serialNumber=9C81471F18AAEECDF945A7C917FD8A8985D7C3AC Validity Not Before: Jul 2 15:41:10 2025 GMT Not After : Jul 9 15:41:10 2025 GMT Subject: CN=68655316-2ddf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:79:07:d9:c2:f5:c1:73:f8:8a:99:fd:28:85: 1e:c0:11:49:e1:d8:58:b9:0c:54:76:6a:04:77:41: bb:27:30:1e:2d:50:11:44:9a:4d:88:f5:b8:77:0b: d4:e4:ac:9e:ab:86:d7:4d:05:c5:66:03:3b:b5:48: ce:19:9a:f5:ea:9f:58:81:a9:41:52:90:d5:3d:87: 62:a4:53:a9:c2:d8:d7:43:84:b8:8f:4f:43:fb:9c: 7d:7d:08:72:bd:3d:a7:a3:e5:ff:66:8c:bb:34:65: da:3f:9e:16:9f:fd:78:0c:83:4e:ba:d4:45:db:a1: e2:ba:db:68:da:46:af:bd:21:40:83:fc:ea:90:87: 33:42:28:f4:4d:7e:2d:0c:4b:a7:58:5c:c8:05:3b: 5e:78:74:66:a9:99:a9:b0:c9:1a:52:cf:4e:e1:bc: 9e:04:6e:5d:4d:4e:05:3c:38:a1:21:7d:e0:f3:7d: d8:7f:30:34:9b:dc:89:4a:78:cd:c9:a2:48:c2:fc: 76:f5:9e:1b:fe:26:5e:0b:7e:09:73:b4:f0:5d:1d: 4b:d7:fb:4b:24:08:35:81:dc:ed:98:39:3a:f6:6b: ce:6e:82:f9:f9:18:b8:64:47:c7:2b:2c:29:8b:bb: 14:f6:97:e4:f3:bf:f2:8e:d4:0d:dd:2c:66:e2:13: d3:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:E0:CD:B4:85:93:40:05:A9:20:0B:62:39:10:79:BC:DC:9F:8D:7F X509v3 Authority Key Identifier: keyid:9C:81:47:1F:18:AA:EE:CD:F9:45:A7:C9:17:FD:8A:89:85:D7:C3:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIFHHxiq7s35RafJF_2KiYXXw6w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:ec:eb:96:56:40:da:bf:4e:cb:22:86:cd:a7:d7:3d:84:11: ef:9d:1c:e0:26:fb:3c:0a:c8:0a:f0:12:08:06:9d:13:02:15: d9:59:05:4a:a0:4f:eb:33:07:a1:45:40:90:e1:07:00:8d:2a: a4:47:db:9d:a2:83:2b:b0:95:0e:fd:93:8e:7d:b3:37:c0:59: 8d:d3:7d:b5:cb:d8:db:94:93:34:da:fe:21:04:ca:e6:b7:ec: 1b:e7:12:ab:36:96:2e:40:27:90:77:fd:2b:d9:5b:bf:00:8a: 27:b4:a3:97:52:a8:54:21:b4:4a:8d:53:b4:f2:24:c0:05:a7: 35:e8:49:3a:9e:9e:be:eb:16:6a:c4:92:41:a4:e7:3e:cd:57: 20:aa:ff:75:6a:8a:1f:32:7e:96:03:4f:6e:70:f4:9f:86:3b: 42:21:78:85:01:98:e0:33:2c:31:83:a3:1e:73:96:94:46:d5: f8:ac:fe:dd:9d:9e:a6:e5:56:68:f8:81:18:7c:32:0e:4d:f9: cd:fd:50:f0:cb:73:af:f5:b5:ca:51:40:29:b3:2c:e7:62:66: cd:18:fd:b1:f4:b2:ed:36:1d:56:fb:84:c2:02:01:6a:61:8d: ac:74:64:6d:1f:33:9b:83:b0:4e:58:54:a6:9f:37:7f:d7:ae: 62:cd:01:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKp0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMzM0ExMTAvBgNVBAUTKDlDODE0NzFGMThBQUVFQ0RGOTQ1QTdDOTE3RkQ4QTg5 ODVEN0MzQUMwHhcNMjUwNzAyMTU0MTEwWhcNMjUwNzA5MTU0MTEwWjAYMRYwFAYD VQQDEw02ODY1NTMxNi0yZGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5XkH2cL1wXP4ipn9KIUewBFJ4dhYuQxUdmoEd0G7JzAeLVARRJpNiPW4dwvU 5Kyeq4bXTQXFZgM7tUjOGZr16p9YgalBUpDVPYdipFOpwtjXQ4S4j09D+5x9fQhy vT2no+X/Zoy7NGXaP54Wn/14DINOutRF26Hiutto2kavvSFAg/zqkIczQij0TX4t DEunWFzIBTteeHRmqZmpsMkaUs9O4byeBG5dTU4FPDihIX3g833YfzA0m9yJSnjN yaJIwvx29Z4b/iZeC34Jc7TwXR1L1/tLJAg1gdztmDk69mvOboL5+Ri4ZEfHKywp i7sU9pfk87/yjtQN3Sxm4hPT2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA7gzbSF k0AFqSALYjkQebzcn41/MB8GA1UdIwQYMBaAFJyBRx8Yqu7N+UWnyRf9iomF18Os MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzMzQS8xRDJCRDAzRTJE REIxMUU0OUFGNjE1MzBDNEY5QUUwMi9uSUZISHhpcTdzMzVSYWZKRl8yS2lZWFh3 NncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25JRkhIeGlxN3MzNVJhZkpGXzJLaVlYWHc2dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzMzQS8xRDJCRDAzRTJEREIxMUU0OUFGNjE1MzBDNEY5QUUwMi9uSUZISHhpcTdz MzVSYWZKRl8yS2lZWFh3NncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBz7OuWVkDav07LIobNp9c9hBHvnRzgJvs8CsgK8BIIBp0TAhXZWQVK oE/rMwehRUCQ4QcAjSqkR9udooMrsJUO/ZOOfbM3wFmN0321y9jblJM02v4hBMrm t+wb5xKrNpYuQCeQd/0r2Vu/AIontKOXUqhUIbRKjVO08iTABac16Ek6np6+6xZq xJJBpOc+zVcgqv91aoofMn6WA09ucPSfhjtCIXiFAZjgMywxg6Mec5aURtX4rP7d nZ6m5VZo+IEYfDIOTfnN/VDwy3Ov9bXKUUApsyznYmbNGP2x9LLtNh1W+4TCAgFq YY2sdGRtHzObg7BOWFSmnzd/165izQEx -----END CERTIFICATE-----Generated at Thu Jul 3 14:50:08 2025 by rpki-client