$ rpki-client -vvf rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.mft File: H3amlEQsq0PX0XzW_fmpfgt_qo4.mft (raw, json) Hash identifier: UuRXf6T6nbZOlAJ6ll8LLlChMZ+UEIcJ7aHEhgSeUbU= Subject key identifier: 95:AA:7A:F2:5D:2C:1C:DA:EB:C3:D8:18:39:F9:78:96:7A:36:98:F0 Authority key identifier: 1F:76:A6:94:44:2C:AB:43:D7:D1:7C:D6:FD:F9:A9:7E:0B:7F:AA:8E Certificate issuer: /CN=A9158059/serialNumber=1F76A694442CAB43D7D17CD6FDF9A97E0B7FAA8E Certificate serial: 0634 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H3amlEQsq0PX0XzW_fmpfgt_qo4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.mft Manifest number: 062F Signing time: Wed 02 Jul 2025 23:01:54 +0000 Manifest this update: Wed 02 Jul 2025 23:01:53 +0000 Manifest next update: Wed 09 Jul 2025 23:01:53 +0000 Files and hashes: 1: H3amlEQsq0PX0XzW_fmpfgt_qo4.crl (hash: yP9VD0aUWh1F2DKZn7uN5FuSS8NE9O38qJbLGttsePQ=) 2: 702A62CE9CC311EBA5A7A47BC4F9AE02.roa (hash: casLvQjbiWmoUm1zZDsT8rFqITbKKo8QIpvIUSskW7g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.crl rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H3amlEQsq0PX0XzW_fmpfgt_qo4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:01:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1588 (0x634) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158059, serialNumber=1F76A694442CAB43D7D17CD6FDF9A97E0B7FAA8E Validity Not Before: Jul 2 23:01:53 2025 GMT Not After : Jul 9 23:01:53 2025 GMT Subject: CN=6865ba62-5a3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:af:f9:b2:f8:c5:64:f7:7a:b9:db:8f:80:73: a4:81:ca:84:2f:76:ea:7c:77:40:aa:bd:7b:80:90: 8f:8f:c7:d6:5f:68:5e:8d:3f:1d:17:91:ee:c2:f1: 95:32:de:a6:9e:f7:1f:4b:0c:cd:a3:d6:20:47:f7: 76:17:38:bf:ed:3d:23:be:47:49:4f:31:f8:b3:36: b9:23:79:05:98:1e:45:54:09:46:ec:ef:e8:e4:d5: 12:60:08:c9:7a:f3:ea:f1:85:b8:15:84:a9:b6:3d: b7:d7:c0:60:4f:bd:be:1a:d9:20:6a:89:1d:56:04: 9d:cc:4b:a3:37:3c:80:77:c9:8c:ce:bb:bb:76:db: cf:15:0c:bc:cc:41:ac:55:aa:08:7b:5a:0f:90:ec: 35:d4:98:82:37:77:c2:04:1b:8f:59:42:23:95:33: 65:32:e3:06:a7:98:10:0d:22:86:ca:53:ad:81:5a: cd:c0:bc:34:6a:8f:f1:f5:ad:9b:f0:a6:cd:57:6c: 30:c2:69:bd:cb:d7:61:02:d1:4d:00:c4:7d:fd:19: e9:e0:83:7b:3a:a4:3d:58:08:6c:07:ca:aa:52:da: 59:f1:33:4d:ab:bf:43:40:5e:f2:08:2d:0f:d6:26: e0:4b:bb:e6:1c:62:bf:40:ea:76:4e:29:64:0c:9d: a9:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:AA:7A:F2:5D:2C:1C:DA:EB:C3:D8:18:39:F9:78:96:7A:36:98:F0 X509v3 Authority Key Identifier: keyid:1F:76:A6:94:44:2C:AB:43:D7:D1:7C:D6:FD:F9:A9:7E:0B:7F:AA:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H3amlEQsq0PX0XzW_fmpfgt_qo4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:f1:02:f0:1f:0d:6a:6c:4c:5e:20:23:e6:9c:ec:17:78:2d: 4d:02:41:ba:3f:76:99:43:ab:27:c0:2a:87:75:45:03:76:da: cb:b2:55:76:2b:19:0b:42:d9:63:d6:81:ce:09:5d:28:4a:f2: b9:f0:35:60:01:66:db:76:fe:16:53:a5:dd:e8:8c:73:f2:42: c4:64:d3:a6:e1:28:21:c9:59:c3:3d:d0:62:86:10:d6:41:93: 61:ab:89:cc:95:9f:dd:cd:6e:cc:5c:1c:1d:57:96:80:91:fe: 61:e6:f9:ce:f1:9a:21:39:89:1e:b4:e4:e6:40:24:00:90:5f: 46:99:4a:9a:95:5b:59:b2:5d:13:2b:bb:37:bf:6c:a3:73:1d: 2a:8d:be:35:ff:17:bd:b9:e9:33:9e:cf:56:1b:13:67:6b:11: cb:9c:1f:a3:82:74:a7:07:d5:62:56:6f:36:d7:8d:64:a5:05: 1c:35:06:1c:fe:87:26:46:98:fb:52:e7:3a:94:b4:0b:e3:29: 65:78:e7:72:f6:f2:25:c2:6e:7e:a5:8c:67:a8:8f:74:fd:8d: 04:6c:ad:1b:96:b0:8f:f3:21:29:56:40:67:50:a3:e9:7d:40: 7d:86:82:85:ec:86:74:e6:31:95:24:23:13:55:5a:17:c5:61: ba:3e:e8:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwNTkxMTAvBgNVBAUTKDFGNzZBNjk0NDQyQ0FCNDNEN0QxN0NENkZERjlBOTdF MEI3RkFBOEUwHhcNMjUwNzAyMjMwMTUzWhcNMjUwNzA5MjMwMTUzWjAYMRYwFAYD VQQDEw02ODY1YmE2Mi01YTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8a/5svjFZPd6uduPgHOkgcqEL3bqfHdAqr17gJCPj8fWX2hejT8dF5HuwvGV Mt6mnvcfSwzNo9YgR/d2Fzi/7T0jvkdJTzH4sza5I3kFmB5FVAlG7O/o5NUSYAjJ evPq8YW4FYSptj2318BgT72+GtkgaokdVgSdzEujNzyAd8mMzru7dtvPFQy8zEGs VaoIe1oPkOw11JiCN3fCBBuPWUIjlTNlMuMGp5gQDSKGylOtgVrNwLw0ao/x9a2b 8KbNV2wwwmm9y9dhAtFNAMR9/Rnp4IN7OqQ9WAhsB8qqUtpZ8TNNq79DQF7yCC0P 1ibgS7vmHGK/QOp2TilkDJ2pjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJWqevJd LBza68PYGDn5eJZ6NpjwMB8GA1UdIwQYMBaAFB92ppRELKtD19F81v35qX4Lf6qO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODA1OS9CQkQ4MURBODlD QzExMUVCQkZERTY1NzlDNEY5QUUwMi9IM2FtbEVRc3EwUFgwWHpXX2ZtcGZndF9x bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0gzYW1sRVFzcTBQWDBYeldfZm1wZmd0X3FvNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODA1OS9CQkQ4MURBODlDQzExMUVCQkZERTY1NzlDNEY5QUUwMi9IM2FtbEVRc3Ew UFgwWHpXX2ZtcGZndF9xbzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA08QLwHw1qbExeICPmnOwXeC1NAkG6P3aZQ6snwCqHdUUDdtrLslV2 KxkLQtlj1oHOCV0oSvK58DVgAWbbdv4WU6Xd6Ixz8kLEZNOm4SghyVnDPdBihhDW QZNhq4nMlZ/dzW7MXBwdV5aAkf5h5vnO8ZohOYketOTmQCQAkF9GmUqalVtZsl0T K7s3v2yjcx0qjb41/xe9uekzns9WGxNnaxHLnB+jgnSnB9ViVm82141kpQUcNQYc /ocmRpj7Uuc6lLQL4ylleOdy9vIlwm5+pYxnqI90/Y0EbK0blrCP8yEpVkBnUKPp fUB9hoKF7IZ05jGVJCMTVVoXxWG6Pug1 -----END CERTIFICATE-----Generated at Thu Jul 3 09:00:16 2025 by rpki-client