$ rpki-client -vvf rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft File: lDrZvGF3q4wvjoExwUpUZexClU8.mft (raw, json) Hash identifier: tnlXM0P1y6KV2+A4DibgNRVVy7Zvxl0yw1jBd4cq0h4= Subject key identifier: 36:F9:FD:5E:73:C4:A0:8F:6A:2C:09:3A:19:A8:D4:52:CB:EE:6A:A1 Authority key identifier: 94:3A:D9:BC:61:77:AB:8C:2F:8E:81:31:C1:4A:54:65:EC:42:95:4F Certificate issuer: /CN=A9158568/serialNumber=943AD9BC6177AB8C2F8E8131C14A5465EC42954F Certificate serial: 0145 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft Manifest number: 0141 Signing time: Wed 02 Jul 2025 19:00:34 +0000 Manifest this update: Wed 02 Jul 2025 19:00:33 +0000 Manifest next update: Wed 09 Jul 2025 19:00:33 +0000 Files and hashes: 1: lDrZvGF3q4wvjoExwUpUZexClU8.crl (hash: WrwE/jBwMkkHhN78d4j/GDr8IvGB52yps3f8KVIf63g=) 2: 203DB338782111EEAFDDBD86C4F9AE02.roa (hash: wX9s/s7jxKKJJyFHtP8kJqChB04GKqVy3xgEjOBVe9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.crl rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 325 (0x145) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158568, serialNumber=943AD9BC6177AB8C2F8E8131C14A5465EC42954F Validity Not Before: Jul 2 19:00:33 2025 GMT Not After : Jul 9 19:00:33 2025 GMT Subject: CN=686581d1-1f2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:3e:03:f3:4c:7f:49:10:9d:31:b6:3b:c5:6d: 1a:85:12:79:ba:f1:60:76:f5:46:59:db:56:df:57: c8:61:bd:f1:01:67:d0:f1:b5:bd:87:e9:e8:7f:bb: ea:35:13:95:54:ec:48:46:98:c4:5c:04:8d:c5:b1: af:66:5e:00:4a:ef:ca:30:53:c6:a2:5d:b9:96:7a: d8:df:2a:dc:8b:21:87:70:db:97:9a:bf:b0:ad:d6: af:ef:11:33:4e:9a:c4:80:ff:25:e8:38:c3:75:f4: 47:78:b6:d1:2f:06:59:d9:0b:16:c4:83:22:d4:30: ef:8c:6a:25:25:7b:39:f3:4b:07:97:41:5a:20:a3: 8c:05:c2:c8:f8:e8:80:85:95:b5:01:44:91:f5:47: 46:d7:36:34:eb:65:73:da:d8:44:b1:1b:ec:2c:79: 58:d8:55:98:a2:71:d5:c0:13:cc:9b:05:e3:3b:44: 3e:42:09:2d:7f:84:b2:45:8d:3f:dd:57:82:27:23: 9a:37:17:83:24:c0:a3:45:93:69:f3:c7:a4:37:ad: 65:96:fd:d6:d7:6e:1e:b0:a8:0e:1b:35:94:28:fa: a5:78:82:ce:25:bc:45:f2:41:83:c1:2c:08:2e:bc: d5:ca:99:00:99:51:49:c7:dc:97:c9:0b:a1:af:a0: 7c:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:F9:FD:5E:73:C4:A0:8F:6A:2C:09:3A:19:A8:D4:52:CB:EE:6A:A1 X509v3 Authority Key Identifier: keyid:94:3A:D9:BC:61:77:AB:8C:2F:8E:81:31:C1:4A:54:65:EC:42:95:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:b0:6e:37:78:c3:76:1a:71:a8:bc:91:89:7d:f5:d7:69:a7: c7:40:14:7d:61:d4:0e:69:62:4b:b6:05:44:e8:7b:cb:da:c4: 52:c2:38:34:29:fe:00:8d:2b:34:a0:ba:13:57:5b:90:28:51: 2d:91:2e:fd:93:0a:d2:06:fb:bf:62:18:56:d7:12:7b:20:30: d7:6a:d0:03:98:b5:27:1e:ff:14:0f:47:36:20:b1:ed:9b:b2: 65:5d:b7:7b:2a:fb:20:f8:3a:d8:a0:38:56:d5:c3:7a:48:32: 44:a8:d7:ae:68:8d:5b:f0:d9:d3:c4:e8:8e:7c:d0:8b:5d:59: 79:65:91:1b:74:17:8d:bf:70:0d:74:ee:d4:fb:62:5f:27:ed: 80:34:f2:9c:fc:8e:12:a2:f3:95:c9:85:f4:8e:4e:e4:e0:7b: 69:94:f2:4f:af:32:a5:31:6d:dd:16:d2:3a:ad:f4:16:a3:18: e3:c5:1b:9e:3b:ae:df:50:07:3d:2a:ee:ec:e3:9b:a9:34:65: 63:78:d7:f6:00:ce:4d:57:a9:63:92:e0:98:00:93:44:f8:18: 92:79:62:e3:ea:b8:1a:72:27:53:1f:58:53:ca:09:0d:a9:69: 57:c5:c2:f3:16:8b:80:98:1e:8c:a4:b2:c6:8d:df:06:c2:fc: 5f:8e:8c:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NjgxMTAvBgNVBAUTKDk0M0FEOUJDNjE3N0FCOEMyRjhFODEzMUMxNEE1NDY1 RUM0Mjk1NEYwHhcNMjUwNzAyMTkwMDMzWhcNMjUwNzA5MTkwMDMzWjAYMRYwFAYD VQQDEw02ODY1ODFkMS0xZjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArT4D80x/SRCdMbY7xW0ahRJ5uvFgdvVGWdtW31fIYb3xAWfQ8bW9h+nof7vq NROVVOxIRpjEXASNxbGvZl4ASu/KMFPGol25lnrY3yrciyGHcNuXmr+wrdav7xEz TprEgP8l6DjDdfRHeLbRLwZZ2QsWxIMi1DDvjGolJXs580sHl0FaIKOMBcLI+OiA hZW1AUSR9UdG1zY062Vz2thEsRvsLHlY2FWYonHVwBPMmwXjO0Q+Qgktf4SyRY0/ 3VeCJyOaNxeDJMCjRZNp88ekN61llv3W124esKgOGzWUKPqleILOJbxF8kGDwSwI LrzVypkAmVFJx9yXyQuhr6B8sQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDb5/V5z xKCPaiwJOhmo1FLL7mqhMB8GA1UdIwQYMBaAFJQ62bxhd6uML46BMcFKVGXsQpVP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU2OC8zNjE4QUI2RTcy QTMxMUVFOTQ1NTcyMTFDNEY5QUUwMi9sRHJadkdGM3E0d3Zqb0V4d1VwVVpleENs VTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xEclp2R0YzcTR3dmpvRXh3VXBVWmV4Q2xVOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU2OC8zNjE4QUI2RTcyQTMxMUVFOTQ1NTcyMTFDNEY5QUUwMi9sRHJadkdGM3E0 d3Zqb0V4d1VwVVpleENsVTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAesG43eMN2GnGovJGJffXXaafHQBR9YdQOaWJLtgVE6HvL2sRSwjg0 Kf4AjSs0oLoTV1uQKFEtkS79kwrSBvu/YhhW1xJ7IDDXatADmLUnHv8UD0c2ILHt m7JlXbd7Kvsg+DrYoDhW1cN6SDJEqNeuaI1b8NnTxOiOfNCLXVl5ZZEbdBeNv3AN dO7U+2JfJ+2ANPKc/I4SovOVyYX0jk7k4HtplPJPrzKlMW3dFtI6rfQWoxjjxRue O67fUAc9Ku7s45upNGVjeNf2AM5NV6ljkuCYAJNE+BiSeWLj6rgacidTH1hTygkN qWlXxcLzFouAmB6MpLLGjd8Gwvxfjoxm -----END CERTIFICATE-----Generated at Thu Jul 3 06:10:09 2025 by rpki-client