$ rpki-client -vvf rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft File: A3iO4rrk2AXrzcpmGOLsGhilxOI.mft (raw, json) Hash identifier: x/wmAtp9KSiuxHB6GF7awPYuXWs2Aar+wLEQ1xmZHrM= Subject key identifier: A2:FD:E2:08:59:09:10:DA:DC:69:E7:CC:04:CF:A7:84:3E:23:F3:74 Authority key identifier: 03:78:8E:E2:BA:E4:D8:05:EB:CD:CA:66:18:E2:EC:1A:18:A5:C4:E2 Certificate issuer: /CN=A915FDD9/serialNumber=03788EE2BAE4D805EBCDCA6618E2EC1A18A5C4E2 Certificate serial: 54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3iO4rrk2AXrzcpmGOLsGhilxOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft Manifest number: 54 Signing time: Tue 01 Jul 2025 07:59:30 +0000 Manifest this update: Tue 01 Jul 2025 07:59:30 +0000 Manifest next update: Tue 08 Jul 2025 07:59:29 +0000 Files and hashes: 1: A3iO4rrk2AXrzcpmGOLsGhilxOI.crl (hash: 6r6KeSTlDzjf5lSH2szCA/gf2CeSgc3/iIOQFzN+wD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.crl rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3iO4rrk2AXrzcpmGOLsGhilxOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:59:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FDD9, serialNumber=03788EE2BAE4D805EBCDCA6618E2EC1A18A5C4E2 Validity Not Before: Jul 1 07:59:30 2025 GMT Not After : Jul 8 07:59:29 2025 GMT Subject: CN=68639562-0aa1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:aa:98:b2:ba:69:b4:30:57:6a:57:a1:4c:26: 77:97:eb:4d:d1:93:cf:f6:9d:0d:14:2f:7e:22:cc: 1e:24:f0:88:a0:d4:4f:e3:6a:ef:53:e4:82:64:f1: 13:11:ec:88:e8:c0:b4:c1:28:cd:08:bb:bd:0d:91: f6:b7:82:df:c1:93:a9:14:0a:85:0a:0e:ee:22:54: 3a:0a:fa:96:b0:d7:99:8a:69:bd:62:92:4c:fc:7e: 6c:93:67:79:01:87:47:ba:7c:dd:e3:53:d0:8e:5d: 1b:9e:7e:13:03:a5:a0:33:c3:90:d0:38:35:bf:38: 72:c2:d5:79:e1:2f:aa:e1:1a:b4:a6:ff:b6:16:65: ae:c2:90:3d:3b:12:f7:fb:cf:77:ec:75:cc:69:bc: b7:45:e8:cf:85:98:d8:1a:32:d9:4b:7d:39:e0:d1: 59:e9:dd:55:ac:c1:69:71:6e:b8:bd:17:d3:7a:a2: 5c:a3:d0:23:68:3c:0e:ee:f4:f9:bf:d4:27:04:f7: 35:ee:ec:e8:88:bd:85:65:a6:1b:51:35:c2:10:71: aa:ff:ee:23:07:fa:7b:a8:d0:eb:bf:ec:a7:5d:b2: c0:05:16:0a:11:bc:e7:af:32:8b:de:3f:c4:41:eb: f6:d8:bb:30:13:08:55:02:7f:80:f3:e4:03:05:59: 47:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:FD:E2:08:59:09:10:DA:DC:69:E7:CC:04:CF:A7:84:3E:23:F3:74 X509v3 Authority Key Identifier: keyid:03:78:8E:E2:BA:E4:D8:05:EB:CD:CA:66:18:E2:EC:1A:18:A5:C4:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3iO4rrk2AXrzcpmGOLsGhilxOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:8e:e4:7f:d2:ff:45:f4:df:45:ba:05:73:03:a9:37:de:9a: 33:a4:c6:22:e5:d0:87:d7:10:0e:c1:19:d3:03:80:53:d4:47: 1f:17:56:da:bc:38:eb:72:a4:75:e8:2b:38:a5:3c:f3:85:8a: 9f:01:80:f8:34:cc:d0:81:4c:46:ea:a3:7f:c5:9a:60:17:cc: 58:7b:fc:00:15:8d:77:60:a7:3c:08:6c:67:7b:bf:26:76:d1: 28:ed:31:e4:07:d0:87:7f:3a:7a:0a:c3:15:57:ff:b3:a6:27: 4f:b8:dd:66:91:83:9d:f1:f6:ce:d3:22:a5:9e:67:43:bc:20: 29:ec:18:10:4c:69:74:bb:34:cb:a6:05:43:bf:7e:04:c0:31: 48:49:5c:18:53:ce:85:9e:2b:d7:ff:c3:60:f9:92:62:87:f3: 77:e3:5a:80:0f:8b:48:4c:7e:5a:c1:bc:4a:d3:6c:e7:64:cd: 91:4e:4c:e2:38:70:72:a2:15:f2:44:e8:f8:f4:26:1e:35:f8: 79:7c:05:b6:ad:24:d3:40:98:8c:eb:19:01:6a:8e:b0:b4:2a: d8:c3:93:49:c0:07:bf:fe:24:18:ba:54:0b:2a:0c:6f:41:63: a7:95:2b:23:14:ad:00:26:be:7a:16:12:73:53:20:c0:a6:13: 57:49:97:dd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 RkREOTExMC8GA1UEBRMoMDM3ODhFRTJCQUU0RDgwNUVCQ0RDQTY2MThFMkVDMUEx OEE1QzRFMjAeFw0yNTA3MDEwNzU5MzBaFw0yNTA3MDgwNzU5MjlaMBgxFjAUBgNV BAMTDTY4NjM5NTYyLTBhYTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+qpiyumm0MFdqV6FMJneX603Rk8/2nQ0UL34izB4k8Iig1E/jau9T5IJk8RMR 7IjowLTBKM0Iu70Nkfa3gt/Bk6kUCoUKDu4iVDoK+paw15mKab1ikkz8fmyTZ3kB h0e6fN3jU9COXRuefhMDpaAzw5DQODW/OHLC1XnhL6rhGrSm/7YWZa7CkD07Evf7 z3fsdcxpvLdF6M+FmNgaMtlLfTng0Vnp3VWswWlxbri9F9N6olyj0CNoPA7u9Pm/ 1CcE9zXu7OiIvYVlphtRNcIQcar/7iMH+nuo0Ou/7KddssAFFgoRvOevMoveP8RB 6/bYuzATCFUCf4Dz5AMFWUctAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUov3iCFkJ ENrcaefMBM+nhD4j83QwHwYDVR0jBBgwFoAUA3iO4rrk2AXrzcpmGOLsGhilxOIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVGREQ5L0JFN0NBQzEyRDZE RTExRUZCMDQ3NEUxQkM0RjlBRTAyL0EzaU80cnJrMkFYcnpjcG1HT0xzR2hpbHhP SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQTNpTzRycmsyQVhyemNwbUdPTHNHaGlseE9JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVG REQ5L0JFN0NBQzEyRDZERTExRUZCMDQ3NEUxQkM0RjlBRTAyL0EzaU80cnJrMkFY cnpjcG1HT0xzR2hpbHhPSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACmO5H/S/0X030W6BXMDqTfemjOkxiLl0IfXEA7BGdMDgFPURx8XVtq8 OOtypHXoKzilPPOFip8BgPg0zNCBTEbqo3/FmmAXzFh7/AAVjXdgpzwIbGd7vyZ2 0SjtMeQH0Id/OnoKwxVX/7OmJ0+43WaRg53x9s7TIqWeZ0O8ICnsGBBMaXS7NMum BUO/fgTAMUhJXBhTzoWeK9f/w2D5kmKH83fjWoAPi0hMflrBvErTbOdkzZFOTOI4 cHKiFfJE6Pj0Jh41+Hl8BbatJNNAmIzrGQFqjrC0KtjDk0nAB7/+JBi6VAsqDG9B Y6eVKyMUrQAmvnoWEnNTIMCmE1dJl90= -----END CERTIFICATE-----Generated at Thu Jul 3 00:22:56 2025 by rpki-client