$ rpki-client -vvf rpki.apnic.net/member_repository/A9161613/30992668E53911EB8A5B9271C4F9AE02/CfwHfzPjrWe_FHdVFno61OrLHnw.mft File: CfwHfzPjrWe_FHdVFno61OrLHnw.mft (raw, json) Hash identifier: mWQhTp2P8o4vN+12xemNzvdfrQ35mL6xIKcePEvGM68= Subject key identifier: 75:F5:F6:BB:66:FA:52:A6:48:A2:3C:CF:5C:CB:7B:FC:AE:91:14:6F Authority key identifier: 09:FC:07:7F:33:E3:AD:67:BF:14:77:55:16:7A:3A:D4:EA:CB:1E:7C Certificate issuer: /CN=A9161613/serialNumber=09FC077F33E3AD67BF147755167A3AD4EACB1E7C Certificate serial: 0640 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CfwHfzPjrWe_FHdVFno61OrLHnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161613/30992668E53911EB8A5B9271C4F9AE02/CfwHfzPjrWe_FHdVFno61OrLHnw.mft Manifest number: 05DB Signing time: Wed 02 Jul 2025 23:37:57 +0000 Manifest this update: Wed 02 Jul 2025 23:37:56 +0000 Manifest next update: Wed 09 Jul 2025 23:37:56 +0000 Files and hashes: 1: CfwHfzPjrWe_FHdVFno61OrLHnw.crl (hash: ZzCsy1T+UJRfOcbIEiHhM/4tmOkvtEXgQdh0LepqzdA=) 2: ACDC465C7AEF11EFA321CE80C4F9AE02.roa (hash: yBRdcVlJbMlBPrrr56nDrfaeaxDRpo8RSVcl7jjMZG8=) 3: 81618D88E53E11EB9E429C44C4F9AE02.roa (hash: eFJqISAsUQRuhPb6f3Hah2PFjEJHe1r/X4BKPg7b4kE=) 4: 30904BA8329711EE8EC1E923C4F9AE02.roa (hash: APJ8LqbdzO0lCKxbThL64TXLQduxBrfKXGZEsGj8Ew8=) 5: AEEA30A444C911F0B1847067C4F9AE02.roa (hash: jBj8tUje/J9yoZyIY1hd6S/+kLstKeE/As7y2q686ZY=) 6: 5BCDBECC9D6311EE8C1C2B7AC4F9AE02.roa (hash: ABr0nwHRDBRQsWs55ophU2pIwRmU0n1F+Pfhya1vaK0=) 7: 639394F4B05611EF95B2931BC4F9AE02.roa (hash: C08kfFB3sbHdAzC9hLJnr0tm+lqFd1yHsi8+zNn8y4s=) 8: 8023B518E53E11EB9E429C44C4F9AE02.roa (hash: vSQHxn5/lTR7h5pMBllVKzWJzWkf2IiJr01/df+82mQ=) 9: 167A6086BBD211EEABCC0D23C4F9AE02.roa (hash: bZCNjczNhzUji7LuYcuS6Yg9nvK9y01d14oqtpECLrI=) 10: 80AD3A9AE53E11EB9E429C44C4F9AE02.roa (hash: 0krzqD999T9B24TBVDnqpUMPP33Jo+TAt8qYmCWzmx0=) 11: 7F2A4208E53E11EB9E429C44C4F9AE02.roa (hash: epJMifwD6R2b1WeonhK6+Ptsph58rQyMoEb+/4Q80hY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161613/30992668E53911EB8A5B9271C4F9AE02/CfwHfzPjrWe_FHdVFno61OrLHnw.crl rsync://rpki.apnic.net/member_repository/A9161613/30992668E53911EB8A5B9271C4F9AE02/CfwHfzPjrWe_FHdVFno61OrLHnw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CfwHfzPjrWe_FHdVFno61OrLHnw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:37:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1600 (0x640) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161613, serialNumber=09FC077F33E3AD67BF147755167A3AD4EACB1E7C Validity Not Before: Jul 2 23:37:56 2025 GMT Not After : Jul 9 23:37:56 2025 GMT Subject: CN=6865c2d5-ba9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:47:47:b8:00:f1:d0:51:82:aa:62:2d:a7:ed: 1d:12:4f:2d:81:ef:fd:d2:8f:e8:32:24:6c:4a:79: c5:ec:02:af:3f:7e:4f:1a:ed:f8:08:58:f7:2c:b9: 12:7d:fc:a8:7d:98:7f:5a:5e:6c:5a:cd:15:7b:9d: 4a:31:d1:12:87:56:68:f7:18:1f:dd:5c:63:71:11: b0:d7:fc:1a:6f:f7:59:f0:d1:b4:0a:7b:a1:84:9c: 4f:40:81:47:d9:0c:d2:79:23:2e:b7:a6:c2:76:8b: 25:a0:ae:3c:d9:f5:15:26:a5:58:d2:18:ab:cd:29: 87:a9:3c:04:37:51:ac:f9:98:e5:c8:4c:59:6d:f6: 0e:79:0b:cb:22:ed:6d:38:f1:68:30:75:6e:3c:72: 8f:ad:41:c2:52:32:37:99:e0:ef:c5:a2:f1:f0:cf: 46:41:29:aa:c9:c7:cc:eb:5f:da:dc:c5:88:33:79: 0f:4c:90:74:ac:57:32:cc:91:1b:62:8e:9f:9e:bd: d7:4c:dc:21:12:8c:bc:38:ba:ef:ac:20:82:57:92: 93:d5:26:33:d0:82:39:9b:fa:5f:3a:9c:48:0d:9f: 76:19:86:11:56:b9:8a:39:70:4e:d1:af:66:23:49: c9:38:76:10:27:6a:3e:8b:da:c4:88:5c:f7:7c:4d: 58:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:F5:F6:BB:66:FA:52:A6:48:A2:3C:CF:5C:CB:7B:FC:AE:91:14:6F X509v3 Authority Key Identifier: keyid:09:FC:07:7F:33:E3:AD:67:BF:14:77:55:16:7A:3A:D4:EA:CB:1E:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161613/30992668E53911EB8A5B9271C4F9AE02/CfwHfzPjrWe_FHdVFno61OrLHnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CfwHfzPjrWe_FHdVFno61OrLHnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161613/30992668E53911EB8A5B9271C4F9AE02/CfwHfzPjrWe_FHdVFno61OrLHnw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:65:b6:49:43:01:33:ff:51:a3:7d:03:38:0c:ef:28:dc:56: 33:4b:65:ba:9a:7b:80:63:fe:92:b5:c3:49:c4:db:b0:89:e4: 29:83:15:de:a2:fc:36:af:c4:b5:a8:a0:00:38:68:48:70:51: 8e:39:4c:8b:28:c6:2c:c7:89:f8:f4:54:3d:38:ab:54:be:79: f3:32:23:a6:aa:4a:1b:b1:7e:53:7a:2c:d9:79:a0:21:3a:ce: 6d:40:2a:03:5c:cf:54:56:d1:ed:1c:4c:72:d6:fa:0c:ec:31: ee:84:a8:8f:d5:3a:58:80:3b:77:20:37:7c:85:40:8e:49:b2: 77:c1:da:27:43:9b:4b:ca:06:de:44:79:5f:08:78:a9:ca:7b: c4:fb:68:fd:d1:75:30:2e:88:ff:29:70:78:05:29:bb:86:37: 5d:90:ad:47:ee:ef:b4:ec:25:d0:d6:c8:13:0d:75:1f:a0:db: 79:e1:ea:7f:55:21:a9:1c:7f:2c:52:3b:74:83:a5:bd:15:c1: 00:e8:89:84:28:33:a6:f6:ac:f2:47:c1:83:e9:d6:4e:44:c5: e3:18:7b:2a:04:da:41:2e:c1:aa:de:30:71:ca:d3:80:ab:38: e3:07:81:33:60:64:06:37:6c:f9:2f:6e:e1:d7:52:6c:5e:28: 53:ab:57:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjE2MTMxMTAvBgNVBAUTKDA5RkMwNzdGMzNFM0FENjdCRjE0Nzc1NTE2N0EzQUQ0 RUFDQjFFN0MwHhcNMjUwNzAyMjMzNzU2WhcNMjUwNzA5MjMzNzU2WjAYMRYwFAYD VQQDEw02ODY1YzJkNS1iYTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5EdHuADx0FGCqmItp+0dEk8tge/90o/oMiRsSnnF7AKvP35PGu34CFj3LLkS ffyofZh/Wl5sWs0Ve51KMdESh1Zo9xgf3VxjcRGw1/wab/dZ8NG0CnuhhJxPQIFH 2QzSeSMut6bCdosloK482fUVJqVY0hirzSmHqTwEN1Gs+ZjlyExZbfYOeQvLIu1t OPFoMHVuPHKPrUHCUjI3meDvxaLx8M9GQSmqycfM61/a3MWIM3kPTJB0rFcyzJEb Yo6fnr3XTNwhEoy8OLrvrCCCV5KT1SYz0II5m/pfOpxIDZ92GYYRVrmKOXBO0a9m I0nJOHYQJ2o+i9rEiFz3fE1YvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHX19rtm +lKmSKI8z1zLe/yukRRvMB8GA1UdIwQYMBaAFAn8B38z461nvxR3VRZ6OtTqyx58 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTYxMy8zMDk5MjY2OEU1 MzkxMUVCOEE1QjkyNzFDNEY5QUUwMi9DZndIZnpQanJXZV9GSGRWRm5vNjFPckxI bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Nmd0hmelBqcldlX0ZIZFZGbm82MU9yTEhudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MTYxMy8zMDk5MjY2OEU1MzkxMUVCOEE1QjkyNzFDNEY5QUUwMi9DZndIZnpQanJX ZV9GSGRWRm5vNjFPckxIbncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsZbZJQwEz/1GjfQM4DO8o3FYzS2W6mnuAY/6StcNJxNuwieQpgxXe ovw2r8S1qKAAOGhIcFGOOUyLKMYsx4n49FQ9OKtUvnnzMiOmqkobsX5TeizZeaAh Os5tQCoDXM9UVtHtHExy1voM7DHuhKiP1TpYgDt3IDd8hUCOSbJ3wdonQ5tLygbe RHlfCHipynvE+2j90XUwLoj/KXB4BSm7hjddkK1H7u+07CXQ1sgTDXUfoNt54ep/ VSGpHH8sUjt0g6W9FcEA6ImEKDOm9qzyR8GD6dZORMXjGHsqBNpBLsGq3jBxytOA qzjjB4EzYGQGN2z5L27h11JsXihTq1eg -----END CERTIFICATE-----Generated at Thu Jul 3 03:10:51 2025 by rpki-client