$ rpki-client -vvf rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.mft File: 2c3AiUgqZ0m1IAUcDzhfYt6MtJM.mft (raw, json) Hash identifier: 8jzFc0vJ70U/NatYTWfwgfV/D0kIeL/EQRZqr4PQ1sk= Subject key identifier: 8D:AE:B7:4A:D6:F6:85:D6:DD:0C:1D:BC:0E:5D:27:9F:95:4E:A6:6A Authority key identifier: D9:CD:C0:89:48:2A:67:49:B5:20:05:1C:0F:38:5F:62:DE:8C:B4:93 Certificate issuer: /CN=A9164F6C/serialNumber=D9CDC089482A6749B520051C0F385F62DE8CB493 Certificate serial: DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.mft Manifest number: DA Signing time: Thu 03 Jul 2025 05:43:24 +0000 Manifest this update: Thu 03 Jul 2025 05:43:23 +0000 Manifest next update: Thu 10 Jul 2025 05:43:23 +0000 Files and hashes: 1: 2c3AiUgqZ0m1IAUcDzhfYt6MtJM.crl (hash: TTCD2ABnAm/XADPx+d6K0sHRhSzq9BDNrFSEmDYQNbo=) 2: EC1244C40C0A11EF86081F2FC4F9AE02.roa (hash: XJ6Cl0k/r34t0UIzqumXdg3IJ/QU+9th/mHz4X1ySQs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.crl rsync://rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164F6C, serialNumber=D9CDC089482A6749B520051C0F385F62DE8CB493 Validity Not Before: Jul 3 05:43:23 2025 GMT Not After : Jul 10 05:43:23 2025 GMT Subject: CN=6866187c-3d10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:7c:b4:93:d6:fd:5b:db:09:ee:bb:73:10:df: 12:51:c1:58:27:99:ee:88:4b:43:8b:5f:0a:77:cb: 5e:0e:04:df:77:53:fa:4c:31:8f:ac:19:75:36:59: 35:dd:4c:70:0d:00:32:41:60:99:dc:ac:af:6c:94: c6:20:37:86:34:ca:ea:42:94:98:65:25:9d:b5:f9: da:29:05:82:59:45:7e:8c:66:fb:9c:b8:68:e1:5a: b9:40:11:99:65:52:84:1e:46:32:51:72:30:06:f2: bb:9c:56:8b:68:e6:5c:62:9d:85:84:25:64:17:34: 37:78:a4:2f:82:98:25:bb:b6:70:72:0e:0c:30:50: aa:68:8b:cb:fd:11:ad:cf:e4:c1:3f:c1:2a:a4:98: 46:ee:5b:a8:c0:93:32:83:fc:ef:ea:cf:3a:0f:9d: de:15:bd:2f:82:8f:c9:84:ce:03:15:df:55:fc:e8: 75:cb:4f:4f:2e:89:5c:d1:39:10:86:a8:d4:c1:7a: 7a:60:2e:0b:f2:f8:0e:8b:fd:bb:50:6e:78:36:02: 30:41:51:09:f5:d2:2e:6e:23:fe:d7:09:0c:55:38: b0:27:36:ae:43:bf:87:a6:b8:ca:d4:c2:b9:e1:0b: 4c:c0:2c:5b:8d:97:23:83:d5:52:ae:c9:7f:b6:7d: 8d:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:AE:B7:4A:D6:F6:85:D6:DD:0C:1D:BC:0E:5D:27:9F:95:4E:A6:6A X509v3 Authority Key Identifier: keyid:D9:CD:C0:89:48:2A:67:49:B5:20:05:1C:0F:38:5F:62:DE:8C:B4:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:44:4c:e0:bf:94:46:b7:85:6a:66:30:d2:c0:05:3e:01:ba: ea:26:d9:30:bb:e5:b4:94:34:a8:cf:10:cb:f3:b9:81:54:ab: 84:fd:a4:42:58:e7:43:c6:ef:83:1f:9d:46:a6:54:70:3e:eb: 42:4f:d6:7c:66:ab:a6:9f:ff:75:36:7b:7d:76:19:ce:1f:ba: c6:7f:f3:00:2c:68:b2:55:cd:79:04:06:13:bf:1d:ed:3a:67: e9:92:00:51:a7:d2:36:eb:45:4f:ee:e5:41:ee:22:d0:af:39: 1e:f5:da:dc:f8:9c:34:ff:3f:13:be:ff:fc:8f:5a:d0:e4:3b: 87:08:5c:8f:cb:d8:58:97:d7:04:9f:6b:c0:a9:dc:24:79:52: 67:10:25:00:5e:f9:4e:d2:bb:be:99:89:c6:52:11:ea:7f:8c: 6e:bd:89:52:12:fb:34:bc:51:ef:54:64:b2:19:42:64:ef:c0: df:d4:d2:a9:1a:0c:1f:e2:5d:c5:ec:68:94:41:83:e9:35:11: 6b:90:4f:d7:8f:f3:2c:c1:8f:4c:50:0d:79:7e:e2:15:83:69: 24:08:fc:6c:8f:d5:76:d0:eb:e6:b6:59:b0:d9:dd:7f:9d:a2: 41:02:b8:c3:43:3e:a0:f4:44:a8:63:05:70:4f:5c:9b:2d:a4: cf:5d:b8:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjRGNkMxMTAvBgNVBAUTKEQ5Q0RDMDg5NDgyQTY3NDlCNTIwMDUxQzBGMzg1RjYy REU4Q0I0OTMwHhcNMjUwNzAzMDU0MzIzWhcNMjUwNzEwMDU0MzIzWjAYMRYwFAYD VQQDEw02ODY2MTg3Yy0zZDEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvXy0k9b9W9sJ7rtzEN8SUcFYJ5nuiEtDi18Kd8teDgTfd1P6TDGPrBl1Nlk1 3UxwDQAyQWCZ3KyvbJTGIDeGNMrqQpSYZSWdtfnaKQWCWUV+jGb7nLho4Vq5QBGZ ZVKEHkYyUXIwBvK7nFaLaOZcYp2FhCVkFzQ3eKQvgpglu7Zwcg4MMFCqaIvL/RGt z+TBP8EqpJhG7luowJMyg/zv6s86D53eFb0vgo/JhM4DFd9V/Oh1y09PLolc0TkQ hqjUwXp6YC4L8vgOi/27UG54NgIwQVEJ9dIubiP+1wkMVTiwJzauQ7+HprjK1MK5 4QtMwCxbjZcjg9VSrsl/tn2NoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI2ut0rW 9oXW3QwdvA5dJ5+VTqZqMB8GA1UdIwQYMBaAFNnNwIlIKmdJtSAFHA84X2LejLST MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NEY2Qy9CODgyMzcyODBD MDkxMUVGOUJEOTEzMkNDNEY5QUUwMi8yYzNBaVVncVowbTFJQVVjRHpoZll0Nk10 Sk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJjM0FpVWdxWjBtMUlBVWNEemhmWXQ2TXRKTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NEY2Qy9CODgyMzcyODBDMDkxMUVGOUJEOTEzMkNDNEY5QUUwMi8yYzNBaVVncVow bTFJQVVjRHpoZll0Nk10Sk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmREzgv5RGt4VqZjDSwAU+AbrqJtkwu+W0lDSozxDL87mBVKuE/aRC WOdDxu+DH51GplRwPutCT9Z8Zqumn/91Nnt9dhnOH7rGf/MALGiyVc15BAYTvx3t OmfpkgBRp9I260VP7uVB7iLQrzke9drc+Jw0/z8Tvv/8j1rQ5DuHCFyPy9hYl9cE n2vAqdwkeVJnECUAXvlO0ru+mYnGUhHqf4xuvYlSEvs0vFHvVGSyGUJk78Df1NKp Ggwf4l3F7GiUQYPpNRFrkE/Xj/MswY9MUA15fuIVg2kkCPxsj9V20Ovmtlmw2d1/ naJBArjDQz6g9ESoYwVwT1ybLaTPXbjZ -----END CERTIFICATE-----Generated at Thu Jul 3 10:31:17 2025 by rpki-client