$ rpki-client -vvf rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft File: tADiGrPTJXQtuHeDDrxEB233CUg.mft (raw, json) Hash identifier: 5r/TBo5ASb+zSCyHJQfsCVw/TuyIfoAcUpvswMQbEbM= Subject key identifier: 38:39:60:AF:01:76:59:67:05:71:D7:82:FF:DD:F1:23:4F:F9:AC:D2 Authority key identifier: B4:00:E2:1A:B3:D3:25:74:2D:B8:77:83:0E:BC:44:07:6D:F7:09:48 Certificate issuer: /CN=A91658EF/serialNumber=B400E21AB3D325742DB877830EBC44076DF70948 Certificate serial: 0F14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft Manifest number: 2BBC Signing time: Wed 02 Jul 2025 16:58:19 +0000 Manifest this update: Wed 02 Jul 2025 16:58:18 +0000 Manifest next update: Wed 09 Jul 2025 16:58:18 +0000 Files and hashes: 1: tADiGrPTJXQtuHeDDrxEB233CUg.crl (hash: uRY4X6SuncBiKUZgae3Yd3RneSLYxY9PntU6VhSz/RY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.crl rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:58:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3860 (0xf14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91658EF, serialNumber=B400E21AB3D325742DB877830EBC44076DF70948 Validity Not Before: Jul 2 16:58:18 2025 GMT Not After : Jul 9 16:58:18 2025 GMT Subject: CN=6865652a-ecb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:51:a9:de:78:0f:b1:bd:8c:9c:fc:02:76:d3: 57:6e:24:c3:50:1b:27:29:4e:28:a6:f0:d3:15:1c: a8:f0:11:b8:9f:fc:60:8d:f4:37:52:06:ae:a3:fa: 3e:0f:d0:35:9d:b8:0d:76:26:d2:77:ed:d8:5e:20: 8c:4c:d0:70:09:b6:c6:1e:ab:69:ec:4e:26:10:a3: 14:9d:b9:ba:5d:7b:fb:ef:ae:6c:1a:6a:26:2e:38: 08:6e:93:be:27:7b:15:73:bb:40:53:1b:78:de:8a: b3:9a:75:b7:4d:e2:0f:ba:85:12:6e:32:ee:fc:63: 30:99:ab:4b:d1:82:22:78:86:cf:40:bb:69:35:72: 8a:d9:be:e8:5c:98:9b:8f:39:15:a7:71:6a:ce:fd: c9:77:8a:ec:2a:49:f9:67:8d:be:f6:5b:dc:26:b8: 86:8d:be:57:86:04:17:5b:d1:05:26:eb:35:a2:79: 96:73:ee:ec:06:b1:7d:86:b5:9b:05:95:f9:b7:c7: f7:8b:cf:86:b4:ef:d2:ff:ee:66:26:54:67:bf:ba: 40:f0:ac:39:64:c1:91:1e:97:d8:bb:25:f2:13:bd: 67:ac:21:4c:f0:68:e5:ff:d8:29:e8:a4:d3:b8:3c: 63:d2:25:74:a7:91:93:74:0a:4a:0b:c4:c1:ee:26: 06:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:39:60:AF:01:76:59:67:05:71:D7:82:FF:DD:F1:23:4F:F9:AC:D2 X509v3 Authority Key Identifier: keyid:B4:00:E2:1A:B3:D3:25:74:2D:B8:77:83:0E:BC:44:07:6D:F7:09:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:13:51:03:e5:95:9c:31:0e:82:c6:61:31:cc:96:8f:97:bd: 43:59:c8:02:38:d2:78:40:0b:74:15:f8:2c:dc:8f:d3:f0:99: 8e:87:6c:25:23:e5:f1:1a:af:86:49:50:e0:4d:ad:e9:76:da: f4:32:10:53:8e:69:ed:21:9d:bf:d3:18:8e:c7:db:b2:5b:89: c5:82:91:38:86:f7:5a:b0:6d:50:03:4e:97:92:bc:96:35:db: 4d:d6:c3:66:ff:3a:fa:9b:6b:ae:27:a4:70:78:7d:a8:75:de: 62:55:56:7d:0a:34:fd:c1:97:a4:35:b5:5f:e4:36:9a:68:53: eb:01:f6:c0:6b:ed:f2:5e:12:0c:f1:a7:cf:5c:c0:57:be:7f: 85:bb:02:dd:f3:80:26:af:80:4b:c3:93:be:ea:e0:d0:0d:d6: 57:69:50:49:17:ce:b0:62:28:d0:0b:4c:3f:92:7d:11:5a:69: 24:ee:69:11:70:68:a4:db:81:be:f5:b5:94:74:c4:b5:91:c2: 84:46:aa:b1:3b:5b:68:6b:9d:80:ad:d0:6c:08:10:5c:a8:d5: ba:5c:11:00:6f:81:36:fd:eb:04:b3:95:13:4b:2e:96:8b:d0: ab:4b:a6:3a:9f:d0:03:fe:eb:1e:41:6b:b2:44:ac:6f:df:cd: 23:7f:ba:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDxQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU4RUYxMTAvBgNVBAUTKEI0MDBFMjFBQjNEMzI1NzQyREI4Nzc4MzBFQkM0NDA3 NkRGNzA5NDgwHhcNMjUwNzAyMTY1ODE4WhcNMjUwNzA5MTY1ODE4WjAYMRYwFAYD VQQDEw02ODY1NjUyYS1lY2IyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy1Gp3ngPsb2MnPwCdtNXbiTDUBsnKU4opvDTFRyo8BG4n/xgjfQ3Ugauo/o+ D9A1nbgNdibSd+3YXiCMTNBwCbbGHqtp7E4mEKMUnbm6XXv7765sGmomLjgIbpO+ J3sVc7tAUxt43oqzmnW3TeIPuoUSbjLu/GMwmatL0YIieIbPQLtpNXKK2b7oXJib jzkVp3Fqzv3Jd4rsKkn5Z42+9lvcJriGjb5XhgQXW9EFJus1onmWc+7sBrF9hrWb BZX5t8f3i8+GtO/S/+5mJlRnv7pA8Kw5ZMGRHpfYuyXyE71nrCFM8Gjl/9gp6KTT uDxj0iV0p5GTdApKC8TB7iYG0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDg5YK8B dllnBXHXgv/d8SNP+azSMB8GA1UdIwQYMBaAFLQA4hqz0yV0Lbh3gw68RAdt9wlI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NThFRi9EMjQzMzc5NjRB RUMxMUU4ODQxN0YzNEFDNEY5QUUwMi90QURpR3JQVEpYUXR1SGVERHJ4RUIyMzND VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RBRGlHclBUSlhRdHVIZUREcnhFQjIzM0NVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NThFRi9EMjQzMzc5NjRBRUMxMUU4ODQxN0YzNEFDNEY5QUUwMi90QURpR3JQVEpY UXR1SGVERHJ4RUIyMzNDVWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgE1ED5ZWcMQ6CxmExzJaPl71DWcgCONJ4QAt0Ffgs3I/T8JmOh2wl I+XxGq+GSVDgTa3pdtr0MhBTjmntIZ2/0xiOx9uyW4nFgpE4hvdasG1QA06XkryW NdtN1sNm/zr6m2uuJ6RweH2odd5iVVZ9CjT9wZekNbVf5DaaaFPrAfbAa+3yXhIM 8afPXMBXvn+FuwLd84Amr4BLw5O+6uDQDdZXaVBJF86wYijQC0w/kn0RWmkk7mkR cGik24G+9bWUdMS1kcKERqqxO1toa52ArdBsCBBcqNW6XBEAb4E2/esEs5UTSy6W i9CrS6Y6n9AD/useQWuyRKxv380jf7r3 -----END CERTIFICATE-----Generated at Thu Jul 3 07:52:22 2025 by rpki-client