$ rpki-client -vvf rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft File: sDQcND_hUl92ySmWEMoOeOk-h8M.mft (raw, json) Hash identifier: TJvSoOXT5837Ar+aE3+qpmPR+DbNEyrP1Fq3DpqYu0M= Subject key identifier: 69:6E:86:8D:E7:47:44:86:8B:31:58:B0:E0:2D:91:C5:DC:E1:57:AF Authority key identifier: B0:34:1C:34:3F:E1:52:5F:76:C9:29:96:10:CA:0E:78:E9:3E:87:C3 Certificate issuer: /CN=A9167FBA/serialNumber=B0341C343FE1525F76C9299610CA0E78E93E87C3 Certificate serial: 39 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sDQcND_hUl92ySmWEMoOeOk-h8M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft Manifest number: 38 Signing time: Thu 03 Jul 2025 07:50:23 +0000 Manifest this update: Thu 03 Jul 2025 07:50:23 +0000 Manifest next update: Thu 10 Jul 2025 07:50:23 +0000 Files and hashes: 1: sDQcND_hUl92ySmWEMoOeOk-h8M.crl (hash: 1DTBIrZAdfryVJumFIyRVoRFhr6HSCPNqv2joenZPAE=) 2: F4B92E1C05A111F082D17325C4F9AE02.roa (hash: kGx1CJpE3cHBsf4M7cgjGHBrxKAD0rzUUv2UM3HRfTY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.crl rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sDQcND_hUl92ySmWEMoOeOk-h8M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167FBA, serialNumber=B0341C343FE1525F76C9299610CA0E78E93E87C3 Validity Not Before: Jul 3 07:50:23 2025 GMT Not After : Jul 10 07:50:23 2025 GMT Subject: CN=6866363f-bfe8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d7:15:0e:a8:71:9d:27:9b:16:04:aa:76:fe: 87:5a:22:74:e9:61:43:f0:56:25:67:a6:c4:be:8f: be:6f:18:ac:03:ea:17:8f:94:23:4b:4f:cf:d3:bc: 94:52:c0:03:e1:36:53:ed:81:10:23:d0:6e:03:57: a2:72:80:ab:67:b3:c8:72:2c:dc:28:7a:51:fc:ab: cb:0b:23:ea:e2:35:f5:3a:76:67:9b:d8:19:ef:b8: a8:0d:9c:c4:a9:9c:20:eb:a0:f3:d7:19:48:ed:f3: 05:bb:09:8c:48:59:20:5a:cd:3b:6d:1a:34:46:c4: e4:e2:d8:d7:e7:f9:83:00:cb:0f:30:4e:57:73:66: e8:d2:67:09:a5:d5:d9:16:dd:c8:7d:d2:b2:e6:49: 81:0a:ef:88:c8:06:4e:a6:f1:65:cd:39:ca:fa:72: 32:fa:12:0b:1b:e6:05:51:05:af:c7:d0:5d:01:ea: d7:3d:64:7c:3a:8b:27:66:c0:52:8d:5d:48:5d:57: bb:88:f4:58:e6:05:97:8f:3d:29:9b:1d:ad:be:28: 96:25:42:11:fe:f9:6b:41:24:27:23:25:87:f6:9c: 55:f7:5e:df:d6:46:bf:4d:33:f9:67:ed:55:55:58: 71:0b:80:aa:74:8a:95:02:21:5b:bd:31:b1:32:e6: c0:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:6E:86:8D:E7:47:44:86:8B:31:58:B0:E0:2D:91:C5:DC:E1:57:AF X509v3 Authority Key Identifier: keyid:B0:34:1C:34:3F:E1:52:5F:76:C9:29:96:10:CA:0E:78:E9:3E:87:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sDQcND_hUl92ySmWEMoOeOk-h8M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:34:07:13:fd:31:d1:18:ff:d8:d0:34:0a:04:c6:74:e9:0b: 23:01:71:6f:ec:94:76:b2:55:69:9a:c6:8c:3e:48:5e:0a:2d: db:f9:1b:5b:31:1a:22:a0:44:3f:d3:56:a2:2c:43:d9:36:f8: 54:2c:f8:a4:4c:c4:fe:16:10:70:5a:d5:af:62:e4:a9:1e:4e: 37:23:44:fa:23:16:25:69:d3:62:76:9b:d6:94:09:13:52:aa: 58:8a:d7:c0:b5:ba:b2:ae:b9:69:9f:33:8d:20:b0:c7:fc:75: 43:70:5a:b4:88:58:60:73:78:59:ca:ba:58:fb:c6:32:db:df: e4:89:f2:6f:c0:e2:8a:63:6d:a5:37:88:6d:39:5e:ea:ba:d2: 4b:6c:68:19:6b:52:0f:e2:7e:13:c5:9a:54:58:fa:f3:28:8c: ae:e5:b9:ed:82:d9:35:e5:44:30:1f:85:ff:c5:b2:7b:06:87: c7:c6:ed:82:68:6b:7e:51:ce:43:f4:5f:44:cd:da:03:d0:94: 64:37:b1:c0:43:d6:e6:0c:55:8e:92:93:35:86:96:50:d1:65: eb:73:7c:f4:ff:8d:25:4c:80:a0:07:c7:92:ef:dd:0d:0b:a4: 88:68:22:3e:29:7f:eb:e6:5f:95:e6:6c:f3:ce:03:40:f2:39: 72:74:3a:c2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 N0ZCQTExMC8GA1UEBRMoQjAzNDFDMzQzRkUxNTI1Rjc2QzkyOTk2MTBDQTBFNzhF OTNFODdDMzAeFw0yNTA3MDMwNzUwMjNaFw0yNTA3MTAwNzUwMjNaMBgxFjAUBgNV BAMTDTY4NjYzNjNmLWJmZTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC01xUOqHGdJ5sWBKp2/odaInTpYUPwViVnpsS+j75vGKwD6hePlCNLT8/TvJRS wAPhNlPtgRAj0G4DV6JygKtns8hyLNwoelH8q8sLI+riNfU6dmeb2BnvuKgNnMSp nCDroPPXGUjt8wW7CYxIWSBazTttGjRGxOTi2Nfn+YMAyw8wTldzZujSZwml1dkW 3ch90rLmSYEK74jIBk6m8WXNOcr6cjL6Egsb5gVRBa/H0F0B6tc9ZHw6iydmwFKN XUhdV7uI9FjmBZePPSmbHa2+KJYlQhH++WtBJCcjJYf2nFX3Xt/WRr9NM/ln7VVV WHELgKp0ipUCIVu9MbEy5sCPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUaW6GjedH RIaLMViw4C2RxdzhV68wHwYDVR0jBBgwFoAUsDQcND/hUl92ySmWEMoOeOk+h8Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3RkJBLzQyRkMzRDhBMDQ4 RjExRjA4NzJFODU0N0M0RjlBRTAyL3NEUWNORF9oVWw5MnlTbVdFTW9PZU9rLWg4 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvc0RRY05EX2hVbDkyeVNtV0VNb09lT2staDhNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3 RkJBLzQyRkMzRDhBMDQ4RjExRjA4NzJFODU0N0M0RjlBRTAyL3NEUWNORF9oVWw5 MnlTbVdFTW9PZU9rLWg4TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADs0BxP9MdEY/9jQNAoExnTpCyMBcW/slHayVWmaxow+SF4KLdv5G1sx GiKgRD/TVqIsQ9k2+FQs+KRMxP4WEHBa1a9i5KkeTjcjRPojFiVp02J2m9aUCRNS qliK18C1urKuuWmfM40gsMf8dUNwWrSIWGBzeFnKulj7xjLb3+SJ8m/A4opjbaU3 iG05Xuq60ktsaBlrUg/ifhPFmlRY+vMojK7lue2C2TXlRDAfhf/FsnsGh8fG7YJo a35RzkP0X0TN2gPQlGQ3scBD1uYMVY6SkzWGllDRZetzfPT/jSVMgKAHx5Lv3Q0L pIhoIj4pf+vmX5XmbPPOA0DyOXJ0OsI= -----END CERTIFICATE-----Generated at Thu Jul 3 20:04:23 2025 by rpki-client