$ rpki-client -vvf rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft File: rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft (raw, json) Hash identifier: HFhxShtgCwLA1vVn1IJmtQqOVotivUAtdBDqDu6+TAo= Subject key identifier: 38:EF:D4:88:C4:CB:C5:19:08:C0:32:85:26:01:9C:9F:A3:04:18:21 Authority key identifier: AD:54:5D:25:04:FE:1D:E9:2A:E1:76:6D:F4:65:76:37:DB:7A:7E:75 Certificate issuer: /CN=A9172FC5/serialNumber=AD545D2504FE1DE92AE1766DF4657637DB7A7E75 Certificate serial: 76 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft Manifest number: 73 Signing time: Thu 03 Jul 2025 07:05:26 +0000 Manifest this update: Thu 03 Jul 2025 07:05:26 +0000 Manifest next update: Thu 10 Jul 2025 07:05:26 +0000 Files and hashes: 1: rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl (hash: 07tFTbmE5/7OlTrJOKTxbgpvPkcrBkWQiIyKkh5nbmY=) 2: 15B99EFC016111F0B1B6A34EC4F9AE02.roa (hash: fNaQxATAW6BCNgpllm+ul+pMRSXup8I9s/wGqDPcAs4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172FC5, serialNumber=AD545D2504FE1DE92AE1766DF4657637DB7A7E75 Validity Not Before: Jul 3 07:05:26 2025 GMT Not After : Jul 10 07:05:26 2025 GMT Subject: CN=68662bb6-28eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a2:20:38:a2:85:40:09:ee:69:90:4f:2b:63: a2:a6:8f:f1:e0:e1:79:53:8e:36:d1:fb:2c:e7:f2: 90:bd:02:10:b0:3f:c5:ab:6a:78:58:16:06:63:4b: e4:c4:03:53:9e:cd:1a:e2:d5:97:2e:99:82:79:cb: 73:e0:43:59:6e:85:9f:01:07:0f:32:ea:da:4f:63: 8d:65:06:61:82:80:45:00:e6:12:88:ca:4e:5a:84: 09:12:c2:81:0f:c4:09:38:ec:56:e2:8b:8a:38:9f: 8a:ca:9a:51:81:37:d2:3c:0f:d0:1a:27:30:03:a7: 2f:53:85:e9:3e:a6:66:c0:e9:f2:1f:96:f1:32:8f: 85:04:fa:9b:79:04:9a:6a:f8:56:0b:b2:18:91:fd: 03:d8:ac:27:cf:0a:02:76:42:b8:16:44:d4:a3:39: aa:c5:8b:b8:bc:67:5e:47:73:33:bb:38:8b:a4:8f: 84:4f:5a:3d:b0:59:02:30:84:b9:a8:1d:9c:f1:ab: 2d:26:d3:f3:f2:9a:04:63:3f:da:8d:24:75:b0:fc: a7:c4:b4:59:0e:20:50:e3:78:10:dc:e3:87:8e:df: f2:d4:cf:c6:62:aa:71:8c:db:3c:ea:00:c3:ef:77: cd:1e:a9:a4:ab:99:37:85:fd:24:3c:6a:9f:23:5b: ca:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:EF:D4:88:C4:CB:C5:19:08:C0:32:85:26:01:9C:9F:A3:04:18:21 X509v3 Authority Key Identifier: keyid:AD:54:5D:25:04:FE:1D:E9:2A:E1:76:6D:F4:65:76:37:DB:7A:7E:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:e4:b3:8e:47:c2:53:00:f1:89:fc:41:99:f7:e9:56:e0:29: 75:1f:76:ea:32:a6:66:ad:70:e7:67:fe:f1:bb:e3:d8:e2:fe: cf:47:8c:63:aa:0f:18:b6:65:5b:51:e9:f5:53:c0:0b:28:17: 14:f1:2e:3a:d3:ef:3d:de:7d:3a:f7:4a:82:54:59:ca:64:c2: e6:f8:a1:53:77:01:22:8d:5a:8a:2b:9c:e6:03:d8:d9:8b:8f: a9:0a:24:91:74:36:57:33:13:f0:ea:86:60:88:38:d6:8d:25: 92:34:d5:56:64:52:1d:61:c7:0a:58:5c:33:17:59:33:c1:32: 95:c9:20:b6:df:da:72:7a:18:4c:fd:90:14:38:31:ff:c2:ac: bb:36:08:f7:eb:ac:21:b0:79:45:14:5d:15:dc:3b:76:50:95: 59:a8:ac:77:83:fe:b0:5f:ab:5b:e0:a3:88:bc:19:8c:d9:8e: 89:9c:88:bf:ad:e6:01:a5:49:6a:e6:1e:60:fd:59:b4:cd:33: 8e:4f:11:11:18:0e:ad:d2:37:19:22:75:61:4d:16:37:97:86: 69:a7:2f:f9:51:71:3a:75:10:7c:28:2f:d4:f1:5f:c2:59:7f: c5:59:23:ed:10:06:d7:9a:98:07:36:ca:b6:00:ec:4c:70:61: 80:c1:22:49 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MkZDNTExMC8GA1UEBRMoQUQ1NDVEMjUwNEZFMURFOTJBRTE3NjZERjQ2NTc2MzdE QjdBN0U3NTAeFw0yNTA3MDMwNzA1MjZaFw0yNTA3MTAwNzA1MjZaMBgxFjAUBgNV BAMTDTY4NjYyYmI2LTI4ZWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqoiA4ooVACe5pkE8rY6Kmj/Hg4XlTjjbR+yzn8pC9AhCwP8WranhYFgZjS+TE A1OezRri1ZcumYJ5y3PgQ1luhZ8BBw8y6tpPY41lBmGCgEUA5hKIyk5ahAkSwoEP xAk47Fbii4o4n4rKmlGBN9I8D9AaJzADpy9Thek+pmbA6fIflvEyj4UE+pt5BJpq +FYLshiR/QPYrCfPCgJ2QrgWRNSjOarFi7i8Z15HczO7OIukj4RPWj2wWQIwhLmo HZzxqy0m0/PymgRjP9qNJHWw/KfEtFkOIFDjeBDc44eO3/LUz8ZiqnGM2zzqAMPv d80eqaSrmTeF/SQ8ap8jW8rlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUOO/UiMTL xRkIwDKFJgGcn6MEGCEwHwYDVR0jBBgwFoAUrVRdJQT+Hekq4XZt9GV2N9t6fnUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcyRkM1L0U1MzlDREEwQUIz RjExRUZCRTAyQ0YxNEM0RjlBRTAyL3JWUmRKUVQtSGVrcTRYWnQ5R1YyTjl0NmZu VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvclZSZEpRVC1IZWtxNFhadDlHVjJOOXQ2Zm5VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcy RkM1L0U1MzlDREEwQUIzRjExRUZCRTAyQ0YxNEM0RjlBRTAyL3JWUmRKUVQtSGVr cTRYWnQ5R1YyTjl0NmZuVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABLks45HwlMA8Yn8QZn36VbgKXUfduoypmatcOdn/vG749ji/s9HjGOq Dxi2ZVtR6fVTwAsoFxTxLjrT7z3efTr3SoJUWcpkwub4oVN3ASKNWoornOYD2NmL j6kKJJF0NlczE/DqhmCIONaNJZI01VZkUh1hxwpYXDMXWTPBMpXJILbf2nJ6GEz9 kBQ4Mf/CrLs2CPfrrCGweUUUXRXcO3ZQlVmorHeD/rBfq1vgo4i8GYzZjomciL+t 5gGlSWrmHmD9WbTNM45PEREYDq3SNxkidWFNFjeXhmmnL/lRcTp1EHwoL9TxX8JZ f8VZI+0QBteamAc2yrYA7ExwYYDBIkk= -----END CERTIFICATE-----Generated at Thu Jul 3 23:03:33 2025 by rpki-client