$ rpki-client -vvf rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft File: ShUjM8QF9WZCwv0DscDx5R97ZNY.mft (raw, json) Hash identifier: VL+sLKdwdaroBCgqPXE2XZhLU7ey0O+73Kl63svPrYQ= Subject key identifier: 38:82:F4:CF:69:53:DB:92:3E:8F:12:CC:7B:BE:0D:8B:BE:32:E9:D0 Authority key identifier: 4A:15:23:33:C4:05:F5:66:42:C2:FD:03:B1:C0:F1:E5:1F:7B:64:D6 Certificate issuer: /CN=A9173BC9/serialNumber=4A152333C405F56642C2FD03B1C0F1E51F7B64D6 Certificate serial: 0C33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft Manifest number: 0C16 Signing time: Wed 02 Jul 2025 18:57:08 +0000 Manifest this update: Wed 02 Jul 2025 18:57:07 +0000 Manifest next update: Wed 09 Jul 2025 18:57:07 +0000 Files and hashes: 1: ShUjM8QF9WZCwv0DscDx5R97ZNY.crl (hash: X0xZA4EV7/A5a5dPONM8d+ZiiDcikm9ECxc2uOWUCc8=) 2: EF14DD34B6E211EAB3BA9536C4F9AE02.roa (hash: dn3kZoWooSddDB41uptssOk+YJNXq/e4qX48GOTMtT4=) 3: 2A9AFB320BC911EBBA11562FC4F9AE02.roa (hash: 8Ead/6roCcIWAO/F6fTJ08XA18GUuGo77XaTq8IG4j8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.crl rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:57:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3123 (0xc33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173BC9, serialNumber=4A152333C405F56642C2FD03B1C0F1E51F7B64D6 Validity Not Before: Jul 2 18:57:07 2025 GMT Not After : Jul 9 18:57:07 2025 GMT Subject: CN=68658103-5aee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a1:44:3d:8e:d2:00:b6:e1:95:6d:2b:56:be: db:42:e8:84:74:1d:62:5d:bc:bd:2d:27:1a:6e:a5: eb:9d:03:fa:c5:e2:a0:6b:ef:46:f7:55:e3:16:9e: 86:e1:96:02:f8:ff:b8:d7:97:93:0e:8a:1e:a7:1f: a7:a1:53:da:0d:53:4a:b4:ff:ec:ce:f1:09:55:30: f9:42:87:92:48:16:09:e3:f0:c0:46:63:e2:8b:e5: 4c:64:d8:1a:5e:28:7b:53:4d:5c:e5:54:21:38:db: 1e:5b:1e:24:47:ac:a6:5c:ea:7c:ef:a0:1f:6a:84: e8:e2:99:d5:01:ef:09:34:12:1b:14:43:cc:c1:a5: cd:77:8f:78:69:a8:e4:3d:71:ca:fc:c5:96:d9:cc: df:6e:e6:43:8c:05:6e:0f:8b:d2:2a:32:80:a2:eb: e8:e6:8f:6b:3e:3d:70:05:72:fd:e6:38:0f:bf:9e: 1f:15:aa:0f:ac:63:09:4d:b2:c1:17:b3:2a:83:b7: 25:b0:43:cb:93:b1:2a:ee:d9:80:01:bc:99:87:3c: 76:ac:f5:87:30:50:9a:8a:70:4f:a3:55:2f:86:87: 0d:3d:8a:31:d3:9e:ef:bf:fb:00:94:42:e4:29:4a: 55:e2:b5:9f:c9:37:51:ec:91:31:8d:c0:40:42:b0: 63:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:82:F4:CF:69:53:DB:92:3E:8F:12:CC:7B:BE:0D:8B:BE:32:E9:D0 X509v3 Authority Key Identifier: keyid:4A:15:23:33:C4:05:F5:66:42:C2:FD:03:B1:C0:F1:E5:1F:7B:64:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:f4:d7:aa:31:4d:d3:d5:f1:97:67:40:f8:4f:2e:ca:43:e4: 1e:d0:57:2b:2b:79:f9:86:23:53:a5:8a:28:18:38:ae:5a:e3: bc:41:34:db:bd:59:2d:c9:ef:0c:1f:b0:97:bf:52:de:21:bd: a5:98:f1:b3:05:5d:f8:db:85:03:e2:d9:da:af:7b:db:75:94: d4:30:a0:a3:04:40:6b:4b:5a:da:ac:0c:15:5f:e0:78:f2:4c: d4:75:f5:66:e1:5c:a1:85:56:fe:7d:13:1f:5f:b9:b0:87:3f: e8:c5:76:c1:bd:5f:77:43:da:a2:e7:7b:c5:e6:7d:02:e6:8f: fe:15:09:97:c9:10:9b:e1:62:89:c3:13:34:a1:83:8d:b3:46: 23:6b:fb:c7:82:c4:f3:b4:cb:a1:26:14:e5:d6:da:e6:e3:65: 20:98:2e:52:c1:c1:01:a8:fd:91:a9:6c:e4:e7:d3:9e:d0:ad: 91:58:73:b2:53:d3:f9:68:96:d2:6e:45:d8:9e:f6:ea:35:58: eb:c2:c8:57:1e:a9:bd:fc:85:d1:d5:40:34:65:d5:91:bb:0d: a9:3f:a1:9f:a8:6e:cd:5f:d9:80:e2:ed:d0:2f:0c:8c:ce:c3: fd:03:77:9d:0f:9b:1f:60:7b:78:64:4b:91:4f:3d:c4:78:5c: 2d:d9:9b:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNCQzkxMTAvBgNVBAUTKDRBMTUyMzMzQzQwNUY1NjY0MkMyRkQwM0IxQzBGMUU1 MUY3QjY0RDYwHhcNMjUwNzAyMTg1NzA3WhcNMjUwNzA5MTg1NzA3WjAYMRYwFAYD VQQDEw02ODY1ODEwMy01YWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0aFEPY7SALbhlW0rVr7bQuiEdB1iXby9LScabqXrnQP6xeKga+9G91XjFp6G 4ZYC+P+415eTDooepx+noVPaDVNKtP/szvEJVTD5QoeSSBYJ4/DARmPii+VMZNga Xih7U01c5VQhONseWx4kR6ymXOp876AfaoTo4pnVAe8JNBIbFEPMwaXNd494aajk PXHK/MWW2czfbuZDjAVuD4vSKjKAouvo5o9rPj1wBXL95jgPv54fFaoPrGMJTbLB F7Mqg7clsEPLk7Eq7tmAAbyZhzx2rPWHMFCainBPo1UvhocNPYox057vv/sAlELk KUpV4rWfyTdR7JExjcBAQrBjEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDiC9M9p U9uSPo8SzHu+DYu+MunQMB8GA1UdIwQYMBaAFEoVIzPEBfVmQsL9A7HA8eUfe2TW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0JDOS9DNUM4M0NBRTEz QTAxMUVBOTNFRUVGNjVDNEY5QUUwMi9TaFVqTThRRjlXWkN3djBEc2NEeDVSOTda TlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NoVWpNOFFGOVdaQ3d2MERzY0R4NVI5N1pOWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0JDOS9DNUM4M0NBRTEzQTAxMUVBOTNFRUVGNjVDNEY5QUUwMi9TaFVqTThRRjlX WkN3djBEc2NEeDVSOTdaTlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJ9NeqMU3T1fGXZ0D4Ty7KQ+Qe0FcrK3n5hiNTpYooGDiuWuO8QTTb vVktye8MH7CXv1LeIb2lmPGzBV3424UD4tnar3vbdZTUMKCjBEBrS1rarAwVX+B4 8kzUdfVm4VyhhVb+fRMfX7mwhz/oxXbBvV93Q9qi53vF5n0C5o/+FQmXyRCb4WKJ wxM0oYONs0Yja/vHgsTztMuhJhTl1trm42UgmC5SwcEBqP2RqWzk59Oe0K2RWHOy U9P5aJbSbkXYnvbqNVjrwshXHqm9/IXR1UA0ZdWRuw2pP6GfqG7NX9mA4u3QLwyM zsP9A3edD5sfYHt4ZEuRTz3EeFwt2Zum -----END CERTIFICATE-----Generated at Thu Jul 3 09:27:14 2025 by rpki-client