$ rpki-client -vvf rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft File: SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft (raw, json) Hash identifier: 2CTqkQ/5CzTw1vBcfucE52LZOUu4U2ELhWds/13f7SE= Subject key identifier: 5D:35:6E:77:51:FA:61:91:94:34:98:D7:F7:EE:ED:82:A4:A9:2F:2D Authority key identifier: 48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 Certificate issuer: /CN=A9174EB5/serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Certificate serial: 0CBC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft Manifest number: 0C7B Signing time: Mon 30 Jun 2025 18:38:23 +0000 Manifest this update: Mon 30 Jun 2025 18:38:22 +0000 Manifest next update: Mon 07 Jul 2025 18:38:22 +0000 Files and hashes: 1: SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl (hash: obrQAWDuUxKYiRnAKWd2NEwK3DJS+4CATwvfR8MBE2M=) 2: 0EF9BE4E276F11EEB328204AC4F9AE02.roa (hash: ySE2YBsbAXt0k1PEdiGam1s5GhhHLonIBlG28ashrzw=) 3: 451C283AFE4911ED9352E438C4F9AE02.roa (hash: 9xj2eLyG/tdesiN53tFy07gS2PXLIBFRo+Pfj6Aj7f4=) 4: D47B21C24FFE11EAA0E4ED42C4F9AE02.roa (hash: dJZrsN09jQhR1tV/MBGDtF9J2z2S5+/G8ySEaBQlIWI=) 5: 76BF7682061B11EAAD56521BC4F9AE02.roa (hash: 5k3lhIIOE5jK/yOHyIZ8i0wDdX2SrJVnqaK6Nl9SYpA=) 6: 430342A4C02B11EA85244830C4F9AE02.roa (hash: 0bKIGEsq8hLfPMAMaZjPiHvxpIZHU52fzssXfn7yiXU=) 7: E397AB78866F11EBA76EED3EC4F9AE02.roa (hash: DBPGuu5yRvDvP4FC/IjV2H3T+xTKFbXciVMjwanRb/4=) 8: E0848D606F7611EDB491621FC4F9AE02.roa (hash: /EuxmPPRYBaK5xLwAa5WDWDWOcYmzlBlj89Amjexk/E=) 9: CF257402276E11EEBE7B7B49C4F9AE02.roa (hash: DfS1XhJ0VY2l1Vl6FaTOWiiwrvVb4J6NRESIx8xEXkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 18:38:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3260 (0xcbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174EB5, serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Validity Not Before: Jun 30 18:38:22 2025 GMT Not After : Jul 7 18:38:22 2025 GMT Subject: CN=6862d99e-a676 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:79:52:65:02:cd:fd:59:54:4c:50:c8:72:72: d9:ca:b4:b2:2d:0c:97:e4:f6:f4:80:ea:3b:66:cb: 3c:a9:8c:43:88:0c:10:ab:1c:a6:ea:42:14:6c:15: 01:5d:fc:95:b0:ea:51:99:a8:64:7b:cd:9c:0e:fa: 23:fb:52:06:f3:ae:2e:e1:e8:1e:8b:e3:52:e0:10: 01:a8:48:11:d3:70:ea:cf:da:3f:d0:56:f5:13:ac: d5:d6:30:15:27:33:cc:16:2f:cd:7e:62:17:2a:89: 44:2d:c2:da:8e:7b:30:0f:41:98:34:5d:88:61:f1: 3b:23:f6:ab:b8:d9:bb:eb:91:4a:d8:69:d9:69:99: 55:21:90:38:d1:79:c8:d7:1c:79:dc:f5:f2:a8:52: 06:41:4b:02:5e:21:c7:88:8f:66:2b:ab:eb:7b:60: 98:5e:6e:a8:10:3e:ee:ab:fa:7e:11:5a:82:95:ab: c1:18:bd:77:6f:86:90:3b:28:f5:a9:4a:4e:9c:76: 9c:05:d3:52:95:a2:9a:1c:a3:52:de:25:f4:65:a7: 9d:26:00:7b:5c:68:68:0d:0e:de:a6:6a:6f:5c:52: 56:05:15:37:4d:9f:9f:24:8a:df:ad:0b:21:f8:51: f0:6f:25:19:f0:2e:47:e3:6c:8c:13:0b:eb:46:26: c1:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:35:6E:77:51:FA:61:91:94:34:98:D7:F7:EE:ED:82:A4:A9:2F:2D X509v3 Authority Key Identifier: keyid:48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:5e:7b:2e:9c:19:4c:0a:c7:df:92:6b:cf:c8:cb:dd:10:02: ae:28:a3:23:13:f8:77:65:92:7f:84:81:57:f1:86:c4:5e:fe: b8:e2:f7:7f:e0:ee:66:98:0c:bd:05:41:4d:66:3d:d0:a7:12: 81:bc:e0:f5:a6:51:af:26:fe:54:98:eb:8d:3c:7a:48:32:46: 59:d7:5e:b7:8b:a2:ce:2d:7e:df:a0:da:0e:71:f9:ed:51:6f: 26:cd:d8:32:f0:7b:aa:07:0d:7c:27:62:7c:76:8f:03:7c:3e: 12:81:60:68:4d:9b:83:cf:fd:26:c7:b1:09:1a:20:a5:3c:2c: 44:92:74:a1:48:04:43:d5:85:12:ea:a8:fb:c4:fd:9f:cf:7e: 48:e5:76:23:bf:a0:46:c9:e6:a3:2c:18:ec:9a:4d:95:da:0d: 8b:0d:bd:12:79:a9:f7:3a:c4:14:7a:ce:dd:44:58:a1:e2:bc: 27:7d:b2:c6:bd:f4:1e:a2:59:04:66:cb:08:3f:6b:d3:3f:c3: c9:46:44:8f:3d:17:cc:70:ef:4d:42:ab:1d:48:c6:a4:18:22: 91:23:b1:7f:ca:6d:ee:2b:b5:e4:2d:cb:d6:0b:33:78:19:e3: d0:ad:94:d3:69:45:5f:64:82:3b:cf:2c:26:f6:96:7a:e0:96: fd:a2:a4:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDLwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRFQjUxMTAvBgNVBAUTKDQ4RTk5ODUxQzE4OUZBOTIxQjg2NjY0RTMwQkM1N0My MEVEMUE4QzQwHhcNMjUwNjMwMTgzODIyWhcNMjUwNzA3MTgzODIyWjAYMRYwFAYD VQQDEw02ODYyZDk5ZS1hNjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwnlSZQLN/VlUTFDIcnLZyrSyLQyX5Pb0gOo7Zss8qYxDiAwQqxym6kIUbBUB XfyVsOpRmahke82cDvoj+1IG864u4egei+NS4BABqEgR03Dqz9o/0Fb1E6zV1jAV JzPMFi/NfmIXKolELcLajnswD0GYNF2IYfE7I/aruNm765FK2GnZaZlVIZA40XnI 1xx53PXyqFIGQUsCXiHHiI9mK6vre2CYXm6oED7uq/p+EVqClavBGL13b4aQOyj1 qUpOnHacBdNSlaKaHKNS3iX0ZaedJgB7XGhoDQ7epmpvXFJWBRU3TZ+fJIrfrQsh +FHwbyUZ8C5H42yMEwvrRibB0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF01bndR +mGRlDSY1/fu7YKkqS8tMB8GA1UdIwQYMBaAFEjpmFHBifqSG4ZmTjC8V8IO0ajE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEVCNS9BRkVBMjlDMjA2 MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1wSWJobVpPTUx4WHdnN1Jx TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NPbVlVY0dKLXBJYmhtWk9NTHhYd2c3UnFNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEVCNS9BRkVBMjlDMjA2MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1w SWJobVpPTUx4WHdnN1JxTVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNXnsunBlMCsffkmvPyMvdEAKuKKMjE/h3ZZJ/hIFX8YbEXv644vd/ 4O5mmAy9BUFNZj3QpxKBvOD1plGvJv5UmOuNPHpIMkZZ1163i6LOLX7foNoOcfnt UW8mzdgy8HuqBw18J2J8do8DfD4SgWBoTZuDz/0mx7EJGiClPCxEknShSARD1YUS 6qj7xP2fz35I5XYjv6BGyeajLBjsmk2V2g2LDb0Sean3OsQUes7dRFih4rwnfbLG vfQeolkEZssIP2vTP8PJRkSPPRfMcO9NQqsdSMakGCKRI7F/ym3uK7XkLcvWCzN4 GePQrZTTaUVfZII7zywm9pZ64Jb9oqT4 -----END CERTIFICATE-----Generated at Wed Jul 2 16:27:43 2025 by rpki-client