$ rpki-client -vvf rpki.apnic.net/member_repository/A91764A1/6B7D69A6045311EAA8F8EC1DC4F9AE02/W9l8Mex4xvFX13LBu1drgCSCtyg.mft File: W9l8Mex4xvFX13LBu1drgCSCtyg.mft (raw, json) Hash identifier: m4Mm2GxI2Sdn5ptNdLccYMBS9uemoLJjAvAAgKqQA7U= Subject key identifier: 34:F9:ED:09:B2:E7:B8:5B:7F:AC:E9:51:4F:50:9E:CA:18:D0:C1:F2 Authority key identifier: 5B:D9:7C:31:EC:78:C6:F1:57:D7:72:C1:BB:57:6B:80:24:82:B7:28 Certificate issuer: /CN=A91764A1/serialNumber=5BD97C31EC78C6F157D772C1BB576B802482B728 Certificate serial: 0C64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W9l8Mex4xvFX13LBu1drgCSCtyg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91764A1/6B7D69A6045311EAA8F8EC1DC4F9AE02/W9l8Mex4xvFX13LBu1drgCSCtyg.mft Manifest number: 0C59 Signing time: Sat 28 Jun 2025 18:07:19 +0000 Manifest this update: Sat 28 Jun 2025 18:07:18 +0000 Manifest next update: Sat 05 Jul 2025 18:07:18 +0000 Files and hashes: 1: W9l8Mex4xvFX13LBu1drgCSCtyg.crl (hash: 2Fi7oxWTkVl4roL+wA4xhWkv+Y1ee2vgQYZTrmuL9Tw=) 2: 753703FE045C11EAB8BF0932C4F9AE02.roa (hash: iEFdnNUSTVmlnEmHIkSfOkDzcc3pJG72lpQKbTvUl98=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91764A1/6B7D69A6045311EAA8F8EC1DC4F9AE02/W9l8Mex4xvFX13LBu1drgCSCtyg.crl rsync://rpki.apnic.net/member_repository/A91764A1/6B7D69A6045311EAA8F8EC1DC4F9AE02/W9l8Mex4xvFX13LBu1drgCSCtyg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W9l8Mex4xvFX13LBu1drgCSCtyg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 18:07:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3172 (0xc64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91764A1, serialNumber=5BD97C31EC78C6F157D772C1BB576B802482B728 Validity Not Before: Jun 28 18:07:18 2025 GMT Not After : Jul 5 18:07:18 2025 GMT Subject: CN=68602f57-ebe8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:2a:cc:24:cd:52:3e:b1:b8:82:35:68:ae:36: 8e:83:a7:eb:20:0c:e3:b1:84:31:6f:63:a5:16:9f: f4:37:f6:df:d7:af:20:8f:93:5f:13:d3:d2:41:c1: 89:e8:f5:be:1b:6b:02:87:3b:13:aa:39:43:8f:24: b4:76:26:5c:99:af:3e:af:c8:14:73:54:b9:f2:f6: 38:63:29:34:78:4f:da:4f:c0:80:66:96:36:a4:fb: ad:d6:49:57:3f:a3:1d:b4:ed:01:0b:55:7e:f1:46: eb:c2:fe:28:66:d1:db:c2:08:19:c6:8a:54:5b:72: 90:80:f8:25:40:5f:57:69:43:9a:16:df:8d:ec:55: 50:d5:ee:30:c3:9e:c6:2c:c5:ec:7b:a3:fa:a7:ec: 89:e5:56:55:40:9b:82:21:de:fe:f2:c5:28:65:2f: 64:bc:a8:16:1b:2e:4d:fd:05:09:eb:69:9f:77:14: 66:0a:a8:b2:c7:53:17:6e:65:0b:c2:d8:a3:08:5a: e3:c4:c9:9f:d9:c1:0b:ec:f1:29:65:ed:e3:07:1e: 83:38:cb:f3:89:9e:60:ca:3e:cc:d0:65:d6:0c:ad: a2:5c:ae:cb:ae:f3:58:8a:a9:e3:9d:f6:84:4a:40: 40:63:8c:27:a9:29:ec:64:96:0d:c9:bd:4b:93:b2: 4e:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:F9:ED:09:B2:E7:B8:5B:7F:AC:E9:51:4F:50:9E:CA:18:D0:C1:F2 X509v3 Authority Key Identifier: keyid:5B:D9:7C:31:EC:78:C6:F1:57:D7:72:C1:BB:57:6B:80:24:82:B7:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91764A1/6B7D69A6045311EAA8F8EC1DC4F9AE02/W9l8Mex4xvFX13LBu1drgCSCtyg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W9l8Mex4xvFX13LBu1drgCSCtyg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91764A1/6B7D69A6045311EAA8F8EC1DC4F9AE02/W9l8Mex4xvFX13LBu1drgCSCtyg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:81:b4:be:7e:97:f7:15:d1:ef:08:17:87:5a:51:48:94:9a: 71:3c:20:d7:2b:81:b1:76:44:4c:f4:7d:65:da:67:03:c5:bf: 3c:bc:39:22:d0:a3:51:27:bb:b8:76:67:ad:79:26:8e:62:6b: 2f:57:22:62:c6:07:60:70:f1:22:19:00:4c:c8:3c:a2:15:e9: 07:39:e3:4d:cb:cd:2a:4d:f1:87:10:d0:86:c0:16:3d:65:62: 7f:58:6d:a2:9c:98:25:b7:97:87:59:79:a9:69:eb:30:47:95: a1:70:ba:cb:e8:17:5a:48:07:37:4a:21:6c:81:48:3a:6a:56: 3b:a8:09:aa:87:1f:9a:60:64:73:cc:80:81:5d:ab:9b:83:51: de:ad:c3:30:a3:7b:4f:15:28:17:6b:44:b7:f3:13:f7:25:f4: d5:76:a8:df:b9:e5:ac:04:47:85:01:0e:c1:da:59:48:4a:d8: a5:7f:8c:b6:a7:fa:cd:4d:2a:27:93:4b:b7:b3:31:1e:2f:fe: 7b:a7:9c:84:e4:ae:2f:71:cc:88:f3:95:1f:de:a7:47:dd:06: b6:e6:0b:cc:ff:8c:1a:b7:78:46:ed:f7:18:93:00:94:a3:4b: 36:e8:e8:b7:98:1c:6f:3d:c5:49:14:f1:89:0a:c4:36:5c:b3: 39:e2:ca:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzY0QTExMTAvBgNVBAUTKDVCRDk3QzMxRUM3OEM2RjE1N0Q3NzJDMUJCNTc2Qjgw MjQ4MkI3MjgwHhcNMjUwNjI4MTgwNzE4WhcNMjUwNzA1MTgwNzE4WjAYMRYwFAYD VQQDEw02ODYwMmY1Ny1lYmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmyrMJM1SPrG4gjVorjaOg6frIAzjsYQxb2OlFp/0N/bf168gj5NfE9PSQcGJ 6PW+G2sChzsTqjlDjyS0diZcma8+r8gUc1S58vY4Yyk0eE/aT8CAZpY2pPut1klX P6MdtO0BC1V+8Ubrwv4oZtHbwggZxopUW3KQgPglQF9XaUOaFt+N7FVQ1e4ww57G LMXse6P6p+yJ5VZVQJuCId7+8sUoZS9kvKgWGy5N/QUJ62mfdxRmCqiyx1MXbmUL wtijCFrjxMmf2cEL7PEpZe3jBx6DOMvziZ5gyj7M0GXWDK2iXK7LrvNYiqnjnfaE SkBAY4wnqSnsZJYNyb1Lk7JO5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDT57Qmy 57hbf6zpUU9QnsoY0MHyMB8GA1UdIwQYMBaAFFvZfDHseMbxV9dywbtXa4Akgrco MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjRBMS82QjdENjlBNjA0 NTMxMUVBQThGOEVDMURDNEY5QUUwMi9XOWw4TWV4NHh2RlgxM0xCdTFkcmdDU0N0 eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1c5bDhNZXg0eHZGWDEzTEJ1MWRyZ0NTQ3R5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjRBMS82QjdENjlBNjA0NTMxMUVBQThGOEVDMURDNEY5QUUwMi9XOWw4TWV4NHh2 RlgxM0xCdTFkcmdDU0N0eWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1gbS+fpf3FdHvCBeHWlFIlJpxPCDXK4GxdkRM9H1l2mcDxb88vDki 0KNRJ7u4dmeteSaOYmsvVyJixgdgcPEiGQBMyDyiFekHOeNNy80qTfGHENCGwBY9 ZWJ/WG2inJglt5eHWXmpaeswR5WhcLrL6BdaSAc3SiFsgUg6alY7qAmqhx+aYGRz zICBXaubg1HercMwo3tPFSgXa0S38xP3JfTVdqjfueWsBEeFAQ7B2llIStilf4y2 p/rNTSonk0u3szEeL/57p5yE5K4vccyI85Uf3qdH3Qa25gvM/4wat3hG7fcYkwCU o0s26Oi3mBxvPcVJFPGJCsQ2XLM54spo -----END CERTIFICATE-----Generated at Sun Jun 29 14:31:14 2025 by rpki-client