$ rpki-client -vvf rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft File: MtNTdDyP4vCOl7IuW2CavBTM_js.mft (raw, json) Hash identifier: wU2c5MyTf9BGUeXY2HAQPILSSv3YtRCmecpb7GURh3c= Subject key identifier: D4:6C:71:94:90:F1:6C:2C:7D:9A:A4:4E:AC:60:08:F0:78:FC:66:88 Authority key identifier: 32:D3:53:74:3C:8F:E2:F0:8E:97:B2:2E:5B:60:9A:BC:14:CC:FE:3B Certificate issuer: /CN=A9179F64/serialNumber=32D353743C8FE2F08E97B22E5B609ABC14CCFE3B Certificate serial: C2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft Manifest number: B5 Signing time: Thu 03 Jul 2025 06:26:11 +0000 Manifest this update: Thu 03 Jul 2025 06:26:11 +0000 Manifest next update: Thu 10 Jul 2025 06:26:11 +0000 Files and hashes: 1: MtNTdDyP4vCOl7IuW2CavBTM_js.crl (hash: PIi+rtaxPTdLjMnwKMVvj3OjU5Kq34yxjSg8bsk5rBk=) 2: 144D9AA823F011F0B0D6F263C4F9AE02.roa (hash: 8/Hd/HSfsJzaFCQ02un66M2YDgdginFixcaFn5JQidY=) 3: DB9E3242C8E811EF86365B2AC4F9AE02.roa (hash: v6pTRro113en+h2WsmtXqk2rxE6NwkgghVA0fGJU70E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.crl rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 194 (0xc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179F64, serialNumber=32D353743C8FE2F08E97B22E5B609ABC14CCFE3B Validity Not Before: Jul 3 06:26:11 2025 GMT Not After : Jul 10 06:26:11 2025 GMT Subject: CN=68662283-52c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:bd:ed:9d:ee:dd:68:b9:92:86:98:9f:65:de: 1a:0c:09:54:79:eb:8e:71:0e:ba:69:7d:e5:2e:18: b1:1c:01:78:90:3c:5e:4b:bb:5b:56:e0:e6:d0:59: 99:ba:00:1f:7b:2a:f1:69:c7:33:2a:4a:3e:d8:2a: eb:f2:3d:70:ac:45:a1:44:e3:07:a1:b4:05:66:3e: 96:d6:1d:e0:d4:6a:0b:bb:e6:35:ea:ad:1f:9b:e7: 25:42:fd:36:4f:89:4e:3d:07:54:7b:09:f7:ae:63: dd:fc:64:8e:30:3b:fb:2b:d5:d1:e1:ce:c5:6f:59: 08:cb:d5:96:53:bd:9b:c4:ff:c7:8b:dd:b5:1a:cb: 3f:ea:c1:c1:b7:f3:34:08:77:c2:84:f9:42:4f:c1: 12:e7:ef:49:ff:eb:04:29:83:6a:3b:26:f8:5c:49: 04:21:f5:16:c1:c8:61:17:43:ad:10:33:97:05:a8: d2:ae:42:ec:bc:68:9b:a1:3f:04:17:1d:5b:99:3b: 55:81:92:4a:63:50:0d:4b:d8:31:33:16:8e:58:4e: ef:48:73:11:36:8d:19:31:a8:8e:0e:1a:4a:cc:cb: 37:5b:bd:3f:81:4f:38:36:04:d2:17:70:2c:25:38: 46:e2:a9:fb:74:5a:18:7f:a4:38:c1:88:5d:05:7d: 5e:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:6C:71:94:90:F1:6C:2C:7D:9A:A4:4E:AC:60:08:F0:78:FC:66:88 X509v3 Authority Key Identifier: keyid:32:D3:53:74:3C:8F:E2:F0:8E:97:B2:2E:5B:60:9A:BC:14:CC:FE:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:c2:1b:c3:1f:49:0e:a1:51:45:62:18:6c:01:17:b2:17:13: 3e:3f:ab:10:32:43:a8:78:52:cc:b2:82:92:3e:63:9a:29:e3: 80:3f:20:6b:03:c9:ad:0e:12:32:52:b5:44:ea:ca:3e:4e:29: 48:be:83:fd:ef:0b:1a:fd:7a:59:b3:fa:c4:5b:71:04:2d:30: 89:4a:11:be:82:59:15:bd:87:28:5a:41:b6:e6:f0:ff:16:77: ca:dd:ea:a2:8d:62:42:0b:59:23:55:7c:5c:e3:e6:29:15:fd: fb:ec:98:37:f6:1c:46:bf:5b:ab:17:69:df:3b:36:5b:04:db: 33:dc:08:6a:64:50:ad:6d:85:80:eb:e1:1a:20:cd:34:f0:f4: 11:fb:f8:0b:6c:a9:cd:47:c1:68:c0:87:53:a8:b9:0d:34:12: 30:da:cb:47:1d:4e:e8:85:76:8f:38:ac:82:91:b2:13:d1:ed: ef:15:1c:e4:70:e1:2e:4d:88:06:15:e9:e8:1e:08:24:fb:09: 79:a3:d8:4c:e0:47:c2:30:8a:fa:d2:02:97:21:74:4f:c1:35: 33:5c:42:e0:08:9f:01:66:26:05:fd:39:bf:2e:4d:99:c2:01: cf:7e:70:f8:42:f6:f7:96:a7:d2:d1:a4:84:55:e3:6a:18:0e: 04:f4:34:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlGNjQxMTAvBgNVBAUTKDMyRDM1Mzc0M0M4RkUyRjA4RTk3QjIyRTVCNjA5QUJD MTRDQ0ZFM0IwHhcNMjUwNzAzMDYyNjExWhcNMjUwNzEwMDYyNjExWjAYMRYwFAYD VQQDEw02ODY2MjI4My01MmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnb3tne7daLmShpifZd4aDAlUeeuOcQ66aX3lLhixHAF4kDxeS7tbVuDm0FmZ ugAfeyrxacczKko+2Crr8j1wrEWhROMHobQFZj6W1h3g1GoLu+Y16q0fm+clQv02 T4lOPQdUewn3rmPd/GSOMDv7K9XR4c7Fb1kIy9WWU72bxP/Hi921Gss/6sHBt/M0 CHfChPlCT8ES5+9J/+sEKYNqOyb4XEkEIfUWwchhF0OtEDOXBajSrkLsvGiboT8E Fx1bmTtVgZJKY1ANS9gxMxaOWE7vSHMRNo0ZMaiODhpKzMs3W70/gU84NgTSF3As JThG4qn7dFoYf6Q4wYhdBX1e2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNRscZSQ 8WwsfZqkTqxgCPB4/GaIMB8GA1UdIwQYMBaAFDLTU3Q8j+LwjpeyLltgmrwUzP47 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUY2NC83N0JGMDE5MjYy NEIxMUVGQUIxMjBGNEZDNEY5QUUwMi9NdE5UZER5UDR2Q09sN0l1VzJDYXZCVE1f anMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL010TlRkRHlQNHZDT2w3SXVXMkNhdkJUTV9qcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUY2NC83N0JGMDE5MjYyNEIxMUVGQUIxMjBGNEZDNEY5QUUwMi9NdE5UZER5UDR2 Q09sN0l1VzJDYXZCVE1fanMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCswhvDH0kOoVFFYhhsAReyFxM+P6sQMkOoeFLMsoKSPmOaKeOAPyBr A8mtDhIyUrVE6so+TilIvoP97wsa/XpZs/rEW3EELTCJShG+glkVvYcoWkG25vD/ FnfK3eqijWJCC1kjVXxc4+YpFf377Jg39hxGv1urF2nfOzZbBNsz3AhqZFCtbYWA 6+EaIM008PQR+/gLbKnNR8FowIdTqLkNNBIw2stHHU7ohXaPOKyCkbIT0e3vFRzk cOEuTYgGFenoHggk+wl5o9hM4EfCMIr60gKXIXRPwTUzXELgCJ8BZiYF/Tm/Lk2Z wgHPfnD4Qvb3lqfS0aSEVeNqGA4E9DRN -----END CERTIFICATE-----Generated at Fri Jul 4 08:18:35 2025 by rpki-client