$ rpki-client -vvf rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.mft File: 7ITWD3lr9Bb4-B0Yutov_4fBXyY.mft (raw, json) Hash identifier: RMzK+OCW3JNCeZxxPIWV32ddYhULWXLKaPvAJtPUNJ8= Subject key identifier: 67:12:97:71:BA:2D:AE:86:14:5F:2E:6A:17:3A:D2:75:7B:D4:AA:41 Authority key identifier: EC:84:D6:0F:79:6B:F4:16:F8:F8:1D:18:BA:DA:2F:FF:87:C1:5F:26 Certificate issuer: /CN=A917ACF1/serialNumber=EC84D60F796BF416F8F81D18BADA2FFF87C15F26 Certificate serial: 03A8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7ITWD3lr9Bb4-B0Yutov_4fBXyY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.mft Manifest number: 03A1 Signing time: Thu 03 Jul 2025 01:09:19 +0000 Manifest this update: Thu 03 Jul 2025 01:09:18 +0000 Manifest next update: Thu 10 Jul 2025 01:09:18 +0000 Files and hashes: 1: 7ITWD3lr9Bb4-B0Yutov_4fBXyY.crl (hash: FgaFdsHxh7vrN1rlo7izFbGKudjPpHzN9P+Q2XOE0gE=) 2: 5895821AB62611ECB410C81DC4F9AE02.roa (hash: hC/jX3h+m4kRJTL+3r4qE/OapWO5r8a4N2e8hzVBff0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.crl rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7ITWD3lr9Bb4-B0Yutov_4fBXyY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:09:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 936 (0x3a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ACF1, serialNumber=EC84D60F796BF416F8F81D18BADA2FFF87C15F26 Validity Not Before: Jul 3 01:09:18 2025 GMT Not After : Jul 10 01:09:18 2025 GMT Subject: CN=6865d83e-bfde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:5a:fc:54:8d:c2:15:64:2c:59:a7:44:12:e6: f6:e9:26:9b:0e:b1:f4:dd:d6:b4:ac:af:14:8a:38: bf:4a:d7:c1:1b:d5:f8:64:6f:23:cf:8a:a8:01:a9: ae:41:b2:5b:85:fb:6e:79:45:91:38:e6:39:84:a6: 7e:b1:6c:63:81:2e:f0:1b:62:1b:4c:34:e3:d6:95: 74:1c:80:c5:9d:d8:99:53:af:78:b7:bd:07:c8:c3: 95:46:8e:ee:3a:e4:fc:0a:82:b8:ee:c3:91:20:6f: 57:51:f7:69:03:82:77:8b:5b:08:56:5d:a8:12:a1: bf:fc:be:cf:bb:1e:46:4f:dc:79:87:6b:4f:92:0f: bf:f8:eb:ee:4f:05:1d:fc:53:c0:4c:42:40:ee:5c: cf:7d:e4:11:6e:89:d8:29:c6:10:b4:c4:66:19:2b: 92:27:1a:bf:62:33:ed:b9:ac:bd:ff:68:9c:fd:7d: 19:08:ce:09:56:3c:4d:b1:d8:39:25:d7:78:4e:53: e8:8d:eb:85:13:15:e6:57:c8:ce:8d:49:2f:e5:2f: c6:71:dc:2f:f2:8a:21:9b:6b:59:31:14:11:5d:80: 5a:50:3f:23:a6:d3:5f:ef:52:04:8c:7d:79:89:5a: 5d:bd:94:cd:77:b3:60:66:1f:7a:2b:c7:a0:2e:b4: a5:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:12:97:71:BA:2D:AE:86:14:5F:2E:6A:17:3A:D2:75:7B:D4:AA:41 X509v3 Authority Key Identifier: keyid:EC:84:D6:0F:79:6B:F4:16:F8:F8:1D:18:BA:DA:2F:FF:87:C1:5F:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7ITWD3lr9Bb4-B0Yutov_4fBXyY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:46:e3:9f:f3:a3:58:eb:50:34:65:ef:8e:e7:8b:0a:7b:7d: 03:db:16:e4:72:0a:84:c3:84:f7:e7:3f:c6:0f:23:d9:ac:a8: 9f:f1:74:5b:0f:be:8d:7e:23:cb:fd:ef:1c:ec:fc:87:e4:0b: ea:ff:2d:e0:5c:8b:2d:92:98:8a:62:7c:6d:c6:42:c3:86:92: f2:4f:3c:00:aa:09:b5:b8:5f:42:c9:df:39:2d:4b:80:18:45: 0c:4f:6b:70:54:8f:05:e7:d8:31:95:1a:7d:b3:e2:63:43:9a: ab:55:ef:47:de:28:6d:8c:1b:4d:51:ab:2f:27:9d:77:a4:7f: 92:e5:a6:e7:9d:5b:b1:fc:e8:01:ac:3b:80:57:d8:1e:d1:46: 1d:0a:69:23:8c:85:aa:a0:8c:89:4c:f0:b3:8c:4d:34:15:54: 89:34:b9:35:f1:18:5f:00:ad:82:67:b9:73:f8:7a:16:8b:4d: e0:c5:15:f1:6e:40:91:c9:bd:9e:73:ff:cb:a7:88:cd:cd:8c: 7a:ec:c8:54:77:ff:91:26:fc:d8:56:78:50:83:d6:15:5d:19: 00:c6:2a:f0:bc:63:42:5a:37:1b:e4:2d:91:31:58:43:28:36: 9f:2b:89:aa:57:3f:26:64:76:2a:93:75:ba:72:f7:90:e6:e1: 14:11:6f:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FDRjExMTAvBgNVBAUTKEVDODRENjBGNzk2QkY0MTZGOEY4MUQxOEJBREEyRkZG ODdDMTVGMjYwHhcNMjUwNzAzMDEwOTE4WhcNMjUwNzEwMDEwOTE4WjAYMRYwFAYD VQQDEw02ODY1ZDgzZS1iZmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApFr8VI3CFWQsWadEEub26SabDrH03da0rK8Uiji/StfBG9X4ZG8jz4qoAamu QbJbhftueUWROOY5hKZ+sWxjgS7wG2IbTDTj1pV0HIDFndiZU694t70HyMOVRo7u OuT8CoK47sORIG9XUfdpA4J3i1sIVl2oEqG//L7Pux5GT9x5h2tPkg+/+OvuTwUd /FPATEJA7lzPfeQRbonYKcYQtMRmGSuSJxq/YjPtuay9/2ic/X0ZCM4JVjxNsdg5 Jdd4TlPojeuFExXmV8jOjUkv5S/Gcdwv8oohm2tZMRQRXYBaUD8jptNf71IEjH15 iVpdvZTNd7NgZh96K8egLrSlxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGcSl3G6 La6GFF8uahc60nV71KpBMB8GA1UdIwQYMBaAFOyE1g95a/QW+PgdGLraL/+HwV8m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUNGMS84NjgzNTUwNkEw MzkxMUVDOEExRjFDMjNDNEY5QUUwMi83SVRXRDNscjlCYjQtQjBZdXRvdl80ZkJY eVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzdJVFdEM2xyOUJiNC1CMFl1dG92XzRmQlh5WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUNGMS84NjgzNTUwNkEwMzkxMUVDOEExRjFDMjNDNEY5QUUwMi83SVRXRDNscjlC YjQtQjBZdXRvdl80ZkJYeVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtRuOf86NY61A0Ze+O54sKe30D2xbkcgqEw4T35z/GDyPZrKif8XRb D76NfiPL/e8c7PyH5Avq/y3gXIstkpiKYnxtxkLDhpLyTzwAqgm1uF9Cyd85LUuA GEUMT2twVI8F59gxlRp9s+JjQ5qrVe9H3ihtjBtNUasvJ513pH+S5abnnVux/OgB rDuAV9ge0UYdCmkjjIWqoIyJTPCzjE00FVSJNLk18RhfAK2CZ7lz+HoWi03gxRXx bkCRyb2ec//Lp4jNzYx67MhUd/+RJvzYVnhQg9YVXRkAxirwvGNCWjcb5C2RMVhD KDafK4mqVz8mZHYqk3W6cveQ5uEUEW/Z -----END CERTIFICATE-----Generated at Thu Jul 3 23:36:38 2025 by rpki-client