$ rpki-client -vvf rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft File: R1MAyW65ok4zHQs5AHDEWinJXmk.mft (raw, json) Hash identifier: EgkBHAeKcnZSsQTxHzuJw1ET7AMKebLtNx93AW6e5Cs= Subject key identifier: EA:46:85:DF:1E:8C:E2:AC:54:84:98:41:A0:83:E4:8C:46:CE:56:75 Authority key identifier: 47:53:00:C9:6E:B9:A2:4E:33:1D:0B:39:00:70:C4:5A:29:C9:5E:69 Certificate issuer: /CN=A917C36A/serialNumber=475300C96EB9A24E331D0B390070C45A29C95E69 Certificate serial: 01B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1MAyW65ok4zHQs5AHDEWinJXmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft Manifest number: 01B2 Signing time: Sun 29 Jun 2025 02:21:13 +0000 Manifest this update: Sun 29 Jun 2025 02:21:12 +0000 Manifest next update: Sun 06 Jul 2025 02:21:12 +0000 Files and hashes: 1: R1MAyW65ok4zHQs5AHDEWinJXmk.crl (hash: m7nwmOMR25mW6yUb7htafyNDzsisCg+1N7O+1PkHamQ=) 2: 9CB879ECC7B511ED9411183FC4F9AE02.roa (hash: vTjIWL+7U0681ZWCBVmHMtqcTBbPy9kNb1m5t3OENUI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.crl rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1MAyW65ok4zHQs5AHDEWinJXmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 02:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 440 (0x1b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C36A, serialNumber=475300C96EB9A24E331D0B390070C45A29C95E69 Validity Not Before: Jun 29 02:21:12 2025 GMT Not After : Jul 6 02:21:12 2025 GMT Subject: CN=6860a319-a50c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:72:7f:36:9f:74:8c:a9:07:53:b1:c8:5e:98: 94:46:04:46:d9:15:38:8f:99:14:33:11:55:a2:c9: b9:bb:55:90:3b:ce:4b:ec:43:6b:cd:85:cf:f9:be: 96:92:21:0a:3a:76:84:35:e1:d8:06:a4:cf:07:1d: eb:31:5c:55:29:c3:0f:cd:cf:b1:89:9e:f7:6c:a6: 8a:e8:d1:89:ee:7d:27:c6:ea:0f:77:fb:84:03:7b: 50:41:4d:75:15:bd:c6:85:d3:05:08:3e:4d:b2:be: e4:56:36:d6:cb:da:cc:87:38:91:8d:67:f6:35:8a: 43:22:41:36:5c:eb:17:b1:77:78:a5:a2:fa:d0:cf: d2:99:e2:54:b0:0c:d9:9f:10:91:28:23:b0:8b:db: d8:28:8d:6d:1e:4e:42:28:31:a6:8b:4d:08:2c:86: 0e:8b:b2:e3:e3:87:e7:02:7e:8e:8e:da:7d:9d:a3: 16:64:4c:e0:e1:1b:5a:b7:d2:d9:9d:bb:07:1b:b1: 4f:f7:cd:8a:ee:e1:ba:22:92:a1:16:4c:13:17:a6: 3d:1d:f9:bd:20:b3:56:89:7b:c7:b3:11:a4:28:85: 45:d1:b6:a0:46:71:2b:25:a1:41:01:08:ab:34:70: 6b:0b:b4:f3:dc:e0:90:62:af:f1:a6:c7:84:34:3f: 32:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:46:85:DF:1E:8C:E2:AC:54:84:98:41:A0:83:E4:8C:46:CE:56:75 X509v3 Authority Key Identifier: keyid:47:53:00:C9:6E:B9:A2:4E:33:1D:0B:39:00:70:C4:5A:29:C9:5E:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1MAyW65ok4zHQs5AHDEWinJXmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:b6:73:54:ec:17:1a:78:88:4e:f0:05:97:eb:d1:3f:f7:57: 9c:19:45:90:53:cd:a4:bd:17:a5:74:aa:96:65:22:95:d4:82: 79:36:5c:d9:f4:64:e7:cb:91:5b:92:cf:2c:fe:b6:a4:07:79: a0:06:94:a0:69:d1:e3:47:8a:1a:68:2d:f9:41:8f:b5:66:e9: b6:4b:30:7c:2d:3e:49:11:be:ac:54:ae:c7:1d:71:3e:7a:69: 11:ba:af:69:45:19:d3:5b:61:f1:ea:ac:c9:e0:cf:d3:a6:ac: 80:a7:7a:c5:26:d0:71:b3:86:aa:b6:00:94:a9:c4:e2:b2:d3: d1:da:b1:ec:dc:6a:ee:40:94:9a:fe:2e:5b:98:10:88:56:27: 23:b3:51:7a:54:02:00:41:4b:37:8b:f3:45:ee:85:62:d9:12: 81:09:33:94:c2:3e:28:37:bf:b6:6f:4b:1f:c6:d7:df:11:5e: ea:4a:52:c7:6c:ce:26:89:bc:cf:a4:c7:38:56:91:f4:d7:84: eb:d5:2b:84:4c:74:62:3f:f1:27:5e:5f:80:17:e7:ad:dc:f2: 2c:4d:15:e2:a9:e5:16:13:2c:50:24:92:35:df:51:8a:cd:89: f7:ea:6c:33:cb:22:72:fe:51:a8:5a:b5:31:72:3b:81:6a:8a: 37:e0:37:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MzNkExMTAvBgNVBAUTKDQ3NTMwMEM5NkVCOUEyNEUzMzFEMEIzOTAwNzBDNDVB MjlDOTVFNjkwHhcNMjUwNjI5MDIyMTEyWhcNMjUwNzA2MDIyMTEyWjAYMRYwFAYD VQQDEw02ODYwYTMxOS1hNTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmHJ/Np90jKkHU7HIXpiURgRG2RU4j5kUMxFVosm5u1WQO85L7ENrzYXP+b6W kiEKOnaENeHYBqTPBx3rMVxVKcMPzc+xiZ73bKaK6NGJ7n0nxuoPd/uEA3tQQU11 Fb3GhdMFCD5Nsr7kVjbWy9rMhziRjWf2NYpDIkE2XOsXsXd4paL60M/SmeJUsAzZ nxCRKCOwi9vYKI1tHk5CKDGmi00ILIYOi7Lj44fnAn6Ojtp9naMWZEzg4Rtat9LZ nbsHG7FP982K7uG6IpKhFkwTF6Y9Hfm9ILNWiXvHsxGkKIVF0bagRnErJaFBAQir NHBrC7Tz3OCQYq/xpseEND8yFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOpGhd8e jOKsVISYQaCD5IxGzlZ1MB8GA1UdIwQYMBaAFEdTAMluuaJOMx0LOQBwxFopyV5p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzM2QS80MDkzNDI4MEM3 QjIxMUVEOTM1N0EyM0NDNEY5QUUwMi9SMU1BeVc2NW9rNHpIUXM1QUhERVdpbkpY bWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IxTUF5VzY1b2s0ekhRczVBSERFV2luSlhtay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzM2QS80MDkzNDI4MEM3QjIxMUVEOTM1N0EyM0NDNEY5QUUwMi9SMU1BeVc2NW9r NHpIUXM1QUhERVdpbkpYbWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCutnNU7BcaeIhO8AWX69E/91ecGUWQU82kvReldKqWZSKV1IJ5NlzZ 9GTny5Fbks8s/rakB3mgBpSgadHjR4oaaC35QY+1Zum2SzB8LT5JEb6sVK7HHXE+ emkRuq9pRRnTW2Hx6qzJ4M/TpqyAp3rFJtBxs4aqtgCUqcTistPR2rHs3GruQJSa /i5bmBCIVicjs1F6VAIAQUs3i/NF7oVi2RKBCTOUwj4oN7+2b0sfxtffEV7qSlLH bM4mibzPpMc4VpH014Tr1SuETHRiP/EnXl+AF+et3PIsTRXiqeUWEyxQJJI131GK zYn36mwzyyJy/lGoWrUxcjuBaoo34DeY -----END CERTIFICATE-----Generated at Sun Jun 29 19:01:55 2025 by rpki-client