$ rpki-client -vvf rpki.apnic.net/member_repository/A9180669/77E904C824B111F0A05B0064C4F9AE02/rLhNci0lVbSDPOQGgw_b_pgrfGY.mft File: rLhNci0lVbSDPOQGgw_b_pgrfGY.mft (raw, json) Hash identifier: 60ac+SCzjRSX721KLPJNQuCTInukXx/Cq4QNwP/yEgk= Subject key identifier: 45:CC:82:6F:53:8E:95:18:ED:46:1B:26:65:7A:63:DB:01:33:71:0B Authority key identifier: AC:B8:4D:72:2D:25:55:B4:83:3C:E4:06:83:0F:DB:FE:98:2B:7C:66 Certificate issuer: /CN=A9180669/serialNumber=ACB84D722D2555B4833CE406830FDBFE982B7C66 Certificate serial: 21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rLhNci0lVbSDPOQGgw_b_pgrfGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180669/77E904C824B111F0A05B0064C4F9AE02/rLhNci0lVbSDPOQGgw_b_pgrfGY.mft Manifest number: 20 Signing time: Tue 01 Jul 2025 08:39:02 +0000 Manifest this update: Tue 01 Jul 2025 08:39:01 +0000 Manifest next update: Tue 08 Jul 2025 08:39:01 +0000 Files and hashes: 1: rLhNci0lVbSDPOQGgw_b_pgrfGY.crl (hash: 2UE6fWnvYCU+dmLsyjyMA8SSrPqR6F3z/O9D7qM+QKs=) 2: 7D1BFC5E24B411F08834DE10C4F9AE02.roa (hash: diVe3oDK8BNzbsZfVF9MUY+tHtrxSbiFO+M9PazMfpE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180669/77E904C824B111F0A05B0064C4F9AE02/rLhNci0lVbSDPOQGgw_b_pgrfGY.crl rsync://rpki.apnic.net/member_repository/A9180669/77E904C824B111F0A05B0064C4F9AE02/rLhNci0lVbSDPOQGgw_b_pgrfGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rLhNci0lVbSDPOQGgw_b_pgrfGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:39:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180669, serialNumber=ACB84D722D2555B4833CE406830FDBFE982B7C66 Validity Not Before: Jul 1 08:39:01 2025 GMT Not After : Jul 8 08:39:01 2025 GMT Subject: CN=68639ea5-0250 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:6f:16:2c:26:49:91:3f:b5:6a:dc:5c:4e:a5: 90:82:0d:94:6e:d3:ac:9e:bb:40:b3:05:b0:37:90: 67:57:ae:45:e2:61:1c:70:1a:b2:66:4d:89:b1:7d: 36:4e:f9:c4:92:a1:0e:cf:8d:a6:fb:b7:ce:44:fe: 28:dd:a8:cf:6f:4c:34:f7:fa:93:3d:dc:29:c1:c2: eb:42:9d:96:3e:cc:f3:e5:24:61:c0:55:e3:98:36: 8e:3c:30:85:e9:fe:99:85:57:60:0f:e0:0e:1b:7b: b4:fb:96:45:cd:2f:c3:f0:43:04:a3:37:ac:52:ff: ec:5c:b7:9a:0a:9a:49:cd:d8:e9:0f:94:6e:94:5c: 49:e2:94:a5:65:5d:ae:7a:52:f2:d1:4a:75:26:e2: c2:67:6c:e2:06:25:b1:0e:2c:65:27:c9:46:2d:53: 13:b6:b1:80:b0:3f:af:63:81:c3:28:74:35:84:37: 03:6d:cf:f1:00:21:ac:47:7e:d3:20:08:29:07:e2: 35:f0:b8:11:28:d4:66:30:de:5f:da:08:a3:9e:13: 51:12:13:23:5e:49:85:5c:3d:ed:41:5c:ee:01:26: 53:f7:f6:87:cc:6c:00:32:fb:45:80:d1:4d:52:ee: 3b:dc:10:ba:47:19:fe:6a:82:94:af:14:0f:6c:a9: 84:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:CC:82:6F:53:8E:95:18:ED:46:1B:26:65:7A:63:DB:01:33:71:0B X509v3 Authority Key Identifier: keyid:AC:B8:4D:72:2D:25:55:B4:83:3C:E4:06:83:0F:DB:FE:98:2B:7C:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180669/77E904C824B111F0A05B0064C4F9AE02/rLhNci0lVbSDPOQGgw_b_pgrfGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rLhNci0lVbSDPOQGgw_b_pgrfGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180669/77E904C824B111F0A05B0064C4F9AE02/rLhNci0lVbSDPOQGgw_b_pgrfGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:1d:f8:bc:53:f5:de:74:c0:9c:25:d6:df:c6:37:75:f8:81: 3a:4d:9a:b3:04:c8:61:a0:25:e8:cc:e3:f3:d3:2b:01:fd:d5: cf:f1:c1:9d:c0:22:05:7a:42:49:09:b0:ce:5f:d5:18:6f:c1: b3:34:1c:42:26:85:9c:a4:d0:80:d6:5e:b5:53:7a:28:48:78: fb:24:36:0b:9b:39:51:94:b8:23:91:a1:3c:39:9a:7c:95:c2: f0:33:6c:e3:ec:26:7f:36:97:36:d8:9d:e5:c6:dd:f5:db:b6: 3f:83:50:b4:28:15:da:9c:db:a9:c2:09:0d:79:04:63:32:ef: ae:f4:a6:4a:0e:ef:89:43:7b:fd:e7:b5:d1:c6:c3:e8:0a:4e: 74:e0:f6:fd:f6:43:7e:0c:98:1c:ea:00:4a:08:a9:01:0e:e8: c6:4a:ae:b4:08:ef:25:ba:0b:3f:e2:6d:94:47:df:b9:52:8e: ef:6c:37:29:69:c2:e7:8e:a3:c3:95:73:ae:1d:a2:05:72:51: 6f:1c:40:8e:ba:55:99:d1:11:d5:c9:bd:c4:14:f0:6b:79:0a: 5e:49:c9:6c:6a:ac:c0:3b:47:a6:47:18:8c:c9:8e:30:fd:2f: 21:4d:95:3d:b5:5d:e8:2a:38:e0:e1:a9:da:25:f8:10:c2:8d: 84:f1:e8:73 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBITANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MDY2OTExMC8GA1UEBRMoQUNCODRENzIyRDI1NTVCNDgzM0NFNDA2ODMwRkRCRkU5 ODJCN0M2NjAeFw0yNTA3MDEwODM5MDFaFw0yNTA3MDgwODM5MDFaMBgxFjAUBgNV BAMTDTY4NjM5ZWE1LTAyNTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3bxYsJkmRP7Vq3FxOpZCCDZRu06yeu0CzBbA3kGdXrkXiYRxwGrJmTYmxfTZO +cSSoQ7Pjab7t85E/ijdqM9vTDT3+pM93CnBwutCnZY+zPPlJGHAVeOYNo48MIXp /pmFV2AP4A4be7T7lkXNL8PwQwSjN6xS/+xct5oKmknN2OkPlG6UXEnilKVlXa56 UvLRSnUm4sJnbOIGJbEOLGUnyUYtUxO2sYCwP69jgcModDWENwNtz/EAIaxHftMg CCkH4jXwuBEo1GYw3l/aCKOeE1ESEyNeSYVcPe1BXO4BJlP39ofMbAAy+0WA0U1S 7jvcELpHGf5qgpSvFA9sqYSRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQURcyCb1OO lRjtRhsmZXpj2wEzcQswHwYDVR0jBBgwFoAUrLhNci0lVbSDPOQGgw/b/pgrfGYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgwNjY5Lzc3RTkwNEM4MjRC MTExRjBBMDVCMDA2NEM0RjlBRTAyL3JMaE5jaTBsVmJTRFBPUUdnd19iX3BncmZH WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvckxoTmNpMGxWYlNEUE9RR2d3X2JfcGdyZkdZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgw NjY5Lzc3RTkwNEM4MjRCMTExRjBBMDVCMDA2NEM0RjlBRTAyL3JMaE5jaTBsVmJT RFBPUUdnd19iX3BncmZHWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJcd+LxT9d50wJwl1t/GN3X4gTpNmrMEyGGgJejM4/PTKwH91c/xwZ3A IgV6QkkJsM5f1RhvwbM0HEImhZyk0IDWXrVTeihIePskNgubOVGUuCORoTw5mnyV wvAzbOPsJn82lzbYneXG3fXbtj+DULQoFdqc26nCCQ15BGMy7670pkoO74lDe/3n tdHGw+gKTnTg9v32Q34MmBzqAEoIqQEO6MZKrrQI7yW6Cz/ibZRH37lSju9sNylp wueOo8OVc64dogVyUW8cQI66VZnREdXJvcQU8Gt5Cl5JyWxqrMA7R6ZHGIzJjjD9 LyFNlT21XegqOODhqdol+BDCjYTx6HM= -----END CERTIFICATE-----Generated at Thu Jul 3 02:48:39 2025 by rpki-client