$ rpki-client -vvf rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft File: 40IvTt5eaM7JqqfjxuMnjHMOHnw.mft (raw, json) Hash identifier: UQf7bV7K9ThunkFWcB3ZS4iXHc3PvytLzehaRfGTX4c= Subject key identifier: 1E:65:D1:B9:92:46:23:A9:B0:8A:FD:11:0D:CD:B6:60:56:8B:57:BA Authority key identifier: E3:42:2F:4E:DE:5E:68:CE:C9:AA:A7:E3:C6:E3:27:8C:73:0E:1E:7C Certificate issuer: /CN=A9180DA4/serialNumber=E3422F4EDE5E68CEC9AAA7E3C6E3278C730E1E7C Certificate serial: 3492 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft Manifest number: 3492 Signing time: Mon 30 Jun 2025 14:44:40 +0000 Manifest this update: Mon 30 Jun 2025 14:44:40 +0000 Manifest next update: Mon 07 Jul 2025 14:44:40 +0000 Files and hashes: 1: 40IvTt5eaM7JqqfjxuMnjHMOHnw.crl (hash: 4G7ajXIO8c3bU45i+YF7t2Jgcq8E8Sfcq2bhIcS+uUc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.crl rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 14:44:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13458 (0x3492) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180DA4, serialNumber=E3422F4EDE5E68CEC9AAA7E3C6E3278C730E1E7C Validity Not Before: Jun 30 14:44:40 2025 GMT Not After : Jul 7 14:44:40 2025 GMT Subject: CN=6862a2d8-1846 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f7:b1:c5:93:07:c6:cc:6b:1b:40:72:2d:7d: ae:a2:b1:30:bb:79:2d:8d:7b:54:58:1a:d1:e4:06: d8:a2:3d:bf:41:17:39:e2:02:a3:c6:74:93:08:a6: e8:9e:30:7b:d4:29:3b:96:72:e3:3f:e2:de:e1:ed: 70:a5:00:57:b8:8c:ad:0c:81:55:9d:a7:20:2b:65: 5a:71:7c:37:ef:e1:8b:84:02:bd:a4:34:ab:b3:b0: 23:21:58:93:08:4f:ee:98:17:82:49:9b:e2:a0:28: 2c:53:f6:7c:b2:06:01:13:0e:8c:ba:dc:d8:44:bf: db:b4:fa:fe:08:0e:bf:49:30:7c:6f:c2:9a:22:94: 5f:3e:40:af:9f:a4:28:4b:2d:fb:7c:a7:2e:73:49: fe:ce:50:04:46:2c:fe:0d:7e:54:a9:e3:25:be:1b: 88:41:c6:cf:8b:b6:39:bf:cf:d2:f6:6d:b5:3b:18: 5b:9b:a9:b0:6a:7b:c0:85:ba:35:b2:64:f4:30:7d: 3f:5c:b1:4b:d2:f5:46:d3:d8:68:08:7a:b4:56:5c: 8f:70:6f:d3:24:03:53:10:44:18:34:fd:a8:83:fb: e2:b0:07:1f:bd:06:3c:0a:3c:3f:a9:de:6a:ce:f0: 4f:5c:15:0b:7d:c1:e7:48:58:a1:ac:ea:fa:2f:a9: 18:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:65:D1:B9:92:46:23:A9:B0:8A:FD:11:0D:CD:B6:60:56:8B:57:BA X509v3 Authority Key Identifier: keyid:E3:42:2F:4E:DE:5E:68:CE:C9:AA:A7:E3:C6:E3:27:8C:73:0E:1E:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:fc:9d:cf:95:bf:ee:ad:3e:13:74:6f:aa:0a:e8:83:66:18: 58:f2:08:b3:bb:41:4a:b9:b2:a7:0c:92:31:18:ec:a2:7a:02: db:82:64:f0:5e:fe:a9:75:c9:50:eb:56:a6:a2:2e:d7:f0:d4: 08:38:3e:65:3d:4f:a8:12:8b:a1:39:91:4b:96:89:6f:70:ab: 6b:38:fb:0c:ae:e2:ab:2a:88:3d:6e:97:7d:7b:ab:b8:b2:dd: d5:bd:59:51:43:ee:af:cb:1a:ca:2a:f8:55:79:8b:d3:13:16: 6f:0f:26:1f:d4:02:69:31:13:2c:ae:b9:65:df:0d:c8:24:a4: 5f:93:46:28:88:c2:81:9e:23:d9:8b:a4:c2:3f:7e:8e:81:5c: 59:24:c1:b5:02:41:11:97:b2:13:cb:3a:17:e2:8b:7a:2a:e7: 10:10:8c:0b:c0:05:d2:58:89:ad:fe:1d:c1:6e:57:18:17:95: b8:6b:b7:94:3f:ae:72:58:8a:bb:16:9f:60:6a:fb:ff:8c:26: 54:c1:ca:f9:49:bb:b2:5d:3e:14:20:15:3a:59:d7:5a:e1:46: d2:b7:37:1b:6c:d9:12:fe:95:2b:6c:37:bd:51:cb:31:9f:a2: 13:c0:bb:bb:f8:d7:3d:3b:cc:b4:01:c9:d6:55:a1:80:64:ee: f8:27:96:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODBEQTQxMTAvBgNVBAUTKEUzNDIyRjRFREU1RTY4Q0VDOUFBQTdFM0M2RTMyNzhD NzMwRTFFN0MwHhcNMjUwNjMwMTQ0NDQwWhcNMjUwNzA3MTQ0NDQwWjAYMRYwFAYD VQQDEw02ODYyYTJkOC0xODQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfexxZMHxsxrG0ByLX2uorEwu3ktjXtUWBrR5AbYoj2/QRc54gKjxnSTCKbo njB71Ck7lnLjP+Le4e1wpQBXuIytDIFVnacgK2VacXw37+GLhAK9pDSrs7AjIViT CE/umBeCSZvioCgsU/Z8sgYBEw6MutzYRL/btPr+CA6/STB8b8KaIpRfPkCvn6Qo Sy37fKcuc0n+zlAERiz+DX5UqeMlvhuIQcbPi7Y5v8/S9m21Oxhbm6mwanvAhbo1 smT0MH0/XLFL0vVG09hoCHq0VlyPcG/TJANTEEQYNP2og/visAcfvQY8Cjw/qd5q zvBPXBULfcHnSFihrOr6L6kY+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB5l0bmS RiOpsIr9EQ3NtmBWi1e6MB8GA1UdIwQYMBaAFONCL07eXmjOyaqn48bjJ4xzDh58 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MERBNC80NzNDNjQ1MDFE OEYxMUUyOEU5MTNERUUwOEIwMkNEMi80MEl2VHQ1ZWFNN0pxcWZqeHVNbmpITU9I bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwSXZUdDVlYU03SnFxZmp4dU1uakhNT0hudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MERBNC80NzNDNjQ1MDFEOEYxMUUyOEU5MTNERUUwOEIwMkNEMi80MEl2VHQ1ZWFN N0pxcWZqeHVNbmpITU9IbncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAv/J3Plb/urT4TdG+qCuiDZhhY8gizu0FKubKnDJIxGOyiegLbgmTw Xv6pdclQ61amoi7X8NQIOD5lPU+oEouhOZFLlolvcKtrOPsMruKrKog9bpd9e6u4 st3VvVlRQ+6vyxrKKvhVeYvTExZvDyYf1AJpMRMsrrll3w3IJKRfk0YoiMKBniPZ i6TCP36OgVxZJMG1AkERl7ITyzoX4ot6KucQEIwLwAXSWImt/h3BblcYF5W4a7eU P65yWIq7Fp9gavv/jCZUwcr5SbuyXT4UIBU6Wdda4UbStzcbbNkS/pUrbDe9Ucsx n6ITwLu7+Nc9O8y0AcnWVaGAZO74J5bw -----END CERTIFICATE-----Generated at Mon Jun 30 19:29:13 2025 by rpki-client