$ rpki-client -vvf rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft File: 0XRFPpVj66_LuzKsxs-Gb72OIvA.mft (raw, json) Hash identifier: 4Ud6G/FJHgoWdg9PZqd0n/NEb5kfSCH7i+7DHtyb61I= Subject key identifier: 75:86:C9:68:34:08:98:AD:DB:31:6B:A1:A6:7D:0D:E4:E2:A5:45:AB Authority key identifier: D1:74:45:3E:95:63:EB:AF:CB:BB:32:AC:C6:CF:86:6F:BD:8E:22:F0 Certificate issuer: /CN=A9187325/serialNumber=D174453E9563EBAFCBBB32ACC6CF866FBD8E22F0 Certificate serial: 72 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0XRFPpVj66_LuzKsxs-Gb72OIvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft Manifest number: 71 Signing time: Thu 03 Jul 2025 07:05:15 +0000 Manifest this update: Thu 03 Jul 2025 07:05:15 +0000 Manifest next update: Thu 10 Jul 2025 07:05:15 +0000 Files and hashes: 1: 0XRFPpVj66_LuzKsxs-Gb72OIvA.crl (hash: K4yw/YZIk2X7IJ4XwoF9n7uA0759XjReoEQXCWn7HPc=) 2: D9DB29CCAAEF11EF9187EE2AC4F9AE02.roa (hash: zhUDBt2wZDhknIJUCNitYM8EJRnUn0t65SOwAtO1PEM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.crl rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0XRFPpVj66_LuzKsxs-Gb72OIvA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187325, serialNumber=D174453E9563EBAFCBBB32ACC6CF866FBD8E22F0 Validity Not Before: Jul 3 07:05:15 2025 GMT Not After : Jul 10 07:05:15 2025 GMT Subject: CN=68662bab-fd9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:df:2d:ac:75:33:23:29:98:47:97:7c:ed:75: c1:df:af:a9:e0:fa:55:32:e7:5a:1e:72:92:c4:3a: 0d:82:19:b2:b9:99:d9:44:a1:cc:71:f6:c5:fb:48: 8f:e7:31:95:4a:cb:03:8f:c1:86:c1:1d:88:1b:bc: 95:fb:56:e0:d2:d9:b5:db:b9:23:c6:fa:fc:5f:2e: 6d:88:0b:78:dc:a3:ff:9a:b0:cf:6b:ad:20:56:c1: b8:d1:d0:07:5a:a8:2a:e4:2c:de:c2:54:a9:1f:ee: a8:8c:ad:28:4e:d8:57:80:9e:13:95:22:ba:a5:59: 66:ce:e6:7a:f5:04:6c:42:13:7c:a0:74:15:63:1b: e3:a8:9b:72:b6:6f:e9:89:8d:05:82:f8:92:02:dd: f7:e6:d3:55:69:1b:0c:dd:06:36:00:ad:ef:e5:5a: da:8f:31:e3:21:76:8e:bf:41:40:b5:21:c6:48:3e: 35:2b:29:fb:c1:8b:f7:b1:d3:ab:ff:99:89:ba:2c: 34:31:13:11:8c:90:4e:38:d6:2c:0d:ec:eb:64:4e: ca:a1:1e:6e:44:b9:92:d9:4c:87:b1:41:47:d1:a6: 26:d9:58:72:76:d7:1d:88:64:c0:b7:ad:a3:15:24: 14:b2:fa:9f:1c:31:cb:9c:b0:59:e0:e9:96:30:43: 30:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:86:C9:68:34:08:98:AD:DB:31:6B:A1:A6:7D:0D:E4:E2:A5:45:AB X509v3 Authority Key Identifier: keyid:D1:74:45:3E:95:63:EB:AF:CB:BB:32:AC:C6:CF:86:6F:BD:8E:22:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0XRFPpVj66_LuzKsxs-Gb72OIvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:08:d4:fe:e4:36:91:a9:f1:63:c9:c4:7a:7c:78:b6:57:dd: 5e:63:49:1f:61:8a:66:81:7c:45:30:df:65:66:e1:a7:98:af: ab:9a:66:82:38:73:e0:a8:93:59:c6:23:a0:b6:8b:fa:fd:c7: ad:0d:ff:28:54:3b:ca:1c:f2:74:61:3f:f5:58:96:8e:10:bc: 7b:65:f1:6f:ab:22:a5:4a:20:5f:e0:67:5f:d0:1d:ea:b6:af: 4f:cf:aa:7b:63:7f:0e:bf:c6:34:6c:5d:9f:9a:bd:55:76:6d: b5:32:75:d4:be:1b:c4:c0:c9:e9:21:16:4f:b5:48:ac:71:16: 14:ca:45:b1:34:28:77:5d:2d:4c:d1:3a:dc:c7:aa:88:2f:0d: dd:f0:68:64:98:b2:e7:fa:b4:77:f6:57:2b:39:a7:5a:86:58: 86:22:35:b8:56:4f:f2:17:2b:63:41:f9:20:df:4c:b9:ea:2f: 40:83:50:8b:a9:1a:93:2d:82:41:a6:ea:df:6b:7a:4c:e6:6b: 2e:f1:58:49:ed:2b:8f:cc:66:c3:1e:65:e6:c3:9c:0b:b8:ff: a6:a3:6c:5e:09:c2:ff:41:47:aa:4e:da:7a:87:55:dd:15:2f: 2b:95:b4:e2:8b:d4:53:78:7b:f9:d4:6c:d5:ea:64:ba:a0:4b: 41:e2:4f:ad -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NzMyNTExMC8GA1UEBRMoRDE3NDQ1M0U5NTYzRUJBRkNCQkIzMkFDQzZDRjg2NkZC RDhFMjJGMDAeFw0yNTA3MDMwNzA1MTVaFw0yNTA3MTAwNzA1MTVaMBgxFjAUBgNV BAMTDTY4NjYyYmFiLWZkOWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC73y2sdTMjKZhHl3ztdcHfr6ng+lUy51oecpLEOg2CGbK5mdlEocxx9sX7SI/n MZVKywOPwYbBHYgbvJX7VuDS2bXbuSPG+vxfLm2IC3jco/+asM9rrSBWwbjR0Ada qCrkLN7CVKkf7qiMrShO2FeAnhOVIrqlWWbO5nr1BGxCE3ygdBVjG+Oom3K2b+mJ jQWC+JIC3ffm01VpGwzdBjYAre/lWtqPMeMhdo6/QUC1IcZIPjUrKfvBi/ex06v/ mYm6LDQxExGMkE441iwN7OtkTsqhHm5EuZLZTIexQUfRpibZWHJ21x2IZMC3raMV JBSy+p8cMcucsFng6ZYwQzBRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUdYbJaDQI mK3bMWuhpn0N5OKlRaswHwYDVR0jBBgwFoAU0XRFPpVj66/LuzKsxs+Gb72OIvAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg3MzI1LzdCMzM0QTRBQUFF OTExRUZCNzIxQzI1REM0RjlBRTAyLzBYUkZQcFZqNjZfTHV6S3N4cy1HYjcyT0l2 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMFhSRlBwVmo2Nl9MdXpLc3hzLUdiNzJPSXZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg3 MzI1LzdCMzM0QTRBQUFFOTExRUZCNzIxQzI1REM0RjlBRTAyLzBYUkZQcFZqNjZf THV6S3N4cy1HYjcyT0l2QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIgI1P7kNpGp8WPJxHp8eLZX3V5jSR9himaBfEUw32Vm4aeYr6uaZoI4 c+Cok1nGI6C2i/r9x60N/yhUO8oc8nRhP/VYlo4QvHtl8W+rIqVKIF/gZ1/QHeq2 r0/Pqntjfw6/xjRsXZ+avVV2bbUyddS+G8TAyekhFk+1SKxxFhTKRbE0KHddLUzR OtzHqogvDd3waGSYsuf6tHf2Vys5p1qGWIYiNbhWT/IXK2NB+SDfTLnqL0CDUIup GpMtgkGm6t9rekzmay7xWEntK4/MZsMeZebDnAu4/6ajbF4Jwv9BR6pO2nqHVd0V LyuVtOKL1FN4e/nUbNXqZLqgS0HiT60= -----END CERTIFICATE-----Generated at Thu Jul 3 21:31:20 2025 by rpki-client