$ rpki-client -vvf rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft File: U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft (raw, json) Hash identifier: XDYS5pp8xy66XapnInhzoFiNTvldPXVi9o76xEw4VrI= Subject key identifier: 5C:70:1E:01:14:08:3D:B3:0A:24:A5:3B:AD:38:29:6B:9E:76:1D:8A Authority key identifier: 53:C0:8B:DA:04:BC:05:32:21:EB:27:3A:A2:15:CC:D9:5C:00:C3:92 Certificate issuer: /CN=A9187325/serialNumber=53C08BDA04BC053221EB273AA215CCD95C00C392 Certificate serial: 70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft Manifest number: 70 Signing time: Tue 01 Jul 2025 07:37:33 +0000 Manifest this update: Tue 01 Jul 2025 07:37:32 +0000 Manifest next update: Tue 08 Jul 2025 07:37:32 +0000 Files and hashes: 1: U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl (hash: bE/n/MjH90giuOSu1UxKUNmrBClBSBnSCSIW+u4brUs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:37:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187325, serialNumber=53C08BDA04BC053221EB273AA215CCD95C00C392 Validity Not Before: Jul 1 07:37:32 2025 GMT Not After : Jul 8 07:37:32 2025 GMT Subject: CN=6863903c-2c18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:35:3e:28:32:a7:51:04:23:bf:11:dd:87:ff: c7:56:06:eb:f9:d9:5e:33:8d:22:ec:3f:50:ad:a8: 0a:5b:42:14:97:df:9e:c1:3b:96:7c:42:44:d5:4b: a2:28:49:0c:e0:70:92:88:ef:18:bc:cd:b0:86:ca: 23:63:05:c7:fc:d6:53:57:a8:45:cb:47:77:55:d6: 43:dc:22:af:89:24:45:cc:17:52:dc:0b:fc:95:f5: 4f:e3:3c:76:24:d6:56:d2:2c:68:bc:dd:17:78:dd: 14:e3:1e:6f:ce:f8:50:25:c6:4b:3d:06:67:48:fe: 03:54:0c:e5:93:ec:b9:84:06:2d:6d:c7:7e:2b:f5: 4d:a1:bb:27:46:f8:f6:e9:a5:06:9a:66:22:b2:12: 9e:7c:8c:98:a1:fc:22:19:8d:10:e9:eb:04:e8:13: bc:11:a5:0e:60:bf:50:02:68:18:67:9d:ef:d5:b8: 23:48:f0:97:e2:8b:c4:eb:ac:f9:d1:94:28:66:09: 76:b0:a4:00:a0:c6:af:47:79:3f:dc:7e:fe:37:40: de:e4:91:36:0e:bb:ee:32:6e:bf:8e:d1:af:ed:fc: 3f:70:d7:52:79:e2:50:79:b8:ac:08:a9:70:62:53: ea:10:c0:f7:f3:cc:91:36:cf:44:db:64:2b:49:ba: 79:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:70:1E:01:14:08:3D:B3:0A:24:A5:3B:AD:38:29:6B:9E:76:1D:8A X509v3 Authority Key Identifier: keyid:53:C0:8B:DA:04:BC:05:32:21:EB:27:3A:A2:15:CC:D9:5C:00:C3:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:c7:12:69:30:a2:4b:13:1e:58:b3:f0:cc:88:79:fd:ae:a6: 7b:1f:bd:ee:18:6e:41:7b:5e:7d:d0:fc:da:f1:79:81:31:bd: d3:5f:80:2a:95:5e:49:61:d2:c3:2f:1f:5b:a3:8f:66:7b:34: 45:cc:8d:cb:8e:e6:4e:c3:59:8a:a6:71:88:79:e2:d3:3d:11: 35:22:8a:b6:28:a2:b2:2a:20:e0:62:98:99:2e:84:84:4e:d9: 6b:01:27:70:75:bd:be:4a:07:25:be:bd:a6:30:1f:af:c0:8f: e6:d4:82:40:99:1c:b4:81:9b:a9:e3:b1:6a:59:08:11:01:6d: 28:d1:74:13:77:71:a0:62:dd:e6:d9:e3:8c:fa:de:6b:ce:7e: 3c:ed:08:9d:07:9f:4b:da:e3:03:2f:7d:96:bd:38:42:54:10: 6a:bc:5f:87:37:10:41:0e:36:7d:4e:db:1b:76:5a:fb:bc:6c: 53:64:99:7b:cc:c6:17:97:95:39:16:d7:de:1a:02:90:d9:b8: 55:bd:52:0a:91:f8:6c:fa:2d:bd:6e:77:b6:f6:6a:c9:69:9f: 63:d4:b5:d1:35:69:8b:82:a1:62:f8:d5:82:34:f4:0b:6d:e9: 06:b2:90:62:78:67:ed:04:5b:d2:60:3b:46:4e:19:a5:e5:ae: d8:a4:00:54 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NzMyNTExMC8GA1UEBRMoNTNDMDhCREEwNEJDMDUzMjIxRUIyNzNBQTIxNUNDRDk1 QzAwQzM5MjAeFw0yNTA3MDEwNzM3MzJaFw0yNTA3MDgwNzM3MzJaMBgxFjAUBgNV BAMTDTY4NjM5MDNjLTJjMTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCmNT4oMqdRBCO/Ed2H/8dWBuv52V4zjSLsP1CtqApbQhSX357BO5Z8QkTVS6Io SQzgcJKI7xi8zbCGyiNjBcf81lNXqEXLR3dV1kPcIq+JJEXMF1LcC/yV9U/jPHYk 1lbSLGi83Rd43RTjHm/O+FAlxks9BmdI/gNUDOWT7LmEBi1tx34r9U2huydG+Pbp pQaaZiKyEp58jJih/CIZjRDp6wToE7wRpQ5gv1ACaBhnne/VuCNI8Jfii8TrrPnR lChmCXawpACgxq9HeT/cfv43QN7kkTYOu+4ybr+O0a/t/D9w11J54lB5uKwIqXBi U+oQwPfzzJE2z0TbZCtJunn7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXHAeARQI PbMKJKU7rTgpa552HYowHwYDVR0jBBgwFoAUU8CL2gS8BTIh6yc6ohXM2VwAw5Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg3MzI1LzgzMzhDNEQ2QUFF OTExRUZCNzIxQzI1REM0RjlBRTAyL1U4Q0wyZ1M4QlRJaDZ5YzZvaFhNMlZ3QXc1 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVThDTDJnUzhCVEloNnljNm9oWE0yVndBdzVJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg3 MzI1LzgzMzhDNEQ2QUFFOTExRUZCNzIxQzI1REM0RjlBRTAyL1U4Q0wyZ1M4QlRJ aDZ5YzZvaFhNMlZ3QXc1SS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFDHEmkwoksTHliz8MyIef2upnsfve4YbkF7Xn3Q/NrxeYExvdNfgCqV Xklh0sMvH1ujj2Z7NEXMjcuO5k7DWYqmcYh54tM9ETUiirYoorIqIOBimJkuhIRO 2WsBJ3B1vb5KByW+vaYwH6/Aj+bUgkCZHLSBm6njsWpZCBEBbSjRdBN3caBi3ebZ 44z63mvOfjztCJ0Hn0va4wMvfZa9OEJUEGq8X4c3EEEONn1O2xt2Wvu8bFNkmXvM xheXlTkW194aApDZuFW9UgqR+Gz6Lb1ud7b2aslpn2PUtdE1aYuCoWL41YI09Att 6QaykGJ4Z+0EW9JgO0ZOGaXlrtikAFQ= -----END CERTIFICATE-----Generated at Tue Jul 1 20:05:16 2025 by rpki-client