$ rpki-client -vvf rpki.apnic.net/member_repository/A918B936/4075121AF0CD11E5A4432E74C4F9AE02/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.mft File: cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.mft (raw, json) Hash identifier: yIgsy0fFh6+HaLByaeMkKCXBMV7igBvrxz5GRm3mSBk= Subject key identifier: 08:86:52:AC:DD:CE:09:FA:9E:B0:29:A8:F1:B8:B7:11:FD:A7:15:9E Authority key identifier: 70:45:A7:18:BB:EB:28:9F:18:D1:F9:30:FA:33:2D:63:32:D9:55:5E Certificate issuer: /CN=A918B936/serialNumber=7045A718BBEB289F18D1F930FA332D6332D9555E Certificate serial: 2116 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B936/4075121AF0CD11E5A4432E74C4F9AE02/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.mft Manifest number: 2116 Signing time: Wed 02 Jul 2025 16:03:19 +0000 Manifest this update: Wed 02 Jul 2025 16:03:19 +0000 Manifest next update: Wed 09 Jul 2025 16:03:19 +0000 Files and hashes: 1: cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.crl (hash: hfIrloa9ykpuQnQySOsys2x5lllJxcsJXPg2D2FeWPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B936/4075121AF0CD11E5A4432E74C4F9AE02/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.crl rsync://rpki.apnic.net/member_repository/A918B936/4075121AF0CD11E5A4432E74C4F9AE02/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8470 (0x2116) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B936, serialNumber=7045A718BBEB289F18D1F930FA332D6332D9555E Validity Not Before: Jul 2 16:03:19 2025 GMT Not After : Jul 9 16:03:19 2025 GMT Subject: CN=68655847-ccdc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:bd:1e:20:bb:77:f4:8f:f0:6d:85:d2:05:d4: 0f:e8:35:e0:a4:84:c9:8d:2a:8b:b0:f5:93:05:f0: 99:83:9e:40:0a:aa:40:5a:f6:15:f5:7f:b1:df:5c: d3:3c:58:03:cd:23:37:21:8e:f4:04:bd:cd:74:4e: e4:dd:c3:7a:7a:11:1c:84:17:5f:f8:5c:bf:47:ca: 04:ce:be:8d:93:69:7e:1e:06:26:1e:d8:f7:4a:f3: 57:90:23:6a:cd:36:a1:76:66:f3:fe:8d:a5:06:ba: 76:43:37:02:83:d5:5f:64:93:f7:d9:1b:76:cf:07: 48:d9:f5:eb:77:0e:6d:6d:0d:0c:3b:e2:ae:27:6d: 75:3f:63:1e:0c:2f:a3:42:75:57:13:35:de:92:b7: 0a:70:69:d4:1c:77:84:6c:18:2a:96:10:78:c2:20: c3:d4:00:6c:12:25:c4:ef:8f:33:59:f9:73:b6:71: f5:1f:84:0a:91:6a:36:59:ad:29:20:80:2f:85:3f: 86:56:52:f0:18:3f:24:ab:dd:8f:28:66:67:97:9d: d5:26:a2:fd:4c:89:91:57:a7:5b:46:21:25:fc:c5: 5f:1e:05:b7:06:5e:77:93:10:fa:cd:e2:bc:f1:54: ca:30:29:b1:21:9f:d2:0a:57:91:d7:b1:46:e3:2e: 85:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:86:52:AC:DD:CE:09:FA:9E:B0:29:A8:F1:B8:B7:11:FD:A7:15:9E X509v3 Authority Key Identifier: keyid:70:45:A7:18:BB:EB:28:9F:18:D1:F9:30:FA:33:2D:63:32:D9:55:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B936/4075121AF0CD11E5A4432E74C4F9AE02/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B936/4075121AF0CD11E5A4432E74C4F9AE02/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:a9:b9:3f:89:c9:42:3d:cd:e4:c5:cd:87:d7:ee:41:59:21: d1:31:01:5d:eb:b0:d2:fa:f5:f6:80:5e:fd:ff:2e:eb:88:04: 4c:95:be:59:e2:61:3a:e9:aa:ad:d7:77:cc:0b:54:fc:f6:b3: 67:72:0f:66:92:18:60:ed:d4:eb:3c:12:a5:40:cd:42:9e:e2: 10:10:0e:62:91:6f:35:f9:dc:63:3c:7b:9b:de:a1:bc:8b:9f: 70:f1:12:d1:ea:4d:fc:70:ba:0b:2e:14:ed:32:9c:d8:96:be: 41:14:49:b7:87:3a:48:e8:5f:4c:5c:33:3e:9f:69:d6:19:71: 00:ed:1d:d8:5d:b3:be:76:00:1d:5b:bc:1a:2e:a6:10:08:f8: cf:2d:55:ed:5f:4a:a0:0a:27:63:67:0f:32:d6:3b:10:2b:77: b9:eb:95:2f:7d:8a:26:ff:42:ed:83:4e:20:52:b2:49:5b:3d: d9:ef:31:92:a5:0e:25:01:55:33:c0:aa:70:b1:0c:8b:0f:94: 0e:1a:95:9e:ed:67:8a:95:62:b8:68:08:ec:6a:47:89:fe:4e: bf:5c:93:05:62:d0:cd:69:de:14:d1:1c:db:d0:33:e5:45:0c: 43:6a:36:87:dd:24:49:81:4c:49:79:68:e0:94:a1:b2:0d:48: 33:33:e4:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIRYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI5MzYxMTAvBgNVBAUTKDcwNDVBNzE4QkJFQjI4OUYxOEQxRjkzMEZBMzMyRDYz MzJEOTU1NUUwHhcNMjUwNzAyMTYwMzE5WhcNMjUwNzA5MTYwMzE5WjAYMRYwFAYD VQQDEw02ODY1NTg0Ny1jY2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwL0eILt39I/wbYXSBdQP6DXgpITJjSqLsPWTBfCZg55ACqpAWvYV9X+x31zT PFgDzSM3IY70BL3NdE7k3cN6ehEchBdf+Fy/R8oEzr6Nk2l+HgYmHtj3SvNXkCNq zTahdmbz/o2lBrp2QzcCg9VfZJP32Rt2zwdI2fXrdw5tbQ0MO+KuJ211P2MeDC+j QnVXEzXekrcKcGnUHHeEbBgqlhB4wiDD1ABsEiXE748zWflztnH1H4QKkWo2Wa0p IIAvhT+GVlLwGD8kq92PKGZnl53VJqL9TImRV6dbRiEl/MVfHgW3Bl53kxD6zeK8 8VTKMCmxIZ/SCleR17FG4y6F2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAiGUqzd zgn6nrApqPG4txH9pxWeMB8GA1UdIwQYMBaAFHBFpxi76yifGNH5MPozLWMy2VVe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjkzNi80MDc1MTIxQUYw Q0QxMUU1QTQ0MzJFNzRDNEY5QUUwMi9jRVduR0x2cktKOFkwZmt3LWpNdFl6TFpW VjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NFV25HTHZyS0o4WTBma3ctak10WXpMWlZWNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjkzNi80MDc1MTIxQUYwQ0QxMUU1QTQ0MzJFNzRDNEY5QUUwMi9jRVduR0x2cktK OFkwZmt3LWpNdFl6TFpWVjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmqbk/iclCPc3kxc2H1+5BWSHRMQFd67DS+vX2gF79/y7riARMlb5Z 4mE66aqt13fMC1T89rNncg9mkhhg7dTrPBKlQM1CnuIQEA5ikW81+dxjPHub3qG8 i59w8RLR6k38cLoLLhTtMpzYlr5BFEm3hzpI6F9MXDM+n2nWGXEA7R3YXbO+dgAd W7waLqYQCPjPLVXtX0qgCidjZw8y1jsQK3e565UvfYom/0Ltg04gUrJJWz3Z7zGS pQ4lAVUzwKpwsQyLD5QOGpWe7WeKlWK4aAjsakeJ/k6/XJMFYtDNad4U0Rzb0DPl RQxDajaH3SRJgUxJeWjglKGyDUgzM+QM -----END CERTIFICATE-----Generated at Thu Jul 3 23:21:32 2025 by rpki-client