$ rpki-client -vvf rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft File: 32d9hpNHe5Kh6f58IEImls6oYJ0.mft (raw, json) Hash identifier: cUmJurT6cNFkuSVSYOTPsTKx+D/s25zEg2LozWmAX+Q= Subject key identifier: 38:45:21:7D:0F:E3:96:F3:DC:ED:9E:16:1C:76:A3:61:36:0C:81:9D Authority key identifier: DF:67:7D:86:93:47:7B:92:A1:E9:FE:7C:20:42:26:96:CE:A8:60:9D Certificate issuer: /CN=A918BDA2/serialNumber=DF677D8693477B92A1E9FE7C20422696CEA8609D Certificate serial: 0327 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft Manifest number: 0322 Signing time: Tue 01 Jul 2025 01:45:24 +0000 Manifest this update: Tue 01 Jul 2025 01:45:24 +0000 Manifest next update: Tue 08 Jul 2025 01:45:24 +0000 Files and hashes: 1: 32d9hpNHe5Kh6f58IEImls6oYJ0.crl (hash: W484jbYhdai+X4D+ByAwfxMx8mpld/oSe4THIwALT0A=) 2: 756558C6D19611ECB75A996BC4F9AE02.roa (hash: jBN+GZ5K5hQcx74ci+Zj74gtJO93V93U4mPbsdd8SsY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.crl rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 01:45:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 807 (0x327) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BDA2, serialNumber=DF677D8693477B92A1E9FE7C20422696CEA8609D Validity Not Before: Jul 1 01:45:24 2025 GMT Not After : Jul 8 01:45:24 2025 GMT Subject: CN=68633db4-098a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:0f:43:9c:c4:86:ad:2c:39:3a:1d:a4:df:8f: f4:88:f0:24:db:42:d8:d3:dd:32:6f:3f:6b:7e:86: 9b:5e:e3:29:56:cc:28:1b:93:56:d0:15:12:d6:7d: 5c:4c:27:ae:87:f6:85:77:d6:a9:a3:e2:30:6a:4a: 35:9d:9c:3a:64:30:ea:80:bc:84:a5:d4:4e:62:18: b2:6d:61:4b:36:85:df:0a:63:a7:b0:51:4e:95:fd: 90:b2:6a:9e:89:44:6a:80:ce:f8:f7:8f:c5:ea:d1: 24:0a:9b:f3:18:95:2c:3d:82:5b:e7:f7:22:2b:d5: 9e:94:ba:01:a9:db:e9:2a:1f:5e:f3:37:f4:43:58: 92:ec:23:f1:79:21:61:4c:93:9f:b9:ba:f4:82:96: ff:0d:18:4e:fc:ba:26:c6:69:7f:d5:58:05:2c:e2: aa:10:ba:0d:c7:9a:73:a3:1e:fc:c4:3f:fd:fe:21: 85:9d:66:c4:d1:85:97:14:34:67:7a:d2:bd:9b:41: 90:18:86:60:f3:51:6f:97:3e:1d:b7:2b:43:af:e2: 56:f3:23:3d:35:84:30:40:97:e2:9c:e1:7f:14:86: 1f:25:cc:c1:a9:9a:cc:4c:81:82:4d:11:13:5c:a7: a9:1e:fe:13:17:a4:5b:e7:aa:21:3f:48:6e:55:de: a9:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:45:21:7D:0F:E3:96:F3:DC:ED:9E:16:1C:76:A3:61:36:0C:81:9D X509v3 Authority Key Identifier: keyid:DF:67:7D:86:93:47:7B:92:A1:E9:FE:7C:20:42:26:96:CE:A8:60:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:2e:9f:fe:f2:72:83:80:4b:d7:93:ad:cc:d8:e3:42:dd:6c: 0c:42:59:91:96:0c:12:52:3c:35:66:40:74:42:60:90:dd:da: 48:e1:42:73:23:fa:0c:91:eb:83:77:ee:6f:4d:b9:ec:1b:8c: f9:ac:b0:3f:5c:61:97:da:9c:3c:2d:f5:ed:8b:11:09:ce:ec: 27:c4:9c:8e:90:50:b9:12:ac:b4:b1:e1:ae:54:43:57:dc:e6: f1:15:3f:9c:28:2c:28:7b:11:64:d1:45:aa:2a:21:69:b8:19: 42:0f:9e:23:3d:5b:87:53:1b:6a:4f:f6:1a:4d:d2:5f:69:42: 92:1b:25:76:b3:c8:cd:a3:73:24:e6:99:dd:cb:1f:75:84:a9: 5d:31:c7:5f:4a:50:00:52:31:fd:f2:9b:68:04:62:51:5f:14: 50:0c:ec:18:31:22:66:e2:c8:5c:f0:8a:41:1a:28:d1:c6:7b: 15:ec:02:30:37:ba:73:78:c7:c9:5e:c6:9b:a8:bb:85:87:c0: 6d:52:dd:4c:5f:a9:48:4b:5c:98:84:b3:e4:ab:07:5b:c4:a9: f2:21:28:60:6f:41:03:27:40:24:6e:3a:be:8a:b7:76:b4:4a: 2f:69:76:a5:be:ca:0a:ab:21:4f:50:49:09:67:3c:94:a9:bb: 4e:f9:a1:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAycwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJEQTIxMTAvBgNVBAUTKERGNjc3RDg2OTM0NzdCOTJBMUU5RkU3QzIwNDIyNjk2 Q0VBODYwOUQwHhcNMjUwNzAxMDE0NTI0WhcNMjUwNzA4MDE0NTI0WjAYMRYwFAYD VQQDEw02ODYzM2RiNC0wOThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6A9DnMSGrSw5Oh2k34/0iPAk20LY090ybz9rfoabXuMpVswoG5NW0BUS1n1c TCeuh/aFd9apo+Iwako1nZw6ZDDqgLyEpdROYhiybWFLNoXfCmOnsFFOlf2Qsmqe iURqgM7494/F6tEkCpvzGJUsPYJb5/ciK9WelLoBqdvpKh9e8zf0Q1iS7CPxeSFh TJOfubr0gpb/DRhO/Lomxml/1VgFLOKqELoNx5pzox78xD/9/iGFnWbE0YWXFDRn etK9m0GQGIZg81Fvlz4dtytDr+JW8yM9NYQwQJfinOF/FIYfJczBqZrMTIGCTRET XKepHv4TF6Rb56ohP0huVd6pOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDhFIX0P 45bz3O2eFhx2o2E2DIGdMB8GA1UdIwQYMBaAFN9nfYaTR3uSoen+fCBCJpbOqGCd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkRBMi83MEU2OUMxOEQw RUUxMUVDQkM1QzQ5NzNDNEY5QUUwMi8zMmQ5aHBOSGU1S2g2ZjU4SUVJbWxzNm9Z SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMyZDlocE5IZTVLaDZmNThJRUltbHM2b1lKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QkRBMi83MEU2OUMxOEQwRUUxMUVDQkM1QzQ5NzNDNEY5QUUwMi8zMmQ5aHBOSGU1 S2g2ZjU4SUVJbWxzNm9ZSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1Lp/+8nKDgEvXk63M2ONC3WwMQlmRlgwSUjw1ZkB0QmCQ3dpI4UJz I/oMkeuDd+5vTbnsG4z5rLA/XGGX2pw8LfXtixEJzuwnxJyOkFC5Eqy0seGuVENX 3ObxFT+cKCwoexFk0UWqKiFpuBlCD54jPVuHUxtqT/YaTdJfaUKSGyV2s8jNo3Mk 5pndyx91hKldMcdfSlAAUjH98ptoBGJRXxRQDOwYMSJm4shc8IpBGijRxnsV7AIw N7pzeMfJXsabqLuFh8BtUt1MX6lIS1yYhLPkqwdbxKnyIShgb0EDJ0Akbjq+ird2 tEovaXalvsoKqyFPUEkJZzyUqbtO+aGp -----END CERTIFICATE-----Generated at Tue Jul 1 16:00:16 2025 by rpki-client