$ rpki-client -vvf rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft File: 40tPgNnj9wC8rExSxasj61t-37s.mft (raw, json) Hash identifier: UXUI1VBFMwQcV1oOGJMMXmMJ1zd+PNRom1VVjQDQMOQ= Subject key identifier: F5:A1:C9:4B:FB:EC:02:25:CE:4A:85:8E:C3:CB:48:54:49:6B:04:8A Authority key identifier: E3:4B:4F:80:D9:E3:F7:00:BC:AC:4C:52:C5:AB:23:EB:5B:7E:DF:BB Certificate issuer: /CN=A918E4B7/serialNumber=E34B4F80D9E3F700BCAC4C52C5AB23EB5B7EDFBB Certificate serial: 0144 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft Manifest number: 0140 Signing time: Thu 03 Jul 2025 00:03:40 +0000 Manifest this update: Thu 03 Jul 2025 00:03:39 +0000 Manifest next update: Thu 10 Jul 2025 00:03:39 +0000 Files and hashes: 1: 40tPgNnj9wC8rExSxasj61t-37s.crl (hash: A3QWaVsaT4mLXalT5MO6VuiEOlV8Kv7tQ2gw9Z71Bz8=) 2: 1E4ABC8C50C111EFA64C2437C4F9AE02.roa (hash: +idkc0Y+TplJvB7T7xrVzyMgw/UlYDqH1h1gbH9ycfU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.crl rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:03:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 324 (0x144) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E4B7, serialNumber=E34B4F80D9E3F700BCAC4C52C5AB23EB5B7EDFBB Validity Not Before: Jul 3 00:03:39 2025 GMT Not After : Jul 10 00:03:39 2025 GMT Subject: CN=6865c8db-09b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f9:dc:0d:69:0e:b7:48:7b:3a:84:7c:67:e1: 0f:09:3e:ca:00:73:b4:d3:e5:d4:0f:b8:32:f5:0f: dc:07:50:33:77:43:ca:ca:31:29:46:51:76:ac:95: ee:85:22:f3:14:81:fe:a9:b4:3d:02:8c:6d:a3:56: c3:ce:cc:cf:24:5e:2e:ba:b6:ef:4a:84:91:66:1e: 90:29:d4:2d:1c:48:11:ce:a8:eb:d0:d9:7b:aa:a1: 86:0b:58:8b:25:5a:4b:cb:3d:45:d8:0e:32:75:29: 41:44:af:d5:f7:97:99:1d:50:aa:b1:5b:23:62:73: e9:27:e3:07:4e:e6:a4:62:30:d3:40:8b:df:e1:f3: e6:ae:01:b9:72:4a:df:45:2a:5e:14:9c:1a:55:a9: 98:c5:8d:f6:e6:6e:01:08:07:a4:15:aa:41:ed:2c: f6:9b:6f:d7:84:e3:a3:d1:76:1f:2d:04:ff:83:ff: af:4f:08:52:19:b0:a5:fd:66:9a:c6:8e:30:9b:b7: 4d:b8:da:cd:15:9f:8b:37:87:fb:58:d4:65:43:34: 11:c7:7c:f3:12:2f:47:ae:9a:07:7f:5d:d5:e3:99: 9a:18:fe:22:4e:20:0c:35:45:12:b2:9f:ed:3f:2e: 82:dc:ce:0d:34:33:72:b7:cd:5a:fa:5c:b4:d3:e4: ac:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:A1:C9:4B:FB:EC:02:25:CE:4A:85:8E:C3:CB:48:54:49:6B:04:8A X509v3 Authority Key Identifier: keyid:E3:4B:4F:80:D9:E3:F7:00:BC:AC:4C:52:C5:AB:23:EB:5B:7E:DF:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:44:e7:b2:88:5a:e8:f6:80:c0:19:4d:39:55:18:85:60:87: 29:8d:c2:d3:53:f9:27:44:fa:f0:b0:1d:a2:72:5b:38:d7:7e: dc:5a:c4:d0:96:7f:56:45:da:6c:b7:5e:48:ff:31:5a:d1:39: 3f:8d:06:e9:05:fa:e4:76:46:34:51:b9:ce:aa:53:ec:b6:c1: af:ea:30:d2:44:f5:62:9a:37:9f:20:66:7f:4a:70:65:f0:b7: 8a:4e:d6:42:8b:5c:d5:1a:db:22:42:66:f6:13:16:60:93:fc: 1d:ce:90:ff:f9:36:98:66:62:12:bb:13:5e:d1:d9:92:c5:9b: 6e:2e:45:0d:a7:fa:74:68:cf:77:23:16:f0:1e:93:e3:68:84: 6c:81:91:e9:4b:7b:3c:60:99:83:50:89:fc:61:68:1b:23:5d: cf:39:5b:4c:98:c0:df:a6:64:b6:a5:f1:a3:d8:27:a1:85:11: 72:fd:3a:7e:35:d2:f6:e4:01:cb:4c:85:1e:2a:68:c2:9d:7a: fb:32:53:ed:64:5b:50:36:85:a1:91:26:09:11:e8:9c:41:2c: 6f:7e:c6:00:82:ae:41:27:6a:21:66:65:3d:1d:0c:a9:06:e9: a3:3a:98:50:7a:ad:28:74:dd:86:81:31:82:43:4f:84:2e:f9: cd:ed:ea:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU0QjcxMTAvBgNVBAUTKEUzNEI0RjgwRDlFM0Y3MDBCQ0FDNEM1MkM1QUIyM0VC NUI3RURGQkIwHhcNMjUwNzAzMDAwMzM5WhcNMjUwNzEwMDAwMzM5WjAYMRYwFAYD VQQDEw02ODY1YzhkYi0wOWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp/ncDWkOt0h7OoR8Z+EPCT7KAHO00+XUD7gy9Q/cB1Azd0PKyjEpRlF2rJXu hSLzFIH+qbQ9Aoxto1bDzszPJF4uurbvSoSRZh6QKdQtHEgRzqjr0Nl7qqGGC1iL JVpLyz1F2A4ydSlBRK/V95eZHVCqsVsjYnPpJ+MHTuakYjDTQIvf4fPmrgG5ckrf RSpeFJwaVamYxY325m4BCAekFapB7Sz2m2/XhOOj0XYfLQT/g/+vTwhSGbCl/Waa xo4wm7dNuNrNFZ+LN4f7WNRlQzQRx3zzEi9HrpoHf13V45maGP4iTiAMNUUSsp/t Py6C3M4NNDNyt81a+ly00+SsyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPWhyUv7 7AIlzkqFjsPLSFRJawSKMB8GA1UdIwQYMBaAFONLT4DZ4/cAvKxMUsWrI+tbft+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTRCNy85NkU2Njc1QTc4 NEUxMUVFQjE5QUQzNERDNEY5QUUwMi80MHRQZ05uajl3QzhyRXhTeGFzajYxdC0z N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzQwdFBnTm5qOXdDOHJFeFN4YXNqNjF0LTM3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTRCNy85NkU2Njc1QTc4NEUxMUVFQjE5QUQzNERDNEY5QUUwMi80MHRQZ05uajl3 QzhyRXhTeGFzajYxdC0zN3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnROeyiFro9oDAGU05VRiFYIcpjcLTU/knRPrwsB2icls4137cWsTQ ln9WRdpst15I/zFa0Tk/jQbpBfrkdkY0UbnOqlPstsGv6jDSRPVimjefIGZ/SnBl 8LeKTtZCi1zVGtsiQmb2ExZgk/wdzpD/+TaYZmISuxNe0dmSxZtuLkUNp/p0aM93 IxbwHpPjaIRsgZHpS3s8YJmDUIn8YWgbI13POVtMmMDfpmS2pfGj2CehhRFy/Tp+ NdL25AHLTIUeKmjCnXr7MlPtZFtQNoWhkSYJEeicQSxvfsYAgq5BJ2ohZmU9HQyp BumjOphQeq0odN2GgTGCQ0+ELvnN7er2 -----END CERTIFICATE-----Generated at Thu Jul 3 09:42:31 2025 by rpki-client