$ rpki-client -vvf rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft File: ctH2ecltIFwtRxyUqA3vYNkRJhw.mft (raw, json) Hash identifier: ySc5SJWa+oz102JZgsXr8PLUq/5YrcZEjdBMtbR4vCk= Subject key identifier: 6D:B6:48:DE:98:AF:39:42:4B:35:21:C9:C5:F6:73:CF:40:B6:AF:EB Authority key identifier: 72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C Certificate issuer: /CN=A918E85E/serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Certificate serial: EB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft Manifest number: E9 Signing time: Thu 03 Jul 2025 05:31:55 +0000 Manifest this update: Thu 03 Jul 2025 05:31:55 +0000 Manifest next update: Thu 10 Jul 2025 05:31:55 +0000 Files and hashes: 1: ctH2ecltIFwtRxyUqA3vYNkRJhw.crl (hash: QXDDCZNaz6JJ3oSF5LixIgnPVjTGNcmHqRSNelrjpEc=) 2: 255842A2EFF411EE853CC833C4F9AE02.roa (hash: 0a/19rU1zoR8HPG3b9KrbOC4Srzy59tAkTtlFRC+aqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 235 (0xeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E85E, serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Validity Not Before: Jul 3 05:31:55 2025 GMT Not After : Jul 10 05:31:55 2025 GMT Subject: CN=686615cb-347f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c6:b2:52:b7:db:29:77:34:61:63:95:53:05: eb:df:f4:d2:4e:f8:35:f5:4d:ed:69:f3:aa:2f:01: 94:83:6c:ba:13:a1:56:88:de:3d:c3:dd:f8:61:e4: 33:0e:86:12:a8:69:43:d4:db:8b:f2:46:5a:b4:5c: 17:89:1f:bb:aa:0e:6d:09:53:2a:8f:ec:d3:12:b4: 28:89:a4:ef:ac:1a:04:dd:da:60:1b:45:7a:ca:de: 33:ca:3e:3b:91:18:56:b2:5b:df:69:93:5e:12:74: 08:20:b9:ae:26:64:a0:c6:f1:8e:a9:cb:18:f6:6c: d3:4e:07:f0:ec:64:19:64:3d:92:d9:a0:cc:f4:cf: 50:73:e1:db:10:ce:eb:c7:19:e0:08:ea:b1:61:41: 6f:e9:83:c1:8e:ca:a2:ad:12:a0:ab:de:10:ed:13: 1e:2f:97:b1:a0:c6:81:04:9b:a9:71:2a:ad:22:82: 4c:e8:a8:81:2e:b6:61:cd:7f:7c:4a:07:63:19:6a: b3:9d:d8:2a:bc:f9:7b:73:63:ec:e8:69:08:01:8c: c2:a1:18:51:1c:ca:da:c0:bd:ed:9e:5a:c0:0c:9e: d6:3f:87:0e:f6:0e:b2:6e:b8:60:a8:4a:b4:07:cf: 4b:a2:48:e7:36:8d:04:f9:fd:ab:68:5a:4e:3a:4a: 37:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:B6:48:DE:98:AF:39:42:4B:35:21:C9:C5:F6:73:CF:40:B6:AF:EB X509v3 Authority Key Identifier: keyid:72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:8f:e1:9b:aa:e9:b3:06:aa:62:dc:db:2c:60:f1:fd:82:3e: bf:47:47:81:57:35:18:94:28:83:eb:e4:85:02:3f:e6:45:fa: aa:f6:c9:3e:04:d6:6e:dc:e4:c8:b3:32:13:28:b3:04:cc:50: 66:d6:89:ce:88:43:23:89:82:c4:7b:26:ab:6c:c1:78:a9:48: 7b:85:e6:de:63:0b:86:c0:64:23:72:5b:e1:94:b2:a0:2a:13: 2d:fd:57:be:9f:5c:45:77:fd:16:58:bf:54:45:cf:93:02:ad: 0b:74:c7:a8:e8:53:25:d4:4e:b4:c1:3c:1e:d6:9c:70:62:37: 2a:b9:80:df:02:e8:15:3c:7f:75:89:84:ae:57:7a:20:d6:8f: 0f:07:cc:f3:72:79:dd:20:50:2f:97:10:b1:67:b7:b6:26:90: 7c:39:a9:ae:a5:2e:55:6e:ae:e4:57:5b:bb:41:97:eb:20:fc: 17:d9:13:1d:76:9a:b3:6f:6a:4e:ee:1f:00:49:13:59:fe:0f: 63:9f:62:85:b6:2b:e2:f5:68:d4:e7:bb:ab:19:a0:fd:cd:2b: 7a:09:dc:ad:2d:82:58:6c:00:f2:bb:b3:71:46:c6:df:33:5c: 8f:05:cc:6c:cc:d9:f6:38:16:0b:56:54:56:91:42:05:8c:bd: a6:2e:b0:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU4NUUxMTAvBgNVBAUTKDcyRDFGNjc5Qzk2RDIwNUMyRDQ3MUM5NEE4MERFRjYw RDkxMTI2MUMwHhcNMjUwNzAzMDUzMTU1WhcNMjUwNzEwMDUzMTU1WjAYMRYwFAYD VQQDEw02ODY2MTVjYi0zNDdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz8ayUrfbKXc0YWOVUwXr3/TSTvg19U3tafOqLwGUg2y6E6FWiN49w934YeQz DoYSqGlD1NuL8kZatFwXiR+7qg5tCVMqj+zTErQoiaTvrBoE3dpgG0V6yt4zyj47 kRhWslvfaZNeEnQIILmuJmSgxvGOqcsY9mzTTgfw7GQZZD2S2aDM9M9Qc+HbEM7r xxngCOqxYUFv6YPBjsqirRKgq94Q7RMeL5exoMaBBJupcSqtIoJM6KiBLrZhzX98 SgdjGWqzndgqvPl7c2Ps6GkIAYzCoRhRHMrawL3tnlrADJ7WP4cO9g6ybrhgqEq0 B89LokjnNo0E+f2raFpOOko3dQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG22SN6Y rzlCSzUhycX2c89Atq/rMB8GA1UdIwQYMBaAFHLR9nnJbSBcLUcclKgN72DZESYc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTg1RS81QkMxMjY3QUVG RjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi9jdEgyZWNsdElGd3RSeHlVcUEzdllOa1JK aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2N0SDJlY2x0SUZ3dFJ4eVVxQTN2WU5rUkpody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTg1RS81QkMxMjY3QUVGRjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi9jdEgyZWNsdElG d3RSeHlVcUEzdllOa1JKaHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaj+GbqumzBqpi3NssYPH9gj6/R0eBVzUYlCiD6+SFAj/mRfqq9sk+ BNZu3OTIszITKLMEzFBm1onOiEMjiYLEeyarbMF4qUh7hebeYwuGwGQjclvhlLKg KhMt/Ve+n1xFd/0WWL9URc+TAq0LdMeo6FMl1E60wTwe1pxwYjcquYDfAugVPH91 iYSuV3og1o8PB8zzcnndIFAvlxCxZ7e2JpB8OamupS5Vbq7kV1u7QZfrIPwX2RMd dpqzb2pO7h8ASRNZ/g9jn2KFtivi9WjU57urGaD9zSt6CdytLYJYbADyu7NxRsbf M1yPBcxszNn2OBYLVlRWkUIFjL2mLrCl -----END CERTIFICATE-----Generated at Fri Jul 4 15:08:32 2025 by rpki-client