$ rpki-client -vvf rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft File: iU_hE5i2ea6xsRixveZz4Yz26TQ.mft (raw, json) Hash identifier: 73ltSoiSDvyTj50mAwX4YNuvACGUNBJ5am/h/IkszEU= Subject key identifier: 86:25:57:E3:00:B7:EF:89:67:2A:9C:71:96:92:46:EE:3E:8D:F1:C3 Authority key identifier: 89:4F:E1:13:98:B6:79:AE:B1:B1:18:B1:BD:E6:73:E1:8C:F6:E9:34 Certificate issuer: /CN=A919C47E/serialNumber=894FE11398B679AEB1B118B1BDE673E18CF6E934 Certificate serial: 1382 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft Manifest number: 1352 Signing time: Wed 02 Jul 2025 17:13:32 +0000 Manifest this update: Wed 02 Jul 2025 17:13:31 +0000 Manifest next update: Wed 09 Jul 2025 17:13:31 +0000 Files and hashes: 1: iU_hE5i2ea6xsRixveZz4Yz26TQ.crl (hash: 0enQATuXSkQb0cv2SSjDRfqQ8Z0wsyzy1T3jD7Jh3tc=) 2: 1AE4CD843AF511F0B702C741C4F9AE02.roa (hash: opi/P1izP12wmgyZoTRlzEdUKVhs1E1PLUVMyFLXYNA=) 3: AF14F7EC516411F08E03714FC4F9AE02.roa (hash: sh0Y5QkQRJLw2PzMnrx92KrfNcOOqsL5LvYlvLQUjWk=) 4: 02BFF64EE6A811EFB5943878C4F9AE02.roa (hash: 2CAgcrLv4JGzDGMPlAonDkbaG+eLBXz0G6EKid4bHfs=) 5: B2E4A482E4D611EDB15EDE36C4F9AE02.roa (hash: d1W5JywmHjLqObvdK9tSNHN2RsDjV33NPPuORYy/wG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.crl rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:13:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4994 (0x1382) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C47E, serialNumber=894FE11398B679AEB1B118B1BDE673E18CF6E934 Validity Not Before: Jul 2 17:13:31 2025 GMT Not After : Jul 9 17:13:31 2025 GMT Subject: CN=686568bc-154f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:44:99:95:33:61:96:0f:13:d9:64:40:e2:2f: c3:37:8d:ef:66:0a:e6:22:ac:36:3a:0c:25:33:a2: 1c:f1:05:b5:0e:f7:c2:f7:5d:a7:ef:7c:24:f5:67: e8:b0:44:6e:cc:4b:ac:f7:15:2e:b3:33:91:bb:4b: c7:63:e3:06:2d:a3:c9:fa:c1:ec:c6:59:bc:e1:2c: 3f:8e:5e:2d:e9:55:8c:39:d4:74:ab:a3:96:28:eb: ec:3e:26:0b:df:01:bb:a8:db:03:32:2f:a9:be:46: 2f:e9:f7:5c:70:e5:0e:87:25:ec:57:3e:0e:11:75: 11:8c:76:39:1c:87:da:8d:26:1b:ce:dc:00:6b:d8: 9d:c0:61:fe:db:cc:15:3f:cd:ac:68:c8:22:09:55: c3:f0:5f:b4:e9:23:7b:c3:9c:e6:96:a3:6b:42:76: 09:68:61:8b:22:9e:85:88:6f:34:11:27:27:e1:75: 54:4e:68:f0:9a:e5:55:30:c5:dc:5a:46:f9:7b:5d: 17:e2:6b:f0:6c:76:b9:a6:6b:e2:14:7b:ae:b2:96: c9:95:fc:98:21:3b:b9:10:09:ac:57:6b:ae:40:2a: ce:f5:e8:19:d3:7c:af:28:01:4d:e8:1c:20:ff:46: 19:ea:4d:2c:ae:1d:1c:d4:28:ff:40:b2:77:aa:aa: 01:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:25:57:E3:00:B7:EF:89:67:2A:9C:71:96:92:46:EE:3E:8D:F1:C3 X509v3 Authority Key Identifier: keyid:89:4F:E1:13:98:B6:79:AE:B1:B1:18:B1:BD:E6:73:E1:8C:F6:E9:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:f7:c5:25:76:a9:25:28:98:fd:a1:44:c2:55:7b:15:39:63: a1:eb:bc:0d:82:f8:31:cd:c8:a2:14:07:73:a3:19:72:ff:08: f2:a4:d2:56:d9:22:5b:41:11:a5:79:11:38:3f:9f:8c:13:29: 5d:6a:2e:e4:0a:51:ca:0d:9a:b6:8d:b8:39:eb:e7:ae:31:a1: 10:3d:5b:68:72:54:01:a9:25:99:d4:c6:2d:68:7a:82:ef:8b: a2:23:57:fe:46:f1:f5:5e:8f:fc:73:92:b7:c5:b1:72:b7:f0: a2:14:cf:7a:95:9e:47:7f:63:3a:e0:c6:50:ae:19:1a:92:b2: e4:92:30:0a:e3:20:f1:93:ff:a6:29:e5:a8:08:ba:c0:b9:2a: c3:ed:8e:7f:c4:2f:77:08:78:ee:73:30:93:c6:f8:1b:23:97: 3a:88:64:04:fc:54:ee:fd:04:cf:b7:31:ae:74:0c:ec:45:4b: c8:cb:1a:2e:9e:80:d0:9e:64:73:a7:75:e6:0c:69:e3:25:d7: 50:9d:ab:aa:0d:74:6d:e6:a0:2f:22:cd:f3:ff:7b:6a:bc:93: 64:75:ea:94:dc:0a:4e:3d:c4:43:01:c7:24:d3:e2:7d:7b:38: cc:b6:77:80:9d:ea:df:bf:cf:1f:b5:f0:ac:05:ff:fd:98:79: 98:bf:43:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE4IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM0N0UxMTAvBgNVBAUTKDg5NEZFMTEzOThCNjc5QUVCMUIxMThCMUJERTY3M0Ux OENGNkU5MzQwHhcNMjUwNzAyMTcxMzMxWhcNMjUwNzA5MTcxMzMxWjAYMRYwFAYD VQQDEw02ODY1NjhiYy0xNTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkSZlTNhlg8T2WRA4i/DN43vZgrmIqw2OgwlM6Ic8QW1DvfC912n73wk9Wfo sERuzEus9xUuszORu0vHY+MGLaPJ+sHsxlm84Sw/jl4t6VWMOdR0q6OWKOvsPiYL 3wG7qNsDMi+pvkYv6fdccOUOhyXsVz4OEXURjHY5HIfajSYbztwAa9idwGH+28wV P82saMgiCVXD8F+06SN7w5zmlqNrQnYJaGGLIp6FiG80EScn4XVUTmjwmuVVMMXc Wkb5e10X4mvwbHa5pmviFHuuspbJlfyYITu5EAmsV2uuQCrO9egZ03yvKAFN6Bwg /0YZ6k0srh0c1Cj/QLJ3qqoBZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIYlV+MA t++JZyqccZaSRu4+jfHDMB8GA1UdIwQYMBaAFIlP4ROYtnmusbEYsb3mc+GM9uk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzQ3RS9CQ0VERjQ0MkIw QkYxMUU4ODYzOTIyMzdDNEY5QUUwMi9pVV9oRTVpMmVhNnhzUml4dmVaejRZejI2 VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVX2hFNWkyZWE2eHNSaXh2ZVp6NFl6MjZUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzQ3RS9CQ0VERjQ0MkIwQkYxMUU4ODYzOTIyMzdDNEY5QUUwMi9pVV9oRTVpMmVh NnhzUml4dmVaejRZejI2VFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB598UldqklKJj9oUTCVXsVOWOh67wNgvgxzciiFAdzoxly/wjypNJW 2SJbQRGleRE4P5+MEyldai7kClHKDZq2jbg56+euMaEQPVtoclQBqSWZ1MYtaHqC 74uiI1f+RvH1Xo/8c5K3xbFyt/CiFM96lZ5Hf2M64MZQrhkakrLkkjAK4yDxk/+m KeWoCLrAuSrD7Y5/xC93CHjuczCTxvgbI5c6iGQE/FTu/QTPtzGudAzsRUvIyxou noDQnmRzp3XmDGnjJddQnauqDXRt5qAvIs3z/3tqvJNkdeqU3ApOPcRDAcck0+J9 ezjMtneAnerfv88ftfCsBf/9mHmYv0Ox -----END CERTIFICATE-----Generated at Thu Jul 3 20:56:53 2025 by rpki-client