$ rpki-client -vvf rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.mft File: Ih9QFD4dX5PEzTHJ_ueiTegB8tc.mft (raw, json) Hash identifier: PV0raf7Sih3BKwVfJDJGO0xw9BDqbbffKoR+owPem3A= Subject key identifier: D8:E2:8F:28:E2:DA:1A:8D:43:E3:38:76:A9:59:4F:35:C9:42:43:AB Authority key identifier: 22:1F:50:14:3E:1D:5F:93:C4:CD:31:C9:FE:E7:A2:4D:E8:01:F2:D7 Certificate issuer: /CN=A919D539/serialNumber=221F50143E1D5F93C4CD31C9FEE7A24DE801F2D7 Certificate serial: 081A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.mft Manifest number: 0809 Signing time: Wed 02 Jul 2025 21:09:46 +0000 Manifest this update: Wed 02 Jul 2025 21:09:45 +0000 Manifest next update: Wed 09 Jul 2025 21:09:45 +0000 Files and hashes: 1: Ih9QFD4dX5PEzTHJ_ueiTegB8tc.crl (hash: 0mGaSXvz+BDZf1KRWJcK6QaHW4zr15vIiegW5l7GxtA=) 2: 903E8812E38A11EAA3B8AE59C4F9AE02.roa (hash: HYLlaeYCfOhwQIw7Fb2O6gPao8D0dgK0DzH31riAA30=) 3: B94BEEA036D811ECB5BD1470C4F9AE02.roa (hash: CYIyqLTD/N7RHKkzVI9yCjfPCRo2bvj5EsxmVhBkQbM=) 4: DA0C233E3EE411ED905A3415C4F9AE02.roa (hash: EAWxypzDCQPQzqcMnvR1K/XDUjaENmu81MPhjQzqwkk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.crl rsync://rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:09:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2074 (0x81a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D539, serialNumber=221F50143E1D5F93C4CD31C9FEE7A24DE801F2D7 Validity Not Before: Jul 2 21:09:45 2025 GMT Not After : Jul 9 21:09:45 2025 GMT Subject: CN=6865a01a-5a4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:62:b6:80:cf:d1:a0:42:4a:bd:c1:3f:75:6e: a0:c8:2b:81:0a:8e:d1:c0:45:ae:e5:a7:97:37:83: 7b:44:c9:d9:b0:d2:60:6b:bc:b5:fd:3f:5c:d3:2d: a8:58:6d:5c:c6:9b:7d:94:b5:19:2c:d5:92:44:2d: 89:e3:10:bc:b3:f5:94:2b:a9:6b:9d:45:84:ab:09: d3:5a:d4:f0:0a:b8:17:11:9e:bb:b4:ea:cb:30:5e: 25:c4:fb:a9:b6:eb:ef:66:d3:f8:4c:4b:53:09:81: cc:cc:3a:a9:64:29:a5:44:03:eb:ae:62:ac:cc:e4: d6:d5:10:42:fb:23:8c:f3:64:de:c0:22:81:a2:5d: 14:39:56:72:ef:e3:4e:7e:b3:b9:4c:cb:b6:e8:19: 28:45:91:ac:6c:a9:04:11:ed:04:1a:af:38:62:c3: 74:93:d4:e4:14:fd:72:f0:e9:20:c0:8d:5a:18:70: 96:e3:c7:bb:10:04:cc:06:e3:8d:db:12:ae:b0:35: a7:c1:7b:31:42:50:07:87:d3:a6:e3:1e:74:8e:e7: a1:4d:26:42:69:d4:f6:01:b0:8e:cd:c3:c1:ac:8f: a4:90:7c:ea:27:d7:cd:53:29:df:2f:f4:97:22:b2: 0d:02:e6:f6:9a:38:f7:54:6b:81:0c:02:e2:3f:e1: 20:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:E2:8F:28:E2:DA:1A:8D:43:E3:38:76:A9:59:4F:35:C9:42:43:AB X509v3 Authority Key Identifier: keyid:22:1F:50:14:3E:1D:5F:93:C4:CD:31:C9:FE:E7:A2:4D:E8:01:F2:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:cc:57:20:22:48:ae:13:51:14:ae:33:f6:39:91:32:4e:3d: 15:10:80:0b:d4:07:71:04:3c:be:17:b0:89:5f:5d:d4:6f:14: 4c:90:58:3d:42:71:d0:dc:4b:19:25:b4:97:5f:23:31:7a:ae: bb:20:ea:c1:84:a2:49:97:44:83:74:74:86:b5:a7:3c:78:ac: 80:be:81:19:a8:ba:bb:89:1b:88:47:67:65:a6:a9:5a:9f:4f: 6b:ac:ea:5d:e3:05:eb:20:80:92:23:8f:3a:9a:16:98:55:47: 71:01:59:fd:06:4f:5c:c4:e3:95:a9:db:10:ae:51:6f:45:d7: 06:45:50:35:a1:62:ce:68:aa:56:b1:6f:bf:6e:f8:71:a8:14: 65:94:0e:b6:10:96:cc:6d:10:27:fd:4e:f8:5e:1c:6e:30:69: 4f:46:02:72:00:c8:1f:9e:1c:d1:8d:7a:08:7f:4a:53:5d:43: 98:05:17:a8:a6:90:9e:f8:f9:b8:70:06:4d:39:9b:0a:18:9a: 73:b7:56:68:34:80:b3:53:87:41:3e:57:46:08:44:bf:20:ab: 38:db:c0:f8:d9:52:36:f5:96:3d:5d:eb:26:83:58:d7:fe:3e: 36:36:46:00:2c:6e:c9:5f:96:fa:c2:39:a2:9a:79:a3:b3:6b: d9:bb:2d:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ1MzkxMTAvBgNVBAUTKDIyMUY1MDE0M0UxRDVGOTNDNENEMzFDOUZFRTdBMjRE RTgwMUYyRDcwHhcNMjUwNzAyMjEwOTQ1WhcNMjUwNzA5MjEwOTQ1WjAYMRYwFAYD VQQDEw02ODY1YTAxYS01YTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9mK2gM/RoEJKvcE/dW6gyCuBCo7RwEWu5aeXN4N7RMnZsNJga7y1/T9c0y2o WG1cxpt9lLUZLNWSRC2J4xC8s/WUK6lrnUWEqwnTWtTwCrgXEZ67tOrLMF4lxPup tuvvZtP4TEtTCYHMzDqpZCmlRAPrrmKszOTW1RBC+yOM82TewCKBol0UOVZy7+NO frO5TMu26BkoRZGsbKkEEe0EGq84YsN0k9TkFP1y8OkgwI1aGHCW48e7EATMBuON 2xKusDWnwXsxQlAHh9Om4x50juehTSZCadT2AbCOzcPBrI+kkHzqJ9fNUynfL/SX IrINAub2mjj3VGuBDALiP+EgZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNjijyji 2hqNQ+M4dqlZTzXJQkOrMB8GA1UdIwQYMBaAFCIfUBQ+HV+TxM0xyf7nok3oAfLX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDUzOS9DMTI2NURDMEUz ODkxMUVBQjczQTM2NTlDNEY5QUUwMi9JaDlRRkQ0ZFg1UEV6VEhKX3VlaVRlZ0I4 dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0loOVFGRDRkWDVQRXpUSEpfdWVpVGVnQjh0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDUzOS9DMTI2NURDMEUzODkxMUVBQjczQTM2NTlDNEY5QUUwMi9JaDlRRkQ0ZFg1 UEV6VEhKX3VlaVRlZ0I4dGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAzFcgIkiuE1EUrjP2OZEyTj0VEIAL1AdxBDy+F7CJX13UbxRMkFg9 QnHQ3EsZJbSXXyMxeq67IOrBhKJJl0SDdHSGtac8eKyAvoEZqLq7iRuIR2dlpqla n09rrOpd4wXrIICSI486mhaYVUdxAVn9Bk9cxOOVqdsQrlFvRdcGRVA1oWLOaKpW sW+/bvhxqBRllA62EJbMbRAn/U74XhxuMGlPRgJyAMgfnhzRjXoIf0pTXUOYBReo ppCe+Pm4cAZNOZsKGJpzt1ZoNICzU4dBPldGCES/IKs428D42VI29ZY9Xesmg1jX /j42NkYALG7JX5b6wjmimnmjs2vZuy2J -----END CERTIFICATE-----Generated at Thu Jul 3 08:54:07 2025 by rpki-client