$ rpki-client -vvf rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft File: I-mD64u3-GulkjUkGhAWDIBSxk4.mft (raw, json) Hash identifier: YCQsF6ayeJLQqPsfiVbEW5DoDHe7p10OYLCSfpAximU= Subject key identifier: 15:1F:F5:C6:89:51:BC:35:70:94:E0:7D:61:96:66:AF:41:AD:4C:4F Authority key identifier: 23:E9:83:EB:8B:B7:F8:6B:A5:92:35:24:1A:10:16:0C:80:52:C6:4E Certificate issuer: /CN=A919EDE5/serialNumber=23E983EB8BB7F86BA59235241A10160C8052C64E Certificate serial: 34C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft Manifest number: 34AF Signing time: Mon 30 Jun 2025 15:04:11 +0000 Manifest this update: Mon 30 Jun 2025 15:04:10 +0000 Manifest next update: Mon 07 Jul 2025 15:04:10 +0000 Files and hashes: 1: I-mD64u3-GulkjUkGhAWDIBSxk4.crl (hash: mye8oMsMEI0Q+qrkOzP/J9+rrcEmfE1ETCy7RwD1goY=) 2: 450B9058E3B511EF8A23824BC4F9AE02.roa (hash: qBvM1ocHNLWqsae3sXlaLmM1xegZdbEXSnEFnb8zr9w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.crl rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 14:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13504 (0x34c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EDE5, serialNumber=23E983EB8BB7F86BA59235241A10160C8052C64E Validity Not Before: Jun 30 15:04:10 2025 GMT Not After : Jul 7 15:04:10 2025 GMT Subject: CN=6862a76b-b715 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:81:b0:de:74:82:a3:29:e2:62:aa:e8:1c:a3: 88:f1:fa:30:4f:19:26:34:0e:36:ff:d7:33:29:56: 3e:8b:6f:c4:71:c2:b6:4d:88:3b:8e:17:45:67:1c: 5d:65:68:c8:d2:4f:a7:d2:39:5d:fd:8c:00:ad:cf: d5:f1:6a:d9:ef:4e:57:9b:e0:d3:0d:ad:2b:72:d0: 5a:69:99:73:23:f5:08:0c:a3:be:a5:35:fb:37:29: 8e:d5:ce:66:1d:b4:c6:52:9b:cc:1a:06:7a:a6:1e: bd:5c:a4:46:d6:d8:d2:c8:9f:b6:2e:53:af:a2:de: 21:d1:92:7d:ad:e9:15:56:17:de:e7:bb:d1:0b:0a: 49:82:96:43:a7:bc:24:4b:e1:9d:88:3f:ee:f2:62: c9:38:cf:e9:18:59:b9:b3:cd:ec:9c:00:2f:c7:bf: 29:9f:71:cc:c3:87:3c:aa:e1:12:d7:71:0e:1b:1f: b3:73:5c:a2:1c:b7:4f:25:63:af:f5:b7:a3:e8:f7: f0:11:bb:35:56:64:d4:74:d4:a9:5d:a8:f1:0c:65: a6:7f:64:28:29:70:a5:64:a6:14:bc:d3:ab:29:20: 8c:06:7e:5b:b6:5a:47:fe:96:ff:5a:39:b1:fd:ea: b7:0a:eb:3e:80:18:a0:22:a0:4b:1a:cd:9f:5b:d6: 64:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:1F:F5:C6:89:51:BC:35:70:94:E0:7D:61:96:66:AF:41:AD:4C:4F X509v3 Authority Key Identifier: keyid:23:E9:83:EB:8B:B7:F8:6B:A5:92:35:24:1A:10:16:0C:80:52:C6:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:b4:9c:4d:d9:0a:c5:2c:06:57:0b:82:5d:7e:9e:d4:1c:30: 12:80:31:40:c4:8f:14:16:6b:50:f8:af:0a:93:30:c3:cf:c3: 10:c7:93:a9:3f:9b:24:62:09:bb:f5:28:44:88:86:e7:96:bd: 15:8f:34:9b:37:dc:9b:b6:22:01:89:7b:00:98:5e:49:d8:f6: d5:ea:7b:50:ec:62:82:61:4b:8d:34:b8:46:09:7a:b9:0c:e5: fb:a2:a4:5d:39:05:c8:a7:4c:55:df:21:53:19:0f:87:36:71: 07:da:9e:9f:c8:9b:b1:ef:cf:31:34:13:2a:ac:44:12:07:5b: 50:de:82:3d:8e:34:ea:81:22:04:0a:40:0a:45:bd:5b:ba:28: 22:b3:37:be:71:e3:2d:2e:8f:f4:88:c1:13:8d:3f:de:a4:d6: 0f:b7:fe:d9:88:4b:6c:71:e6:c7:51:68:5c:47:93:31:02:9e: 48:77:c1:3c:3d:96:b3:0c:09:53:9c:56:b3:a7:64:c8:43:c1: ec:8c:9e:8d:81:6b:c5:3e:5a:1d:59:86:6d:6b:cc:a8:42:99: 9d:74:97:59:b7:60:df:73:22:7d:6d:88:93:8f:f6:3a:9a:5a: e5:18:83:1f:19:2a:02:f7:00:2a:aa:de:a3:10:26:ff:2e:e1: 4d:f5:2f:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVERTUxMTAvBgNVBAUTKDIzRTk4M0VCOEJCN0Y4NkJBNTkyMzUyNDFBMTAxNjBD ODA1MkM2NEUwHhcNMjUwNjMwMTUwNDEwWhcNMjUwNzA3MTUwNDEwWjAYMRYwFAYD VQQDEw02ODYyYTc2Yi1iNzE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6oGw3nSCoyniYqroHKOI8fowTxkmNA42/9czKVY+i2/EccK2TYg7jhdFZxxd ZWjI0k+n0jld/YwArc/V8WrZ705Xm+DTDa0rctBaaZlzI/UIDKO+pTX7NymO1c5m HbTGUpvMGgZ6ph69XKRG1tjSyJ+2LlOvot4h0ZJ9rekVVhfe57vRCwpJgpZDp7wk S+GdiD/u8mLJOM/pGFm5s83snAAvx78pn3HMw4c8quES13EOGx+zc1yiHLdPJWOv 9bej6PfwEbs1VmTUdNSpXajxDGWmf2QoKXClZKYUvNOrKSCMBn5btlpH/pb/Wjmx /eq3Cus+gBigIqBLGs2fW9ZkxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBUf9caJ Ubw1cJTgfWGWZq9BrUxPMB8GA1UdIwQYMBaAFCPpg+uLt/hrpZI1JBoQFgyAUsZO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RURFNS80QTJCNkNDRTFE OUUxMUUyOUNBMzA5OEUwOEIwMkNEMi9JLW1ENjR1My1HdWxralVrR2hBV0RJQlN4 azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ktbUQ2NHUzLUd1bGtqVWtHaEFXRElCU3hrNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RURFNS80QTJCNkNDRTFEOUUxMUUyOUNBMzA5OEUwOEIwMkNEMi9JLW1ENjR1My1H dWxralVrR2hBV0RJQlN4azQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPtJxN2QrFLAZXC4Jdfp7UHDASgDFAxI8UFmtQ+K8KkzDDz8MQx5Op P5skYgm79ShEiIbnlr0VjzSbN9ybtiIBiXsAmF5J2PbV6ntQ7GKCYUuNNLhGCXq5 DOX7oqRdOQXIp0xV3yFTGQ+HNnEH2p6fyJux788xNBMqrEQSB1tQ3oI9jjTqgSIE CkAKRb1buigisze+ceMtLo/0iMETjT/epNYPt/7ZiEtscebHUWhcR5MxAp5Id8E8 PZazDAlTnFazp2TIQ8HsjJ6NgWvFPlodWYZta8yoQpmddJdZt2DfcyJ9bYiTj/Y6 mlrlGIMfGSoC9wAqqt6jECb/LuFN9S9W -----END CERTIFICATE-----Generated at Mon Jun 30 16:56:33 2025 by rpki-client