$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.mft File: 148wkE5135TOt1lmr4OOdj6ol2I.mft (raw, json) Hash identifier: kgamLCjJUNx6Xwd5OdIfkbxGmKzpdC5Y6oEUaQ4/iQs= Subject key identifier: BF:77:22:7F:6B:55:52:91:46:6F:41:20:C7:7B:70:E6:72:FE:46:98 Authority key identifier: D7:8F:30:90:4E:75:DF:94:CE:B7:59:66:AF:83:8E:76:3E:A8:97:62 Certificate issuer: /CN=A91CE403/serialNumber=D78F30904E75DF94CEB75966AF838E763EA89762 Certificate serial: D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/148wkE5135TOt1lmr4OOdj6ol2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.mft Manifest number: D2 Signing time: Tue 01 Jul 2025 06:12:50 +0000 Manifest this update: Tue 01 Jul 2025 06:12:49 +0000 Manifest next update: Tue 08 Jul 2025 06:12:49 +0000 Files and hashes: 1: 148wkE5135TOt1lmr4OOdj6ol2I.crl (hash: E/d1Bw1lfwfNhncpdHotdqeWHv4nnhndb/QxzsNmHhw=) 2: B74BF7F018BF11EFB54AFB20C4F9AE02.roa (hash: 3q4SG/qlGVDYq4EV5cqZmr+jLzfEittQVkz7pS+z/KE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.crl rsync://rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/148wkE5135TOt1lmr4OOdj6ol2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 06:12:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 212 (0xd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE403, serialNumber=D78F30904E75DF94CEB75966AF838E763EA89762 Validity Not Before: Jul 1 06:12:49 2025 GMT Not After : Jul 8 06:12:49 2025 GMT Subject: CN=68637c61-9f50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ff:7a:9c:69:04:c5:53:66:c9:fd:50:9e:89: 08:04:3e:91:39:e1:05:71:b3:94:6a:b9:fa:b7:b1: 3a:3c:b4:bc:a9:91:68:b2:6c:a1:dd:57:2d:07:0f: c8:0e:fc:7f:cf:e7:b6:2c:15:9d:69:a4:21:fe:63: 52:e6:cc:42:74:91:0f:e7:dd:8f:9f:6b:ac:0c:b2: 8e:16:2c:83:a9:6b:41:81:b8:75:b8:1b:e8:34:d0: f9:28:4f:80:33:ff:fa:4e:82:d0:19:c4:89:7d:c2: ad:e2:f9:bb:5b:74:40:93:35:9a:77:4d:e5:68:0d: 8a:cb:6d:99:24:b0:90:54:79:d8:4b:0c:1d:11:a2: c2:ee:7d:2e:05:82:bd:9f:af:09:84:74:6a:50:c8: 05:3e:53:94:bc:22:aa:dc:a9:16:1c:cb:00:7d:1f: 1c:42:73:f9:d6:61:bd:a6:2e:a0:e5:00:03:b5:9c: 06:06:b3:65:0b:b0:e7:b2:1f:14:b7:b6:89:ea:6c: 35:8b:1f:71:28:a5:c3:04:45:d0:b0:37:13:5b:07: c0:93:2b:b6:c4:53:b1:af:92:59:02:d4:71:21:f9: 62:b6:17:8c:7c:bb:ee:63:bb:c1:85:47:58:62:eb: 8b:c8:e8:1f:33:76:85:a6:0c:46:6b:7b:4c:86:0d: 3a:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:77:22:7F:6B:55:52:91:46:6F:41:20:C7:7B:70:E6:72:FE:46:98 X509v3 Authority Key Identifier: keyid:D7:8F:30:90:4E:75:DF:94:CE:B7:59:66:AF:83:8E:76:3E:A8:97:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/148wkE5135TOt1lmr4OOdj6ol2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:87:66:5c:36:fb:60:c8:17:97:d9:60:9f:af:6d:de:60:3f: 34:ef:64:8c:39:5a:c8:3a:77:3d:18:7a:f8:e1:50:0d:d0:3e: a4:26:05:fe:a2:cb:c3:de:3b:b4:89:9c:56:b3:7c:11:41:72: 88:1a:c4:5a:ab:ab:0f:25:a1:30:b3:5d:ea:61:d0:e6:3a:36: 66:f5:88:98:c2:15:8a:4b:fb:d2:d9:08:4f:c4:81:bf:83:f5: 76:91:01:ee:e3:ac:91:88:ca:a7:0a:1e:a1:40:cf:65:fd:a0: 77:cb:e4:e2:19:18:45:a8:dc:21:41:ae:d6:61:13:b4:27:06: 75:02:88:1c:56:40:7d:2a:37:67:ec:1c:9f:92:f3:79:f2:4c: 4c:0c:21:9f:67:76:53:c8:cd:b6:90:dd:6c:0c:72:61:d9:1f: 5a:cf:5b:52:de:a8:e8:e2:00:01:4e:96:bc:44:63:f9:6b:40: 58:84:9d:f2:5a:fb:69:c9:10:53:b3:18:94:36:95:c2:e3:d4: 1c:93:e6:18:1b:bb:6d:c1:e1:47:33:dd:83:09:7b:01:d6:14: f0:81:65:64:f7:5e:e4:53:2d:6a:6c:c3:29:0c:bf:50:93:e0: ae:77:43:22:f8:a4:76:49:48:22:f9:68:91:78:09:04:6a:f8: 1e:f3:26:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U0MDMxMTAvBgNVBAUTKEQ3OEYzMDkwNEU3NURGOTRDRUI3NTk2NkFGODM4RTc2 M0VBODk3NjIwHhcNMjUwNzAxMDYxMjQ5WhcNMjUwNzA4MDYxMjQ5WjAYMRYwFAYD VQQDEw02ODYzN2M2MS05ZjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvP96nGkExVNmyf1QnokIBD6ROeEFcbOUarn6t7E6PLS8qZFosmyh3VctBw/I Dvx/z+e2LBWdaaQh/mNS5sxCdJEP592Pn2usDLKOFiyDqWtBgbh1uBvoNND5KE+A M//6ToLQGcSJfcKt4vm7W3RAkzWad03laA2Ky22ZJLCQVHnYSwwdEaLC7n0uBYK9 n68JhHRqUMgFPlOUvCKq3KkWHMsAfR8cQnP51mG9pi6g5QADtZwGBrNlC7Dnsh8U t7aJ6mw1ix9xKKXDBEXQsDcTWwfAkyu2xFOxr5JZAtRxIflitheMfLvuY7vBhUdY YuuLyOgfM3aFpgxGa3tMhg06+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL93In9r VVKRRm9BIMd7cOZy/kaYMB8GA1UdIwQYMBaAFNePMJBOdd+UzrdZZq+DjnY+qJdi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTQwMy84MDIwNzJFODE4 QkUxMUVGQURBN0U1MURDNEY5QUUwMi8xNDh3a0U1MTM1VE90MWxtcjRPT2RqNm9s MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzE0OHdrRTUxMzVUT3QxbG1yNE9PZGo2b2wySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTQwMy84MDIwNzJFODE4QkUxMUVGQURBN0U1MURDNEY5QUUwMi8xNDh3a0U1MTM1 VE90MWxtcjRPT2RqNm9sMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqh2ZcNvtgyBeX2WCfr23eYD8072SMOVrIOnc9GHr44VAN0D6kJgX+ osvD3ju0iZxWs3wRQXKIGsRaq6sPJaEws13qYdDmOjZm9YiYwhWKS/vS2QhPxIG/ g/V2kQHu46yRiMqnCh6hQM9l/aB3y+TiGRhFqNwhQa7WYRO0JwZ1AogcVkB9Kjdn 7ByfkvN58kxMDCGfZ3ZTyM22kN1sDHJh2R9az1tS3qjo4gABTpa8RGP5a0BYhJ3y WvtpyRBTsxiUNpXC49Qck+YYG7ttweFHM92DCXsB1hTwgWVk917kUy1qbMMpDL9Q k+Cud0Mi+KR2SUgi+WiReAkEavge8yaj -----END CERTIFICATE-----Generated at Thu Jul 3 01:04:33 2025 by rpki-client