$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.mft File: rC4NP0JyIX_vudMtzhozLelqOF4.mft (raw, json) Hash identifier: SP0OcpFfjndMyYqSWoVUWpWTem7u6FKeW/2KiE8eD5A= Subject key identifier: 24:28:6A:5E:F4:AB:78:D2:84:2E:C6:9A:3F:BA:31:B4:04:87:04:3A Authority key identifier: AC:2E:0D:3F:42:72:21:7F:EF:B9:D3:2D:CE:1A:33:2D:E9:6A:38:5E Certificate issuer: /CN=A91DD5E1/serialNumber=AC2E0D3F4272217FEFB9D32DCE1A332DE96A385E Certificate serial: 08B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rC4NP0JyIX_vudMtzhozLelqOF4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.mft Manifest number: 08A9 Signing time: Sat 28 Jun 2025 20:13:19 +0000 Manifest this update: Sat 28 Jun 2025 20:13:18 +0000 Manifest next update: Sat 05 Jul 2025 20:13:18 +0000 Files and hashes: 1: rC4NP0JyIX_vudMtzhozLelqOF4.crl (hash: uTfM17mDb4DSaklgfT9DxzrSV+bt/Rf0eW+VpPb6SRc=) 2: E034D1A6BC6F11EA8FE53280C4F9AE02.roa (hash: r0YFlYuIRf7Aj55A1t3w3hfTwFR/8iacpEclsozeKco=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.crl rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rC4NP0JyIX_vudMtzhozLelqOF4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 20:13:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2225 (0x8b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD5E1, serialNumber=AC2E0D3F4272217FEFB9D32DCE1A332DE96A385E Validity Not Before: Jun 28 20:13:18 2025 GMT Not After : Jul 5 20:13:18 2025 GMT Subject: CN=68604cde-8639 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0e:6c:20:79:e7:2f:14:d3:e1:b6:64:31:80: c8:68:4d:1c:0b:e4:18:e1:e1:06:32:f8:bf:b5:a1: 6f:4c:aa:f2:b8:6a:93:14:f5:13:c9:df:7a:f4:da: d3:73:87:a7:14:b4:62:32:5b:5e:bf:17:41:ac:44: f7:b6:87:4f:2d:5c:6c:44:fc:48:1e:dc:67:3c:ba: f4:f5:1d:fe:aa:af:78:c1:a7:ae:5a:a3:5b:7d:91: e8:37:e5:5c:42:8d:a6:fe:43:0d:35:df:5e:70:5d: 30:3e:f6:89:a3:15:3c:62:c0:10:06:ee:af:b8:7c: ad:40:ae:cd:68:c7:48:ea:ad:c2:12:5b:2e:f5:df: 91:ab:86:13:4a:10:13:c2:98:3f:92:11:ee:ec:c1: 65:49:18:08:fd:7b:a0:f9:b2:18:81:0a:d3:5b:50: 96:2a:ed:10:c1:8b:3b:b2:49:73:c7:cb:2a:2b:9f: df:2b:cc:90:71:91:39:9a:19:02:c3:ac:eb:f9:9d: d2:29:c9:a1:f5:eb:bd:94:c3:43:60:e1:75:3f:ab: 63:27:4a:15:90:5c:9d:74:6a:d9:f4:ec:87:8b:fc: de:5c:e4:1a:2d:56:cf:bf:0d:fd:ab:45:62:c0:8f: 68:eb:22:be:16:48:84:09:7e:43:b0:e1:68:3c:e0: 88:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:28:6A:5E:F4:AB:78:D2:84:2E:C6:9A:3F:BA:31:B4:04:87:04:3A X509v3 Authority Key Identifier: keyid:AC:2E:0D:3F:42:72:21:7F:EF:B9:D3:2D:CE:1A:33:2D:E9:6A:38:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rC4NP0JyIX_vudMtzhozLelqOF4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:d1:33:83:06:67:58:a6:6d:bb:f5:20:8b:44:95:dc:0a:30: da:e6:2b:fa:66:82:22:ba:5a:0e:5d:f3:59:0a:83:0a:ba:8a: 03:b9:c5:2d:ce:34:35:64:68:bd:b1:0a:b8:cc:b7:d3:8f:2d: 03:32:e9:92:ac:a9:f8:e6:22:27:16:29:04:0d:70:0c:f0:8c: f9:6b:17:ca:5e:d8:43:c6:ba:13:f0:36:d8:ac:df:2f:e9:26: e9:fc:1f:bb:5b:f4:f4:30:a0:c8:4d:47:d3:57:a6:a7:9c:17: 4d:d1:f0:ec:5e:87:5c:31:34:12:34:c8:42:f2:89:7b:d5:bc: 71:47:e1:68:8e:8d:5c:27:8c:9f:75:76:3e:26:9a:27:1d:1e: ef:1b:51:af:86:a7:04:2c:af:d0:16:63:ef:04:c9:04:01:5a: dd:00:ad:56:d6:c3:73:57:b9:01:70:6e:eb:e5:cb:5c:85:0b: d9:4b:4c:9c:58:5a:40:36:9b:00:97:70:97:b0:03:c2:f5:68: 6f:e6:62:70:cc:57:7c:d8:cb:cd:86:32:41:7b:56:cf:eb:4c: 6a:63:c5:6e:50:40:51:3b:03:af:00:55:a7:2e:7f:61:c8:0c: ee:8f:95:1c:7a:00:0a:74:33:55:5b:b3:f3:ed:8a:12:a2:78: 1d:3d:e1:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ1RTExMTAvBgNVBAUTKEFDMkUwRDNGNDI3MjIxN0ZFRkI5RDMyRENFMUEzMzJE RTk2QTM4NUUwHhcNMjUwNjI4MjAxMzE4WhcNMjUwNzA1MjAxMzE4WjAYMRYwFAYD VQQDEw02ODYwNGNkZS04NjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtw5sIHnnLxTT4bZkMYDIaE0cC+QY4eEGMvi/taFvTKryuGqTFPUTyd969NrT c4enFLRiMltevxdBrET3todPLVxsRPxIHtxnPLr09R3+qq94waeuWqNbfZHoN+Vc Qo2m/kMNNd9ecF0wPvaJoxU8YsAQBu6vuHytQK7NaMdI6q3CElsu9d+Rq4YTShAT wpg/khHu7MFlSRgI/Xug+bIYgQrTW1CWKu0QwYs7sklzx8sqK5/fK8yQcZE5mhkC w6zr+Z3SKcmh9eu9lMNDYOF1P6tjJ0oVkFyddGrZ9OyHi/zeXOQaLVbPvw39q0Vi wI9o6yK+FkiECX5DsOFoPOCIQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCQoal70 q3jShC7Gmj+6MbQEhwQ6MB8GA1UdIwQYMBaAFKwuDT9CciF/77nTLc4aMy3pajhe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDVFMS8xNjVCN0JGNkJD NkUxMUVBQTVDQjAzN0RDNEY5QUUwMi9yQzROUDBKeUlYX3Z1ZE10emhvekxlbHFP RjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JDNE5QMEp5SVhfdnVkTXR6aG96TGVscU9GNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDVFMS8xNjVCN0JGNkJDNkUxMUVBQTVDQjAzN0RDNEY5QUUwMi9yQzROUDBKeUlY X3Z1ZE10emhvekxlbHFPRjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC50TODBmdYpm279SCLRJXcCjDa5iv6ZoIiuloOXfNZCoMKuooDucUt zjQ1ZGi9sQq4zLfTjy0DMumSrKn45iInFikEDXAM8Iz5axfKXthDxroT8DbYrN8v 6Sbp/B+7W/T0MKDITUfTV6annBdN0fDsXodcMTQSNMhC8ol71bxxR+Fojo1cJ4yf dXY+JponHR7vG1GvhqcELK/QFmPvBMkEAVrdAK1W1sNzV7kBcG7r5ctchQvZS0yc WFpANpsAl3CXsAPC9Whv5mJwzFd82MvNhjJBe1bP60xqY8VuUEBROwOvAFWnLn9h yAzuj5UcegAKdDNVW7Pz7YoSongdPeFU -----END CERTIFICATE-----Generated at Sun Jun 29 13:32:38 2025 by rpki-client