$ rpki-client -vvf rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft File: hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft (raw, json) Hash identifier: iysgEIuehgNYYH+VU0zuLzmWDKwW9btPenekrPCDe30= Subject key identifier: 50:80:DD:58:5A:45:A1:D8:7F:89:0E:4F:A1:DC:12:6A:31:AD:08:9F Authority key identifier: 85:29:9F:0D:B1:4C:8F:0A:53:D2:44:6E:FD:B0:CC:05:9C:15:24:BF Certificate issuer: /CN=A911C9E8/serialNumber=85299F0DB14C8F0A53D2446EFDB0CC059C1524BF Certificate serial: 015B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSmfDbFMjwpT0kRu_bDMBZwVJL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft Manifest number: 0158 Signing time: Mon 21 Jul 2025 04:10:23 +0000 Manifest this update: Mon 21 Jul 2025 04:10:22 +0000 Manifest next update: Mon 28 Jul 2025 04:10:22 +0000 Files and hashes: 1: hSmfDbFMjwpT0kRu_bDMBZwVJL8.crl (hash: dIi6lLhCJ+QyGrmGFNkApF/ikiyjqnQnb5X5D6F+Ubk=) 2: E39F4ED65C2411EEB54C4F43C4F9AE02.roa (hash: jSX8BBXcDhKRO02h61flDcL9PRKVJzf27mu274wCdhk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.crl rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSmfDbFMjwpT0kRu_bDMBZwVJL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 04:10:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 347 (0x15b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C9E8, serialNumber=85299F0DB14C8F0A53D2446EFDB0CC059C1524BF Validity Not Before: Jul 21 04:10:22 2025 GMT Not After : Jul 28 04:10:22 2025 GMT Subject: CN=687dbdaf-04dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:a4:2b:47:52:4e:ef:99:d3:79:13:fa:a7:09: 5a:29:f7:eb:1c:7c:e2:4d:ed:e9:2a:c7:b9:1d:fd: ad:a8:97:66:39:21:4d:65:b1:e3:80:d0:3e:94:f6: 8c:a7:2e:5d:92:18:41:b3:08:de:ee:fa:f1:03:ab: 1f:e7:93:08:2c:44:60:63:3c:2c:b2:97:9c:72:2a: ee:fa:c0:1a:9a:39:9a:e7:e9:f5:96:ac:7e:f1:ca: 20:70:f5:f5:13:ad:fc:ee:e2:69:f5:52:90:aa:86: c9:e6:e3:3c:e7:12:ab:f5:fd:9b:94:6b:e8:e0:70: da:ee:f4:b4:1c:79:8b:70:e5:1e:09:7f:98:ad:12: ec:2c:72:ee:43:2a:6c:75:73:21:f9:d0:91:bd:5a: f8:4a:99:72:90:82:12:1d:d5:4f:3d:a2:fb:dc:a2: 24:ba:6a:41:bd:c8:ae:2e:43:96:0b:60:b3:d8:a9: f5:be:e2:9b:30:c7:30:dd:b4:ac:a1:fe:62:f9:d4: af:8d:de:ac:b8:5f:f4:83:58:77:d8:b9:f0:a1:1f: 92:69:8f:95:6b:c3:4f:11:a0:b6:cc:54:5e:24:fe: 3e:71:99:ae:bc:3a:15:ad:a5:64:42:79:60:d6:33: da:f1:69:ab:10:db:55:e0:67:72:2e:85:73:98:2d: c8:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:80:DD:58:5A:45:A1:D8:7F:89:0E:4F:A1:DC:12:6A:31:AD:08:9F X509v3 Authority Key Identifier: keyid:85:29:9F:0D:B1:4C:8F:0A:53:D2:44:6E:FD:B0:CC:05:9C:15:24:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSmfDbFMjwpT0kRu_bDMBZwVJL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:ce:b4:46:b6:37:bb:06:1d:7a:c4:5f:aa:de:32:a5:7e:84: a7:d6:4d:d7:b0:99:44:91:de:cf:30:2b:63:41:7b:77:a7:09: 11:9b:ea:34:f8:91:31:46:a7:94:21:8c:61:5b:9b:54:93:49: 80:40:5d:ed:4a:ce:7d:71:b4:2c:6f:6a:20:8a:83:b5:4a:09: e3:e9:0e:07:fd:b4:ea:db:74:4c:4f:cf:ba:e3:aa:81:62:5f: 70:43:b6:a0:d7:29:1d:c1:3e:89:ab:16:ab:0b:81:34:f5:7e: 62:f3:ed:ef:7b:f0:98:40:de:c5:06:f6:e8:50:d8:eb:24:ac: ab:33:c2:81:59:d2:bd:ee:69:9a:4b:4e:dc:7e:09:cf:a2:64: f4:ee:2b:c1:56:54:6b:bc:d6:85:41:4f:57:1c:a9:78:09:52: 7b:97:e9:57:24:83:cd:4f:64:3f:9b:9a:4d:b0:be:c8:3a:a1: fc:51:ce:17:91:2d:31:e1:d1:a0:9e:97:20:86:45:03:73:4b: bd:ef:8f:2a:74:5a:1d:32:b9:7e:47:bb:9d:9b:89:57:c7:3d: 0d:79:d3:65:b5:b7:49:03:7f:f9:ec:be:47:32:dc:a8:05:64: 27:d0:b3:73:e2:e3:7f:66:ec:49:7b:8d:0d:93:4a:36:4a:06: ab:88:d4:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM5RTgxMTAvBgNVBAUTKDg1Mjk5RjBEQjE0QzhGMEE1M0QyNDQ2RUZEQjBDQzA1 OUMxNTI0QkYwHhcNMjUwNzIxMDQxMDIyWhcNMjUwNzI4MDQxMDIyWjAYMRYwFAYD VQQDEw02ODdkYmRhZi0wNGRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2qQrR1JO75nTeRP6pwlaKffrHHziTe3pKse5Hf2tqJdmOSFNZbHjgNA+lPaM py5dkhhBswje7vrxA6sf55MILERgYzwsspecciru+sAamjma5+n1lqx+8cogcPX1 E6387uJp9VKQqobJ5uM85xKr9f2blGvo4HDa7vS0HHmLcOUeCX+YrRLsLHLuQyps dXMh+dCRvVr4SplykIISHdVPPaL73KIkumpBvciuLkOWC2Cz2Kn1vuKbMMcw3bSs of5i+dSvjd6suF/0g1h32LnwoR+SaY+Va8NPEaC2zFReJP4+cZmuvDoVraVkQnlg 1jPa8WmrENtV4GdyLoVzmC3IywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFCA3Vha RaHYf4kOT6HcEmoxrQifMB8GA1UdIwQYMBaAFIUpnw2xTI8KU9JEbv2wzAWcFSS/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzlFOC9GREY2NzMwNjU4 RkQxMUVFOUQyRDIzNzZDNEY5QUUwMi9oU21mRGJGTWp3cFQwa1J1X2JETUJad1ZK TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hTbWZEYkZNandwVDBrUnVfYkRNQlp3VkpMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzlFOC9GREY2NzMwNjU4RkQxMUVFOUQyRDIzNzZDNEY5QUUwMi9oU21mRGJGTWp3 cFQwa1J1X2JETUJad1ZKTDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAszrRGtje7Bh16xF+q3jKlfoSn1k3XsJlEkd7PMCtjQXt3pwkRm+o0 +JExRqeUIYxhW5tUk0mAQF3tSs59cbQsb2ogioO1Sgnj6Q4H/bTq23RMT8+646qB Yl9wQ7ag1ykdwT6JqxarC4E09X5i8+3ve/CYQN7FBvboUNjrJKyrM8KBWdK97mma S07cfgnPomT07ivBVlRrvNaFQU9XHKl4CVJ7l+lXJIPNT2Q/m5pNsL7IOqH8Uc4X kS0x4dGgnpcghkUDc0u9748qdFodMrl+R7udm4lXxz0NedNltbdJA3/57L5HMtyo BWQn0LNz4uN/ZuxJe40Nk0o2SgariNSM -----END CERTIFICATE-----Generated at Mon Jul 21 05:50:29 2025 by rpki-client