$ rpki-client -vvf rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft File: kSlbu3W_quuVMbObNux1Id3jDWM.mft (raw, json) Hash identifier: q9kPSmz/C+pA0rpvTJhQUv0wUzPSaIYtLHq+6S2TwUU= Subject key identifier: E9:EF:E3:9E:8A:74:4D:1D:27:90:1E:79:F9:2E:75:4E:D5:8D:CB:FB Authority key identifier: 91:29:5B:BB:75:BF:AA:EB:95:31:B3:9B:36:EC:75:21:DD:E3:0D:63 Certificate issuer: /CN=A911D9B2/serialNumber=91295BBB75BFAAEB9531B39B36EC7521DDE30D63 Certificate serial: 0162 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSlbu3W_quuVMbObNux1Id3jDWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft Manifest number: 0150 Signing time: Sat 19 Jul 2025 04:44:57 +0000 Manifest this update: Sat 19 Jul 2025 04:44:57 +0000 Manifest next update: Sat 26 Jul 2025 04:44:56 +0000 Files and hashes: 1: kSlbu3W_quuVMbObNux1Id3jDWM.crl (hash: nIL08qo1U2IoWSVZnoIwv9sG04MPCbQ6ArvtHD0ysrA=) 2: 11A28878915611EE83F61C41C4F9AE02.roa (hash: wRjDxSYF9ME/+w7UeeO+MKXvgDC5w3qNX+JKTSzXhtw=) 3: 59962840D01911EE96596B16C4F9AE02.roa (hash: jM6outMgdpJ44HUHhOOUfnOx+r280G0rdmU4B0AEX90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.crl rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSlbu3W_quuVMbObNux1Id3jDWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 04:44:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 354 (0x162) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D9B2, serialNumber=91295BBB75BFAAEB9531B39B36EC7521DDE30D63 Validity Not Before: Jul 19 04:44:57 2025 GMT Not After : Jul 26 04:44:56 2025 GMT Subject: CN=687b22c9-cbfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:cd:51:d9:d9:bb:d6:ae:b4:66:53:4e:97:ed: c8:10:ec:1b:8c:f4:de:81:91:77:50:59:b7:7a:a7: 42:22:54:ba:66:ea:57:91:16:fa:8c:dd:d9:78:32: 7b:4f:88:e3:2c:8d:57:c7:47:3c:67:23:f2:ba:b5: f5:ed:a7:24:a2:e7:90:26:c3:9d:d6:f5:b4:fc:fd: 5d:52:17:ae:09:ed:df:bb:ec:79:55:0f:7d:d6:98: 72:12:79:40:c1:2a:f2:c6:6a:e6:fc:c3:a4:2f:34: 22:9c:d9:25:94:b7:f8:5c:fb:fc:50:8b:9a:41:9c: d9:4c:74:3f:54:88:8c:12:c6:30:4c:99:8f:6e:24: e0:4d:b8:10:97:9c:1b:62:34:d0:c8:8a:92:ce:f5: a4:c9:a9:92:a1:fd:30:79:7e:ae:6a:30:22:72:99: bd:9c:27:3a:61:81:5f:55:14:9c:22:bd:48:69:e2: be:5c:2e:1d:6f:7d:7f:c6:26:60:0e:69:54:8c:4d: 6f:79:11:fa:f1:8a:b0:3a:2e:80:69:0b:ed:83:78: b0:c0:df:63:f3:51:47:fa:fb:66:b3:03:cd:65:fb: e3:c3:84:2d:bf:d0:49:ba:b3:5f:3b:5e:01:ca:44: 35:49:78:66:ea:39:c3:47:63:7e:8b:2d:96:cf:dc: c9:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:EF:E3:9E:8A:74:4D:1D:27:90:1E:79:F9:2E:75:4E:D5:8D:CB:FB X509v3 Authority Key Identifier: keyid:91:29:5B:BB:75:BF:AA:EB:95:31:B3:9B:36:EC:75:21:DD:E3:0D:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSlbu3W_quuVMbObNux1Id3jDWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:39:cf:0c:30:e4:9c:f6:e5:af:2b:df:e6:b8:59:6d:35:b6: fd:31:79:26:a4:6d:6d:03:44:9f:7d:56:02:09:b9:3f:d2:1f: 7f:7a:65:1c:91:f3:1b:b3:b7:95:14:df:f9:cd:1a:85:8e:38: 14:55:c8:e4:be:e6:67:4b:44:7d:b8:63:a1:44:95:7c:b1:cb: 67:46:22:5d:ec:92:96:7f:4e:34:a6:0f:33:cd:c1:b6:02:d3: ab:63:50:bf:15:54:8a:94:20:74:e4:f6:a7:1b:6b:1b:87:7d: b0:c1:64:5e:39:20:27:18:a8:fd:7a:11:d9:66:75:6c:ff:18: d2:39:94:20:3d:a1:28:56:86:bb:0c:e4:66:30:cd:fa:26:40: ca:bf:22:6d:74:44:c5:44:6c:f4:3c:77:7b:be:90:da:10:c4: f6:fe:b9:7d:2d:db:d7:25:91:b6:15:b5:de:49:18:fa:38:1a: af:d1:b0:f4:ce:3d:6f:d6:8f:3c:c6:15:37:fb:e5:46:02:46: 1f:8c:f5:f3:b8:2b:a0:d0:49:df:e4:0b:ac:75:b2:d5:7e:84: 7e:44:27:da:46:00:9e:e7:c7:67:21:d0:26:69:26:e6:04:fd: cb:94:c8:21:40:c9:21:ce:60:b7:9d:75:71:98:b7:8c:fc:02: ff:af:5e:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ5QjIxMTAvBgNVBAUTKDkxMjk1QkJCNzVCRkFBRUI5NTMxQjM5QjM2RUM3NTIx RERFMzBENjMwHhcNMjUwNzE5MDQ0NDU3WhcNMjUwNzI2MDQ0NDU2WjAYMRYwFAYD VQQDEw02ODdiMjJjOS1jYmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtc1R2dm71q60ZlNOl+3IEOwbjPTegZF3UFm3eqdCIlS6ZupXkRb6jN3ZeDJ7 T4jjLI1Xx0c8ZyPyurX17ackoueQJsOd1vW0/P1dUheuCe3fu+x5VQ991phyEnlA wSryxmrm/MOkLzQinNkllLf4XPv8UIuaQZzZTHQ/VIiMEsYwTJmPbiTgTbgQl5wb YjTQyIqSzvWkyamSof0weX6uajAicpm9nCc6YYFfVRScIr1IaeK+XC4db31/xiZg DmlUjE1veRH68YqwOi6AaQvtg3iwwN9j81FH+vtmswPNZfvjw4Qtv9BJurNfO14B ykQ1SXhm6jnDR2N+iy2Wz9zJfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOnv456K dE0dJ5AeefkudU7Vjcv7MB8GA1UdIwQYMBaAFJEpW7t1v6rrlTGzmzbsdSHd4w1j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDlCMi8wQTZGM0I0Mjkx NTUxMUVFQTRDMEY2NjhDNEY5QUUwMi9rU2xidTNXX3F1dVZNYk9iTnV4MUlkM2pE V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tTbGJ1M1dfcXV1Vk1iT2JOdXgxSWQzakRXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDlCMi8wQTZGM0I0MjkxNTUxMUVFQTRDMEY2NjhDNEY5QUUwMi9rU2xidTNXX3F1 dVZNYk9iTnV4MUlkM2pEV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgOc8MMOSc9uWvK9/muFltNbb9MXkmpG1tA0SffVYCCbk/0h9/emUc kfMbs7eVFN/5zRqFjjgUVcjkvuZnS0R9uGOhRJV8sctnRiJd7JKWf040pg8zzcG2 AtOrY1C/FVSKlCB05PanG2sbh32wwWReOSAnGKj9ehHZZnVs/xjSOZQgPaEoVoa7 DORmMM36JkDKvyJtdETFRGz0PHd7vpDaEMT2/rl9LdvXJZG2FbXeSRj6OBqv0bD0 zj1v1o88xhU3++VGAkYfjPXzuCug0Enf5AusdbLVfoR+RCfaRgCe58dnIdAmaSbm BP3LlMghQMkhzmC3nXVxmLeM/AL/r143 -----END CERTIFICATE-----Generated at Sun Jul 20 22:30:19 2025 by rpki-client