$ rpki-client -vvf rpki.apnic.net/member_repository/A9122373/2C006BB82B2D11ECB84E7273C4F9AE02/SihlGpSsY59qsTJHTTHrDfzm3Hk.mft File: SihlGpSsY59qsTJHTTHrDfzm3Hk.mft (raw, json) Hash identifier: LUpWrg3BijxUBASIqoG8xAKPPOC9/k7O5gQaYvhy1NE= Subject key identifier: 31:8D:D9:50:34:1D:1A:FB:0C:FB:09:CA:E6:4D:DC:E1:F2:4D:98:C3 Authority key identifier: 4A:28:65:1A:94:AC:63:9F:6A:B1:32:47:4D:31:EB:0D:FC:E6:DC:79 Certificate issuer: /CN=A9122373/serialNumber=4A28651A94AC639F6AB132474D31EB0DFCE6DC79 Certificate serial: 04EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SihlGpSsY59qsTJHTTHrDfzm3Hk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122373/2C006BB82B2D11ECB84E7273C4F9AE02/SihlGpSsY59qsTJHTTHrDfzm3Hk.mft Manifest number: 04DA Signing time: Sun 20 Jul 2025 23:59:17 +0000 Manifest this update: Sun 20 Jul 2025 23:59:17 +0000 Manifest next update: Sun 27 Jul 2025 23:59:17 +0000 Files and hashes: 1: SihlGpSsY59qsTJHTTHrDfzm3Hk.crl (hash: kB98KlAefZTCZGi4GElWATT0qLiyPUIfgmRoaqM+3Gs=) 2: A64296622BAA11EC9618D864C4F9AE02.roa (hash: OMr4Dz07a9K+JRAHryD2B9Vl/J9RaoHPdVjAOTh62ZI=) 3: C420EBE06EC911EC8A5A940AC4F9AE02.roa (hash: t0Udbj/BMaf/sH0WctEk56jZ3TVW9akvyOH3KkeFZWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122373/2C006BB82B2D11ECB84E7273C4F9AE02/SihlGpSsY59qsTJHTTHrDfzm3Hk.crl rsync://rpki.apnic.net/member_repository/A9122373/2C006BB82B2D11ECB84E7273C4F9AE02/SihlGpSsY59qsTJHTTHrDfzm3Hk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SihlGpSsY59qsTJHTTHrDfzm3Hk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 23:59:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1259 (0x4eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122373, serialNumber=4A28651A94AC639F6AB132474D31EB0DFCE6DC79 Validity Not Before: Jul 20 23:59:17 2025 GMT Not After : Jul 27 23:59:17 2025 GMT Subject: CN=687d82d5-3d97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:be:b2:48:89:ac:fb:60:a7:60:57:66:ac:26: ac:55:30:0e:2b:68:40:71:0a:92:60:d2:ec:36:8a: 36:c2:19:4a:18:a2:57:18:0f:15:ee:32:04:5d:ff: 0d:f9:d9:a4:cc:b6:76:ad:fb:36:b0:e0:c0:55:a2: 4d:cf:c9:a9:0f:99:45:5b:f0:07:55:a8:8d:5a:df: 3b:c6:9e:fd:d8:69:b6:e5:24:7b:c8:34:2e:15:14: 6b:19:a7:62:7a:6c:05:ab:b0:ff:e3:47:c4:99:16: 94:37:99:d6:14:88:21:14:82:2a:8c:28:63:e7:59: 2b:15:94:10:e3:22:a6:d2:e5:76:5d:6e:a5:71:95: 25:c1:d2:aa:99:91:70:35:c5:76:f3:66:df:e0:42: 3a:e2:c8:99:66:e4:4c:9d:25:e8:a9:65:bf:93:af: 08:83:11:5c:92:f2:4a:98:bb:98:de:fc:ff:ef:ee: 7b:f5:e8:77:3c:aa:e3:8e:76:a8:cc:83:80:6f:77: ee:f7:c1:42:ec:85:e8:99:47:56:98:7c:bb:ab:d6: 84:a8:61:78:54:91:00:ed:8f:f5:ff:e1:99:ce:b5: a8:14:f2:c3:71:9f:16:0e:e2:a4:a4:d2:8e:59:a5: 9d:16:ad:37:96:27:b0:11:c5:92:7a:90:1f:36:9f: cf:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:8D:D9:50:34:1D:1A:FB:0C:FB:09:CA:E6:4D:DC:E1:F2:4D:98:C3 X509v3 Authority Key Identifier: keyid:4A:28:65:1A:94:AC:63:9F:6A:B1:32:47:4D:31:EB:0D:FC:E6:DC:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122373/2C006BB82B2D11ECB84E7273C4F9AE02/SihlGpSsY59qsTJHTTHrDfzm3Hk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SihlGpSsY59qsTJHTTHrDfzm3Hk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122373/2C006BB82B2D11ECB84E7273C4F9AE02/SihlGpSsY59qsTJHTTHrDfzm3Hk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:73:4c:f6:9d:8e:23:32:0e:d4:f0:7c:b1:2d:eb:7f:c0:da: e0:6b:1b:d6:79:4a:cd:fb:7c:70:e4:13:6b:29:1b:36:c3:c8: fe:4c:74:7d:9e:ae:b0:0f:42:11:54:8b:a3:3b:57:8d:31:f6: 3e:00:92:89:14:b5:78:23:6a:30:20:72:8a:20:95:33:bc:3b: 8d:3e:89:a5:9b:0a:8f:c5:55:78:d0:bb:38:01:df:e3:7c:aa: 9f:42:52:ff:61:06:4a:d8:a4:bb:77:ab:0f:23:3c:d9:40:d6: f9:57:b8:f6:0f:af:56:6d:69:f6:1a:76:39:27:d6:31:e4:42: 55:26:1f:53:ef:c0:8f:d8:e5:3b:f7:8f:0d:da:23:a5:c7:78: 61:3c:b1:95:c8:04:9e:8a:1e:68:cc:22:fa:3a:6a:71:c4:3b: 15:4c:38:db:8c:6c:83:59:90:7d:07:82:26:2d:82:fa:5f:89: 03:31:3d:d3:88:83:92:5c:e3:1d:f4:71:60:1a:1d:58:da:d8: 8c:39:cd:16:2a:f9:06:ed:2a:3b:eb:96:e8:0f:93:52:38:6d: 00:7c:07:b5:2d:28:c2:fb:fb:a2:0c:8d:23:f9:62:0d:62:39: 7e:d7:86:6d:c4:a5:4f:89:0c:d6:bc:15:1e:1c:4e:40:a3:6d: bb:29:ce:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIzNzMxMTAvBgNVBAUTKDRBMjg2NTFBOTRBQzYzOUY2QUIxMzI0NzREMzFFQjBE RkNFNkRDNzkwHhcNMjUwNzIwMjM1OTE3WhcNMjUwNzI3MjM1OTE3WjAYMRYwFAYD VQQDEw02ODdkODJkNS0zZDk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3b6ySIms+2CnYFdmrCasVTAOK2hAcQqSYNLsNoo2whlKGKJXGA8V7jIEXf8N +dmkzLZ2rfs2sODAVaJNz8mpD5lFW/AHVaiNWt87xp792Gm25SR7yDQuFRRrGadi emwFq7D/40fEmRaUN5nWFIghFIIqjChj51krFZQQ4yKm0uV2XW6lcZUlwdKqmZFw NcV282bf4EI64siZZuRMnSXoqWW/k68IgxFckvJKmLuY3vz/7+579eh3PKrjjnao zIOAb3fu98FC7IXomUdWmHy7q9aEqGF4VJEA7Y/1/+GZzrWoFPLDcZ8WDuKkpNKO WaWdFq03liewEcWSepAfNp/PjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDGN2VA0 HRr7DPsJyuZN3OHyTZjDMB8GA1UdIwQYMBaAFEooZRqUrGOfarEyR00x6w385tx5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjM3My8yQzAwNkJCODJC MkQxMUVDQjg0RTcyNzNDNEY5QUUwMi9TaWhsR3BTc1k1OXFzVEpIVFRIckRmem0z SGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NpaGxHcFNzWTU5cXNUSkhUVEhyRGZ6bTNIay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjM3My8yQzAwNkJCODJCMkQxMUVDQjg0RTcyNzNDNEY5QUUwMi9TaWhsR3BTc1k1 OXFzVEpIVFRIckRmem0zSGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzc0z2nY4jMg7U8HyxLet/wNrgaxvWeUrN+3xw5BNrKRs2w8j+THR9 nq6wD0IRVIujO1eNMfY+AJKJFLV4I2owIHKKIJUzvDuNPomlmwqPxVV40Ls4Ad/j fKqfQlL/YQZK2KS7d6sPIzzZQNb5V7j2D69WbWn2GnY5J9Yx5EJVJh9T78CP2OU7 948N2iOlx3hhPLGVyASeih5ozCL6OmpxxDsVTDjbjGyDWZB9B4ImLYL6X4kDMT3T iIOSXOMd9HFgGh1Y2tiMOc0WKvkG7So765boD5NSOG0AfAe1LSjC+/uiDI0j+WIN Yjl+14ZtxKVPiQzWvBUeHE5Ao227Kc6F -----END CERTIFICATE-----Generated at Tue Jul 22 12:32:06 2025 by rpki-client