$ rpki-client -vvf rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.mft File: 444NefP9KSMew_PjAp05P0MnfLM.mft (raw, json) Hash identifier: KW+FiCBa3ZTi0JwPQJv/dZkAQ4NEoRjVVwWopNl2DC8= Subject key identifier: 1C:92:EA:2D:09:DB:98:9C:70:AB:99:72:B1:95:2B:30:F9:1E:35:2C Authority key identifier: E3:8E:0D:79:F3:FD:29:23:1E:C3:F3:E3:02:9D:39:3F:43:27:7C:B3 Certificate issuer: /CN=A9128298/serialNumber=E38E0D79F3FD29231EC3F3E3029D393F43277CB3 Certificate serial: 0601 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/444NefP9KSMew_PjAp05P0MnfLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.mft Manifest number: 05FE Signing time: Sun 20 Jul 2025 23:02:22 +0000 Manifest this update: Sun 20 Jul 2025 23:02:22 +0000 Manifest next update: Sun 27 Jul 2025 23:02:22 +0000 Files and hashes: 1: 444NefP9KSMew_PjAp05P0MnfLM.crl (hash: Uft0EaXRmRllXYokjSGnI5xlt6uWGGYg84FVtutzB9Q=) 2: 832F7D72B20E11EBB73B4E2FC4F9AE02.roa (hash: RWzQvPuAa0dvfgKQkKzubYejP/LcFU0xMaFFgk+jNhQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.crl rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/444NefP9KSMew_PjAp05P0MnfLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 23:02:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1537 (0x601) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128298, serialNumber=E38E0D79F3FD29231EC3F3E3029D393F43277CB3 Validity Not Before: Jul 20 23:02:22 2025 GMT Not After : Jul 27 23:02:22 2025 GMT Subject: CN=687d757e-5235 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:23:c7:b9:20:15:e4:12:a4:07:5c:a6:36:02: 76:0c:98:46:12:f1:2d:a8:e3:1e:fa:14:ee:32:59: 45:a4:d7:21:71:b8:8a:b6:27:30:80:8e:75:65:c4: 75:19:21:53:57:f2:66:c3:69:1a:db:86:69:04:cf: 0d:fa:17:8d:52:5a:63:cb:5a:19:38:6e:c3:a7:07: 33:7f:2e:92:39:7c:29:01:e5:a4:c5:b5:03:6f:e4: 71:f2:bf:f1:42:bb:04:6e:84:2e:15:f7:aa:c5:24: 0a:4c:a3:23:8b:96:cb:70:ad:3c:c1:5f:fc:77:72: b9:83:f5:da:a1:59:7b:60:b8:1d:37:2d:f0:4b:b5: 4e:c7:47:9b:77:59:94:dc:ed:b1:48:23:40:24:7e: 1e:c7:3e:16:f5:f5:a7:be:db:17:53:55:e7:1e:42: 4b:6a:a2:91:c7:4a:84:bf:ce:29:88:98:15:f9:55: 6c:f5:5b:a6:97:0a:d2:a8:14:a9:a3:1f:3c:6d:4f: 63:a6:3b:23:81:d7:d4:37:a5:97:f7:69:32:e6:78: d2:5a:e7:91:e2:9a:0a:46:ea:1d:1d:ac:2c:df:8b: 32:00:0f:ac:b8:f0:21:78:74:10:17:1b:d4:ef:09: b2:27:e5:05:fa:bb:30:2f:b4:59:e5:70:e7:0e:94: 72:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:92:EA:2D:09:DB:98:9C:70:AB:99:72:B1:95:2B:30:F9:1E:35:2C X509v3 Authority Key Identifier: keyid:E3:8E:0D:79:F3:FD:29:23:1E:C3:F3:E3:02:9D:39:3F:43:27:7C:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/444NefP9KSMew_PjAp05P0MnfLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:31:58:f7:49:ce:2c:6f:23:02:8f:44:01:ea:59:6d:52:1f: 1f:d3:3e:78:69:e8:93:ed:f5:05:d6:a6:ba:73:44:a1:3e:3d: 8b:f7:a4:8e:7c:b4:a4:66:d5:d4:dc:95:05:2e:7f:cf:68:77: 36:f7:c0:5b:74:4f:6a:df:68:64:1c:68:56:80:8b:65:99:85: 80:6d:e7:e9:d6:56:28:d5:3b:8e:9a:fc:96:b7:b1:bb:0d:8a: 80:61:4d:9d:a6:11:1c:58:4b:1c:2d:a6:44:a6:36:1f:2d:1d: f0:9f:20:f1:dd:ed:6e:05:5e:ed:71:fd:93:8c:62:14:7e:f3: fc:47:11:b8:bc:3f:1a:81:c4:f5:db:82:f9:a0:ab:2f:df:e4: 68:5c:fc:a8:74:7f:d0:ce:0a:02:6e:90:e3:72:f9:8c:1e:c1: 8b:4a:73:95:74:8f:98:2c:9b:0e:7a:b4:67:2c:d5:69:81:43: 4c:83:8b:76:8c:20:bc:29:b9:7e:76:07:ea:8f:ed:3e:05:dc: 95:3b:15:0b:0d:1d:86:06:7d:7c:29:f8:3d:e1:00:e5:3b:19: 65:ba:16:65:d7:56:6e:a1:1e:7b:8e:c5:a4:38:f0:d5:08:a3: 06:97:02:e1:7c:01:52:8f:b7:1a:db:8d:db:b2:05:80:a9:12: 88:56:70:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjgyOTgxMTAvBgNVBAUTKEUzOEUwRDc5RjNGRDI5MjMxRUMzRjNFMzAyOUQzOTNG NDMyNzdDQjMwHhcNMjUwNzIwMjMwMjIyWhcNMjUwNzI3MjMwMjIyWjAYMRYwFAYD VQQDEw02ODdkNzU3ZS01MjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4SPHuSAV5BKkB1ymNgJ2DJhGEvEtqOMe+hTuMllFpNchcbiKticwgI51ZcR1 GSFTV/Jmw2ka24ZpBM8N+heNUlpjy1oZOG7Dpwczfy6SOXwpAeWkxbUDb+Rx8r/x QrsEboQuFfeqxSQKTKMji5bLcK08wV/8d3K5g/XaoVl7YLgdNy3wS7VOx0ebd1mU 3O2xSCNAJH4exz4W9fWnvtsXU1XnHkJLaqKRx0qEv84piJgV+VVs9VumlwrSqBSp ox88bU9jpjsjgdfUN6WX92ky5njSWueR4poKRuodHaws34syAA+suPAheHQQFxvU 7wmyJ+UF+rswL7RZ5XDnDpRyGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFByS6i0J 25iccKuZcrGVKzD5HjUsMB8GA1UdIwQYMBaAFOOODXnz/SkjHsPz4wKdOT9DJ3yz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODI5OC83MjI0NzY2QUIy MEMxMUVCQUM4ODZBMkNDNEY5QUUwMi80NDROZWZQOUtTTWV3X1BqQXAwNVAwTW5m TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ0NE5lZlA5S1NNZXdfUGpBcDA1UDBNbmZMTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODI5OC83MjI0NzY2QUIyMEMxMUVCQUM4ODZBMkNDNEY5QUUwMi80NDROZWZQOUtT TWV3X1BqQXAwNVAwTW5mTE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMMVj3Sc4sbyMCj0QB6lltUh8f0z54aeiT7fUF1qa6c0ShPj2L96SO fLSkZtXU3JUFLn/PaHc298BbdE9q32hkHGhWgItlmYWAbefp1lYo1TuOmvyWt7G7 DYqAYU2dphEcWEscLaZEpjYfLR3wnyDx3e1uBV7tcf2TjGIUfvP8RxG4vD8agcT1 24L5oKsv3+RoXPyodH/QzgoCbpDjcvmMHsGLSnOVdI+YLJsOerRnLNVpgUNMg4t2 jCC8Kbl+dgfqj+0+BdyVOxULDR2GBn18Kfg94QDlOxlluhZl11ZuoR57jsWkOPDV CKMGlwLhfAFSj7ca243bsgWAqRKIVnDW -----END CERTIFICATE-----Generated at Mon Jul 21 12:41:43 2025 by rpki-client