$ rpki-client -vvf rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft File: 5igiDz_QD0F7mXLh1KD2QWlueZk.mft (raw, json) Hash identifier: XCsAvr9MlhxX05vks5DpGTIr4F9rjqCvaRndQk3eUFk= Subject key identifier: 59:5C:27:32:3F:70:DB:24:02:24:63:2C:B1:A2:15:2B:74:49:10:02 Authority key identifier: E6:28:22:0F:3F:D0:0F:41:7B:99:72:E1:D4:A0:F6:41:69:6E:79:99 Certificate issuer: /CN=A912E31D/serialNumber=E628220F3FD00F417B9972E1D4A0F641696E7999 Certificate serial: 4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft Manifest number: 49 Signing time: Sat 19 Jul 2025 07:38:23 +0000 Manifest this update: Sat 19 Jul 2025 07:38:23 +0000 Manifest next update: Sat 26 Jul 2025 07:38:23 +0000 Files and hashes: 1: 5igiDz_QD0F7mXLh1KD2QWlueZk.crl (hash: NUO8abwemTV6YK03b3xJgOfja3oRWFQdzeX8rEpHMLs=) 2: 9CDF0C0CFA4311EFAEC6A81AC4F9AE02.roa (hash: A659tR0soBiQRXoeD1FPvGrYfSs+v9kVVN6MSoHXtyU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.crl rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:38:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E31D, serialNumber=E628220F3FD00F417B9972E1D4A0F641696E7999 Validity Not Before: Jul 19 07:38:23 2025 GMT Not After : Jul 26 07:38:23 2025 GMT Subject: CN=687b4b6f-39aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:79:bd:93:71:d8:f6:3c:a0:e1:bb:fd:17:81: 62:1d:8f:a7:c0:94:2f:f7:ff:57:c4:4e:d4:93:ab: e7:82:0a:e1:cf:2e:5d:7e:df:be:b2:33:ba:5d:6f: e5:dd:b4:30:2b:db:c5:aa:08:7d:70:5f:55:44:94: 0c:ac:11:9d:13:c0:ef:8f:33:b1:65:4f:38:2b:bb: f8:c6:1e:27:1d:bc:9a:61:e8:85:a9:22:71:cb:ce: 03:63:d2:b2:6f:3a:5d:f8:73:3c:e1:7b:32:2e:2e: 68:03:89:e2:bb:90:c3:a0:0b:d0:49:42:01:be:53: 13:61:39:28:40:0f:cb:f4:e1:4b:96:e1:ae:21:0d: 56:cf:33:13:65:85:02:24:2a:be:d9:a9:38:62:55: 6c:d2:f4:87:08:85:60:40:17:d6:56:62:dd:47:67: 99:43:0b:93:27:dc:2a:5f:21:13:6f:55:58:9b:70: 61:d3:74:ae:73:e3:03:31:05:97:1f:fd:f5:c3:c8: f6:0a:ee:00:c2:11:8d:48:17:d1:9f:c4:53:15:2e: 7c:78:81:b1:9a:67:69:98:2c:f4:8a:3d:00:0f:cf: 50:2c:19:2c:aa:ed:42:6a:73:65:46:42:91:9c:50: dd:e7:2c:34:34:53:d8:12:65:09:66:85:d1:84:d8: 68:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:5C:27:32:3F:70:DB:24:02:24:63:2C:B1:A2:15:2B:74:49:10:02 X509v3 Authority Key Identifier: keyid:E6:28:22:0F:3F:D0:0F:41:7B:99:72:E1:D4:A0:F6:41:69:6E:79:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:e1:c7:bb:3f:74:b0:63:83:60:de:69:76:cc:73:0e:6f:3b: 57:b1:54:01:b2:bd:c7:6f:0e:f7:a1:c3:6d:e6:c8:00:5b:03: 7b:81:79:62:6d:4d:b0:fe:83:20:c7:bd:0e:e6:c7:be:db:17: 76:69:57:86:b4:c8:b9:e2:76:48:5c:77:6c:8b:90:da:84:90: 63:57:0d:82:1c:4a:2d:30:76:9d:80:19:91:d1:b7:6c:f9:4a: 23:5e:ad:eb:0f:af:4d:85:d0:0b:17:c0:86:aa:97:90:88:e7: 72:c9:33:60:92:94:54:7a:54:db:2d:68:29:10:b1:b7:cb:33: 56:58:6c:a5:fb:7a:f7:43:a1:fb:ed:98:93:d5:ae:11:23:1b: 1c:84:90:ea:52:c7:8f:33:cf:eb:ed:92:89:c7:8b:fb:bb:77: 3d:76:1f:33:50:fb:c7:6c:81:48:27:1f:44:68:fe:bf:86:b8: 5a:0d:cc:bb:a4:60:c5:24:6d:2d:c9:f2:ed:8c:8b:64:20:2d: c3:f4:8a:11:4d:e3:71:48:fb:0f:8d:b1:1a:44:d9:c1:1f:d0: a3:fa:54:01:6c:30:f4:3f:14:68:73:fa:c7:0b:7a:25:af:ee: 81:a9:02:81:98:c2:6f:fa:48:c7:b6:28:9f:ff:c2:ae:16:00: fe:1b:3e:10 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RTMxRDExMC8GA1UEBRMoRTYyODIyMEYzRkQwMEY0MTdCOTk3MkUxRDRBMEY2NDE2 OTZFNzk5OTAeFw0yNTA3MTkwNzM4MjNaFw0yNTA3MjYwNzM4MjNaMBgxFjAUBgNV BAMTDTY4N2I0YjZmLTM5YWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCreb2Tcdj2PKDhu/0XgWIdj6fAlC/3/1fETtSTq+eCCuHPLl1+376yM7pdb+Xd tDAr28WqCH1wX1VElAysEZ0TwO+PM7FlTzgru/jGHicdvJph6IWpInHLzgNj0rJv Ol34czzhezIuLmgDieK7kMOgC9BJQgG+UxNhOShAD8v04UuW4a4hDVbPMxNlhQIk Kr7ZqThiVWzS9IcIhWBAF9ZWYt1HZ5lDC5Mn3CpfIRNvVVibcGHTdK5z4wMxBZcf /fXDyPYK7gDCEY1IF9GfxFMVLnx4gbGaZ2mYLPSKPQAPz1AsGSyq7UJqc2VGQpGc UN3nLDQ0U9gSZQlmhdGE2Gg3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWVwnMj9w 2yQCJGMssaIVK3RJEAIwHwYDVR0jBBgwFoAU5igiDz/QD0F7mXLh1KD2QWlueZkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJFMzFELzJDRjZCOEIwRjlD OTExRUZBNTRGNzYyQUM0RjlBRTAyLzVpZ2lEel9RRDBGN21YTGgxS0QyUVdsdWVa ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNWlnaUR6X1FEMEY3bVhMaDFLRDJRV2x1ZVprLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJF MzFELzJDRjZCOEIwRjlDOTExRUZBNTRGNzYyQUM0RjlBRTAyLzVpZ2lEel9RRDBG N21YTGgxS0QyUVdsdWVaay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB7hx7s/dLBjg2DeaXbMcw5vO1exVAGyvcdvDvehw23myABbA3uBeWJt TbD+gyDHvQ7mx77bF3ZpV4a0yLnidkhcd2yLkNqEkGNXDYIcSi0wdp2AGZHRt2z5 SiNeresPr02F0AsXwIaql5CI53LJM2CSlFR6VNstaCkQsbfLM1ZYbKX7evdDofvt mJPVrhEjGxyEkOpSx48zz+vtkonHi/u7dz12HzNQ+8dsgUgnH0Ro/r+GuFoNzLuk YMUkbS3J8u2Mi2QgLcP0ihFN43FI+w+NsRpE2cEf0KP6VAFsMPQ/FGhz+scLeiWv 7oGpAoGYwm/6SMe2KJ//wq4WAP4bPhA= -----END CERTIFICATE-----Generated at Mon Jul 21 07:19:35 2025 by rpki-client