$ rpki-client -vvf rpki.apnic.net/member_repository/A9132457/8AE7392ED81811EDBD650F3DC4F9AE02/lSgWDkwwThMH2_ZvGQFjKt-fGmQ.mft File: lSgWDkwwThMH2_ZvGQFjKt-fGmQ.mft (raw, json) Hash identifier: mnWuP4del0aLe1uoBDkPBpd81GeaWtnXBBZP9+loR6o= Subject key identifier: F8:57:E3:AE:C4:AB:16:A3:AE:52:87:CE:9F:BD:CF:19:BE:62:CF:96 Authority key identifier: 95:28:16:0E:4C:30:4E:13:07:DB:F6:6F:19:01:63:2A:DF:9F:1A:64 Certificate issuer: /CN=A9132457/serialNumber=9528160E4C304E1307DBF66F1901632ADF9F1A64 Certificate serial: 01B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSgWDkwwThMH2_ZvGQFjKt-fGmQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132457/8AE7392ED81811EDBD650F3DC4F9AE02/lSgWDkwwThMH2_ZvGQFjKt-fGmQ.mft Manifest number: 01AC Signing time: Sat 19 Jul 2025 03:25:23 +0000 Manifest this update: Sat 19 Jul 2025 03:25:23 +0000 Manifest next update: Sat 26 Jul 2025 03:25:23 +0000 Files and hashes: 1: lSgWDkwwThMH2_ZvGQFjKt-fGmQ.crl (hash: ez+162knr6barhr2unl5OJ5QNtdbpnfcty/YFTnZ3JQ=) 2: 8E10E282D81B11EDAB75C13EC4F9AE02.roa (hash: 8k36pvGImmVckUyl9Af0a0wGsrxQEwJI0duKzhrmqDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132457/8AE7392ED81811EDBD650F3DC4F9AE02/lSgWDkwwThMH2_ZvGQFjKt-fGmQ.crl rsync://rpki.apnic.net/member_repository/A9132457/8AE7392ED81811EDBD650F3DC4F9AE02/lSgWDkwwThMH2_ZvGQFjKt-fGmQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSgWDkwwThMH2_ZvGQFjKt-fGmQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:25:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 432 (0x1b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132457, serialNumber=9528160E4C304E1307DBF66F1901632ADF9F1A64 Validity Not Before: Jul 19 03:25:23 2025 GMT Not After : Jul 26 03:25:23 2025 GMT Subject: CN=687b1023-0b6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:e9:7a:91:17:7e:20:76:28:1f:2a:7e:34:b1: f1:8b:31:0b:6b:68:a6:af:06:35:61:8a:a4:72:4c: 38:62:95:36:d7:f7:12:c4:8f:9b:ba:4b:3e:30:95: f5:0d:c1:2d:4c:d0:45:ab:2b:48:fd:76:3a:d3:b6: 78:44:a0:79:7c:6f:31:b9:f6:32:bc:78:55:54:4a: ff:42:2b:04:07:e6:01:47:09:7d:f2:87:54:86:32: d3:18:cd:80:2f:38:e9:b5:e3:1c:37:b2:f5:49:a9: 4c:bc:2f:6f:30:d9:39:50:f0:93:31:36:e6:3e:16: 25:f8:aa:7c:58:69:9b:5e:4d:4e:14:16:28:2d:61: a9:13:b1:37:c7:dd:a4:87:36:9a:00:ba:37:a9:c8: 83:66:6c:01:29:b9:20:85:d6:24:9c:8a:29:01:86: b9:74:80:a0:77:37:59:cf:b7:26:91:91:e9:34:62: 6f:eb:e2:48:11:69:ef:e1:b6:83:b1:4e:cc:bb:8e: c3:52:e8:7d:86:34:e8:46:38:09:44:f9:9a:29:19: d0:e5:18:d9:b2:f0:e3:f8:40:be:10:d4:c8:ca:36: 5f:27:c0:a8:2c:ca:d0:8c:de:42:38:06:7b:8b:35: d8:5f:4a:3e:02:98:59:54:95:93:2c:fa:9b:0a:a4: f7:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:57:E3:AE:C4:AB:16:A3:AE:52:87:CE:9F:BD:CF:19:BE:62:CF:96 X509v3 Authority Key Identifier: keyid:95:28:16:0E:4C:30:4E:13:07:DB:F6:6F:19:01:63:2A:DF:9F:1A:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132457/8AE7392ED81811EDBD650F3DC4F9AE02/lSgWDkwwThMH2_ZvGQFjKt-fGmQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSgWDkwwThMH2_ZvGQFjKt-fGmQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132457/8AE7392ED81811EDBD650F3DC4F9AE02/lSgWDkwwThMH2_ZvGQFjKt-fGmQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:74:cb:91:b7:d1:91:8a:8d:bd:96:d6:31:14:bb:cd:59:2a: 3e:f2:3d:7f:f9:66:f1:77:9b:72:4e:7d:dd:76:4b:fb:fa:81: 56:b6:f0:9a:55:5a:9f:88:e7:f7:84:4b:3a:ba:64:4d:87:04: e6:74:a4:c2:76:47:eb:5f:4f:9a:6e:13:51:c6:9e:d2:2e:ab: d9:ac:ed:90:5a:fe:d6:4d:23:42:70:0b:15:74:bc:75:56:91: b9:ef:23:02:2f:63:a8:2a:25:3d:8a:1f:cf:1b:c0:1c:d4:97: f5:45:bf:7e:df:b5:af:0f:ee:6f:d3:e7:14:e0:55:f0:51:84: 1d:84:df:3e:81:4d:b8:e1:00:9a:c1:4a:fc:07:e9:11:fb:b7: 54:43:07:f9:81:03:9d:44:ec:d6:fa:a2:d8:47:f8:b8:ad:54: 09:a9:43:9c:55:56:e7:23:c2:f6:e0:9b:8d:61:d7:60:9d:fa: 6c:dc:a0:48:f1:18:ec:e5:a4:ca:22:c9:10:8c:a5:73:ba:75: 7c:57:e8:54:44:10:f6:db:f6:bb:73:1b:4c:46:36:64:21:b1: a8:81:62:94:39:98:56:41:be:83:1b:8a:99:72:5d:b4:77:2e: 42:df:5d:9d:1a:12:ed:e2:bc:0c:e7:b9:27:82:94:91:6e:cd: a1:2a:5b:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI0NTcxMTAvBgNVBAUTKDk1MjgxNjBFNEMzMDRFMTMwN0RCRjY2RjE5MDE2MzJB REY5RjFBNjQwHhcNMjUwNzE5MDMyNTIzWhcNMjUwNzI2MDMyNTIzWjAYMRYwFAYD VQQDEw02ODdiMTAyMy0wYjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz+l6kRd+IHYoHyp+NLHxizELa2imrwY1YYqkckw4YpU21/cSxI+buks+MJX1 DcEtTNBFqytI/XY607Z4RKB5fG8xufYyvHhVVEr/QisEB+YBRwl98odUhjLTGM2A LzjpteMcN7L1SalMvC9vMNk5UPCTMTbmPhYl+Kp8WGmbXk1OFBYoLWGpE7E3x92k hzaaALo3qciDZmwBKbkghdYknIopAYa5dICgdzdZz7cmkZHpNGJv6+JIEWnv4baD sU7Mu47DUuh9hjToRjgJRPmaKRnQ5RjZsvDj+EC+ENTIyjZfJ8CoLMrQjN5COAZ7 izXYX0o+AphZVJWTLPqbCqT3aQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPhX467E qxajrlKHzp+9zxm+Ys+WMB8GA1UdIwQYMBaAFJUoFg5MME4TB9v2bxkBYyrfnxpk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjQ1Ny84QUU3MzkyRUQ4 MTgxMUVEQkQ2NTBGM0RDNEY5QUUwMi9sU2dXRGt3d1RoTUgyX1p2R1FGakt0LWZH bVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xTZ1dEa3d3VGhNSDJfWnZHUUZqS3QtZkdtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjQ1Ny84QUU3MzkyRUQ4MTgxMUVEQkQ2NTBGM0RDNEY5QUUwMi9sU2dXRGt3d1Ro TUgyX1p2R1FGakt0LWZHbVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWdMuRt9GRio29ltYxFLvNWSo+8j1/+Wbxd5tyTn3ddkv7+oFWtvCa VVqfiOf3hEs6umRNhwTmdKTCdkfrX0+abhNRxp7SLqvZrO2QWv7WTSNCcAsVdLx1 VpG57yMCL2OoKiU9ih/PG8Ac1Jf1Rb9+37WvD+5v0+cU4FXwUYQdhN8+gU244QCa wUr8B+kR+7dUQwf5gQOdROzW+qLYR/i4rVQJqUOcVVbnI8L24JuNYddgnfps3KBI 8Rjs5aTKIskQjKVzunV8V+hURBD22/a7cxtMRjZkIbGogWKUOZhWQb6DG4qZcl20 dy5C312dGhLt4rwM57kngpSRbs2hKlsi -----END CERTIFICATE-----Generated at Sun Jul 20 03:28:54 2025 by rpki-client