$ rpki-client -vvf rpki.apnic.net/member_repository/A913344F/94FFBAA0250F11E990DDE36CC4F9AE02/rSHioIh9gBBYg2nxR4WWAoR3zb4.mft File: rSHioIh9gBBYg2nxR4WWAoR3zb4.mft (raw, json) Hash identifier: XziLV5JUktZmV8LpgwErqWEzeTqm+nbju+Upl2g6QoY= Subject key identifier: CF:8B:56:0C:9C:53:9F:F6:2A:FD:CD:08:BE:85:3E:97:8A:05:26:D8 Authority key identifier: AD:21:E2:A0:88:7D:80:10:58:83:69:F1:47:85:96:02:84:77:CD:BE Certificate issuer: /CN=A913344F/serialNumber=AD21E2A0887D8010588369F1478596028477CDBE Certificate serial: 10D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHioIh9gBBYg2nxR4WWAoR3zb4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913344F/94FFBAA0250F11E990DDE36CC4F9AE02/rSHioIh9gBBYg2nxR4WWAoR3zb4.mft Manifest number: 10CE Signing time: Fri 18 Jul 2025 17:27:54 +0000 Manifest this update: Fri 18 Jul 2025 17:27:53 +0000 Manifest next update: Fri 25 Jul 2025 17:27:53 +0000 Files and hashes: 1: rSHioIh9gBBYg2nxR4WWAoR3zb4.crl (hash: 7Rv3NhGrtWbIaht5FiufM29yf+HvZZEmieVtJmGPmd4=) 2: 2CDBC1B0251111E997B74770C4F9AE02.roa (hash: /+y+JZvdgDvleCapwUXYIThVyUcKdFkPONIIfNbMybY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913344F/94FFBAA0250F11E990DDE36CC4F9AE02/rSHioIh9gBBYg2nxR4WWAoR3zb4.crl rsync://rpki.apnic.net/member_repository/A913344F/94FFBAA0250F11E990DDE36CC4F9AE02/rSHioIh9gBBYg2nxR4WWAoR3zb4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHioIh9gBBYg2nxR4WWAoR3zb4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 17:27:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4309 (0x10d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913344F, serialNumber=AD21E2A0887D8010588369F1478596028477CDBE Validity Not Before: Jul 18 17:27:53 2025 GMT Not After : Jul 25 17:27:53 2025 GMT Subject: CN=687a841a-32fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:7d:be:43:07:20:89:9a:8b:31:d0:3a:10:82: 19:26:57:88:52:13:2e:8b:3f:02:f1:8c:49:14:9b: bd:4b:df:ba:65:a9:19:55:8c:84:fa:fe:52:ae:73: e4:26:ca:ed:b7:76:10:9c:e1:f9:42:ee:ad:96:9b: ba:c8:b5:6e:cd:a0:9d:17:5a:8d:7f:61:f5:6e:93: ac:e7:7d:fa:fa:63:aa:74:a4:b8:85:27:ba:3b:46: e1:b2:3d:6e:c8:e3:0c:39:49:a7:1f:44:4a:51:a2: d9:74:dd:1f:3b:70:d8:c7:91:75:71:78:4a:51:26: 6a:6d:96:7f:14:c5:11:1f:1e:7b:9e:64:be:04:48: b2:bd:60:cd:b2:4a:cd:f8:1e:49:4a:69:a9:43:4e: d1:34:97:0f:e6:51:f9:94:5d:b8:ba:cd:df:a2:0d: c3:c8:57:6c:b5:57:20:f9:a2:8b:c1:75:a4:5e:9c: 05:67:e4:2b:9c:1e:0a:c4:e0:93:81:50:d7:3c:37: a1:c4:4b:b7:ad:bd:28:91:31:26:5b:63:4d:b2:ff: bd:58:bf:dd:1e:ea:4a:5f:c0:b7:ba:86:03:fd:83: 20:6e:84:ea:f6:6c:18:66:87:ee:ff:75:05:2a:67: 82:17:02:1a:a4:d4:6b:b2:bb:6b:2b:22:a8:2e:71: fd:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:8B:56:0C:9C:53:9F:F6:2A:FD:CD:08:BE:85:3E:97:8A:05:26:D8 X509v3 Authority Key Identifier: keyid:AD:21:E2:A0:88:7D:80:10:58:83:69:F1:47:85:96:02:84:77:CD:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913344F/94FFBAA0250F11E990DDE36CC4F9AE02/rSHioIh9gBBYg2nxR4WWAoR3zb4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHioIh9gBBYg2nxR4WWAoR3zb4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913344F/94FFBAA0250F11E990DDE36CC4F9AE02/rSHioIh9gBBYg2nxR4WWAoR3zb4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:e7:65:82:fb:b7:e5:48:af:46:2f:c1:b4:a5:21:b6:e9:18: 34:53:50:1f:e1:4f:15:ad:de:a6:51:4a:20:c4:0d:88:a7:a3: 46:61:e5:a7:cf:dd:76:0b:c2:72:46:6d:c3:50:ff:5a:d4:95: f6:42:45:e1:4c:cb:22:d9:19:74:f7:77:7f:52:03:2d:6d:5b: f9:aa:49:c5:10:9d:66:e1:96:96:6a:34:3b:ca:b9:d4:3d:aa: 7d:a3:c5:e1:5f:16:be:e9:b0:8c:49:f2:ec:0f:ca:3c:9b:a1: 01:9f:5b:b4:eb:cd:54:28:15:02:5f:dd:5b:d7:84:90:aa:f0: 0e:12:c1:99:da:e1:f6:87:a9:84:86:47:99:72:1c:92:78:a1: 74:31:a6:8f:a8:01:1e:40:50:a9:05:3a:c1:49:9d:60:4c:e8: 62:21:02:f3:ec:3a:7b:06:9b:1e:39:27:30:ac:83:ab:c7:68: b8:ed:8b:86:c2:b2:7a:1f:a8:07:13:90:5c:87:a4:5f:04:36: 5e:55:39:68:a5:10:4a:34:01:d3:60:07:85:31:c1:b8:44:4d: be:5e:dc:13:6b:2e:cf:b7:25:0b:24:fa:5d:da:4c:13:f9:52: 8e:a4:f9:cf:0c:e1:41:29:01:00:21:c5:16:6c:3d:d4:a1:8d: 2f:af:52:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICENUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzM0NEYxMTAvBgNVBAUTKEFEMjFFMkEwODg3RDgwMTA1ODgzNjlGMTQ3ODU5NjAy ODQ3N0NEQkUwHhcNMjUwNzE4MTcyNzUzWhcNMjUwNzI1MTcyNzUzWjAYMRYwFAYD VQQDEw02ODdhODQxYS0zMmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArX2+QwcgiZqLMdA6EIIZJleIUhMuiz8C8YxJFJu9S9+6ZakZVYyE+v5SrnPk Jsrtt3YQnOH5Qu6tlpu6yLVuzaCdF1qNf2H1bpOs5336+mOqdKS4hSe6O0bhsj1u yOMMOUmnH0RKUaLZdN0fO3DYx5F1cXhKUSZqbZZ/FMURHx57nmS+BEiyvWDNskrN +B5JSmmpQ07RNJcP5lH5lF24us3fog3DyFdstVcg+aKLwXWkXpwFZ+QrnB4KxOCT gVDXPDehxEu3rb0okTEmW2NNsv+9WL/dHupKX8C3uoYD/YMgboTq9mwYZofu/3UF KmeCFwIapNRrsrtrKyKoLnH9oQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM+LVgyc U5/2Kv3NCL6FPpeKBSbYMB8GA1UdIwQYMBaAFK0h4qCIfYAQWINp8UeFlgKEd82+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzQ0Ri85NEZGQkFBMDI1 MEYxMUU5OTBEREUzNkNDNEY5QUUwMi9yU0hpb0loOWdCQllnMm54UjRXV0FvUjN6 YjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JTSGlvSWg5Z0JCWWcybnhSNFdXQW9SM3piNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MzQ0Ri85NEZGQkFBMDI1MEYxMUU5OTBEREUzNkNDNEY5QUUwMi9yU0hpb0loOWdC QllnMm54UjRXV0FvUjN6YjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAa52WC+7flSK9GL8G0pSG26Rg0U1Af4U8Vrd6mUUogxA2Ip6NGYeWn z912C8JyRm3DUP9a1JX2QkXhTMsi2Rl093d/UgMtbVv5qknFEJ1m4ZaWajQ7yrnU Pap9o8XhXxa+6bCMSfLsD8o8m6EBn1u0681UKBUCX91b14SQqvAOEsGZ2uH2h6mE hkeZchySeKF0MaaPqAEeQFCpBTrBSZ1gTOhiIQLz7Dp7BpseOScwrIOrx2i47YuG wrJ6H6gHE5Bch6RfBDZeVTlopRBKNAHTYAeFMcG4RE2+XtwTay7PtyULJPpd2kwT +VKOpPnPDOFBKQEAIcUWbD3UoY0vr1IQ -----END CERTIFICATE-----Generated at Sun Jul 20 07:38:33 2025 by rpki-client