$ rpki-client -vvf rpki.apnic.net/member_repository/A9141FD6/6EEC64301D9111E2B687A5F308B02CD2/a51l6unGl9ohy0vuv030zgpBkyE.mft File: a51l6unGl9ohy0vuv030zgpBkyE.mft (raw, json) Hash identifier: jE7G2X2uRSxlwOoHy1Z92P91YvLRKfc5Xi1BTwXWy84= Subject key identifier: 62:EB:7E:AC:6A:A0:07:E5:8D:00:26:83:66:CC:C9:37:20:A3:02:CB Authority key identifier: 6B:9D:65:EA:E9:C6:97:DA:21:CB:4B:EE:BF:4D:F4:CE:0A:41:93:21 Certificate issuer: /CN=A9141FD6/serialNumber=6B9D65EAE9C697DA21CB4BEEBF4DF4CE0A419321 Certificate serial: 34DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a51l6unGl9ohy0vuv030zgpBkyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141FD6/6EEC64301D9111E2B687A5F308B02CD2/a51l6unGl9ohy0vuv030zgpBkyE.mft Manifest number: 34BF Signing time: Sun 20 Jul 2025 14:44:28 +0000 Manifest this update: Sun 20 Jul 2025 14:44:28 +0000 Manifest next update: Sun 27 Jul 2025 14:44:28 +0000 Files and hashes: 1: a51l6unGl9ohy0vuv030zgpBkyE.crl (hash: KXq/G6J7l+hiYuC8r8i+8QJPaqz8/LcybwMZr/VGlhs=) 2: 6215E9C089CF11ECA1DA1810C4F9AE02.roa (hash: o3Ceb2MSjRakfXXsxsrz1v3BRN+sMCeTig6Z0QGV2lg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141FD6/6EEC64301D9111E2B687A5F308B02CD2/a51l6unGl9ohy0vuv030zgpBkyE.crl rsync://rpki.apnic.net/member_repository/A9141FD6/6EEC64301D9111E2B687A5F308B02CD2/a51l6unGl9ohy0vuv030zgpBkyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a51l6unGl9ohy0vuv030zgpBkyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:44:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13530 (0x34da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141FD6, serialNumber=6B9D65EAE9C697DA21CB4BEEBF4DF4CE0A419321 Validity Not Before: Jul 20 14:44:28 2025 GMT Not After : Jul 27 14:44:28 2025 GMT Subject: CN=687d00cc-f61c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:98:9b:1e:c2:ba:95:26:51:81:b4:4e:b7:11: 41:bd:39:e1:00:6e:0a:75:71:6e:5f:79:4f:cc:2d: c1:99:e0:65:40:6d:25:27:31:54:46:c9:06:70:50: 95:45:04:69:b6:23:24:75:07:49:62:5c:08:31:a6: 58:ca:ec:52:97:f7:6e:b4:bf:f3:cc:c4:63:f2:39: bf:87:5f:ca:37:95:45:44:ff:c9:4a:46:aa:ae:42: bd:37:a5:e4:23:b4:0e:a3:6d:fc:27:89:fe:fb:7d: 6b:70:9f:d4:51:d7:b2:a6:0b:1d:19:d6:de:67:b2: f8:09:84:31:d0:12:10:ec:83:3c:eb:37:47:d0:24: ea:95:1c:5e:63:14:4c:5c:42:ae:64:ed:04:5a:ee: 09:3a:72:9e:1e:e7:30:20:d1:b0:6d:cc:4f:ae:49: 3b:10:1c:0a:45:19:5f:be:b3:0f:51:0a:24:90:55: 70:e9:87:a7:08:e8:64:dc:6b:57:8e:80:0a:83:f8: 62:25:dd:28:46:ea:f1:76:fc:16:d0:4b:de:15:cb: 9e:48:d7:8a:3f:b1:f2:2f:79:74:f5:ec:89:46:f5: db:0e:e5:d9:2b:90:28:95:72:59:6d:7b:75:34:2c: 8d:51:52:5b:ae:c2:21:33:3a:45:a2:23:cd:89:07: f4:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:EB:7E:AC:6A:A0:07:E5:8D:00:26:83:66:CC:C9:37:20:A3:02:CB X509v3 Authority Key Identifier: keyid:6B:9D:65:EA:E9:C6:97:DA:21:CB:4B:EE:BF:4D:F4:CE:0A:41:93:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141FD6/6EEC64301D9111E2B687A5F308B02CD2/a51l6unGl9ohy0vuv030zgpBkyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a51l6unGl9ohy0vuv030zgpBkyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141FD6/6EEC64301D9111E2B687A5F308B02CD2/a51l6unGl9ohy0vuv030zgpBkyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:ca:14:b5:8f:c7:89:74:7a:4d:01:0e:cf:87:5b:1e:6d:c2: f7:d5:e7:fb:11:c8:87:f7:2c:26:09:7e:fb:f4:81:59:b4:da: 8b:66:e2:26:d0:91:15:48:33:2f:c7:09:9e:83:52:c0:bb:f7: 53:ce:c7:37:4d:a3:d9:51:74:20:01:03:60:b2:f9:16:f1:4c: 7f:3a:e2:1d:f9:98:a7:00:6f:f1:d4:84:99:34:95:db:dc:5e: ed:32:37:bd:bd:13:3c:52:1b:4d:f6:18:eb:ad:b0:e6:e5:2c: 8d:6c:ef:c4:96:9e:f1:a4:94:79:53:73:bb:4d:9d:f2:9f:38: f6:12:7d:ad:7d:d0:e2:cb:8d:8a:9d:12:78:62:bc:96:f1:cc: cf:02:e7:a2:16:56:42:c9:ac:a5:c4:c8:06:e9:24:67:27:72: 5c:a8:fa:b1:24:24:0d:3c:e7:f7:49:d8:54:14:d8:04:b1:9b: f5:c1:84:e1:b1:ac:68:a4:91:64:c8:48:5b:5d:97:22:2a:d9: ac:5b:d7:1f:d9:d5:54:8e:bc:ac:1a:ce:e9:aa:60:5f:c4:16: 45:25:8b:8c:4a:d0:a1:4b:87:6e:96:7e:b3:94:80:c0:1a:99: 55:0f:c9:a8:73:b8:e3:e3:52:9e:75:04:b3:dd:2a:82:04:f3: 72:42:45:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDFGRDYxMTAvBgNVBAUTKDZCOUQ2NUVBRTlDNjk3REEyMUNCNEJFRUJGNERGNENF MEE0MTkzMjEwHhcNMjUwNzIwMTQ0NDI4WhcNMjUwNzI3MTQ0NDI4WjAYMRYwFAYD VQQDEw02ODdkMDBjYy1mNjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5ZibHsK6lSZRgbROtxFBvTnhAG4KdXFuX3lPzC3BmeBlQG0lJzFURskGcFCV RQRptiMkdQdJYlwIMaZYyuxSl/dutL/zzMRj8jm/h1/KN5VFRP/JSkaqrkK9N6Xk I7QOo238J4n++31rcJ/UUdeypgsdGdbeZ7L4CYQx0BIQ7IM86zdH0CTqlRxeYxRM XEKuZO0EWu4JOnKeHucwINGwbcxPrkk7EBwKRRlfvrMPUQokkFVw6YenCOhk3GtX joAKg/hiJd0oRurxdvwW0EveFcueSNeKP7HyL3l09eyJRvXbDuXZK5AolXJZbXt1 NCyNUVJbrsIhMzpFoiPNiQf05wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGLrfqxq oAfljQAmg2bMyTcgowLLMB8GA1UdIwQYMBaAFGudZerpxpfaIctL7r9N9M4KQZMh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MUZENi82RUVDNjQzMDFE OTExMUUyQjY4N0E1RjMwOEIwMkNEMi9hNTFsNnVuR2w5b2h5MHZ1djAzMHpncEJr eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2E1MWw2dW5HbDlvaHkwdnV2MDMwemdwQmt5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MUZENi82RUVDNjQzMDFEOTExMUUyQjY4N0E1RjMwOEIwMkNEMi9hNTFsNnVuR2w5 b2h5MHZ1djAzMHpncEJreUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+yhS1j8eJdHpNAQ7Ph1sebcL31ef7EciH9ywmCX779IFZtNqLZuIm 0JEVSDMvxwmeg1LAu/dTzsc3TaPZUXQgAQNgsvkW8Ux/OuId+ZinAG/x1ISZNJXb 3F7tMje9vRM8UhtN9hjrrbDm5SyNbO/Elp7xpJR5U3O7TZ3ynzj2En2tfdDiy42K nRJ4YryW8czPAueiFlZCyaylxMgG6SRnJ3JcqPqxJCQNPOf3SdhUFNgEsZv1wYTh saxopJFkyEhbXZciKtmsW9cf2dVUjrysGs7pqmBfxBZFJYuMStChS4duln6zlIDA GplVD8moc7jj41KedQSz3SqCBPNyQkUg -----END CERTIFICATE-----Generated at Mon Jul 21 12:47:01 2025 by rpki-client