$ rpki-client -vvf rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft File: 8bck5A2FxU9R1iHHL4lskXXJsRk.mft (raw, json) Hash identifier: RdJiQsQgJXuA3v3Ejmx0p1XKaex/a68fgWY+MDmQ6Hw= Subject key identifier: D1:95:81:76:1E:0A:C0:9E:8E:82:10:31:8D:F9:1A:1C:7D:14:55:9B Authority key identifier: F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 Certificate issuer: /CN=A914E3F5/serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Certificate serial: 0A20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft Manifest number: 0A19 Signing time: Fri 18 Jul 2025 20:02:04 +0000 Manifest this update: Fri 18 Jul 2025 20:02:03 +0000 Manifest next update: Fri 25 Jul 2025 20:02:03 +0000 Files and hashes: 1: 8bck5A2FxU9R1iHHL4lskXXJsRk.crl (hash: ZyB+g8M+WbJbsDjHm1fbH702+GBBo5Ox8Nk9g9qwYQQ=) 2: 354725E6763311EABAE64466C4F9AE02.roa (hash: Cq3lv6Zk0IbD7VRfp29jZdbfC7fvyWbXvi/cd+0Sx0c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 20:02:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2592 (0xa20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E3F5, serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Validity Not Before: Jul 18 20:02:03 2025 GMT Not After : Jul 25 20:02:03 2025 GMT Subject: CN=687aa83c-12e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a3:a3:4a:28:52:3e:a0:62:8c:44:19:e7:dc: fb:3b:b3:39:38:e3:19:2c:90:ce:52:55:f2:36:d2: 2e:d7:52:42:bb:b1:c9:49:61:73:4c:94:d1:92:c2: ed:86:ba:c8:bb:4e:f1:1c:bd:66:5e:ff:6e:6a:ea: 50:41:b6:d5:89:8d:a5:75:9c:98:b2:f7:e9:a7:36: 8b:f9:72:c7:8b:fa:40:f1:3c:b6:ad:19:60:b2:67: 06:02:a7:13:b9:1c:5f:a3:56:57:dd:c3:21:24:64: 55:46:87:b8:38:6c:12:49:95:d0:b7:de:64:48:c4: 4b:69:ba:14:66:d7:dd:59:64:b4:93:2a:9e:5c:c5: 72:9a:ac:b1:b8:7e:b7:75:59:df:e1:fa:1a:10:ba: 9b:de:23:2f:3b:89:62:7d:43:a6:69:ca:e2:79:70: 1a:6e:aa:e5:1a:bb:f7:f3:fe:a5:28:d1:d7:6d:7a: 11:54:c7:c6:e0:a3:2b:0f:8b:5e:6e:68:c9:b5:5f: bf:14:b4:df:7c:16:0c:5e:ef:d3:29:cc:9c:30:eb: 2b:fb:3a:0a:82:f8:82:d9:6c:7e:44:36:21:15:74: 6e:56:02:4c:5f:23:4b:7c:14:98:66:d5:35:3a:53: 78:75:1b:59:ed:46:43:f7:e2:74:5c:44:74:16:8e: 48:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:95:81:76:1E:0A:C0:9E:8E:82:10:31:8D:F9:1A:1C:7D:14:55:9B X509v3 Authority Key Identifier: keyid:F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:a2:74:fb:7b:ce:59:cd:49:5b:cc:fa:eb:4b:3d:b1:79:65: 69:c9:ff:01:8c:0c:28:d4:ce:b3:64:66:55:dc:2c:c2:8b:28: e8:bd:23:fb:2c:e0:9a:3b:fa:d2:c5:2e:11:09:68:21:1e:1c: 9f:4e:db:1a:f4:c4:a6:e3:7b:ac:1a:e6:f9:5a:6a:47:fb:6b: 5b:2e:e6:ae:b4:1d:f5:56:5d:fa:aa:9d:2e:28:85:fb:e8:50: 9a:56:d7:7e:11:ee:76:2b:ce:60:9f:d1:86:e8:a9:cd:ae:15: 0a:ac:9b:0f:bf:86:83:ae:1b:42:a8:05:31:94:31:31:26:43: d3:10:c9:a0:7d:6e:09:4c:73:55:58:bd:e8:fb:42:cc:0e:0e: d8:1e:65:02:95:32:9c:a2:04:18:60:4c:9d:de:0f:69:92:02: 23:89:7c:d4:6b:bf:24:c9:80:95:93:da:a6:f3:88:1d:ba:1c: 01:91:4b:6a:b9:57:9d:01:f4:f0:73:e8:47:00:f1:96:33:05: 46:a6:63:1c:6d:03:ef:27:ac:65:a7:44:f1:f8:39:27:7f:02: 64:b4:95:0b:f1:c9:dc:5d:9c:9d:19:64:47:ac:05:d7:2e:11: 88:c5:65:32:a0:75:81:ab:de:cc:90:83:8f:54:ab:cd:53:ec: 3f:f7:ce:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUzRjUxMTAvBgNVBAUTKEYxQjcyNEU0MEQ4NUM1NEY1MUQ2MjFDNzJGODk2Qzkx NzVDOUIxMTkwHhcNMjUwNzE4MjAwMjAzWhcNMjUwNzI1MjAwMjAzWjAYMRYwFAYD VQQDEw02ODdhYTgzYy0xMmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsKOjSihSPqBijEQZ59z7O7M5OOMZLJDOUlXyNtIu11JCu7HJSWFzTJTRksLt hrrIu07xHL1mXv9uaupQQbbViY2ldZyYsvfppzaL+XLHi/pA8Ty2rRlgsmcGAqcT uRxfo1ZX3cMhJGRVRoe4OGwSSZXQt95kSMRLaboUZtfdWWS0kyqeXMVymqyxuH63 dVnf4foaELqb3iMvO4lifUOmacrieXAabqrlGrv38/6lKNHXbXoRVMfG4KMrD4te bmjJtV+/FLTffBYMXu/TKcycMOsr+zoKgviC2Wx+RDYhFXRuVgJMXyNLfBSYZtU1 OlN4dRtZ7UZD9+J0XER0Fo5IOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNGVgXYe CsCejoIQMY35Ghx9FFWbMB8GA1UdIwQYMBaAFPG3JOQNhcVPUdYhxy+JbJF1ybEZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTNGNS84MTFCNjA0Qzc2 MzExMUVBOTcxNUY4NjBDNEY5QUUwMi84YmNrNUEyRnhVOVIxaUhITDRsc2tYWEpz UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhiY2s1QTJGeFU5UjFpSEhMNGxza1hYSnNSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTNGNS84MTFCNjA0Qzc2MzExMUVBOTcxNUY4NjBDNEY5QUUwMi84YmNrNUEyRnhV OVIxaUhITDRsc2tYWEpzUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEonT7e85ZzUlbzPrrSz2xeWVpyf8BjAwo1M6zZGZV3CzCiyjovSP7 LOCaO/rSxS4RCWghHhyfTtsa9MSm43usGub5WmpH+2tbLuautB31Vl36qp0uKIX7 6FCaVtd+Ee52K85gn9GG6KnNrhUKrJsPv4aDrhtCqAUxlDExJkPTEMmgfW4JTHNV WL3o+0LMDg7YHmUClTKcogQYYEyd3g9pkgIjiXzUa78kyYCVk9qm84gduhwBkUtq uVedAfTwc+hHAPGWMwVGpmMcbQPvJ6xlp0Tx+DknfwJktJUL8cncXZydGWRHrAXX LhGIxWUyoHWBq97MkIOPVKvNU+w/985m -----END CERTIFICATE-----Generated at Sun Jul 20 11:56:20 2025 by rpki-client