$ rpki-client -vvf rpki.apnic.net/member_repository/A914E600/2AA7D45E77F111EFAC112942C4F9AE02/f4JFu9TUWXIbQdT_K7-0Jf8RiVM.mft File: f4JFu9TUWXIbQdT_K7-0Jf8RiVM.mft (raw, json) Hash identifier: zSb6annYPwVA73xaGe6a3GpQkIctwf9+gYMcvcaOsA4= Subject key identifier: 26:DB:FB:77:B9:19:44:B3:1E:29:6E:48:CE:3A:AE:13:A8:90:F9:F9 Authority key identifier: 7F:82:45:BB:D4:D4:59:72:1B:41:D4:FF:2B:BF:B4:25:FF:11:89:53 Certificate issuer: /CN=A914E600/serialNumber=7F8245BBD4D459721B41D4FF2BBFB425FF118953 Certificate serial: A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f4JFu9TUWXIbQdT_K7-0Jf8RiVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E600/2AA7D45E77F111EFAC112942C4F9AE02/f4JFu9TUWXIbQdT_K7-0Jf8RiVM.mft Manifest number: A2 Signing time: Mon 21 Jul 2025 06:28:32 +0000 Manifest this update: Mon 21 Jul 2025 06:28:32 +0000 Manifest next update: Mon 28 Jul 2025 06:28:32 +0000 Files and hashes: 1: f4JFu9TUWXIbQdT_K7-0Jf8RiVM.crl (hash: 0kYY/2QZgN9vT+dL/XbqwJ5UoDSPMHa/1As4x3jhfeM=) 2: B47102FE77F211EFBA1E9F7EC4F9AE02.roa (hash: SEeajkndfK9XKBY3HRdlq0CgTt3jAkAhBVklDZv6c2o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E600/2AA7D45E77F111EFAC112942C4F9AE02/f4JFu9TUWXIbQdT_K7-0Jf8RiVM.crl rsync://rpki.apnic.net/member_repository/A914E600/2AA7D45E77F111EFAC112942C4F9AE02/f4JFu9TUWXIbQdT_K7-0Jf8RiVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f4JFu9TUWXIbQdT_K7-0Jf8RiVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 06:28:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E600, serialNumber=7F8245BBD4D459721B41D4FF2BBFB425FF118953 Validity Not Before: Jul 21 06:28:32 2025 GMT Not After : Jul 28 06:28:32 2025 GMT Subject: CN=687dde10-7553 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:99:2b:5b:c5:c1:bb:b4:39:44:86:b3:6d:c7: 81:ad:d6:c1:36:25:db:c1:c5:9a:8c:3f:62:f5:72: fc:d0:95:2a:b5:29:15:de:1a:87:b4:f7:14:a6:c2: 3a:88:2c:d6:2e:1f:a9:84:80:f5:5f:38:8e:dd:4f: 0d:04:7b:cc:b6:2f:10:60:82:dd:a0:68:fa:e5:2b: e9:0f:e8:2a:5d:02:d6:63:59:c1:e2:25:88:12:70: a5:df:64:c1:d9:af:9f:02:25:30:ec:60:cb:c9:97: 28:dc:f0:49:6d:d2:96:46:56:b1:2d:1b:7d:aa:b5: a8:8a:35:6d:b2:0a:8c:35:c0:a4:8a:2a:2e:70:19: 79:48:fb:a1:00:ca:17:5b:1a:89:02:28:3c:6c:74: 50:37:63:f9:33:46:88:fb:05:96:11:5d:b4:80:82: ab:f3:a3:2b:d2:0d:3a:bf:27:5f:7f:46:11:29:13: dd:e7:57:9c:50:1d:66:ef:16:5c:eb:7b:10:b9:d7: 46:29:1a:ca:f7:26:15:39:8f:e8:6a:5f:9a:e4:5f: 97:37:30:1e:0d:6c:45:30:30:0a:12:6d:68:4a:c1: ce:a3:4a:e1:87:f9:7a:90:31:e9:7d:c5:be:4e:08: 15:51:ac:5a:28:af:09:49:35:ff:1b:6f:a7:2d:cb: cf:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:DB:FB:77:B9:19:44:B3:1E:29:6E:48:CE:3A:AE:13:A8:90:F9:F9 X509v3 Authority Key Identifier: keyid:7F:82:45:BB:D4:D4:59:72:1B:41:D4:FF:2B:BF:B4:25:FF:11:89:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E600/2AA7D45E77F111EFAC112942C4F9AE02/f4JFu9TUWXIbQdT_K7-0Jf8RiVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f4JFu9TUWXIbQdT_K7-0Jf8RiVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E600/2AA7D45E77F111EFAC112942C4F9AE02/f4JFu9TUWXIbQdT_K7-0Jf8RiVM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:b6:a5:c1:d2:8d:b9:b8:71:0d:92:75:8b:e3:97:ad:d0:9b: 76:e2:d2:26:11:51:82:d8:07:69:78:5c:d9:8d:81:ec:68:af: 11:83:aa:ef:eb:06:ad:b1:ae:67:6c:c3:f3:d6:aa:35:97:c3: fe:92:bd:a5:b8:70:28:28:25:70:65:97:0a:cc:e5:18:87:11: fa:89:3b:ab:ca:fa:6e:ba:01:81:31:db:af:47:6b:f7:0d:83: 83:5e:2a:49:76:f9:3f:e5:74:53:80:34:31:a5:d1:42:54:34: 72:bd:a6:3f:51:c6:10:1e:c9:f0:0f:57:92:36:9f:56:76:84: e0:2e:81:55:0e:bf:95:dd:ab:6f:a5:65:90:f8:d8:ac:78:3a: 49:af:a7:d9:34:e3:6c:e0:70:38:80:51:74:3d:55:c0:bb:92: dc:25:ff:b7:bc:b2:2d:f4:b0:2c:35:61:44:51:6b:b4:f6:d7: 94:ad:3b:81:92:20:f8:bd:1e:1a:d8:7f:de:87:5a:f8:76:a2: ad:12:ab:f7:dc:88:25:7e:05:d0:66:10:9d:df:a3:ae:e4:b3: 41:32:d8:af:0f:a1:f1:c4:b5:83:f5:c5:41:6b:50:74:39:75: a1:41:6e:29:81:5a:c2:be:50:e2:41:c4:7f:3b:53:60:fc:73: 3a:e1:8c:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU2MDAxMTAvBgNVBAUTKDdGODI0NUJCRDRENDU5NzIxQjQxRDRGRjJCQkZCNDI1 RkYxMTg5NTMwHhcNMjUwNzIxMDYyODMyWhcNMjUwNzI4MDYyODMyWjAYMRYwFAYD VQQDEw02ODdkZGUxMC03NTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ZkrW8XBu7Q5RIazbceBrdbBNiXbwcWajD9i9XL80JUqtSkV3hqHtPcUpsI6 iCzWLh+phID1XziO3U8NBHvMti8QYILdoGj65SvpD+gqXQLWY1nB4iWIEnCl32TB 2a+fAiUw7GDLyZco3PBJbdKWRlaxLRt9qrWoijVtsgqMNcCkiioucBl5SPuhAMoX WxqJAig8bHRQN2P5M0aI+wWWEV20gIKr86Mr0g06vydff0YRKRPd51ecUB1m7xZc 63sQuddGKRrK9yYVOY/oal+a5F+XNzAeDWxFMDAKEm1oSsHOo0rhh/l6kDHpfcW+ TggVUaxaKK8JSTX/G2+nLcvPuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCbb+3e5 GUSzHiluSM46rhOokPn5MB8GA1UdIwQYMBaAFH+CRbvU1FlyG0HU/yu/tCX/EYlT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTYwMC8yQUE3RDQ1RTc3 RjExMUVGQUMxMTI5NDJDNEY5QUUwMi9mNEpGdTlUVVdYSWJRZFRfSzctMEpmOFJp Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Y0SkZ1OVRVV1hJYlFkVF9LNy0wSmY4UmlWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTYwMC8yQUE3RDQ1RTc3RjExMUVGQUMxMTI5NDJDNEY5QUUwMi9mNEpGdTlUVVdY SWJRZFRfSzctMEpmOFJpVk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCitqXB0o25uHENknWL45et0Jt24tImEVGC2AdpeFzZjYHsaK8Rg6rv 6watsa5nbMPz1qo1l8P+kr2luHAoKCVwZZcKzOUYhxH6iTuryvpuugGBMduvR2v3 DYODXipJdvk/5XRTgDQxpdFCVDRyvaY/UcYQHsnwD1eSNp9WdoTgLoFVDr+V3atv pWWQ+NiseDpJr6fZNONs4HA4gFF0PVXAu5LcJf+3vLIt9LAsNWFEUWu09teUrTuB kiD4vR4a2H/eh1r4dqKtEqv33IglfgXQZhCd36Ou5LNBMtivD6HxxLWD9cVBa1B0 OXWhQW4pgVrCvlDiQcR/O1Ng/HM64Yzd -----END CERTIFICATE-----Generated at Mon Jul 21 08:44:04 2025 by rpki-client