$ rpki-client -vvf rpki.apnic.net/member_repository/A915D85E/73EF909C3BB511EBB4D1377DC4F9AE02/1FgFH22pUil0dbSEvd0Pu-NJDnA.mft File: 1FgFH22pUil0dbSEvd0Pu-NJDnA.mft (raw, json) Hash identifier: bSg+mJU2ZvGmrSxG2Z5lUcBAf4l9Te11t+EQRRWeOHw= Subject key identifier: 52:51:09:EF:0A:42:93:DE:76:6B:D1:F8:FB:95:79:60:7B:73:63:ED Authority key identifier: D4:58:05:1F:6D:A9:52:29:74:75:B4:84:BD:DD:0F:BB:E3:49:0E:70 Certificate issuer: /CN=A915D85E/serialNumber=D458051F6DA952297475B484BDDD0FBBE3490E70 Certificate serial: 0753 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FgFH22pUil0dbSEvd0Pu-NJDnA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D85E/73EF909C3BB511EBB4D1377DC4F9AE02/1FgFH22pUil0dbSEvd0Pu-NJDnA.mft Manifest number: 073F Signing time: Fri 18 Jul 2025 22:03:59 +0000 Manifest this update: Fri 18 Jul 2025 22:03:58 +0000 Manifest next update: Fri 25 Jul 2025 22:03:58 +0000 Files and hashes: 1: 1FgFH22pUil0dbSEvd0Pu-NJDnA.crl (hash: PmbAtsCPNl/wokSRuMbrwj/YmlsFkgIYVaE3o3bO7dw=) 2: 9B5A7020522911ED9136DF2AC4F9AE02.roa (hash: U4a8o1KXqQZowZ9aJ6tXOocb6xkGyoj65dTRVzeEvrE=) 3: A156AB48195E11F0A64EF837C4F9AE02.roa (hash: 4ckscgD2BUTAR0THvAEvfsoW09ZipVLLJmm4EZ3VF2E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D85E/73EF909C3BB511EBB4D1377DC4F9AE02/1FgFH22pUil0dbSEvd0Pu-NJDnA.crl rsync://rpki.apnic.net/member_repository/A915D85E/73EF909C3BB511EBB4D1377DC4F9AE02/1FgFH22pUil0dbSEvd0Pu-NJDnA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FgFH22pUil0dbSEvd0Pu-NJDnA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 22:03:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1875 (0x753) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D85E, serialNumber=D458051F6DA952297475B484BDDD0FBBE3490E70 Validity Not Before: Jul 18 22:03:58 2025 GMT Not After : Jul 25 22:03:58 2025 GMT Subject: CN=687ac4ce-3785 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:af:93:84:3f:7f:83:cf:d5:0c:eb:7b:9b:dc: cb:8d:60:53:59:e7:24:ee:6c:1f:ff:19:bb:4c:d9: 4f:a2:99:1e:f3:9c:07:ee:2d:98:8f:f1:55:31:85: 00:22:a1:9b:fa:46:d0:3f:a2:cc:79:9f:1b:4f:09: c6:10:b5:e2:6b:78:17:ff:d5:7f:c8:35:b1:63:e6: 8b:2a:1d:37:dd:6b:6e:f6:24:f1:c3:5c:bf:a9:89: 66:70:fd:e3:f5:ec:10:fe:a9:9b:18:24:e4:37:1b: 82:33:c5:02:2d:56:82:9f:c7:56:2c:41:10:ab:94: 6b:16:d2:4c:34:0c:d3:b4:7b:1f:47:94:bf:35:78: 53:b4:9d:c4:2b:75:fa:96:4a:2c:bd:f6:86:74:71: 7b:2f:28:aa:cb:49:3b:51:16:cc:1e:15:9d:1a:c3: da:df:e8:97:df:f6:12:f1:a3:6e:02:ba:97:e9:62: b4:c5:ea:9f:51:6f:cb:ff:6a:43:67:cb:20:f6:e7: 7c:6d:5e:7b:2a:b1:60:28:73:54:3e:b5:e3:31:6e: 03:35:38:d1:8c:02:fc:5d:71:ef:2d:46:ad:ba:07: dc:8d:46:5d:3b:24:b9:d3:ef:9d:b1:f4:7b:47:30: 95:bc:f8:95:23:0f:ca:e6:1c:e4:21:21:8e:54:8a: e0:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:51:09:EF:0A:42:93:DE:76:6B:D1:F8:FB:95:79:60:7B:73:63:ED X509v3 Authority Key Identifier: keyid:D4:58:05:1F:6D:A9:52:29:74:75:B4:84:BD:DD:0F:BB:E3:49:0E:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D85E/73EF909C3BB511EBB4D1377DC4F9AE02/1FgFH22pUil0dbSEvd0Pu-NJDnA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FgFH22pUil0dbSEvd0Pu-NJDnA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D85E/73EF909C3BB511EBB4D1377DC4F9AE02/1FgFH22pUil0dbSEvd0Pu-NJDnA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:42:8e:f0:03:fd:aa:62:1d:86:72:2f:52:b5:00:70:54:11: bb:64:2c:ff:19:a3:c9:5c:49:c7:c0:71:13:29:98:f2:57:1b: d8:68:3a:67:35:3a:f0:61:3b:3f:09:cf:d1:8b:32:9d:cc:73: 7f:94:87:32:3a:43:4f:b6:f9:49:b1:f3:8c:ee:29:15:4a:76: db:13:8c:a2:49:09:eb:00:53:48:c9:df:7c:96:2b:ad:16:ad: d5:20:24:fa:9f:c0:8c:09:f1:91:b6:fe:4d:82:18:a0:7e:61: 33:6f:11:2e:a8:c8:4a:45:1e:30:aa:80:5d:32:53:bc:21:fd: ab:96:26:ab:99:94:59:cf:da:a0:25:93:51:b8:f1:3b:ee:ce: 2b:70:57:e5:f0:1e:51:0a:f3:a5:25:6f:3b:e7:cf:4f:1b:76: 3e:45:70:c6:7c:87:0e:be:c5:86:80:ff:5a:9a:32:2c:58:96: e9:31:d9:54:dc:e9:02:47:04:33:a5:32:fa:a8:62:19:64:be: 47:79:1f:7f:af:e6:b3:91:b8:8b:2d:4d:4d:51:12:13:bc:98: 43:0d:89:46:1f:40:0e:52:0e:6c:58:a1:db:83:6e:37:bb:57: 13:23:82:46:d3:8d:24:26:55:09:35:3c:78:d4:7c:93:2a:5a: a7:eb:24:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB1MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ4NUUxMTAvBgNVBAUTKEQ0NTgwNTFGNkRBOTUyMjk3NDc1QjQ4NEJEREQwRkJC RTM0OTBFNzAwHhcNMjUwNzE4MjIwMzU4WhcNMjUwNzI1MjIwMzU4WjAYMRYwFAYD VQQDEw02ODdhYzRjZS0zNzg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv6+ThD9/g8/VDOt7m9zLjWBTWeck7mwf/xm7TNlPopke85wH7i2Yj/FVMYUA IqGb+kbQP6LMeZ8bTwnGELXia3gX/9V/yDWxY+aLKh033Wtu9iTxw1y/qYlmcP3j 9ewQ/qmbGCTkNxuCM8UCLVaCn8dWLEEQq5RrFtJMNAzTtHsfR5S/NXhTtJ3EK3X6 lkosvfaGdHF7Lyiqy0k7URbMHhWdGsPa3+iX3/YS8aNuArqX6WK0xeqfUW/L/2pD Z8sg9ud8bV57KrFgKHNUPrXjMW4DNTjRjAL8XXHvLUatugfcjUZdOyS50++dsfR7 RzCVvPiVIw/K5hzkISGOVIrgJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFJRCe8K QpPedmvR+PuVeWB7c2PtMB8GA1UdIwQYMBaAFNRYBR9tqVIpdHW0hL3dD7vjSQ5w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDg1RS83M0VGOTA5QzNC QjUxMUVCQjREMTM3N0RDNEY5QUUwMi8xRmdGSDIycFVpbDBkYlNFdmQwUHUtTkpE bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFGZ0ZIMjJwVWlsMGRiU0V2ZDBQdS1OSkRuQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDg1RS83M0VGOTA5QzNCQjUxMUVCQjREMTM3N0RDNEY5QUUwMi8xRmdGSDIycFVp bDBkYlNFdmQwUHUtTkpEbkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9Qo7wA/2qYh2Gci9StQBwVBG7ZCz/GaPJXEnHwHETKZjyVxvYaDpn NTrwYTs/Cc/RizKdzHN/lIcyOkNPtvlJsfOM7ikVSnbbE4yiSQnrAFNIyd98liut Fq3VICT6n8CMCfGRtv5NghigfmEzbxEuqMhKRR4wqoBdMlO8If2rliarmZRZz9qg JZNRuPE77s4rcFfl8B5RCvOlJW87589PG3Y+RXDGfIcOvsWGgP9amjIsWJbpMdlU 3OkCRwQzpTL6qGIZZL5HeR9/r+azkbiLLU1NURITvJhDDYlGH0AOUg5sWKHbg243 u1cTI4JG040kJlUJNTx41HyTKlqn6yTi -----END CERTIFICATE-----Generated at Sun Jul 20 02:52:43 2025 by rpki-client