$ rpki-client -vvf rpki.apnic.net/member_repository/A915EA46/DBDA2CC49C1111EF92FBA97CC4F9AE02/rCjcKlVLTjOaOZyWQrTOAmio37A.mft File: rCjcKlVLTjOaOZyWQrTOAmio37A.mft (raw, json) Hash identifier: Qv6cmZYhMEFbvYI9cCO1Kg6/Ilocs7XSXwVcV9cK9iU= Subject key identifier: 29:55:13:60:33:48:51:38:02:CD:E0:AB:F2:8B:D9:FF:DD:B3:B3:58 Authority key identifier: AC:28:DC:2A:55:4B:4E:33:9A:39:9C:96:42:B4:CE:02:68:A8:DF:B0 Certificate issuer: /CN=A915EA46/serialNumber=AC28DC2A554B4E339A399C9642B4CE0268A8DFB0 Certificate serial: 84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rCjcKlVLTjOaOZyWQrTOAmio37A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EA46/DBDA2CC49C1111EF92FBA97CC4F9AE02/rCjcKlVLTjOaOZyWQrTOAmio37A.mft Manifest number: 83 Signing time: Sat 19 Jul 2025 06:51:10 +0000 Manifest this update: Sat 19 Jul 2025 06:51:09 +0000 Manifest next update: Sat 26 Jul 2025 06:51:09 +0000 Files and hashes: 1: rCjcKlVLTjOaOZyWQrTOAmio37A.crl (hash: cftWqtN27G+1JRD7QfRKA5D2Jca4ILxZnKFgS+5JN8I=) 2: A1E99A4E9C1211EFB233147EC4F9AE02.roa (hash: 3ye2avJW3DGdXLpGllemApGuBs5Hg/Dy3+TFvLk8rE8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EA46/DBDA2CC49C1111EF92FBA97CC4F9AE02/rCjcKlVLTjOaOZyWQrTOAmio37A.crl rsync://rpki.apnic.net/member_repository/A915EA46/DBDA2CC49C1111EF92FBA97CC4F9AE02/rCjcKlVLTjOaOZyWQrTOAmio37A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rCjcKlVLTjOaOZyWQrTOAmio37A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:51:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 132 (0x84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EA46, serialNumber=AC28DC2A554B4E339A399C9642B4CE0268A8DFB0 Validity Not Before: Jul 19 06:51:09 2025 GMT Not After : Jul 26 06:51:09 2025 GMT Subject: CN=687b405d-4b39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:5f:bb:a2:b9:35:27:66:10:21:ff:a0:87:2a: da:ca:1c:2e:ff:95:5c:99:74:d2:0e:00:22:bd:75: 08:64:46:4d:b3:dd:bc:6c:e9:f6:4e:fb:25:f3:a5: 20:6b:58:92:cf:89:d3:1e:89:33:83:de:40:ab:e6: 9d:c5:2c:ee:f3:6b:79:ca:3f:2c:14:84:a2:6c:73: e1:92:ca:bc:d8:d0:8c:2e:4b:7c:63:2a:21:bf:ce: 79:b6:5f:cc:bb:51:3e:ab:54:2c:86:d5:2e:0c:a4: 54:1c:8f:9e:29:fc:ac:a6:4f:5f:01:3d:6a:51:b0: cd:d8:79:21:81:ca:ac:8f:47:79:62:c4:6b:ad:d5: b5:45:11:3a:2b:31:bd:22:34:93:4c:98:58:00:58: 0f:65:46:4d:ed:6b:8b:15:e7:18:42:58:b1:8a:f1: cd:0c:47:68:c8:46:bc:c4:19:0d:08:58:92:fd:78: b1:14:0a:2f:a4:8e:e2:35:b1:4d:f4:45:c6:44:82: 00:99:6a:fa:b9:a6:79:6d:6c:86:59:db:f6:90:49: 60:ed:ce:53:c8:ca:c5:f7:9a:cc:df:aa:52:64:ac: e4:1c:d8:51:cc:24:c2:f1:1a:12:cf:fc:39:3d:3b: ed:2b:ae:42:ae:ee:91:d6:27:5d:40:14:a7:81:f2: 76:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:55:13:60:33:48:51:38:02:CD:E0:AB:F2:8B:D9:FF:DD:B3:B3:58 X509v3 Authority Key Identifier: keyid:AC:28:DC:2A:55:4B:4E:33:9A:39:9C:96:42:B4:CE:02:68:A8:DF:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EA46/DBDA2CC49C1111EF92FBA97CC4F9AE02/rCjcKlVLTjOaOZyWQrTOAmio37A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rCjcKlVLTjOaOZyWQrTOAmio37A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EA46/DBDA2CC49C1111EF92FBA97CC4F9AE02/rCjcKlVLTjOaOZyWQrTOAmio37A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:59:8a:bf:9c:31:7a:58:d3:1e:86:1b:da:e3:8c:06:ec:8f: 66:48:97:c6:2c:45:da:6f:a8:7c:88:c9:d2:bb:0f:07:f0:5f: 77:9b:73:a1:39:a1:1b:ae:64:50:b8:b6:9c:0d:92:48:3b:1c: d2:db:c4:94:a7:95:a9:c0:94:79:f0:bd:fc:ea:66:13:30:1e: b9:a9:09:58:ec:9f:a7:c5:dc:a0:bf:bd:25:75:45:ec:98:b0: 25:1f:2a:af:df:31:07:fd:54:41:5e:b1:af:be:c8:82:92:04: 07:22:55:e1:d8:c3:d9:9f:f1:cc:3b:d9:56:d5:66:81:c7:61: 59:79:a0:e4:22:b9:98:f1:ce:e4:6d:03:71:95:72:f9:bb:45: f5:0a:7c:0c:62:57:6f:5d:4d:6c:b9:d1:bc:7c:77:57:80:4d: 79:50:32:c2:8f:91:32:e0:c3:7f:5b:fa:86:fe:3c:04:08:89: a7:80:99:fc:ef:17:dd:f7:ee:b4:cc:f5:75:0b:a0:f4:01:c2: 1c:41:b6:ab:80:56:83:1e:de:93:0d:fa:a0:57:3c:af:06:d3: 14:2d:21:dc:f2:42:c0:3f:2c:02:ef:4c:d4:99:7c:52:ec:15: 2c:a0:fd:ad:e8:fa:2f:37:fc:d0:3a:c1:da:21:e8:1a:b9:da: 32:9c:a4:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVBNDYxMTAvBgNVBAUTKEFDMjhEQzJBNTU0QjRFMzM5QTM5OUM5NjQyQjRDRTAy NjhBOERGQjAwHhcNMjUwNzE5MDY1MTA5WhcNMjUwNzI2MDY1MTA5WjAYMRYwFAYD VQQDEw02ODdiNDA1ZC00YjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp1+7ork1J2YQIf+ghyrayhwu/5VcmXTSDgAivXUIZEZNs928bOn2Tvsl86Ug a1iSz4nTHokzg95Aq+adxSzu82t5yj8sFISibHPhksq82NCMLkt8Yyohv855tl/M u1E+q1QshtUuDKRUHI+eKfyspk9fAT1qUbDN2Hkhgcqsj0d5YsRrrdW1RRE6KzG9 IjSTTJhYAFgPZUZN7WuLFecYQlixivHNDEdoyEa8xBkNCFiS/XixFAovpI7iNbFN 9EXGRIIAmWr6uaZ5bWyGWdv2kElg7c5TyMrF95rM36pSZKzkHNhRzCTC8RoSz/w5 PTvtK65Cru6R1iddQBSngfJ2ZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFClVE2Az SFE4As3gq/KL2f/ds7NYMB8GA1UdIwQYMBaAFKwo3CpVS04zmjmclkK0zgJoqN+w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUE0Ni9EQkRBMkNDNDlD MTExMUVGOTJGQkE5N0NDNEY5QUUwMi9yQ2pjS2xWTFRqT2FPWnlXUXJUT0FtaW8z N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JDamNLbFZMVGpPYU9aeVdRclRPQW1pbzM3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RUE0Ni9EQkRBMkNDNDlDMTExMUVGOTJGQkE5N0NDNEY5QUUwMi9yQ2pjS2xWTFRq T2FPWnlXUXJUT0FtaW8zN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUWYq/nDF6WNMehhva44wG7I9mSJfGLEXab6h8iMnSuw8H8F93m3Oh OaEbrmRQuLacDZJIOxzS28SUp5WpwJR58L386mYTMB65qQlY7J+nxdygv70ldUXs mLAlHyqv3zEH/VRBXrGvvsiCkgQHIlXh2MPZn/HMO9lW1WaBx2FZeaDkIrmY8c7k bQNxlXL5u0X1CnwMYldvXU1sudG8fHdXgE15UDLCj5Ey4MN/W/qG/jwECImngJn8 7xfd9+60zPV1C6D0AcIcQbargFaDHt6TDfqgVzyvBtMULSHc8kLAPywC70zUmXxS 7BUsoP2t6PovN/zQOsHaIegaudoynKQ6 -----END CERTIFICATE-----Generated at Sun Jul 20 06:26:04 2025 by rpki-client