$ rpki-client -vvf rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft File: ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft (raw, json) Hash identifier: yoVg0veRMq570tyW+620K07RAMyIIbSpR8ikKVKbc0o= Subject key identifier: 26:8E:EF:4B:92:2C:58:EC:69:46:AD:51:9E:26:42:06:19:0F:7A:0C Authority key identifier: 72:41:E8:F0:38:B9:F2:52:FB:61:CA:41:B6:A4:FC:16:7B:77:55:26 Certificate issuer: /CN=A9161477/serialNumber=7241E8F038B9F252FB61CA41B6A4FC167B775526 Certificate serial: 4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ckHo8Di58lL7YcpBtqT8Fnt3VSY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft Manifest number: 4C Signing time: Sat 19 Jul 2025 07:34:57 +0000 Manifest this update: Sat 19 Jul 2025 07:34:56 +0000 Manifest next update: Sat 26 Jul 2025 07:34:56 +0000 Files and hashes: 1: ckHo8Di58lL7YcpBtqT8Fnt3VSY.crl (hash: UoLFHLsX4MMFl0UuJ8xygVYBer4TusjinoY8o7oaJUA=) 2: CAB73E3AF3FC11EF83B4DD30C4F9AE02.roa (hash: BR0iac6RCibng8iXx5EGv9yUT7uect2xiyJYOcbA9Hs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.crl rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ckHo8Di58lL7YcpBtqT8Fnt3VSY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:34:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161477, serialNumber=7241E8F038B9F252FB61CA41B6A4FC167B775526 Validity Not Before: Jul 19 07:34:56 2025 GMT Not After : Jul 26 07:34:56 2025 GMT Subject: CN=687b4aa1-bdf3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:3e:c0:0f:50:20:55:3a:42:22:8d:ed:89:49: 86:fa:d8:ab:d9:bc:68:19:d5:06:b4:fb:ba:f4:8c: d8:f4:ca:b4:fc:98:0f:ca:d3:b9:66:05:d2:0b:21: 0f:69:b4:21:71:85:80:bf:ee:f7:ed:e6:e9:44:c1: e7:c5:f2:63:55:71:f2:37:2c:a3:be:f5:fa:bf:c4: 08:03:c9:e0:58:41:8d:f3:d0:46:e3:b2:f2:9f:a9: 08:d9:3b:97:a0:f5:e1:2f:bd:3a:ee:53:2e:a1:94: d3:72:f2:13:fa:17:c6:e3:d9:ea:ec:38:b9:92:57: a7:b2:5c:a5:b0:17:3e:de:bf:9b:9e:9e:6d:f5:23: 00:ab:5b:44:6f:22:1a:ca:d2:28:22:2a:a3:55:12: 26:56:25:e3:f8:5a:b4:e5:a7:f7:7b:a5:65:3d:77: 0a:ec:22:fb:79:b6:a3:85:72:0d:28:67:9c:20:80: c4:e6:b2:87:12:38:4c:2b:00:51:8d:c7:36:a3:fd: ea:fa:66:e0:8b:44:a0:d6:a8:a0:d1:e0:50:55:b9: b7:cd:13:95:b2:9a:0a:07:2c:57:56:df:1c:94:98: e5:38:8f:ee:a9:c7:1a:a9:f7:3b:d1:b2:8d:b9:39: 00:82:ef:23:0a:88:d6:a3:b6:5d:e0:6b:63:5b:0c: 34:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:8E:EF:4B:92:2C:58:EC:69:46:AD:51:9E:26:42:06:19:0F:7A:0C X509v3 Authority Key Identifier: keyid:72:41:E8:F0:38:B9:F2:52:FB:61:CA:41:B6:A4:FC:16:7B:77:55:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ckHo8Di58lL7YcpBtqT8Fnt3VSY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:f9:a2:8d:28:90:7a:b8:4a:7c:8c:f7:80:14:37:1d:71:be: c8:f0:fe:62:5f:98:eb:c9:27:ef:da:e5:23:ae:ac:1a:c5:33: cd:41:33:eb:cb:4b:ef:5a:c6:51:91:1c:fe:30:93:c9:3a:f1: 5d:e1:ed:c0:3d:e7:94:b0:06:ef:f9:bf:59:75:92:34:00:58: b0:3a:84:06:c0:b2:b5:07:0f:43:d6:46:be:b4:06:2b:a3:58: 4c:f6:46:fd:8c:5d:07:99:5f:5c:eb:64:89:b2:1b:ef:b0:dd: b2:15:bf:a9:2c:27:81:e4:9f:c5:41:cb:d0:ab:b6:c7:a2:37: af:cc:64:f7:5f:c9:5f:bd:37:c5:09:4d:ed:ef:b4:9e:91:49: 70:28:9f:78:3f:b6:58:54:f4:f6:6a:04:7a:cb:01:6b:bb:7d: c3:5c:d0:30:7c:2e:af:f7:a3:0d:d2:93:87:66:0a:d9:2f:31: 44:f1:8f:78:44:d6:65:bb:d1:7d:04:8a:c1:cf:a3:a0:d4:ca: 03:4a:8f:90:fd:77:e6:18:2d:c7:cc:1d:5c:4d:60:53:13:4a: 20:50:e0:ab:c5:ee:6f:e7:a9:f1:31:73:a0:40:a7:91:1e:17: 90:ce:e1:9d:e2:b1:40:7e:32:c2:58:ac:dc:b8:2e:4b:f8:1a: 29:36:f9:b0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MTQ3NzExMC8GA1UEBRMoNzI0MUU4RjAzOEI5RjI1MkZCNjFDQTQxQjZBNEZDMTY3 Qjc3NTUyNjAeFw0yNTA3MTkwNzM0NTZaFw0yNTA3MjYwNzM0NTZaMBgxFjAUBgNV BAMTDTY4N2I0YWExLWJkZjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCmPsAPUCBVOkIije2JSYb62KvZvGgZ1Qa0+7r0jNj0yrT8mA/K07lmBdILIQ9p tCFxhYC/7vft5ulEwefF8mNVcfI3LKO+9fq/xAgDyeBYQY3z0EbjsvKfqQjZO5eg 9eEvvTruUy6hlNNy8hP6F8bj2ersOLmSV6eyXKWwFz7ev5uenm31IwCrW0RvIhrK 0igiKqNVEiZWJeP4WrTlp/d7pWU9dwrsIvt5tqOFcg0oZ5wggMTmsocSOEwrAFGN xzaj/er6ZuCLRKDWqKDR4FBVubfNE5WymgoHLFdW3xyUmOU4j+6pxxqp9zvRso25 OQCC7yMKiNajtl3ga2NbDDQbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJo7vS5Is WOxpRq1RniZCBhkPegwwHwYDVR0jBBgwFoAUckHo8Di58lL7YcpBtqT8Fnt3VSYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYxNDc3LzZCNzAzNUY4RjNG QzExRUY5OUQ1MzczMEM0RjlBRTAyL2NrSG84RGk1OGxMN1ljcEJ0cVQ4Rm50M1ZT WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY2tIbzhEaTU4bEw3WWNwQnRxVDhGbnQzVlNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYx NDc3LzZCNzAzNUY4RjNGQzExRUY5OUQ1MzczMEM0RjlBRTAyL2NrSG84RGk1OGxM N1ljcEJ0cVQ4Rm50M1ZTWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADX5oo0okHq4SnyM94AUNx1xvsjw/mJfmOvJJ+/a5SOurBrFM81BM+vL S+9axlGRHP4wk8k68V3h7cA955SwBu/5v1l1kjQAWLA6hAbAsrUHD0PWRr60Biuj WEz2Rv2MXQeZX1zrZImyG++w3bIVv6ksJ4Hkn8VBy9CrtseiN6/MZPdfyV+9N8UJ Te3vtJ6RSXAon3g/tlhU9PZqBHrLAWu7fcNc0DB8Lq/3ow3Sk4dmCtkvMUTxj3hE 1mW70X0EisHPo6DUygNKj5D9d+YYLcfMHVxNYFMTSiBQ4KvF7m/nqfExc6BAp5Ee F5DO4Z3isUB+MsJYrNy4Lkv4Gik2+bA= -----END CERTIFICATE-----Generated at Sun Jul 20 07:05:33 2025 by rpki-client