$ rpki-client -vvf rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft File: 2z39hs6_6u06rxXeruaWUjR0aik.mft (raw, json) Hash identifier: SLDlg3KeJeOVF55WQpPCt5W9/fxDy3tCSvq+lEkjkK0= Subject key identifier: CE:28:1D:23:9E:8F:62:6F:57:B1:17:6A:7F:6D:CE:0C:FD:89:38:6E Authority key identifier: DB:3D:FD:86:CE:BF:EA:ED:3A:AF:15:DE:AE:E6:96:52:34:74:6A:29 Certificate issuer: /CN=A9171BF0/serialNumber=DB3DFD86CEBFEAED3AAF15DEAEE6965234746A29 Certificate serial: 85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2z39hs6_6u06rxXeruaWUjR0aik.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft Manifest number: 84 Signing time: Thu 31 Jul 2025 07:13:33 +0000 Manifest this update: Thu 31 Jul 2025 07:13:33 +0000 Manifest next update: Thu 07 Aug 2025 07:13:33 +0000 Files and hashes: 1: 2z39hs6_6u06rxXeruaWUjR0aik.crl (hash: 67jB6eGbibq9eiFPQnkzj7H/f2+Y4ctFc6jossHc7S8=) 2: 12004368A41611EFA0D7CD42C4F9AE02.roa (hash: 9YzGJkxen0bF7ZOSO15+u2xKU2H/RKyzN947mBYbnYU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.crl rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2z39hs6_6u06rxXeruaWUjR0aik.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 Aug 2025 07:13:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171BF0, serialNumber=DB3DFD86CEBFEAED3AAF15DEAEE6965234746A29 Validity Not Before: Jul 31 07:13:33 2025 GMT Not After : Aug 7 07:13:33 2025 GMT Subject: CN=688b179d-8ebf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:8b:64:7d:d2:cb:18:74:95:11:b4:99:5d:fc: 2f:32:b0:fc:8c:a2:09:d9:17:70:8d:1a:d9:26:b3: d3:39:57:32:51:3b:fa:7b:be:58:84:66:f7:88:f7: 92:a9:19:f8:03:37:dd:1d:8c:3e:e7:98:2a:b7:6b: 3c:62:6d:55:c7:d1:cc:63:19:9d:56:db:87:cb:ec: 37:84:d5:97:1e:8f:d2:d9:70:a6:e1:64:3d:31:1c: b5:0d:1c:70:a5:27:59:f6:25:ff:c5:26:98:e7:0e: 84:1a:e0:b5:d2:53:d0:07:16:ee:15:9d:71:74:0d: 61:5e:d9:99:94:a1:58:3d:5b:47:a1:94:6b:f0:21: 1d:af:17:3a:9e:20:4e:e4:fa:47:1f:57:3d:40:68: 2b:77:40:c5:4f:20:e2:25:77:1e:19:49:ca:12:cf: 1b:dc:3d:9e:7c:c7:b5:d7:1b:46:92:5c:71:5b:77: 67:2f:a0:9a:56:fe:fe:b5:2a:e2:22:38:19:e8:be: 81:26:ad:86:32:68:fa:cd:52:c5:64:a9:ca:f9:ac: a7:f1:12:6f:2c:f1:05:7c:ee:15:af:95:38:d0:87: a6:68:2c:25:53:a8:d3:44:c7:55:68:1d:e2:47:3c: f0:38:11:3a:d7:70:91:a8:12:ed:21:77:8c:80:48: 98:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:28:1D:23:9E:8F:62:6F:57:B1:17:6A:7F:6D:CE:0C:FD:89:38:6E X509v3 Authority Key Identifier: keyid:DB:3D:FD:86:CE:BF:EA:ED:3A:AF:15:DE:AE:E6:96:52:34:74:6A:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2z39hs6_6u06rxXeruaWUjR0aik.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:de:12:bc:64:f7:eb:2d:2c:ff:f7:e9:28:88:7f:16:be:6b: 7c:6a:95:9c:9f:2e:2d:fc:9e:51:86:2e:6e:b5:b8:d6:a0:3a: 31:b4:7d:39:5b:cf:f1:91:8c:a1:b7:a8:78:ef:a0:ba:bf:5e: a7:d1:06:f7:40:46:9a:7e:57:c0:b5:ae:40:23:c1:24:fd:88: 4b:5c:ed:d5:7e:0b:53:43:69:2e:fa:f5:74:91:c3:6e:70:e1: 5d:74:a1:d6:1c:46:3f:15:dd:be:0a:57:7d:00:1f:90:79:f5: a6:1e:95:04:04:cb:93:ae:e0:e3:3b:34:ed:97:78:32:04:4a: e4:99:80:31:70:d1:d8:3d:f7:19:91:1a:83:e8:59:5f:53:92: ba:23:99:53:b7:d1:a2:fd:7e:ba:57:04:8a:d7:ca:81:39:d0: bd:ec:75:79:df:dd:16:1f:7a:bf:29:94:b5:1c:76:84:77:7e: 1b:66:5d:68:c6:f5:14:7b:39:11:8c:82:3a:21:5c:63:b0:09: a7:1a:e3:d8:52:16:b5:5e:eb:26:98:77:a1:2c:e5:2e:c4:88: bf:d4:b2:14:8b:d8:33:b1:36:ee:0d:31:2e:91:31:11:60:ec: 62:7a:2b:bc:ec:b0:d3:28:f4:b5:fe:bc:48:ac:ef:c8:26:be: 93:ba:4c:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFCRjAxMTAvBgNVBAUTKERCM0RGRDg2Q0VCRkVBRUQzQUFGMTVERUFFRTY5NjUy MzQ3NDZBMjkwHhcNMjUwNzMxMDcxMzMzWhcNMjUwODA3MDcxMzMzWjAYMRYwFAYD VQQDEw02ODhiMTc5ZC04ZWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo4tkfdLLGHSVEbSZXfwvMrD8jKIJ2RdwjRrZJrPTOVcyUTv6e75YhGb3iPeS qRn4AzfdHYw+55gqt2s8Ym1Vx9HMYxmdVtuHy+w3hNWXHo/S2XCm4WQ9MRy1DRxw pSdZ9iX/xSaY5w6EGuC10lPQBxbuFZ1xdA1hXtmZlKFYPVtHoZRr8CEdrxc6niBO 5PpHH1c9QGgrd0DFTyDiJXceGUnKEs8b3D2efMe11xtGklxxW3dnL6CaVv7+tSri IjgZ6L6BJq2GMmj6zVLFZKnK+ayn8RJvLPEFfO4Vr5U40IemaCwlU6jTRMdVaB3i RzzwOBE613CRqBLtIXeMgEiY4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM4oHSOe j2JvV7EXan9tzgz9iThuMB8GA1UdIwQYMBaAFNs9/YbOv+rtOq8V3q7mllI0dGop MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUJGMC9BNzhGMUIxMkE0 MTUxMUVGQTE0RkJEM0ZDNEY5QUUwMi8yejM5aHM2XzZ1MDZyeFhlcnVhV1VqUjBh aWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ6MzloczZfNnUwNnJ4WGVydWFXVWpSMGFpay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUJGMC9BNzhGMUIxMkE0MTUxMUVGQTE0RkJEM0ZDNEY5QUUwMi8yejM5aHM2XzZ1 MDZyeFhlcnVhV1VqUjBhaWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDD3hK8ZPfrLSz/9+koiH8Wvmt8apWcny4t/J5Rhi5utbjWoDoxtH05 W8/xkYyht6h476C6v16n0Qb3QEaaflfAta5AI8Ek/YhLXO3VfgtTQ2ku+vV0kcNu cOFddKHWHEY/Fd2+Cld9AB+QefWmHpUEBMuTruDjOzTtl3gyBErkmYAxcNHYPfcZ kRqD6FlfU5K6I5lTt9Gi/X66VwSK18qBOdC97HV5390WH3q/KZS1HHaEd34bZl1o xvUUezkRjII6IVxjsAmnGuPYUha1XusmmHehLOUuxIi/1LIUi9gzsTbuDTEukTER YOxieiu87LDTKPS1/rxIrO/IJr6TukzA -----END CERTIFICATE-----Generated at Thu Jul 31 15:05:51 2025 by rpki-client