$ rpki-client -vvf rpki.apnic.net/member_repository/A917D9FC/C6B034AAB89911E7B269B850C4F9AE02/em4wIQZCz0-7QXPzUnSOHqXCx8M.mft File: em4wIQZCz0-7QXPzUnSOHqXCx8M.mft (raw, json) Hash identifier: fsS5i/Y63QSL00cdI1e3ECkQy/Lj1VecmMq7Y2Xw0lA= Subject key identifier: F5:C1:2C:93:1D:48:22:04:3D:2D:2C:C9:4B:CE:F6:34:F5:4A:31:93 Authority key identifier: 7A:6E:30:21:06:42:CF:4F:BB:41:73:F3:52:74:8E:1E:A5:C2:C7:C3 Certificate issuer: /CN=A917D9FC/serialNumber=7A6E30210642CF4FBB4173F352748E1EA5C2C7C3 Certificate serial: 1854 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/em4wIQZCz0-7QXPzUnSOHqXCx8M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D9FC/C6B034AAB89911E7B269B850C4F9AE02/em4wIQZCz0-7QXPzUnSOHqXCx8M.mft Manifest number: 1833 Signing time: Sun 20 Jul 2025 16:33:54 +0000 Manifest this update: Sun 20 Jul 2025 16:33:53 +0000 Manifest next update: Sun 27 Jul 2025 16:33:53 +0000 Files and hashes: 1: em4wIQZCz0-7QXPzUnSOHqXCx8M.crl (hash: ruv/X5x61OaErW7EcG+AL1yTd5G0nt1lIPzAsRlT8ss=) 2: 708DE4A87AB011E8B7AB0E53C4F9AE02.roa (hash: 4Q+SEdvBQGfYmmHeFRyy/2R/EHACTjORm2A/+Pw5UxE=) 3: F49AA4A889C211EEADFCF27CC4F9AE02.roa (hash: p3nDO3WF2LVR/VuRYdJhLml5b3M6N0ju1bV/+dQUHBY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D9FC/C6B034AAB89911E7B269B850C4F9AE02/em4wIQZCz0-7QXPzUnSOHqXCx8M.crl rsync://rpki.apnic.net/member_repository/A917D9FC/C6B034AAB89911E7B269B850C4F9AE02/em4wIQZCz0-7QXPzUnSOHqXCx8M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/em4wIQZCz0-7QXPzUnSOHqXCx8M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 16:33:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6228 (0x1854) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D9FC, serialNumber=7A6E30210642CF4FBB4173F352748E1EA5C2C7C3 Validity Not Before: Jul 20 16:33:53 2025 GMT Not After : Jul 27 16:33:53 2025 GMT Subject: CN=687d1a72-5c2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ae:56:0d:38:ea:c6:6a:48:a1:2a:d8:d0:be: d0:ac:f6:5b:34:5b:5c:9d:42:d7:e3:2f:96:4e:0d: 21:fa:fa:ff:49:9b:c9:68:d3:1f:19:9c:2d:83:e6: cf:6e:b4:8d:b6:f8:24:34:d0:03:0e:e6:7e:f3:2a: 40:4b:ce:87:bc:c4:fb:35:4b:1c:39:20:46:15:ee: d6:89:a7:49:c9:aa:ff:c6:44:98:7a:87:e9:c6:69: 66:4b:82:29:7a:ef:4a:ab:b4:2b:ab:7f:14:c8:e6: 72:3a:da:c8:c2:d4:29:51:09:3b:7c:53:f9:c8:f8: 2d:11:a9:42:03:2c:73:50:b3:13:35:b0:e9:44:ff: 03:f1:e6:d4:f6:5c:a6:67:8b:a7:d6:7a:51:d5:d8: 31:67:88:bf:f0:ed:55:85:47:3d:81:50:f1:f0:c6: 32:c9:ea:97:72:97:a7:e7:37:4c:14:d2:a9:f2:e8: 72:9d:d1:72:26:d9:0d:81:ae:25:94:09:d9:68:74: 27:69:73:2c:99:c0:b2:e1:54:ec:d4:6e:78:1b:cd: 24:75:16:74:3b:f7:27:b5:59:6e:14:ca:0f:4c:d2: 02:cb:c5:84:37:33:a6:8b:ab:de:ed:66:62:1b:92: bd:85:d8:24:a6:f3:d3:95:70:f5:74:c0:98:81:94: 9b:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:C1:2C:93:1D:48:22:04:3D:2D:2C:C9:4B:CE:F6:34:F5:4A:31:93 X509v3 Authority Key Identifier: keyid:7A:6E:30:21:06:42:CF:4F:BB:41:73:F3:52:74:8E:1E:A5:C2:C7:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D9FC/C6B034AAB89911E7B269B850C4F9AE02/em4wIQZCz0-7QXPzUnSOHqXCx8M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/em4wIQZCz0-7QXPzUnSOHqXCx8M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D9FC/C6B034AAB89911E7B269B850C4F9AE02/em4wIQZCz0-7QXPzUnSOHqXCx8M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:a9:f0:ab:ae:f6:5e:bd:9d:cf:92:5d:d0:fe:20:83:45:59: b8:0b:44:84:05:f3:86:e7:4a:30:b4:c1:be:cc:51:7b:4c:75: 08:b4:a5:73:50:77:2b:20:2e:b8:48:d8:44:9e:12:e2:2e:18: cb:f9:f7:39:c8:d8:5c:77:50:1f:67:db:96:78:bd:7e:41:3e: a9:eb:ad:de:82:57:e3:cb:6e:74:4d:20:2e:1d:16:c8:9f:98: 6e:74:e7:ad:6d:c0:c7:4b:13:e5:ab:cd:99:ca:25:4e:f8:19: 27:d6:f9:fe:9f:f9:b7:09:66:1c:b1:ab:29:2d:87:c1:36:88: 31:a7:34:aa:97:df:f9:e2:0f:ad:d4:7d:e2:b6:a8:8f:24:86: a9:0c:6a:c0:a2:2b:d2:7b:5b:52:ec:15:11:a7:75:8e:32:34: ea:0f:61:cc:c7:12:0f:12:8d:7e:25:b7:d6:70:79:c3:90:12: fa:ee:65:3e:7d:0f:d8:58:98:e0:8d:f7:25:40:35:3f:06:a1: 56:a1:5e:ad:22:df:68:cc:8f:a8:30:d5:20:61:e0:a2:42:23: 1d:aa:e4:1d:d5:75:5c:d2:87:bb:94:0d:09:0e:da:c0:5c:06: ce:96:e2:83:56:21:fc:e6:18:58:71:eb:10:40:cf:5f:08:f8: 46:07:34:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGFQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q5RkMxMTAvBgNVBAUTKDdBNkUzMDIxMDY0MkNGNEZCQjQxNzNGMzUyNzQ4RTFF QTVDMkM3QzMwHhcNMjUwNzIwMTYzMzUzWhcNMjUwNzI3MTYzMzUzWjAYMRYwFAYD VQQDEw02ODdkMWE3Mi01YzJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv65WDTjqxmpIoSrY0L7QrPZbNFtcnULX4y+WTg0h+vr/SZvJaNMfGZwtg+bP brSNtvgkNNADDuZ+8ypAS86HvMT7NUscOSBGFe7WiadJyar/xkSYeofpxmlmS4Ip eu9Kq7Qrq38UyOZyOtrIwtQpUQk7fFP5yPgtEalCAyxzULMTNbDpRP8D8ebU9lym Z4un1npR1dgxZ4i/8O1VhUc9gVDx8MYyyeqXcpen5zdMFNKp8uhyndFyJtkNga4l lAnZaHQnaXMsmcCy4VTs1G54G80kdRZ0O/cntVluFMoPTNICy8WENzOmi6ve7WZi G5K9hdgkpvPTlXD1dMCYgZSbRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPXBLJMd SCIEPS0syUvO9jT1SjGTMB8GA1UdIwQYMBaAFHpuMCEGQs9Pu0Fz81J0jh6lwsfD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDlGQy9DNkIwMzRBQUI4 OTkxMUU3QjI2OUI4NTBDNEY5QUUwMi9lbTR3SVFaQ3owLTdRWFB6VW5TT0hxWEN4 OE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VtNHdJUVpDejAtN1FYUHpVblNPSHFYQ3g4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDlGQy9DNkIwMzRBQUI4OTkxMUU3QjI2OUI4NTBDNEY5QUUwMi9lbTR3SVFaQ3ow LTdRWFB6VW5TT0hxWEN4OE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0qfCrrvZevZ3Pkl3Q/iCDRVm4C0SEBfOG50owtMG+zFF7THUItKVz UHcrIC64SNhEnhLiLhjL+fc5yNhcd1AfZ9uWeL1+QT6p663eglfjy250TSAuHRbI n5hudOetbcDHSxPlq82ZyiVO+Bkn1vn+n/m3CWYcsaspLYfBNogxpzSql9/54g+t 1H3itqiPJIapDGrAoivSe1tS7BURp3WOMjTqD2HMxxIPEo1+JbfWcHnDkBL67mU+ fQ/YWJjgjfclQDU/BqFWoV6tIt9ozI+oMNUgYeCiQiMdquQd1XVc0oe7lA0JDtrA XAbOluKDViH85hhYcesQQM9fCPhGBzRy -----END CERTIFICATE-----Generated at Tue Jul 22 00:00:29 2025 by rpki-client