$ rpki-client -vvf rpki.apnic.net/member_repository/A91168FD/9A799644E11111E5AB017727C4F9AE02/_7wtQc3ZX_z4p35SkZ4ubRuvAt8.mft File: _7wtQc3ZX_z4p35SkZ4ubRuvAt8.mft (raw, json) Hash identifier: zucfAe14b7XSDPwti+nx+WYzmDeO6bI4v5iUZl+aUKg= Subject key identifier: F3:98:83:E1:F9:BC:AA:C3:F0:DE:CD:E0:AD:4D:0B:7B:0B:5A:ED:63 Authority key identifier: FF:BC:2D:41:CD:D9:5F:FC:F8:A7:7E:52:91:9E:2E:6D:1B:AF:02:DF Certificate issuer: /CN=A91168FD/serialNumber=FFBC2D41CDD95FFCF8A77E52919E2E6D1BAF02DF Certificate serial: 216D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_7wtQc3ZX_z4p35SkZ4ubRuvAt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91168FD/9A799644E11111E5AB017727C4F9AE02/_7wtQc3ZX_z4p35SkZ4ubRuvAt8.mft Manifest number: 2164 Signing time: Sun 08 Jun 2025 15:51:33 +0000 Manifest this update: Sun 08 Jun 2025 15:51:33 +0000 Manifest next update: Sun 15 Jun 2025 15:51:33 +0000 Files and hashes: 1: _7wtQc3ZX_z4p35SkZ4ubRuvAt8.crl (hash: 04aEvvUTlX3Wfo1Yd8YWm8gN0NRCgKips34HDy4EEGs=) 2: D07411B6661211ECBCD61A65C4F9AE02.roa (hash: /mOiRGW1T9qa7YdW+2kPvRZkQyewAraUry397iZAYjE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91168FD/9A799644E11111E5AB017727C4F9AE02/_7wtQc3ZX_z4p35SkZ4ubRuvAt8.crl rsync://rpki.apnic.net/member_repository/A91168FD/9A799644E11111E5AB017727C4F9AE02/_7wtQc3ZX_z4p35SkZ4ubRuvAt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_7wtQc3ZX_z4p35SkZ4ubRuvAt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 15:51:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8557 (0x216d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91168FD, serialNumber=FFBC2D41CDD95FFCF8A77E52919E2E6D1BAF02DF Validity Not Before: Jun 8 15:51:33 2025 GMT Not After : Jun 15 15:51:33 2025 GMT Subject: CN=6845b185-b0c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ec:ea:d9:cf:66:13:b0:b4:27:45:2f:f8:23: 9e:a3:50:33:ba:d6:79:cd:05:99:02:a1:c6:b7:97: ca:30:97:01:81:4a:82:32:bf:77:83:2a:de:41:7d: a7:55:ea:8f:ac:23:64:7b:22:37:90:b7:3d:a6:8b: d5:70:db:9a:65:bd:62:36:98:0e:da:1f:f7:d7:c0: 9f:8f:fa:94:7d:c9:2a:43:92:bb:5f:7f:22:24:ca: 5f:7b:87:cc:84:03:97:fa:7e:c0:8e:71:15:34:ee: 85:87:b3:dd:e2:a3:0d:82:6d:69:1c:35:23:d3:99: 79:bd:28:b6:0f:36:10:99:5d:fe:8a:48:18:ee:c2: 15:2a:f3:86:e8:9c:ae:01:c2:db:91:61:41:d5:38: bb:4b:dc:b1:36:f5:59:b7:c2:ab:ac:d0:54:6e:7c: e1:5e:11:26:20:1f:3e:e9:59:40:71:3f:ab:22:51: d4:dd:b2:cf:a4:bf:04:2f:bc:66:01:e9:9b:81:dc: ba:53:74:6b:4c:bb:75:8b:a7:83:9e:0a:e3:f6:e8: bd:0f:f9:4f:24:80:3e:03:4d:7e:fb:63:12:cf:59: a9:cd:7b:c8:bc:0d:a1:c2:66:57:ed:39:9f:af:8d: 08:96:2a:ec:98:19:0a:aa:9b:44:c2:b4:fd:88:7a: 41:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:98:83:E1:F9:BC:AA:C3:F0:DE:CD:E0:AD:4D:0B:7B:0B:5A:ED:63 X509v3 Authority Key Identifier: keyid:FF:BC:2D:41:CD:D9:5F:FC:F8:A7:7E:52:91:9E:2E:6D:1B:AF:02:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91168FD/9A799644E11111E5AB017727C4F9AE02/_7wtQc3ZX_z4p35SkZ4ubRuvAt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_7wtQc3ZX_z4p35SkZ4ubRuvAt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91168FD/9A799644E11111E5AB017727C4F9AE02/_7wtQc3ZX_z4p35SkZ4ubRuvAt8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:e6:92:a0:18:95:59:53:7f:53:56:9f:08:01:54:f2:b4:13: f7:9b:0a:15:c2:ae:82:55:18:c7:24:1d:77:9d:d7:31:bd:61: 22:76:fe:58:8d:c8:29:9b:c8:01:2f:ef:38:9b:e7:d6:a6:d7: c0:f8:28:97:2a:d8:a2:21:80:7b:ab:79:b6:d1:5b:69:41:8c: 86:7a:14:f0:87:84:17:ae:cd:58:46:06:26:67:6b:bd:91:87: 3a:44:31:8e:73:bb:36:52:e6:0d:ba:4f:91:42:3f:14:73:49: 41:d6:37:3a:20:44:c6:0d:e2:bc:d6:64:98:3a:2d:6e:0c:76: 23:eb:d7:c9:a8:67:24:cc:d0:bb:8f:d7:cb:d8:fb:89:41:eb: c3:74:8c:a1:d4:14:b1:13:21:f0:4d:bc:ae:48:6e:cb:a8:d2: 65:c8:fa:99:df:bd:e0:16:6b:18:e6:f4:28:b6:17:99:fe:82: 70:cc:07:21:36:86:da:f2:d8:2b:d2:a2:67:ac:74:7a:44:cc: c5:21:56:08:35:32:9c:4a:56:b4:c2:e1:ee:b0:27:e1:e2:16: 16:61:e5:41:ba:d2:e2:e2:b7:dd:f8:75:04:e6:b5:1d:02:65: 94:9f:21:f6:86:06:57:fc:16:ef:37:90:bc:9e:18:40:91:f1: 82:b5:00:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY4RkQxMTAvBgNVBAUTKEZGQkMyRDQxQ0REOTVGRkNGOEE3N0U1MjkxOUUyRTZE MUJBRjAyREYwHhcNMjUwNjA4MTU1MTMzWhcNMjUwNjE1MTU1MTMzWjAYMRYwFAYD VQQDEw02ODQ1YjE4NS1iMGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz+zq2c9mE7C0J0Uv+COeo1AzutZ5zQWZAqHGt5fKMJcBgUqCMr93gyreQX2n VeqPrCNkeyI3kLc9povVcNuaZb1iNpgO2h/318Cfj/qUfckqQ5K7X38iJMpfe4fM hAOX+n7AjnEVNO6Fh7Pd4qMNgm1pHDUj05l5vSi2DzYQmV3+ikgY7sIVKvOG6Jyu AcLbkWFB1Ti7S9yxNvVZt8KrrNBUbnzhXhEmIB8+6VlAcT+rIlHU3bLPpL8EL7xm Aembgdy6U3RrTLt1i6eDngrj9ui9D/lPJIA+A01++2MSz1mpzXvIvA2hwmZX7Tmf r40IlirsmBkKqptEwrT9iHpBEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPOYg+H5 vKrD8N7N4K1NC3sLWu1jMB8GA1UdIwQYMBaAFP+8LUHN2V/8+Kd+UpGeLm0brwLf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjhGRC85QTc5OTY0NEUx MTExMUU1QUIwMTc3MjdDNEY5QUUwMi9fN3d0UWMzWlhfejRwMzVTa1o0dWJSdXZB dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL183d3RRYzNaWF96NHAzNVNrWjR1YlJ1dkF0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjhGRC85QTc5OTY0NEUxMTExMUU1QUIwMTc3MjdDNEY5QUUwMi9fN3d0UWMzWlhf ejRwMzVTa1o0dWJSdXZBdDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBk5pKgGJVZU39TVp8IAVTytBP3mwoVwq6CVRjHJB13ndcxvWEidv5Y jcgpm8gBL+84m+fWptfA+CiXKtiiIYB7q3m20VtpQYyGehTwh4QXrs1YRgYmZ2u9 kYc6RDGOc7s2UuYNuk+RQj8Uc0lB1jc6IETGDeK81mSYOi1uDHYj69fJqGckzNC7 j9fL2PuJQevDdIyh1BSxEyHwTbyuSG7LqNJlyPqZ373gFmsY5vQotheZ/oJwzAch Noba8tgr0qJnrHR6RMzFIVYINTKcSla0wuHusCfh4hYWYeVButLi4rfd+HUE5rUd AmWUnyH2hgZX/BbvN5C8nhhAkfGCtQB6 -----END CERTIFICATE-----Generated at Mon Jun 9 07:35:04 2025 by rpki-client