$ rpki-client -vvf rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft File: rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft (raw, json) Hash identifier: WQzeazQRnetCintgAzzwSFBb8IpKAm774bUK4TFn9iw= Subject key identifier: 77:20:B5:7F:07:45:78:39:43:12:29:81:B1:8B:2E:15:8A:2E:58:90 Authority key identifier: AD:54:5D:25:04:FE:1D:E9:2A:E1:76:6D:F4:65:76:37:DB:7A:7E:75 Certificate issuer: /CN=A9172FC5/serialNumber=AD545D2504FE1DE92AE1766DF4657637DB7A7E75 Certificate serial: 69 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft Manifest number: 66 Signing time: Sat 07 Jun 2025 06:30:33 +0000 Manifest this update: Sat 07 Jun 2025 06:30:33 +0000 Manifest next update: Sat 14 Jun 2025 06:30:33 +0000 Files and hashes: 1: rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl (hash: IfWdJatzYbQk4aK+Lw94QTn2gDRdBUP5DkOxjFUA3pg=) 2: 15B99EFC016111F0B1B6A34EC4F9AE02.roa (hash: fNaQxATAW6BCNgpllm+ul+pMRSXup8I9s/wGqDPcAs4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 06:30:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 105 (0x69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172FC5, serialNumber=AD545D2504FE1DE92AE1766DF4657637DB7A7E75 Validity Not Before: Jun 7 06:30:33 2025 GMT Not After : Jun 14 06:30:33 2025 GMT Subject: CN=6843dc89-7dac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:a6:bc:1c:5c:bf:53:22:b9:ec:53:7b:4b:87: 60:0a:58:3b:95:9f:4e:f1:c6:f8:5c:60:63:73:80: 7f:46:30:12:37:3a:c3:60:b7:de:82:50:8e:f1:d9: f2:7f:6c:89:49:b7:10:bc:cd:22:b7:73:4e:45:cb: 86:f1:c0:aa:2a:15:6b:dd:af:92:b5:40:0d:ba:7a: 87:16:ae:37:63:bb:87:c0:b3:f9:27:98:b8:f3:6f: 27:d7:e8:c9:e1:c4:17:1f:c3:4f:81:6e:2f:26:67: f9:3e:83:15:19:f6:f6:a8:3c:04:46:18:61:26:96: 44:15:83:d4:13:27:f2:6c:16:87:32:43:48:36:77: 29:24:64:09:ee:33:88:ae:d9:df:f5:11:60:17:20: 82:d1:15:3f:c0:9d:37:8c:f9:79:f6:40:16:4b:f1: 3b:bc:6f:30:86:ed:25:b8:5c:30:2d:4f:12:59:a3: 35:c6:db:71:8c:06:f2:0a:b5:36:0d:8d:17:a9:f6: b2:f3:35:b6:5a:82:52:e1:6c:4a:a9:b5:e8:54:61: 0c:d9:86:03:75:3a:2d:b4:61:ae:61:bf:11:8b:d5: 44:6c:89:b8:6e:c8:2b:92:93:ef:d3:ce:0f:f1:8d: 52:c8:67:68:65:a3:14:51:a1:3f:ab:5d:61:ee:b4: 2a:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:20:B5:7F:07:45:78:39:43:12:29:81:B1:8B:2E:15:8A:2E:58:90 X509v3 Authority Key Identifier: keyid:AD:54:5D:25:04:FE:1D:E9:2A:E1:76:6D:F4:65:76:37:DB:7A:7E:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:72:b3:b3:a6:ab:57:95:71:a0:bc:77:1e:2c:dc:22:10:2a: db:c9:2f:59:13:ff:54:fe:33:3c:fa:c3:30:b4:98:53:c4:02: cd:05:30:9f:65:9e:11:60:4d:7a:a4:45:5c:cb:5f:6f:4b:89: fa:7d:0d:03:89:b1:ca:2f:33:a2:8b:32:83:6c:f9:63:f3:f9: 02:99:92:d4:e2:0d:51:39:a6:2a:c1:d2:db:67:ed:8a:fa:c3: 82:f4:3d:40:88:60:22:71:9e:a9:88:7b:6f:7d:c2:38:c1:44: 3a:ba:29:96:ae:83:dd:ea:bd:4d:1d:33:0e:16:87:85:db:08: dd:d6:2d:c8:9f:1c:56:df:7f:62:3c:0a:67:43:74:ad:a4:f4: 66:6c:f7:42:eb:ce:f2:48:2c:10:93:04:20:66:d7:7e:41:2f: c8:11:af:7d:b6:3d:bd:1a:14:7d:43:ae:b8:ff:0c:8f:6e:4b: d8:c0:43:9e:ec:0e:65:b0:6d:d7:27:94:ac:ab:66:5f:b6:cb: 36:b4:99:f0:8e:72:3f:57:bc:ed:ce:1f:43:e6:cd:39:3c:cf: 68:9e:c3:f6:1e:ae:b4:f0:77:da:b9:19:c6:26:3a:3a:9f:82: cd:91:23:62:1e:61:b0:ff:65:33:65:c9:5f:2a:cd:75:67:e6: ca:c2:c1:c3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MkZDNTExMC8GA1UEBRMoQUQ1NDVEMjUwNEZFMURFOTJBRTE3NjZERjQ2NTc2MzdE QjdBN0U3NTAeFw0yNTA2MDcwNjMwMzNaFw0yNTA2MTQwNjMwMzNaMBgxFjAUBgNV BAMTDTY4NDNkYzg5LTdkYWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDlprwcXL9TIrnsU3tLh2AKWDuVn07xxvhcYGNzgH9GMBI3OsNgt96CUI7x2fJ/ bIlJtxC8zSK3c05Fy4bxwKoqFWvdr5K1QA26eocWrjdju4fAs/knmLjzbyfX6Mnh xBcfw0+Bbi8mZ/k+gxUZ9vaoPARGGGEmlkQVg9QTJ/JsFocyQ0g2dykkZAnuM4iu 2d/1EWAXIILRFT/AnTeM+Xn2QBZL8Tu8bzCG7SW4XDAtTxJZozXG23GMBvIKtTYN jRep9rLzNbZaglLhbEqptehUYQzZhgN1Oi20Ya5hvxGL1URsibhuyCuSk+/Tzg/x jVLIZ2hloxRRoT+rXWHutCotAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUdyC1fwdF eDlDEimBsYsuFYouWJAwHwYDVR0jBBgwFoAUrVRdJQT+Hekq4XZt9GV2N9t6fnUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcyRkM1L0U1MzlDREEwQUIz RjExRUZCRTAyQ0YxNEM0RjlBRTAyL3JWUmRKUVQtSGVrcTRYWnQ5R1YyTjl0NmZu VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvclZSZEpRVC1IZWtxNFhadDlHVjJOOXQ2Zm5VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcy RkM1L0U1MzlDREEwQUIzRjExRUZCRTAyQ0YxNEM0RjlBRTAyL3JWUmRKUVQtSGVr cTRYWnQ5R1YyTjl0NmZuVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJdys7Omq1eVcaC8dx4s3CIQKtvJL1kT/1T+Mzz6wzC0mFPEAs0FMJ9l nhFgTXqkRVzLX29Lifp9DQOJscovM6KLMoNs+WPz+QKZktTiDVE5pirB0ttn7Yr6 w4L0PUCIYCJxnqmIe299wjjBRDq6KZaug93qvU0dMw4Wh4XbCN3WLcifHFbff2I8 CmdDdK2k9GZs90LrzvJILBCTBCBm135BL8gRr322Pb0aFH1Drrj/DI9uS9jAQ57s DmWwbdcnlKyrZl+2yza0mfCOcj9XvO3OH0PmzTk8z2iew/YerrTwd9q5GcYmOjqf gs2RI2IeYbD/ZTNlyV8qzXVn5srCwcM= -----END CERTIFICATE-----Generated at Sun Jun 8 14:50:25 2025 by rpki-client