$ rpki-client -vvf rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft File: 40tPgNnj9wC8rExSxasj61t-37s.mft (raw, json) Hash identifier: uRks9dvoxvQFoSgSs1nJOQBP1WlwqEeA1fIPpuH5IKY= Subject key identifier: 07:74:67:3B:D0:BB:47:C6:B4:1D:49:A2:40:38:8B:59:EC:E7:20:1D Authority key identifier: E3:4B:4F:80:D9:E3:F7:00:BC:AC:4C:52:C5:AB:23:EB:5B:7E:DF:BB Certificate issuer: /CN=A918E4B7/serialNumber=E34B4F80D9E3F700BCAC4C52C5AB23EB5B7EDFBB Certificate serial: 014C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft Manifest number: 0148 Signing time: Sat 19 Jul 2025 00:04:03 +0000 Manifest this update: Sat 19 Jul 2025 00:04:02 +0000 Manifest next update: Sat 26 Jul 2025 00:04:02 +0000 Files and hashes: 1: 40tPgNnj9wC8rExSxasj61t-37s.crl (hash: Nqi6d3xZ8N+RlxVLMCDu+z+E+ZlLgfApoAcfGKnfyjs=) 2: 1E4ABC8C50C111EFA64C2437C4F9AE02.roa (hash: +idkc0Y+TplJvB7T7xrVzyMgw/UlYDqH1h1gbH9ycfU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.crl rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:04:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 332 (0x14c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E4B7, serialNumber=E34B4F80D9E3F700BCAC4C52C5AB23EB5B7EDFBB Validity Not Before: Jul 19 00:04:02 2025 GMT Not After : Jul 26 00:04:02 2025 GMT Subject: CN=687ae0f2-fe28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c2:f4:39:a9:81:73:33:2f:bb:94:13:1c:71: 6f:39:a6:31:ea:21:95:b4:2f:9d:e4:b3:e6:d6:28: ff:d4:4d:04:e4:6f:3f:fb:fb:3e:96:8c:07:50:30: 42:ee:02:97:c4:5d:05:9f:ad:4d:4c:9b:97:d0:6d: 1e:cc:8d:4a:20:0a:cc:60:18:1e:8a:2f:b2:06:03: d2:9c:80:d9:73:47:1b:4c:42:c8:03:69:b3:5a:f6: 46:41:79:c1:6c:fc:a9:57:03:03:79:c8:40:f1:8e: 77:0b:26:6b:4f:89:43:6a:35:4f:e8:c3:54:e6:b1: 21:da:ef:56:a4:ea:21:17:7e:b4:a4:ab:7f:a7:02: cd:ff:a8:23:d4:48:55:4c:5d:d5:26:f2:b8:5e:c3: 3e:f8:9d:16:5d:ce:b1:a7:d6:c0:58:88:a2:64:12: 07:3a:48:64:f4:e8:aa:88:d0:de:47:15:e5:2d:c2: cc:3c:7d:99:d1:75:17:ee:c1:37:c6:eb:35:f5:ca: 73:1b:84:94:a0:8b:1c:ec:5b:f0:b8:8f:6b:63:9c: eb:68:8f:32:7f:c1:9d:26:05:6e:2d:7b:70:bf:ed: df:85:cb:e6:c9:69:6a:19:85:61:7e:d7:d0:7c:6d: 8d:63:08:83:05:9c:87:6b:04:31:c2:d5:a9:f8:b2: f0:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:74:67:3B:D0:BB:47:C6:B4:1D:49:A2:40:38:8B:59:EC:E7:20:1D X509v3 Authority Key Identifier: keyid:E3:4B:4F:80:D9:E3:F7:00:BC:AC:4C:52:C5:AB:23:EB:5B:7E:DF:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:52:56:0b:5c:0f:77:32:c4:28:6c:0a:67:c7:3c:4c:7c:37: 2b:04:57:3b:da:21:1b:ce:3a:4b:88:cb:56:50:44:91:30:25: 29:ff:c3:19:35:6b:c3:07:ff:43:2b:df:d6:ff:be:8c:3a:7c: 10:ed:11:52:31:d9:6e:1d:73:e1:75:24:07:8f:23:23:96:e4: 94:e3:29:00:d8:28:80:f4:2c:7a:79:48:e3:41:36:43:1d:4c: fd:c5:e5:07:6e:36:8e:cf:b7:c6:e0:62:3a:e3:09:f4:9b:2c: c3:84:88:8e:07:15:35:c3:03:67:01:e8:5a:6c:23:16:8a:75: 1f:a1:dd:67:80:0e:c7:c4:fe:a8:05:b8:82:a4:9a:87:43:fe: 1a:36:e5:3b:28:c6:10:fc:60:d1:4f:70:4f:04:19:86:c9:f5: c7:76:11:bf:44:2a:a8:7d:be:c4:1b:01:ff:18:b1:5a:9c:8c: 5e:88:9b:5d:8b:9e:58:06:1f:60:61:6e:48:9f:22:1e:5c:f9: a6:66:60:af:da:24:4d:00:72:57:be:eb:0c:aa:4e:0a:bb:a2: f8:50:b7:3d:d7:ce:64:88:2c:74:6e:e8:e9:19:17:0c:4e:f0: 94:1f:48:ff:b7:55:55:64:d6:13:31:4e:01:40:70:cb:55:6c: ac:9f:d5:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU0QjcxMTAvBgNVBAUTKEUzNEI0RjgwRDlFM0Y3MDBCQ0FDNEM1MkM1QUIyM0VC NUI3RURGQkIwHhcNMjUwNzE5MDAwNDAyWhcNMjUwNzI2MDAwNDAyWjAYMRYwFAYD VQQDEw02ODdhZTBmMi1mZTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxsL0OamBczMvu5QTHHFvOaYx6iGVtC+d5LPm1ij/1E0E5G8/+/s+lowHUDBC 7gKXxF0Fn61NTJuX0G0ezI1KIArMYBgeii+yBgPSnIDZc0cbTELIA2mzWvZGQXnB bPypVwMDechA8Y53CyZrT4lDajVP6MNU5rEh2u9WpOohF360pKt/pwLN/6gj1EhV TF3VJvK4XsM++J0WXc6xp9bAWIiiZBIHOkhk9OiqiNDeRxXlLcLMPH2Z0XUX7sE3 xus19cpzG4SUoIsc7FvwuI9rY5zraI8yf8GdJgVuLXtwv+3fhcvmyWlqGYVhftfQ fG2NYwiDBZyHawQxwtWp+LLwZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAd0ZzvQ u0fGtB1JokA4i1ns5yAdMB8GA1UdIwQYMBaAFONLT4DZ4/cAvKxMUsWrI+tbft+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTRCNy85NkU2Njc1QTc4 NEUxMUVFQjE5QUQzNERDNEY5QUUwMi80MHRQZ05uajl3QzhyRXhTeGFzajYxdC0z N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzQwdFBnTm5qOXdDOHJFeFN4YXNqNjF0LTM3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTRCNy85NkU2Njc1QTc4NEUxMUVFQjE5QUQzNERDNEY5QUUwMi80MHRQZ05uajl3 QzhyRXhTeGFzajYxdC0zN3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTUlYLXA93MsQobApnxzxMfDcrBFc72iEbzjpLiMtWUESRMCUp/8MZ NWvDB/9DK9/W/76MOnwQ7RFSMdluHXPhdSQHjyMjluSU4ykA2CiA9Cx6eUjjQTZD HUz9xeUHbjaOz7fG4GI64wn0myzDhIiOBxU1wwNnAehabCMWinUfod1ngA7HxP6o BbiCpJqHQ/4aNuU7KMYQ/GDRT3BPBBmGyfXHdhG/RCqofb7EGwH/GLFanIxeiJtd i55YBh9gYW5InyIeXPmmZmCv2iRNAHJXvusMqk4Ku6L4ULc9185kiCx0bujpGRcM TvCUH0j/t1VVZNYTMU4BQHDLVWysn9WE -----END CERTIFICATE-----Generated at Sun Jul 20 19:20:40 2025 by rpki-client