$ rpki-client -vvf rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.mft File: F61gXQbH7QoUSFwCoS8AFwmiLWI.mft (raw, json) Hash identifier: cUtZLdPshT/ku20cZc93jnSLW4mkiPmtIYB5l1mDaj8= Subject key identifier: B1:0F:79:C2:8D:3E:9C:8B:16:B5:52:69:4D:75:74:9E:5C:BF:B2:B7 Authority key identifier: 17:AD:60:5D:06:C7:ED:0A:14:48:5C:02:A1:2F:00:17:09:A2:2D:62 Certificate issuer: /CN=A911BEA7/serialNumber=17AD605D06C7ED0A14485C02A12F001709A22D62 Certificate serial: 0170 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F61gXQbH7QoUSFwCoS8AFwmiLWI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.mft Manifest number: 016D Signing time: Tue 05 Aug 2025 04:17:11 +0000 Manifest this update: Tue 05 Aug 2025 04:17:11 +0000 Manifest next update: Tue 12 Aug 2025 04:17:11 +0000 Files and hashes: 1: F61gXQbH7QoUSFwCoS8AFwmiLWI.crl (hash: 4ttm4NipZk2ncmmrcCWTmOWfwT6cXPggCRhMGfviG0Q=) 2: 0294C902459511EE982FBC6DC4F9AE02.roa (hash: ImURD0YXIXR8XStDPLYGz5z7015ogkyNT0YFkxGE7dU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.crl rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F61gXQbH7QoUSFwCoS8AFwmiLWI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 04:17:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 368 (0x170) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BEA7, serialNumber=17AD605D06C7ED0A14485C02A12F001709A22D62 Validity Not Before: Aug 5 04:17:11 2025 GMT Not After : Aug 12 04:17:11 2025 GMT Subject: CN=689185c7-8de4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:54:f5:c7:0a:44:ce:ac:cb:e7:70:b0:1b:bd: 67:c0:ea:56:04:98:50:c0:c3:58:68:f8:61:eb:4b: 1b:0f:0e:26:b0:fd:af:db:89:70:87:68:40:ed:34: 63:66:fe:7c:c4:20:6b:45:d6:05:cd:51:02:39:13: 38:97:71:80:f8:bf:ed:69:11:56:10:c3:d4:b4:01: b0:8b:71:0b:22:dd:74:7d:f5:e8:58:3e:7a:73:3f: fa:a6:78:85:17:50:15:e9:b7:e3:69:d8:c8:d6:48: 0e:26:be:e9:69:6e:ab:6d:ca:a3:aa:24:e6:92:63: 5f:71:27:d6:1b:90:28:98:d6:c5:32:29:a1:f3:10: 1c:d8:6e:00:d8:8d:cd:3f:f2:dd:fa:78:b3:37:41: 76:bf:d0:9f:b3:f7:3d:14:f2:c9:4c:c1:bd:14:7e: 62:a0:a3:92:c4:df:2b:0f:ef:9f:79:54:32:b0:9e: 16:06:10:02:f6:55:96:ae:91:32:02:e3:40:1f:21: 21:2e:83:ce:69:75:a5:01:1c:9d:35:7d:21:24:d8: 55:6b:f2:55:b1:38:53:36:9f:00:b2:3b:95:bf:62: 55:ab:c8:2a:e6:7f:73:d0:d7:88:99:f9:63:ff:17: 84:6c:f8:89:fd:27:4e:49:b6:22:cf:d5:a7:d6:e5: f2:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:0F:79:C2:8D:3E:9C:8B:16:B5:52:69:4D:75:74:9E:5C:BF:B2:B7 X509v3 Authority Key Identifier: keyid:17:AD:60:5D:06:C7:ED:0A:14:48:5C:02:A1:2F:00:17:09:A2:2D:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F61gXQbH7QoUSFwCoS8AFwmiLWI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:16:b5:25:42:74:29:6a:d3:7c:e3:f1:41:d1:b7:0e:1c:c1: 41:87:51:ae:60:de:96:53:1a:e4:47:3c:83:1b:21:dc:5f:82: c3:0d:00:4d:95:4e:af:76:56:af:9d:16:ce:2a:36:62:8b:7d: a4:e3:aa:1b:03:7e:1c:30:be:45:f2:22:f7:81:c9:c2:32:9e: e5:37:3a:c9:28:b5:dd:66:d3:0b:47:be:74:61:bb:74:ad:3a: a8:2e:b3:e0:df:64:92:d1:84:12:de:9a:81:07:24:72:3e:e2: 0a:b7:78:ff:5c:89:9b:77:47:b5:c3:94:40:4e:83:5e:49:75: cf:22:59:b1:cf:49:4a:82:a9:4d:a8:5c:9f:0b:11:f8:7c:06: a8:90:5f:42:61:83:27:c5:06:49:9e:1d:36:ea:b1:a2:c1:d9: 87:1b:33:93:7f:e5:e7:5e:a5:cb:f7:4b:28:c4:1a:5d:6c:25: 2b:50:fc:3b:16:c7:cc:fa:de:8a:d0:be:bc:11:dd:0d:ff:4c: 5e:a2:d8:17:89:0a:e7:ef:17:bd:6a:df:f0:58:24:29:d4:92: 74:e7:47:e8:f0:8f:3b:ad:9a:3c:f4:79:53:26:a8:96:22:f9: 97:2d:71:50:3b:c7:49:ea:23:62:ed:67:7a:d8:8c:87:1e:bc: 5f:e9:7c:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJFQTcxMTAvBgNVBAUTKDE3QUQ2MDVEMDZDN0VEMEExNDQ4NUMwMkExMkYwMDE3 MDlBMjJENjIwHhcNMjUwODA1MDQxNzExWhcNMjUwODEyMDQxNzExWjAYMRYwFAYD VQQDEw02ODkxODVjNy04ZGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs1T1xwpEzqzL53CwG71nwOpWBJhQwMNYaPhh60sbDw4msP2v24lwh2hA7TRj Zv58xCBrRdYFzVECORM4l3GA+L/taRFWEMPUtAGwi3ELIt10ffXoWD56cz/6pniF F1AV6bfjadjI1kgOJr7paW6rbcqjqiTmkmNfcSfWG5AomNbFMimh8xAc2G4A2I3N P/Ld+nizN0F2v9Cfs/c9FPLJTMG9FH5ioKOSxN8rD++feVQysJ4WBhAC9lWWrpEy AuNAHyEhLoPOaXWlARydNX0hJNhVa/JVsThTNp8AsjuVv2JVq8gq5n9z0NeImflj /xeEbPiJ/SdOSbYiz9Wn1uXy+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLEPecKN PpyLFrVSaU11dJ5cv7K3MB8GA1UdIwQYMBaAFBetYF0Gx+0KFEhcAqEvABcJoi1i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkVBNy9CRTY3RDcxMDQ1 OTQxMUVFODU0NTJFNkRDNEY5QUUwMi9GNjFnWFFiSDdRb1VTRndDb1M4QUZ3bWlM V0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Y2MWdYUWJIN1FvVVNGd0NvUzhBRndtaUxXSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkVBNy9CRTY3RDcxMDQ1OTQxMUVFODU0NTJFNkRDNEY5QUUwMi9GNjFnWFFiSDdR b1VTRndDb1M4QUZ3bWlMV0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQFrUlQnQpatN84/FB0bcOHMFBh1GuYN6WUxrkRzyDGyHcX4LDDQBN lU6vdlavnRbOKjZii32k46obA34cML5F8iL3gcnCMp7lNzrJKLXdZtMLR750Ybt0 rTqoLrPg32SS0YQS3pqBByRyPuIKt3j/XImbd0e1w5RAToNeSXXPIlmxz0lKgqlN qFyfCxH4fAaokF9CYYMnxQZJnh026rGiwdmHGzOTf+XnXqXL90soxBpdbCUrUPw7 FsfM+t6K0L68Ed0N/0xeotgXiQrn7xe9at/wWCQp1JJ050fo8I87rZo89HlTJqiW IvmXLXFQO8dJ6iNi7Wd62IyHHrxf6Xzj -----END CERTIFICATE-----Generated at Wed Aug 6 09:34:21 2025 by rpki-client