$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.mft File: a1cJMpDRH2XPuR8SEsKM9zP5wrU.mft (raw, json) Hash identifier: 5D8qhrsKErAjB0ia9npXp4o9xX733n/hkoGgrYGXR+E= Subject key identifier: 1A:B1:06:13:59:89:AE:32:39:D1:1E:4B:35:0D:65:E9:50:68:DB:69 Authority key identifier: 6B:57:09:32:90:D1:1F:65:CF:B9:1F:12:12:C2:8C:F7:33:F9:C2:B5 Certificate issuer: /CN=A9120AAA/serialNumber=6B57093290D11F65CFB91F1212C28CF733F9C2B5 Certificate serial: 0143 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1cJMpDRH2XPuR8SEsKM9zP5wrU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.mft Manifest number: 0141 Signing time: Sun 15 Jun 2025 03:31:15 +0000 Manifest this update: Sun 15 Jun 2025 03:31:14 +0000 Manifest next update: Sun 22 Jun 2025 03:31:14 +0000 Files and hashes: 1: a1cJMpDRH2XPuR8SEsKM9zP5wrU.crl (hash: 4Mn6M2WFZOQthPN0HkbhkMjjnTFWo+RfLyNwwsXC5YY=) 2: 8A389AC25C4811EEBE1CF06BC4F9AE02.roa (hash: 9QttLF7HMnJDx+HbQAXC0YtWXOJ+pz+cgouITeRm1GU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.crl rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1cJMpDRH2XPuR8SEsKM9zP5wrU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 323 (0x143) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AAA, serialNumber=6B57093290D11F65CFB91F1212C28CF733F9C2B5 Validity Not Before: Jun 15 03:31:14 2025 GMT Not After : Jun 22 03:31:14 2025 GMT Subject: CN=684e3e82-b670 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:eb:99:80:fd:a9:04:5c:ec:03:57:13:69:55: 89:e3:d6:c4:bb:cb:a2:60:35:5f:b6:61:b8:87:97: 1e:85:a9:6a:ad:5a:f6:a9:0d:ad:56:8f:04:b0:2a: 74:39:08:61:a3:45:4b:ab:da:34:30:1d:50:a4:87: 16:e2:5b:1a:40:b3:cd:fe:15:81:9e:4a:0b:23:ef: 04:8a:5e:db:7d:a9:f5:2c:d1:0e:f5:b6:f4:e0:ec: f1:f0:c8:ff:36:d3:80:96:ed:52:34:8f:f6:4c:06: ae:64:4a:0a:76:68:01:9f:45:16:d0:fc:f9:f8:a8: fa:96:f8:d2:aa:35:77:b1:de:94:e8:93:0d:d8:b2: c5:33:72:50:ef:de:18:19:f9:59:e1:1f:fe:be:06: 74:09:90:de:57:27:c0:4d:af:5c:ab:d0:4e:82:3b: 8d:7b:7f:c2:7e:54:61:2c:42:7b:6d:06:b1:90:dc: ba:89:7c:2b:26:79:bd:6c:db:e3:d7:be:b6:e1:ec: 25:8a:ef:af:bd:dc:28:4c:c0:58:37:a5:84:9c:90: a7:f2:4b:d5:61:2a:75:31:c1:15:f2:92:46:ba:e9: 49:04:f7:f7:2b:ce:ea:74:b8:0f:d6:6a:61:ad:8b: 14:ca:90:01:bb:10:8d:8c:85:70:8d:1c:13:2f:6e: 7c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:B1:06:13:59:89:AE:32:39:D1:1E:4B:35:0D:65:E9:50:68:DB:69 X509v3 Authority Key Identifier: keyid:6B:57:09:32:90:D1:1F:65:CF:B9:1F:12:12:C2:8C:F7:33:F9:C2:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1cJMpDRH2XPuR8SEsKM9zP5wrU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:9b:5a:14:74:e9:53:ab:17:5c:bf:a5:1c:62:26:92:8a:43: dd:13:84:ad:db:93:d8:4a:73:41:e8:90:37:68:0f:2a:4f:93: 68:ad:d5:c8:a8:16:fd:d5:99:1f:fc:dc:96:6b:be:c3:02:54: b1:dc:62:38:55:e1:ca:56:bf:77:e8:9c:49:ee:a0:0d:09:de: be:99:d8:6d:0b:5d:58:02:14:20:2c:f1:42:21:37:84:96:50: 81:06:b9:89:0e:8b:a3:4f:b8:da:e9:be:ea:06:00:f2:6d:b0: c8:18:c7:45:fc:67:f9:9b:18:ac:a4:8d:fa:b5:72:55:ad:7b: 9c:28:19:b8:bd:7c:a8:c4:18:d2:fd:3e:0e:32:a4:26:47:36: e5:3b:45:50:21:6c:f0:65:e2:5a:28:11:58:89:26:71:85:13: 21:ca:13:3e:b6:ab:e9:ad:dd:fd:ba:ae:68:5a:c4:e6:86:e3: 51:98:5a:6b:d7:4e:fa:1e:c3:d1:ac:d6:14:95:e3:2f:c9:67: 0b:be:89:44:08:a5:e7:3b:f1:21:f9:e3:2c:fb:c9:86:31:17: 39:b4:8f:2d:bc:58:4e:cb:8a:5d:1c:a8:a8:7b:8c:30:3f:36: 11:40:71:6a:e9:fb:1e:b5:a6:18:29:7a:43:df:35:53:83:e0: e4:df:64:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQUExMTAvBgNVBAUTKDZCNTcwOTMyOTBEMTFGNjVDRkI5MUYxMjEyQzI4Q0Y3 MzNGOUMyQjUwHhcNMjUwNjE1MDMzMTE0WhcNMjUwNjIyMDMzMTE0WjAYMRYwFAYD VQQDEw02ODRlM2U4Mi1iNjcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxeuZgP2pBFzsA1cTaVWJ49bEu8uiYDVftmG4h5cehalqrVr2qQ2tVo8EsCp0 OQhho0VLq9o0MB1QpIcW4lsaQLPN/hWBnkoLI+8Eil7bfan1LNEO9bb04Ozx8Mj/ NtOAlu1SNI/2TAauZEoKdmgBn0UW0Pz5+Kj6lvjSqjV3sd6U6JMN2LLFM3JQ794Y GflZ4R/+vgZ0CZDeVyfATa9cq9BOgjuNe3/CflRhLEJ7bQaxkNy6iXwrJnm9bNvj 17624ewliu+vvdwoTMBYN6WEnJCn8kvVYSp1McEV8pJGuulJBPf3K87qdLgP1mph rYsUypABuxCNjIVwjRwTL258nQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBqxBhNZ ia4yOdEeSzUNZelQaNtpMB8GA1UdIwQYMBaAFGtXCTKQ0R9lz7kfEhLCjPcz+cK1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFBQS8wQ0E3N0M4MjVD NDcxMUVFQUE5RkU5NjZDNEY5QUUwMi9hMWNKTXBEUkgyWFB1UjhTRXNLTTl6UDV3 clUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ExY0pNcERSSDJYUHVSOFNFc0tNOXpQNXdyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFBQS8wQ0E3N0M4MjVDNDcxMUVFQUE5RkU5NjZDNEY5QUUwMi9hMWNKTXBEUkgy WFB1UjhTRXNLTTl6UDV3clUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYm1oUdOlTqxdcv6UcYiaSikPdE4St25PYSnNB6JA3aA8qT5NordXI qBb91Zkf/NyWa77DAlSx3GI4VeHKVr936JxJ7qANCd6+mdhtC11YAhQgLPFCITeE llCBBrmJDoujT7ja6b7qBgDybbDIGMdF/Gf5mxispI36tXJVrXucKBm4vXyoxBjS /T4OMqQmRzblO0VQIWzwZeJaKBFYiSZxhRMhyhM+tqvprd39uq5oWsTmhuNRmFpr 1076HsPRrNYUleMvyWcLvolECKXnO/Eh+eMs+8mGMRc5tI8tvFhOy4pdHKioe4ww PzYRQHFq6fsetaYYKXpD3zVTg+Dk32Q0 -----END CERTIFICATE-----Generated at Sun Jun 15 09:51:01 2025 by rpki-client