$ rpki-client -vvf rpki.apnic.net/member_repository/A9134790/5133FEAC44E911F091A96E53C4F9AE02/28EoRfH6o1sy_s32oO1NFEKSyMw.mft File: 28EoRfH6o1sy_s32oO1NFEKSyMw.mft (raw, json) Hash identifier: /QiDe0Ts5A8A5vVsZB5LS847UTIXVODktxfoxM6/emg= Subject key identifier: 67:0B:C9:E8:D4:4E:76:56:92:A6:E9:9A:4E:1B:FF:5A:FF:C4:9C:52 Authority key identifier: DB:C1:28:45:F1:FA:A3:5B:32:FE:CD:F6:A0:ED:4D:14:42:92:C8:CC Certificate issuer: /CN=A9134790/serialNumber=DBC12845F1FAA35B32FECDF6A0ED4D144292C8CC Certificate serial: 22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28EoRfH6o1sy_s32oO1NFEKSyMw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134790/5133FEAC44E911F091A96E53C4F9AE02/28EoRfH6o1sy_s32oO1NFEKSyMw.mft Manifest number: 21 Signing time: Sat 09 Aug 2025 08:21:51 +0000 Manifest this update: Sat 09 Aug 2025 08:21:50 +0000 Manifest next update: Sat 16 Aug 2025 08:21:50 +0000 Files and hashes: 1: 28EoRfH6o1sy_s32oO1NFEKSyMw.crl (hash: 4CQDvKaWOCalzUpLgye+/YMiqmceqK9LD9jRlaU+BFs=) 2: 078FA91C44EA11F09EB11858C4F9AE02.roa (hash: 0gESDeiknT1uDimkCFfPCuziTgWG/TNYoJv8MT/MXRA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134790/5133FEAC44E911F091A96E53C4F9AE02/28EoRfH6o1sy_s32oO1NFEKSyMw.crl rsync://rpki.apnic.net/member_repository/A9134790/5133FEAC44E911F091A96E53C4F9AE02/28EoRfH6o1sy_s32oO1NFEKSyMw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28EoRfH6o1sy_s32oO1NFEKSyMw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134790, serialNumber=DBC12845F1FAA35B32FECDF6A0ED4D144292C8CC Validity Not Before: Aug 9 08:21:50 2025 GMT Not After : Aug 16 08:21:50 2025 GMT Subject: CN=6897051f-5613 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f9:a5:a0:51:cf:45:e3:7b:73:65:57:4d:16: 2f:36:74:a1:af:06:bf:a0:ff:f6:fa:cb:82:0b:ac: 8f:31:1f:d5:ff:74:01:b8:e1:1f:d6:07:c9:6e:59: 3b:d2:70:17:76:4f:2a:42:d2:88:1d:52:37:6b:cc: c9:4f:d9:98:ce:3a:52:ac:11:5c:66:0f:6e:c3:59: bd:22:bb:85:44:80:b7:e7:59:2e:e5:95:6b:bb:06: d4:c1:72:c6:c6:49:71:c0:de:48:60:15:03:47:6d: ad:fe:d6:7b:e5:86:db:48:61:19:ff:f6:d4:22:0e: 4d:03:04:00:93:80:d6:bc:3e:af:8f:16:86:3a:f6: 5b:36:fd:04:eb:a8:7b:f3:4c:43:9e:eb:e6:b6:0a: 94:ab:ce:a1:26:f4:0e:a4:33:f6:02:df:4e:f4:29: 1e:45:6b:50:3a:57:bb:3b:42:d8:5b:ca:99:bb:e1: 3b:2a:7b:1e:08:5a:e6:99:af:0a:fb:fe:88:39:de: dd:a0:99:60:27:f8:b0:c8:5d:44:da:05:bd:1a:89: 97:ee:6b:30:77:ad:cc:75:67:08:03:b5:f9:37:7b: 1e:ba:1d:93:76:17:69:72:d7:26:fb:0a:2c:db:04: 17:5f:24:87:e5:68:40:6a:82:02:2c:07:c9:35:9e: 47:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:0B:C9:E8:D4:4E:76:56:92:A6:E9:9A:4E:1B:FF:5A:FF:C4:9C:52 X509v3 Authority Key Identifier: keyid:DB:C1:28:45:F1:FA:A3:5B:32:FE:CD:F6:A0:ED:4D:14:42:92:C8:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134790/5133FEAC44E911F091A96E53C4F9AE02/28EoRfH6o1sy_s32oO1NFEKSyMw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28EoRfH6o1sy_s32oO1NFEKSyMw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134790/5133FEAC44E911F091A96E53C4F9AE02/28EoRfH6o1sy_s32oO1NFEKSyMw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:78:28:14:72:4c:a6:e3:2e:ba:24:20:e1:79:66:31:d7:df: a8:b1:88:1c:28:b8:d6:dd:01:28:dd:8f:6f:16:64:de:cb:c1: ff:bb:0a:75:4a:d2:0b:0e:fd:38:ff:e2:2b:40:46:13:9f:fa: 95:1c:56:cd:91:a9:2c:50:dc:de:c3:b0:c0:bd:02:d9:67:0b: 3c:07:63:cb:0e:a6:08:74:00:54:1f:ec:19:a7:2e:2a:e7:a9: 58:79:98:03:42:12:d2:c9:6d:44:21:01:ce:8e:d1:93:04:51: a3:83:d1:04:57:cd:86:90:61:35:67:ab:a2:a2:04:4f:bd:46: 77:73:ed:3e:72:d4:47:e9:df:18:1f:25:02:be:d7:4f:f4:1d: c7:f2:7d:f8:d8:6c:77:d2:28:e3:a9:ff:bf:cd:bb:3c:ca:cb: 1f:92:f9:72:90:f5:19:5c:5e:f1:a4:e6:3e:8e:9c:57:7b:9e: 4b:84:e0:fc:42:d0:36:e1:31:3c:49:43:2b:5d:67:ca:1d:e4: ed:fe:a1:4d:17:7e:65:ef:fc:91:a8:87:84:c3:14:59:cc:dd: 99:2e:9d:b2:74:70:7b:85:9e:73:e5:31:15:9f:1c:03:5f:2a: 12:bc:32:3c:f3:f6:86:6f:b8:09:7b:66:a9:5e:5c:8e:7c:79: 97:8a:2a:3f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NDc5MDExMC8GA1UEBRMoREJDMTI4NDVGMUZBQTM1QjMyRkVDREY2QTBFRDREMTQ0 MjkyQzhDQzAeFw0yNTA4MDkwODIxNTBaFw0yNTA4MTYwODIxNTBaMBgxFjAUBgNV BAMTDTY4OTcwNTFmLTU2MTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDK+aWgUc9F43tzZVdNFi82dKGvBr+g//b6y4ILrI8xH9X/dAG44R/WB8luWTvS cBd2TypC0ogdUjdrzMlP2ZjOOlKsEVxmD27DWb0iu4VEgLfnWS7llWu7BtTBcsbG SXHA3khgFQNHba3+1nvlhttIYRn/9tQiDk0DBACTgNa8Pq+PFoY69ls2/QTrqHvz TEOe6+a2CpSrzqEm9A6kM/YC3070KR5Fa1A6V7s7Qthbypm74Tsqex4IWuaZrwr7 /og53t2gmWAn+LDIXUTaBb0aiZfuazB3rcx1ZwgDtfk3ex66HZN2F2ly1yb7Cizb BBdfJIflaEBqggIsB8k1nkcFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZwvJ6NRO dlaSpumaThv/Wv/EnFIwHwYDVR0jBBgwFoAU28EoRfH6o1sy/s32oO1NFEKSyMww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM0NzkwLzUxMzNGRUFDNDRF OTExRjA5MUE5NkU1M0M0RjlBRTAyLzI4RW9SZkg2bzFzeV9zMzJvTzFORkVLU3lN dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMjhFb1JmSDZvMXN5X3MzMm9PMU5GRUtTeU13LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM0 NzkwLzUxMzNGRUFDNDRFOTExRjA5MUE5NkU1M0M0RjlBRTAyLzI4RW9SZkg2bzFz eV9zMzJvTzFORkVLU3lNdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACR4KBRyTKbjLrokIOF5ZjHX36ixiBwouNbdASjdj28WZN7Lwf+7CnVK 0gsO/Tj/4itARhOf+pUcVs2RqSxQ3N7DsMC9AtlnCzwHY8sOpgh0AFQf7BmnLirn qVh5mANCEtLJbUQhAc6O0ZMEUaOD0QRXzYaQYTVnq6KiBE+9Rndz7T5y1Efp3xgf JQK+10/0HcfyffjYbHfSKOOp/7/NuzzKyx+S+XKQ9RlcXvGk5j6OnFd7nkuE4PxC 0DbhMTxJQytdZ8od5O3+oU0XfmXv/JGoh4TDFFnM3ZkunbJ0cHuFnnPlMRWfHANf KhK8Mjzz9oZvuAl7ZqleXI58eZeKKj8= -----END CERTIFICATE-----Generated at Sun Aug 10 10:39:18 2025 by rpki-client