$ rpki-client -vvf rpki.apnic.net/member_repository/A9138EEB/F49114802BC311EFB85FFB65C4F9AE02/phmVDMpkZIerm9RKQff2ybQJs9c.mft File: phmVDMpkZIerm9RKQff2ybQJs9c.mft (raw, json) Hash identifier: lp+5L9Oe0hCEDt8646xB7mA6celIacJ+8jGDCsGrgXs= Subject key identifier: 5A:94:58:8B:9F:35:F2:2A:7E:5C:B5:6E:5C:62:18:D3:CB:2E:E6:36 Authority key identifier: A6:19:95:0C:CA:64:64:87:AB:9B:D4:4A:41:F7:F6:C9:B4:09:B3:D7 Certificate issuer: /CN=A9138EEB/serialNumber=A619950CCA646487AB9BD44A41F7F6C9B409B3D7 Certificate serial: DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phmVDMpkZIerm9RKQff2ybQJs9c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138EEB/F49114802BC311EFB85FFB65C4F9AE02/phmVDMpkZIerm9RKQff2ybQJs9c.mft Manifest number: DA Signing time: Thu 07 Aug 2025 06:05:01 +0000 Manifest this update: Thu 07 Aug 2025 06:05:01 +0000 Manifest next update: Thu 14 Aug 2025 06:05:01 +0000 Files and hashes: 1: phmVDMpkZIerm9RKQff2ybQJs9c.crl (hash: MIRdSVaNg1EEEf6mYTJy68PoQswK1T90zmtQjKR+hfc=) 2: DBF621F42C7211EF8FB22F85C4F9AE02.roa (hash: RJoaBkivOrsbbGOk4+rF7GV3mPNikd+l5jkX1SaMaN0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138EEB/F49114802BC311EFB85FFB65C4F9AE02/phmVDMpkZIerm9RKQff2ybQJs9c.crl rsync://rpki.apnic.net/member_repository/A9138EEB/F49114802BC311EFB85FFB65C4F9AE02/phmVDMpkZIerm9RKQff2ybQJs9c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phmVDMpkZIerm9RKQff2ybQJs9c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138EEB, serialNumber=A619950CCA646487AB9BD44A41F7F6C9B409B3D7 Validity Not Before: Aug 7 06:05:01 2025 GMT Not After : Aug 14 06:05:01 2025 GMT Subject: CN=6894420d-17e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:5f:06:a5:9c:52:f9:b2:90:95:08:49:e4:4a: 4c:01:02:90:01:38:eb:22:6e:4c:24:af:a1:4b:98: 7c:fe:7b:9a:e7:da:90:73:87:cd:ea:46:e5:e9:f6: 9f:cf:05:e2:6e:8b:66:3a:5d:a2:9e:e0:2f:17:c9: 56:ee:38:c0:99:25:7f:b8:5f:60:dd:63:8c:53:0a: d4:ba:ea:dd:8f:77:39:66:09:49:ae:08:00:69:93: ca:fe:db:8d:b6:64:b8:98:8c:98:82:5c:f9:53:8f: b1:24:9f:09:97:cc:1c:b0:78:f8:7c:82:16:30:34: c3:c0:a6:28:fd:2d:a9:00:39:96:c5:c0:fb:f0:36: de:80:82:45:ef:54:35:b1:82:cb:24:86:94:c6:6f: 40:19:65:d7:05:f7:87:18:52:e8:28:4a:55:2e:b5: 1b:6e:14:fa:7b:61:32:f9:ba:d7:7a:21:b1:25:72: c7:eb:6d:e5:ba:17:d8:a5:c3:eb:89:b7:c1:fc:07: 71:d5:e1:eb:c7:9f:c3:7e:07:8a:09:b5:e8:09:48: 5e:c2:47:ac:b6:bc:67:bc:96:a1:58:c0:23:4d:b6: a4:a7:91:8a:7a:23:07:4c:61:cb:63:ba:fb:a1:9d: 29:be:ea:7e:8b:ca:b2:4f:85:e8:2f:86:c1:4e:c0: 56:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:94:58:8B:9F:35:F2:2A:7E:5C:B5:6E:5C:62:18:D3:CB:2E:E6:36 X509v3 Authority Key Identifier: keyid:A6:19:95:0C:CA:64:64:87:AB:9B:D4:4A:41:F7:F6:C9:B4:09:B3:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138EEB/F49114802BC311EFB85FFB65C4F9AE02/phmVDMpkZIerm9RKQff2ybQJs9c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phmVDMpkZIerm9RKQff2ybQJs9c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138EEB/F49114802BC311EFB85FFB65C4F9AE02/phmVDMpkZIerm9RKQff2ybQJs9c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:df:e9:c1:88:33:21:27:cf:02:82:a0:50:b1:75:05:a6:80: ee:2e:3f:08:1c:7a:87:f0:13:0a:f5:69:eb:d7:24:6b:0b:e3: 6b:6e:bc:7c:3f:75:29:33:1a:a6:f2:4b:4a:f8:28:ae:7d:7f: 91:d8:47:72:99:15:76:f2:e4:a1:1c:29:98:b3:e9:cc:69:e2: c6:0e:51:46:07:e4:6f:36:64:20:b2:18:26:66:c3:87:c4:da: 1e:c1:20:d0:04:42:a9:c4:f0:34:d9:80:db:5b:6e:02:11:ac: fa:95:1f:9c:4d:69:b2:c8:9e:47:2d:16:bc:66:f3:46:20:da: cf:21:49:44:66:59:6a:98:ca:d5:8a:e2:20:64:71:29:69:45: 31:93:86:ea:e4:cc:7f:a1:da:f5:d3:10:e9:4b:b4:58:21:1c: 36:f8:eb:68:0d:cc:9a:6e:d4:78:5f:30:91:37:06:73:04:d8: 77:9c:b4:75:db:b4:00:35:e5:ae:ac:02:db:2d:35:63:c4:f6: 06:80:96:23:6d:69:6f:b6:73:e0:4e:8a:c7:fe:f6:b5:19:45: a2:ce:77:d9:15:4c:7a:08:13:ec:0d:e0:84:5c:4f:59:5c:1d: 80:a6:c8:d4:43:cf:9d:a4:59:60:ba:31:b6:8c:9d:c3:8a:d1: 71:0a:32:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzhFRUIxMTAvBgNVBAUTKEE2MTk5NTBDQ0E2NDY0ODdBQjlCRDQ0QTQxRjdGNkM5 QjQwOUIzRDcwHhcNMjUwODA3MDYwNTAxWhcNMjUwODE0MDYwNTAxWjAYMRYwFAYD VQQDEw02ODk0NDIwZC0xN2U1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxF8GpZxS+bKQlQhJ5EpMAQKQATjrIm5MJK+hS5h8/nua59qQc4fN6kbl6faf zwXibotmOl2inuAvF8lW7jjAmSV/uF9g3WOMUwrUuurdj3c5ZglJrggAaZPK/tuN tmS4mIyYglz5U4+xJJ8Jl8wcsHj4fIIWMDTDwKYo/S2pADmWxcD78DbegIJF71Q1 sYLLJIaUxm9AGWXXBfeHGFLoKEpVLrUbbhT6e2Ey+brXeiGxJXLH623luhfYpcPr ibfB/Adx1eHrx5/DfgeKCbXoCUhewkestrxnvJahWMAjTbakp5GKeiMHTGHLY7r7 oZ0pvup+i8qyT4XoL4bBTsBWiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFqUWIuf NfIqfly1blxiGNPLLuY2MB8GA1UdIwQYMBaAFKYZlQzKZGSHq5vUSkH39sm0CbPX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOEVFQi9GNDkxMTQ4MDJC QzMxMUVGQjg1RkZCNjVDNEY5QUUwMi9waG1WRE1wa1pJZXJtOVJLUWZmMnliUUpz OWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BobVZETXBrWkllcm05UktRZmYyeWJRSnM5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OEVFQi9GNDkxMTQ4MDJCQzMxMUVGQjg1RkZCNjVDNEY5QUUwMi9waG1WRE1wa1pJ ZXJtOVJLUWZmMnliUUpzOWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBE3+nBiDMhJ88CgqBQsXUFpoDuLj8IHHqH8BMK9Wnr1yRrC+Nrbrx8 P3UpMxqm8ktK+CiufX+R2EdymRV28uShHCmYs+nMaeLGDlFGB+RvNmQgshgmZsOH xNoewSDQBEKpxPA02YDbW24CEaz6lR+cTWmyyJ5HLRa8ZvNGINrPIUlEZllqmMrV iuIgZHEpaUUxk4bq5Mx/odr10xDpS7RYIRw2+OtoDcyabtR4XzCRNwZzBNh3nLR1 27QANeWurALbLTVjxPYGgJYjbWlvtnPgTorH/va1GUWiznfZFUx6CBPsDeCEXE9Z XB2ApsjUQ8+dpFlgujG2jJ3DitFxCjJ4 -----END CERTIFICATE-----Generated at Sat Aug 9 05:46:09 2025 by rpki-client