$ rpki-client -vvf rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/Mp2gPbmUR1FJil_KU8hdqmDLmjI.mft File: Mp2gPbmUR1FJil_KU8hdqmDLmjI.mft (raw, json) Hash identifier: fthDvb2zPqx74czug22wHcuzm2zwXnl5CNN3mYVBppk= Subject key identifier: 7A:4A:68:1E:98:49:7A:E8:D0:07:6B:C9:CE:EC:C9:E9:AF:E2:E6:8B Authority key identifier: 32:9D:A0:3D:B9:94:47:51:49:8A:5F:CA:53:C8:5D:AA:60:CB:9A:32 Certificate issuer: /CN=A913C432/serialNumber=329DA03DB9944751498A5FCA53C85DAA60CB9A32 Certificate serial: 100A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mp2gPbmUR1FJil_KU8hdqmDLmjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/Mp2gPbmUR1FJil_KU8hdqmDLmjI.mft Manifest number: 0FD8 Signing time: Sat 14 Jun 2025 17:27:50 +0000 Manifest this update: Sat 14 Jun 2025 17:27:49 +0000 Manifest next update: Sat 21 Jun 2025 17:27:49 +0000 Files and hashes: 1: Mp2gPbmUR1FJil_KU8hdqmDLmjI.crl (hash: pCkTTR3Q8oGK3KZvhGN8QG76BoZTfyMc8A9wmFKY4bk=) 2: AA2BE0CC359B11F08F8F7E4AC4F9AE02.roa (hash: cZwW8tsmFD2xtwPfekSh582VRbEv6Jvu1sqyXeWPy+U=) 3: CF949C10359A11F0AFFF2848C4F9AE02.roa (hash: cIB0S20gV/ZhV77XZTzfCkZr/IsCbhpCdfiUC7S/47s=) 4: 57128B16347911F0B5AFA587C4F9AE02.roa (hash: WKrNLnQSQf3mdrreiH8iEoIheF7qvuIgUI+Ro9y3tro=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/Mp2gPbmUR1FJil_KU8hdqmDLmjI.crl rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/Mp2gPbmUR1FJil_KU8hdqmDLmjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mp2gPbmUR1FJil_KU8hdqmDLmjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:13:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4106 (0x100a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C432, serialNumber=329DA03DB9944751498A5FCA53C85DAA60CB9A32 Validity Not Before: Jun 14 17:27:49 2025 GMT Not After : Jun 21 17:27:49 2025 GMT Subject: CN=684db115-180b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:6d:35:e7:48:15:81:f2:a4:6c:95:9d:ef:d0: ac:ab:a1:94:1c:28:7d:1f:b0:f2:96:5b:1c:ce:6e: 20:49:99:65:c7:19:86:9b:df:dc:8a:b8:88:81:5a: e7:13:c0:95:5c:0d:bd:93:c2:84:13:70:20:bd:b9: 11:78:67:a6:e9:7c:58:34:aa:83:61:a7:69:7b:76: d6:89:53:81:7a:e1:2f:87:93:4a:6d:46:eb:08:85: fe:76:f4:03:81:7b:46:40:69:61:a2:fa:68:c1:39: c4:9d:6c:a6:90:ff:ba:66:b6:7b:64:d9:c8:0e:6d: 49:57:4b:e7:bd:3c:30:87:ca:b7:47:83:3d:e9:46: 89:ff:11:f2:7b:12:b3:d9:1e:81:8a:60:0b:13:f8: 8b:7b:f8:90:12:9a:fc:a8:0d:4a:65:bb:42:2b:0a: 4a:d6:3b:d9:b3:21:91:8f:a6:d7:69:16:e7:4e:f5: ba:b6:17:85:78:47:a4:ed:60:ca:d5:9c:b3:4a:48: 4f:8f:39:6f:03:85:c9:12:a0:0e:eb:85:c4:06:f2: 6e:16:11:c0:27:43:c4:92:d3:47:c0:45:58:78:d2: c9:58:36:30:e0:d6:38:3d:dd:c9:3c:8b:b1:89:d8: cd:9a:43:1a:4c:3f:33:59:ca:a2:82:98:49:1b:2b: 30:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:4A:68:1E:98:49:7A:E8:D0:07:6B:C9:CE:EC:C9:E9:AF:E2:E6:8B X509v3 Authority Key Identifier: keyid:32:9D:A0:3D:B9:94:47:51:49:8A:5F:CA:53:C8:5D:AA:60:CB:9A:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/Mp2gPbmUR1FJil_KU8hdqmDLmjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mp2gPbmUR1FJil_KU8hdqmDLmjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/Mp2gPbmUR1FJil_KU8hdqmDLmjI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:a1:ed:f5:98:5b:f2:a0:45:53:44:77:6c:40:b4:14:4b:1f: df:16:68:d3:45:b2:ff:15:fd:d8:9f:7a:ed:2a:d2:aa:11:53: 17:b2:08:7b:4c:93:be:16:4f:8e:37:b0:14:db:07:ec:5f:da: b2:47:2f:cb:a2:a0:a5:cf:0b:ad:d0:90:23:1f:3a:b2:c1:10: e0:7b:62:d0:54:2e:32:2e:e9:ff:eb:a1:3e:7e:7c:98:44:00: 3c:a2:4d:21:e0:2f:b4:47:9c:e1:d6:0e:3c:d5:ed:89:61:10: 50:9c:9e:f0:26:85:7d:9d:e1:ee:46:ee:24:8a:6c:6b:e1:a5: 15:bd:e3:f0:5c:42:16:44:ec:f8:d3:40:9d:a3:30:7b:15:3c: 9a:d6:e7:b3:f8:bc:26:ac:c2:32:6c:99:94:2a:a1:46:2f:4a: 4f:d1:58:d5:ec:1b:62:39:81:aa:53:2d:40:65:7e:bb:83:35: e4:96:aa:6f:b6:d8:2a:10:37:b4:2e:b8:02:d6:92:fd:2b:af: 87:65:be:0c:69:3d:90:b8:c9:75:d0:36:16:b8:26:f5:e5:fd: c6:d4:e1:b4:27:f7:1f:f4:78:7a:af:1d:41:73:4e:4a:00:dc: 6d:23:dd:35:6c:c3:cf:3e:3e:26:2c:da:84:da:84:6a:74:e3: e2:1a:b0:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEAowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M0MzIxMTAvBgNVBAUTKDMyOURBMDNEQjk5NDQ3NTE0OThBNUZDQTUzQzg1REFB NjBDQjlBMzIwHhcNMjUwNjE0MTcyNzQ5WhcNMjUwNjIxMTcyNzQ5WjAYMRYwFAYD VQQDEw02ODRkYjExNS0xODBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtW0150gVgfKkbJWd79Csq6GUHCh9H7Dyllsczm4gSZllxxmGm9/ciriIgVrn E8CVXA29k8KEE3AgvbkReGem6XxYNKqDYadpe3bWiVOBeuEvh5NKbUbrCIX+dvQD gXtGQGlhovpowTnEnWymkP+6ZrZ7ZNnIDm1JV0vnvTwwh8q3R4M96UaJ/xHyexKz 2R6BimALE/iLe/iQEpr8qA1KZbtCKwpK1jvZsyGRj6bXaRbnTvW6theFeEek7WDK 1ZyzSkhPjzlvA4XJEqAO64XEBvJuFhHAJ0PEktNHwEVYeNLJWDYw4NY4Pd3JPIux idjNmkMaTD8zWcqigphJGyswNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHpKaB6Y SXro0Adryc7syemv4uaLMB8GA1UdIwQYMBaAFDKdoD25lEdRSYpfylPIXapgy5oy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzQzMi8yRENBQkE2ODVD RjIxMUU5ODQ5MzkyMjRDNEY5QUUwMi9NcDJnUGJtVVIxRkppbF9LVThoZHFtRExt akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01wMmdQYm1VUjFGSmlsX0tVOGhkcW1ETG1qSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QzQzMi8yRENBQkE2ODVDRjIxMUU5ODQ5MzkyMjRDNEY5QUUwMi9NcDJnUGJtVVIx RkppbF9LVThoZHFtRExtakkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0oe31mFvyoEVTRHdsQLQUSx/fFmjTRbL/Ff3Yn3rtKtKqEVMXsgh7 TJO+Fk+ON7AU2wfsX9qyRy/LoqClzwut0JAjHzqywRDge2LQVC4yLun/66E+fnyY RAA8ok0h4C+0R5zh1g481e2JYRBQnJ7wJoV9neHuRu4kimxr4aUVvePwXEIWROz4 00CdozB7FTya1uez+LwmrMIybJmUKqFGL0pP0VjV7BtiOYGqUy1AZX67gzXklqpv ttgqEDe0LrgC1pL9K6+HZb4MaT2QuMl10DYWuCb15f3G1OG0J/cf9Hh6rx1Bc05K ANxtI901bMPPPj4mLNqE2oRqdOPiGrD2 -----END CERTIFICATE-----Generated at Sat Jun 14 19:28:55 2025 by rpki-client