$ rpki-client -vvf rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.mft File: vHDzdLcox7cRwkpoJ_dHekKyKk0.mft (raw, json) Hash identifier: sKZxo7LcSfySHDm5AmZQ/4yEWo3srSTkdMZgRc9IEJI= Subject key identifier: 20:E4:D7:9D:16:3A:89:FF:8A:D3:00:6E:8E:04:0B:E2:B3:D8:0E:E8 Authority key identifier: BC:70:F3:74:B7:28:C7:B7:11:C2:4A:68:27:F7:47:7A:42:B2:2A:4D Certificate issuer: /CN=A9142A75/serialNumber=BC70F374B728C7B711C24A6827F7477A42B22A4D Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHDzdLcox7cRwkpoJ_dHekKyKk0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.mft Manifest number: 38 Signing time: Fri 13 Jun 2025 06:28:38 +0000 Manifest this update: Fri 13 Jun 2025 06:28:38 +0000 Manifest next update: Fri 20 Jun 2025 06:28:38 +0000 Files and hashes: 1: vHDzdLcox7cRwkpoJ_dHekKyKk0.crl (hash: xv7ruIMVFNYMqi6T3YHVuP/TvWpP73imYsW1FHc7zMA=) 2: 3B69BCFAF53A11EF907A433EC4F9AE02.roa (hash: g53LMcn3iRdJAKtGtiImyfZixGirZg93i3IYIo94JAU=) 3: 6BD4BB16F83111EFBA64911FC4F9AE02.roa (hash: XvWuI1YoEga2y2ypcrjG1/r0tc+yszPXr1W996sUaXM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.crl rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHDzdLcox7cRwkpoJ_dHekKyKk0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:28:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142A75, serialNumber=BC70F374B728C7B711C24A6827F7477A42B22A4D Validity Not Before: Jun 13 06:28:38 2025 GMT Not After : Jun 20 06:28:38 2025 GMT Subject: CN=684bc516-aa25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:3c:f9:b6:1d:e0:62:91:fb:7b:f2:42:66:c0: ac:0e:f4:d2:cd:92:08:60:8e:9f:f4:cc:d7:d0:2e: 5c:aa:06:5a:36:25:eb:38:4f:aa:42:53:a5:c3:4a: 29:44:26:5d:cb:80:84:9e:54:b5:08:74:3a:d4:1f: 75:9b:a3:3f:78:a8:a0:e7:fb:01:b7:eb:e4:43:ca: 6b:ca:91:61:57:f9:e3:70:3e:f2:f6:d9:8a:44:7b: f2:6e:67:19:78:f8:82:f2:87:70:4b:65:bd:85:2f: e2:3b:10:52:06:bb:4b:86:b0:99:bc:0e:fb:5c:a4: 3c:3a:34:d1:18:91:7f:21:5e:29:40:9b:98:8e:db: ed:c1:7b:0c:1a:fc:1c:7e:be:5a:a2:1b:58:47:36: 8b:91:b2:02:3e:d9:7e:a4:c9:c0:15:1b:8d:7e:d0: 15:34:4d:1b:71:19:0c:1f:12:8c:65:a3:ff:6e:1a: 61:46:85:07:49:05:45:98:ab:aa:9f:48:8d:61:21: 36:ea:bd:27:45:ac:34:f1:b2:b4:87:b7:38:1d:26: 9d:95:90:cb:47:cf:aa:d0:e7:32:c3:da:11:8b:61: 99:46:12:45:cf:68:45:95:30:68:b3:5a:f6:4b:9e: 47:6f:44:df:47:ae:95:83:e9:68:74:00:3b:14:09: 0b:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:E4:D7:9D:16:3A:89:FF:8A:D3:00:6E:8E:04:0B:E2:B3:D8:0E:E8 X509v3 Authority Key Identifier: keyid:BC:70:F3:74:B7:28:C7:B7:11:C2:4A:68:27:F7:47:7A:42:B2:2A:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHDzdLcox7cRwkpoJ_dHekKyKk0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:1d:12:58:26:0b:83:e3:90:38:94:d0:98:32:59:6e:bd:61: 89:6f:ac:da:d3:f9:41:9b:3f:95:a1:20:ba:05:1f:40:95:1f: 51:12:7d:a7:bd:96:48:fd:24:fb:8d:51:51:3c:ae:4a:6f:15: c5:21:e9:5f:c1:c6:6e:5c:2c:ad:8e:9e:ce:4f:99:09:9a:ab: 0d:7b:de:3e:3c:bf:18:09:df:b1:a1:07:33:0a:96:a5:55:4f: 23:5e:ff:e2:4c:da:b2:b1:ee:82:04:1e:ab:48:b3:bb:9f:6f: 4b:09:4f:90:8c:b9:4c:4c:2b:20:76:21:55:00:72:d3:3a:38: 74:ad:9f:89:1f:c0:f4:90:b8:59:67:01:f6:bd:a2:2d:28:63: a4:d7:ba:27:ef:dd:a4:0a:3c:37:09:88:e7:8f:75:8c:d2:9a: 2b:7a:65:3f:86:e2:19:d7:88:ca:a7:60:83:76:a8:15:37:fd: fc:0c:b1:2c:de:9a:60:ee:b6:98:3b:56:76:99:9e:47:94:4e: 18:6c:7a:d4:2b:42:cd:7f:78:32:ec:d6:99:27:11:2d:e7:b0: fa:55:32:99:b2:53:af:c0:c0:62:9c:8f:f2:c1:d6:b4:a1:aa: c5:d2:02:cc:a6:2d:66:94:5a:8b:1c:ea:16:58:9f:7f:14:97: df:89:d1:38 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MkE3NTExMC8GA1UEBRMoQkM3MEYzNzRCNzI4QzdCNzExQzI0QTY4MjdGNzQ3N0E0 MkIyMkE0RDAeFw0yNTA2MTMwNjI4MzhaFw0yNTA2MjAwNjI4MzhaMBgxFjAUBgNV BAMTDTY4NGJjNTE2LWFhMjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDPPm2HeBikft78kJmwKwO9NLNkghgjp/0zNfQLlyqBlo2Jes4T6pCU6XDSilE Jl3LgISeVLUIdDrUH3Wboz94qKDn+wG36+RDymvKkWFX+eNwPvL22YpEe/JuZxl4 +ILyh3BLZb2FL+I7EFIGu0uGsJm8DvtcpDw6NNEYkX8hXilAm5iO2+3Bewwa/Bx+ vlqiG1hHNouRsgI+2X6kycAVG41+0BU0TRtxGQwfEoxlo/9uGmFGhQdJBUWYq6qf SI1hITbqvSdFrDTxsrSHtzgdJp2VkMtHz6rQ5zLD2hGLYZlGEkXPaEWVMGizWvZL nkdvRN9HrpWD6Wh0ADsUCQsnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUIOTXnRY6 if+K0wBujgQL4rPYDugwHwYDVR0jBBgwFoAUvHDzdLcox7cRwkpoJ/dHekKyKk0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyQTc1L0VGNUNENkRBRjUz OTExRUZCMDlGQzgzREM0RjlBRTAyL3ZIRHpkTGNveDdjUndrcG9KX2RIZWtLeUtr MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdkhEemRMY294N2NSd2twb0pfZEhla0t5S2swLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy QTc1L0VGNUNENkRBRjUzOTExRUZCMDlGQzgzREM0RjlBRTAyL3ZIRHpkTGNveDdj UndrcG9KX2RIZWtLeUtrMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACAdElgmC4PjkDiU0JgyWW69YYlvrNrT+UGbP5WhILoFH0CVH1ESfae9 lkj9JPuNUVE8rkpvFcUh6V/Bxm5cLK2Ons5PmQmaqw173j48vxgJ37GhBzMKlqVV TyNe/+JM2rKx7oIEHqtIs7ufb0sJT5CMuUxMKyB2IVUActM6OHStn4kfwPSQuFln Afa9oi0oY6TXuifv3aQKPDcJiOePdYzSmit6ZT+G4hnXiMqnYIN2qBU3/fwMsSze mmDutpg7VnaZnkeUThhsetQrQs1/eDLs1pknES3nsPpVMpmyU6/AwGKcj/LB1rSh qsXSAsymLWaUWosc6hZYn38Ul9+J0Tg= -----END CERTIFICATE-----Generated at Sun Jun 15 08:47:49 2025 by rpki-client