$ rpki-client -vvf rpki.apnic.net/member_repository/A914EB9A/E4A65EDE23C311EF892DEB21C4F9AE02/g--P6e5IafC5SpX3RvWJS6H7MPA.mft File: g--P6e5IafC5SpX3RvWJS6H7MPA.mft (raw, json) Hash identifier: JwodIMi7vrMZq1k4D0F2Mnp9kipexNIUOZNa0++AzKo= Subject key identifier: 25:46:D5:17:F5:5E:90:0F:54:39:3D:17:3B:4A:24:B5:67:3B:42:FD Authority key identifier: 83:EF:8F:E9:EE:48:69:F0:B9:4A:95:F7:46:F5:89:4B:A1:FB:30:F0 Certificate issuer: /CN=A914EB9A/serialNumber=83EF8FE9EE4869F0B94A95F746F5894BA1FB30F0 Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g--P6e5IafC5SpX3RvWJS6H7MPA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EB9A/E4A65EDE23C311EF892DEB21C4F9AE02/g--P6e5IafC5SpX3RvWJS6H7MPA.mft Manifest number: DB Signing time: Tue 05 Aug 2025 06:01:11 +0000 Manifest this update: Tue 05 Aug 2025 06:01:11 +0000 Manifest next update: Tue 12 Aug 2025 06:01:11 +0000 Files and hashes: 1: g--P6e5IafC5SpX3RvWJS6H7MPA.crl (hash: Wu4tUxyt7BwIPB3xeEeDF1NrcAZg4KXNqKUUqeVAlN8=) 2: A368B23623C411EFB7164123C4F9AE02.roa (hash: xksJk5Cwcy8+0Thge3EVjB2r6Pp+L19aLaysM6rp0MI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EB9A/E4A65EDE23C311EF892DEB21C4F9AE02/g--P6e5IafC5SpX3RvWJS6H7MPA.crl rsync://rpki.apnic.net/member_repository/A914EB9A/E4A65EDE23C311EF892DEB21C4F9AE02/g--P6e5IafC5SpX3RvWJS6H7MPA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g--P6e5IafC5SpX3RvWJS6H7MPA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 06:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EB9A, serialNumber=83EF8FE9EE4869F0B94A95F746F5894BA1FB30F0 Validity Not Before: Aug 5 06:01:11 2025 GMT Not After : Aug 12 06:01:11 2025 GMT Subject: CN=68919e27-7dcb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:36:3e:a6:fe:cc:42:d1:ab:ba:84:14:d6:d4: b8:fb:91:4a:3f:60:3a:8b:d6:e9:7a:ec:9f:f1:8b: d9:c5:29:1d:bf:3a:51:2d:78:66:dc:25:ce:87:57: 26:9e:cc:16:bb:c1:63:ac:d4:74:3b:12:db:4b:c4: 4d:8a:42:d9:03:cc:e8:f6:e7:07:29:28:f4:3e:b6: 9a:64:29:6b:cf:c7:33:97:ab:19:b8:0b:a3:a7:01: 9f:f7:32:e3:39:08:6c:6c:3b:be:91:4a:36:f5:65: c0:0b:0f:40:b7:75:8c:a9:6e:74:28:e8:b9:a4:7d: de:b9:61:e3:c6:a9:e9:e7:d1:ef:70:38:ba:f0:c0: 07:69:96:e5:c4:19:c6:c9:61:d0:e3:01:d6:bc:f4: 27:61:d1:0a:2d:44:6d:75:60:ac:d7:94:44:d3:aa: f5:b4:8e:63:92:cb:3e:56:4b:1e:3a:a0:61:0c:a9: 38:1f:0f:44:dd:11:41:da:30:a2:03:ca:6a:96:7a: 38:7d:af:21:1c:f1:a9:e9:c0:24:e0:72:38:0f:c1: b2:1b:53:a7:f0:77:fa:52:fd:e5:a5:d6:51:5a:89: 6d:32:52:1b:9b:d2:96:ce:19:28:29:2a:3c:34:2e: 94:24:af:d7:94:e5:7d:8f:32:3d:b1:59:1b:c5:d2: ca:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:46:D5:17:F5:5E:90:0F:54:39:3D:17:3B:4A:24:B5:67:3B:42:FD X509v3 Authority Key Identifier: keyid:83:EF:8F:E9:EE:48:69:F0:B9:4A:95:F7:46:F5:89:4B:A1:FB:30:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EB9A/E4A65EDE23C311EF892DEB21C4F9AE02/g--P6e5IafC5SpX3RvWJS6H7MPA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g--P6e5IafC5SpX3RvWJS6H7MPA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EB9A/E4A65EDE23C311EF892DEB21C4F9AE02/g--P6e5IafC5SpX3RvWJS6H7MPA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:ea:42:c6:c0:2c:1e:89:ec:ac:6b:e6:2c:30:e2:aa:d2:35: 50:59:0f:97:7b:bd:e8:59:bb:74:c1:17:d5:62:d7:05:fb:54: dc:b3:3c:28:25:e9:f8:7d:ac:6b:11:48:a2:bd:56:b3:2b:11: 1b:26:3f:9f:db:4c:2f:e1:2f:11:ec:e0:73:6d:80:d4:e8:41: c0:68:86:a5:07:7f:19:a1:fc:bd:3f:45:7e:1b:52:47:e6:97: 9b:b5:ca:48:1a:0f:e5:b6:0e:29:d3:6b:16:74:b5:ff:37:92: e8:11:62:04:6e:ca:fc:c5:17:e5:13:92:95:29:2f:ff:45:57: 24:6b:5f:f8:39:9c:26:0a:88:2a:a9:28:45:58:3b:2b:54:0a: aa:5a:1e:c4:37:09:95:6a:83:e9:3b:ad:82:65:96:08:2d:c4: 90:04:8b:6e:f3:cb:30:78:fe:31:f0:fb:e9:50:f3:f2:ef:d4: 91:e8:d4:7f:c6:98:d8:34:f1:f1:f7:e3:13:48:19:be:ea:e0: 97:0b:b5:6c:6b:d5:24:4c:06:8a:75:03:15:99:de:8e:d4:75: 1c:a5:ef:6f:60:23:92:35:d2:fa:10:d0:f6:2f:8b:ed:47:49: d7:b8:b4:4d:fe:82:c0:b3:55:a7:29:44:43:cf:5b:9c:ac:2d: 64:29:dc:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVCOUExMTAvBgNVBAUTKDgzRUY4RkU5RUU0ODY5RjBCOTRBOTVGNzQ2RjU4OTRC QTFGQjMwRjAwHhcNMjUwODA1MDYwMTExWhcNMjUwODEyMDYwMTExWjAYMRYwFAYD VQQDEw02ODkxOWUyNy03ZGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4zY+pv7MQtGruoQU1tS4+5FKP2A6i9bpeuyf8YvZxSkdvzpRLXhm3CXOh1cm nswWu8FjrNR0OxLbS8RNikLZA8zo9ucHKSj0PraaZClrz8czl6sZuAujpwGf9zLj OQhsbDu+kUo29WXACw9At3WMqW50KOi5pH3euWHjxqnp59HvcDi68MAHaZblxBnG yWHQ4wHWvPQnYdEKLURtdWCs15RE06r1tI5jkss+VkseOqBhDKk4Hw9E3RFB2jCi A8pqlno4fa8hHPGp6cAk4HI4D8GyG1On8Hf6Uv3lpdZRWoltMlIbm9KWzhkoKSo8 NC6UJK/XlOV9jzI9sVkbxdLKWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCVG1Rf1 XpAPVDk9FztKJLVnO0L9MB8GA1UdIwQYMBaAFIPvj+nuSGnwuUqV90b1iUuh+zDw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUI5QS9FNEE2NUVERTIz QzMxMUVGODkyREVCMjFDNEY5QUUwMi9nLS1QNmU1SWFmQzVTcFgzUnZXSlM2SDdN UEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ctLVA2ZTVJYWZDNVNwWDNSdldKUzZIN01QQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUI5QS9FNEE2NUVERTIzQzMxMUVGODkyREVCMjFDNEY5QUUwMi9nLS1QNmU1SWFm QzVTcFgzUnZXSlM2SDdNUEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBj6kLGwCweieysa+YsMOKq0jVQWQ+Xe73oWbt0wRfVYtcF+1Tcszwo Jen4faxrEUiivVazKxEbJj+f20wv4S8R7OBzbYDU6EHAaIalB38Zofy9P0V+G1JH 5pebtcpIGg/ltg4p02sWdLX/N5LoEWIEbsr8xRflE5KVKS//RVcka1/4OZwmCogq qShFWDsrVAqqWh7ENwmVaoPpO62CZZYILcSQBItu88sweP4x8PvpUPPy79SR6NR/ xpjYNPHx9+MTSBm+6uCXC7Vsa9UkTAaKdQMVmd6O1HUcpe9vYCOSNdL6END2L4vt R0nXuLRN/oLAs1WnKURDz1ucrC1kKdxw -----END CERTIFICATE-----Generated at Tue Aug 5 17:09:05 2025 by rpki-client