$ rpki-client -vvf rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.mft File: L8RgGe5S0ekbsdHY4X6ZinFbckQ.mft (raw, json) Hash identifier: 2DROBqwY/3XaRXv0+ShNvCQS3HmSk042YFBpbtFozqk= Subject key identifier: C4:A9:17:82:81:D4:27:92:67:AC:CC:26:5F:7E:26:E2:BB:61:44:0D Authority key identifier: 2F:C4:60:19:EE:52:D1:E9:1B:B1:D1:D8:E1:7E:99:8A:71:5B:72:44 Certificate issuer: /CN=A9152D1E/serialNumber=2FC46019EE52D1E91BB1D1D8E17E998A715B7244 Certificate serial: 03EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8RgGe5S0ekbsdHY4X6ZinFbckQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.mft Manifest number: 03EA Signing time: Fri 13 Jun 2025 00:02:59 +0000 Manifest this update: Fri 13 Jun 2025 00:02:59 +0000 Manifest next update: Fri 20 Jun 2025 00:02:59 +0000 Files and hashes: 1: L8RgGe5S0ekbsdHY4X6ZinFbckQ.crl (hash: cWvPJJea5kIrYOCXD5kSbhLxLZkAN6ftHT2/6UEf+rY=) 2: 74D78D2AB28F11EFB915BB1BC4F9AE02.roa (hash: tkOHoIczvR2mvnPtwO2I6CTO8JqQ7Ha6TbdyLv7Jiak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.crl rsync://rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8RgGe5S0ekbsdHY4X6ZinFbckQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 00:02:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1003 (0x3eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152D1E, serialNumber=2FC46019EE52D1E91BB1D1D8E17E998A715B7244 Validity Not Before: Jun 13 00:02:59 2025 GMT Not After : Jun 20 00:02:59 2025 GMT Subject: CN=684b6ab3-9ad8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:49:c0:01:73:f7:82:a4:49:32:56:99:c5:b8: 99:89:10:47:46:6c:f1:e8:5d:0e:07:ea:6f:22:33: ac:55:d9:36:ed:e2:6e:97:60:cf:d8:9f:b5:60:39: 47:f4:f2:4a:51:48:4c:d3:37:03:dc:e8:d0:c9:5d: aa:2e:24:c3:ec:0b:5c:f7:aa:ca:2a:7e:41:c5:61: 8c:59:59:35:81:0e:d6:ae:62:85:7f:79:bb:38:64: a5:81:89:4e:f8:79:52:b7:5f:06:39:0d:20:c5:81: 5b:70:05:e9:ca:76:93:c9:99:e3:36:ab:2c:c7:57: fb:5f:cf:f4:95:1c:1b:6a:19:23:da:02:4f:4b:84: 80:cb:f0:74:cc:9d:22:22:93:c7:ee:ac:c7:23:bb: b1:1c:c0:7f:e6:b4:cd:50:c1:36:e0:c5:85:72:e1: 48:22:0d:d3:68:c2:98:d7:c2:21:0d:bd:12:93:2c: 99:88:9e:ca:35:c6:e6:12:bf:cb:9d:51:7c:e3:d9: 5f:9f:a4:43:a8:ca:5f:d5:5b:a7:0a:b4:de:71:0b: 17:de:25:b1:85:2e:a3:90:55:31:15:23:54:92:0c: 82:b1:eb:57:18:18:17:62:81:54:7a:5e:ba:4f:2e: 15:13:3a:5e:6a:97:54:7b:eb:75:57:95:23:59:05: b8:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:A9:17:82:81:D4:27:92:67:AC:CC:26:5F:7E:26:E2:BB:61:44:0D X509v3 Authority Key Identifier: keyid:2F:C4:60:19:EE:52:D1:E9:1B:B1:D1:D8:E1:7E:99:8A:71:5B:72:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8RgGe5S0ekbsdHY4X6ZinFbckQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:40:e4:57:fc:f4:5c:52:e1:30:13:8c:d4:89:48:2e:a3:e7: 5b:58:13:b6:ea:db:b7:6b:75:e2:84:20:70:8c:12:76:86:42: d6:32:c3:66:bb:28:23:99:e8:33:1d:0b:a7:dd:9c:d8:22:40: b9:fe:a4:2b:c9:da:fa:f7:63:73:29:3f:60:f5:c7:ca:89:d2: b2:78:15:45:71:9a:96:c4:4f:92:eb:6f:a3:a5:c9:58:db:b5: c7:e9:ff:73:cb:a3:18:74:a2:79:ce:6a:09:bd:20:f2:51:32: 14:3b:0a:a3:36:93:5f:b4:c9:fc:48:12:fe:c8:52:39:0d:46: 4c:31:5f:62:67:fb:c7:2a:9a:48:fa:f6:c8:ff:15:bf:27:1a: 7e:bb:9e:6a:81:9f:ef:e0:b5:79:7f:06:1d:b7:09:5e:f2:a6: 8f:fa:69:8c:cb:55:5d:03:12:92:8b:cb:cc:7a:cf:25:3e:42: 70:29:2a:d8:f1:ba:9c:e7:fd:12:0a:41:37:1a:de:6c:f0:9b: 3b:4e:85:4d:82:cb:cf:da:f4:c7:0c:6f:ad:f4:16:27:af:af: a6:b8:5e:94:31:4d:86:31:5e:ad:2e:9a:8b:79:57:9f:5a:04: 5e:b8:e6:69:91:67:50:89:20:ca:28:47:de:34:a7:56:fe:8f: 30:83:b7:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJEMUUxMTAvBgNVBAUTKDJGQzQ2MDE5RUU1MkQxRTkxQkIxRDFEOEUxN0U5OThB NzE1QjcyNDQwHhcNMjUwNjEzMDAwMjU5WhcNMjUwNjIwMDAwMjU5WjAYMRYwFAYD VQQDEw02ODRiNmFiMy05YWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0nAAXP3gqRJMlaZxbiZiRBHRmzx6F0OB+pvIjOsVdk27eJul2DP2J+1YDlH 9PJKUUhM0zcD3OjQyV2qLiTD7Atc96rKKn5BxWGMWVk1gQ7WrmKFf3m7OGSlgYlO +HlSt18GOQ0gxYFbcAXpynaTyZnjNqssx1f7X8/0lRwbahkj2gJPS4SAy/B0zJ0i IpPH7qzHI7uxHMB/5rTNUME24MWFcuFIIg3TaMKY18IhDb0SkyyZiJ7KNcbmEr/L nVF849lfn6RDqMpf1VunCrTecQsX3iWxhS6jkFUxFSNUkgyCsetXGBgXYoFUel66 Ty4VEzpeapdUe+t1V5UjWQW4UQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMSpF4KB 1CeSZ6zMJl9+JuK7YUQNMB8GA1UdIwQYMBaAFC/EYBnuUtHpG7HR2OF+mYpxW3JE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkQxRS9DN0MwQzFEQTdE NjAxMUVDQUQ5NjUwMzBDNEY5QUUwMi9MOFJnR2U1UzBla2JzZEhZNFg2WmluRmJj a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w4UmdHZTVTMGVrYnNkSFk0WDZaaW5GYmNrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MkQxRS9DN0MwQzFEQTdENjAxMUVDQUQ5NjUwMzBDNEY5QUUwMi9MOFJnR2U1UzBl a2JzZEhZNFg2WmluRmJja1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaQORX/PRcUuEwE4zUiUguo+dbWBO26tu3a3XihCBwjBJ2hkLWMsNm uygjmegzHQun3ZzYIkC5/qQrydr692NzKT9g9cfKidKyeBVFcZqWxE+S62+jpclY 27XH6f9zy6MYdKJ5zmoJvSDyUTIUOwqjNpNftMn8SBL+yFI5DUZMMV9iZ/vHKppI +vbI/xW/Jxp+u55qgZ/v4LV5fwYdtwle8qaP+mmMy1VdAxKSi8vMes8lPkJwKSrY 8bqc5/0SCkE3Gt5s8Js7ToVNgsvP2vTHDG+t9BYnr6+muF6UMU2GMV6tLpqLeVef WgReuOZpkWdQiSDKKEfeNKdW/o8wg7cJ -----END CERTIFICATE-----Generated at Sat Jun 14 18:51:42 2025 by rpki-client