$ rpki-client -vvf rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.mft File: L8RgGe5S0ekbsdHY4X6ZinFbckQ.mft (raw, json) Hash identifier: ZDp/EXqRIVzrlHQPOuPSc4aEGhsfE4UsJKbVJCzlN2s= Subject key identifier: 19:AF:AD:D0:6C:DE:60:39:A9:D4:BF:33:70:80:99:C0:54:B0:B2:6E Authority key identifier: 2F:C4:60:19:EE:52:D1:E9:1B:B1:D1:D8:E1:7E:99:8A:71:5B:72:44 Certificate issuer: /CN=A9152D1E/serialNumber=2FC46019EE52D1E91BB1D1D8E17E998A715B7244 Certificate serial: 0406 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8RgGe5S0ekbsdHY4X6ZinFbckQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.mft Manifest number: 0405 Signing time: Tue 05 Aug 2025 00:53:45 +0000 Manifest this update: Tue 05 Aug 2025 00:53:44 +0000 Manifest next update: Tue 12 Aug 2025 00:53:44 +0000 Files and hashes: 1: L8RgGe5S0ekbsdHY4X6ZinFbckQ.crl (hash: gccLU66hLUcjq/JhcRrRaY2eKlkaXken6G6Yfs/yOWY=) 2: 74D78D2AB28F11EFB915BB1BC4F9AE02.roa (hash: tkOHoIczvR2mvnPtwO2I6CTO8JqQ7Ha6TbdyLv7Jiak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.crl rsync://rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8RgGe5S0ekbsdHY4X6ZinFbckQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 00:53:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1030 (0x406) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152D1E, serialNumber=2FC46019EE52D1E91BB1D1D8E17E998A715B7244 Validity Not Before: Aug 5 00:53:44 2025 GMT Not After : Aug 12 00:53:44 2025 GMT Subject: CN=68915619-301a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e7:b6:a4:f8:e6:46:e5:55:ad:f9:6f:03:82: 0b:c9:c9:6a:1a:75:78:0e:a1:d5:10:ef:e9:e6:7c: a3:3e:7a:b9:74:7e:4a:4d:ff:ce:b1:a0:6e:e9:c0: dc:5d:f6:e8:55:88:bd:d7:3b:96:d6:a3:86:b1:b0: b7:a8:4f:ce:9d:58:e6:73:94:e1:c6:d8:d5:3a:4e: 15:b7:79:6a:11:e2:5c:35:80:9d:4c:1d:aa:28:36: b9:d7:43:8b:dd:d9:0f:00:a3:ea:c0:42:34:9b:29: f4:a4:a5:a5:a5:10:33:e7:de:6b:f5:9a:70:0b:cc: f3:df:bc:57:67:3a:fd:76:c2:75:90:3e:e9:d3:ca: d6:f3:09:e9:83:e4:f9:35:72:dd:9c:8e:fd:2d:e9: 39:d1:b7:9d:48:f3:3a:0a:f2:39:22:5f:c6:5f:12: 4c:ae:55:10:5a:82:36:92:bb:83:9b:82:de:6d:d3: e3:63:9e:99:3f:9d:41:cd:2e:7e:25:a6:4c:10:cc: f4:91:b9:6b:92:c4:bd:5e:d8:05:53:d9:bd:18:d9: fa:e2:27:df:79:f7:f4:11:5f:82:5d:db:ca:dd:cb: d2:61:f2:71:e2:e5:de:12:a2:24:b5:34:2e:5a:b9: 3e:ee:bc:22:a0:da:d9:3c:36:9c:7f:9d:ca:6a:e1: 02:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:AF:AD:D0:6C:DE:60:39:A9:D4:BF:33:70:80:99:C0:54:B0:B2:6E X509v3 Authority Key Identifier: keyid:2F:C4:60:19:EE:52:D1:E9:1B:B1:D1:D8:E1:7E:99:8A:71:5B:72:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8RgGe5S0ekbsdHY4X6ZinFbckQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:1a:ed:96:22:46:5d:70:b4:8b:98:a4:b1:d9:9c:19:50:f0: 2f:2b:3f:c3:12:9e:e1:3b:ef:36:9d:26:48:b1:86:12:c8:e4: b4:7f:95:d8:16:61:a3:4d:60:ba:44:f5:ca:ea:9a:ed:2d:60: 63:b9:3d:df:a9:7e:d6:a9:36:39:2b:c9:4d:63:8e:d0:fc:66: b7:0f:f1:6c:05:f2:b1:41:c1:20:04:61:66:9d:fe:9c:00:34: f5:f1:5d:b8:69:00:76:e7:0b:37:15:40:d5:5f:dd:13:8f:3d: d4:be:ac:41:44:bd:f8:db:88:d8:a9:a5:96:09:1d:5a:8b:ab: b1:b1:70:d1:70:6c:4e:a8:c8:25:64:e2:bc:c0:7b:d5:80:a3: 48:03:4d:77:c4:fe:cd:0e:67:58:20:70:1b:ca:f2:c0:6c:18: 65:db:40:fb:de:6b:7f:fb:57:85:ae:80:a0:a9:bc:4a:61:96: 5f:8c:fa:da:b6:96:b3:c1:36:58:bd:9b:d8:cf:ee:93:fb:2e: 6e:1a:66:14:bd:d8:66:fa:c9:6c:21:6f:b4:99:9f:d6:bd:b0: eb:cb:c8:8a:33:49:68:f7:5b:2d:87:7c:71:87:59:b0:ae:9c: 0d:91:0a:bf:11:f2:bb:1e:24:f6:18:9b:07:63:d8:58:28:28: 7c:11:cb:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJEMUUxMTAvBgNVBAUTKDJGQzQ2MDE5RUU1MkQxRTkxQkIxRDFEOEUxN0U5OThB NzE1QjcyNDQwHhcNMjUwODA1MDA1MzQ0WhcNMjUwODEyMDA1MzQ0WjAYMRYwFAYD VQQDEw02ODkxNTYxOS0zMDFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp+e2pPjmRuVVrflvA4ILyclqGnV4DqHVEO/p5nyjPnq5dH5KTf/OsaBu6cDc XfboVYi91zuW1qOGsbC3qE/OnVjmc5ThxtjVOk4Vt3lqEeJcNYCdTB2qKDa510OL 3dkPAKPqwEI0myn0pKWlpRAz595r9ZpwC8zz37xXZzr9dsJ1kD7p08rW8wnpg+T5 NXLdnI79Lek50bedSPM6CvI5Il/GXxJMrlUQWoI2kruDm4LebdPjY56ZP51BzS5+ JaZMEMz0kblrksS9XtgFU9m9GNn64iffeff0EV+CXdvK3cvSYfJx4uXeEqIktTQu Wrk+7rwioNrZPDacf53KauECZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBmvrdBs 3mA5qdS/M3CAmcBUsLJuMB8GA1UdIwQYMBaAFC/EYBnuUtHpG7HR2OF+mYpxW3JE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkQxRS9DN0MwQzFEQTdE NjAxMUVDQUQ5NjUwMzBDNEY5QUUwMi9MOFJnR2U1UzBla2JzZEhZNFg2WmluRmJj a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w4UmdHZTVTMGVrYnNkSFk0WDZaaW5GYmNrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MkQxRS9DN0MwQzFEQTdENjAxMUVDQUQ5NjUwMzBDNEY5QUUwMi9MOFJnR2U1UzBl a2JzZEhZNFg2WmluRmJja1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAGu2WIkZdcLSLmKSx2ZwZUPAvKz/DEp7hO+82nSZIsYYSyOS0f5XY FmGjTWC6RPXK6prtLWBjuT3fqX7WqTY5K8lNY47Q/Ga3D/FsBfKxQcEgBGFmnf6c ADT18V24aQB25ws3FUDVX90Tjz3UvqxBRL3424jYqaWWCR1ai6uxsXDRcGxOqMgl ZOK8wHvVgKNIA013xP7NDmdYIHAbyvLAbBhl20D73mt/+1eFroCgqbxKYZZfjPra tpazwTZYvZvYz+6T+y5uGmYUvdhm+slsIW+0mZ/WvbDry8iKM0lo91sth3xxh1mw rpwNkQq/EfK7HiT2GJsHY9hYKCh8Ecuz -----END CERTIFICATE-----Generated at Wed Aug 6 14:22:55 2025 by rpki-client