$ rpki-client -vvf rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft File: 0rolH4MRa7tToMiSMQ9P963v_es.mft (raw, json) Hash identifier: hqA5grnIUGUgTG9cJZKXYJIHw6O1Q6osxXsG0dVV0Oc= Subject key identifier: 52:7C:76:92:C4:8E:0F:EB:81:61:E9:85:67:2A:3F:77:9E:83:9E:FA Authority key identifier: D2:BA:25:1F:83:11:6B:BB:53:A0:C8:92:31:0F:4F:F7:AD:EF:FD:EB Certificate issuer: /CN=A9175B42/serialNumber=D2BA251F83116BBB53A0C892310F4FF7ADEFFDEB Certificate serial: 34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rolH4MRa7tToMiSMQ9P963v_es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft Manifest number: 33 Signing time: Sat 09 Aug 2025 08:07:29 +0000 Manifest this update: Sat 09 Aug 2025 08:07:29 +0000 Manifest next update: Sat 16 Aug 2025 08:07:29 +0000 Files and hashes: 1: 0rolH4MRa7tToMiSMQ9P963v_es.crl (hash: y+9+JiNRhLMvPQIDuH7JrBEAro9OyVGDLsvxYRjh5CA=) 2: EABFF866266511F0A3060E66C4F9AE02.roa (hash: vMnU2L7BbF2F7HptBFQtmVOzrhuM46aGtKFKK+TOQcQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.crl rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rolH4MRa7tToMiSMQ9P963v_es.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175B42, serialNumber=D2BA251F83116BBB53A0C892310F4FF7ADEFFDEB Validity Not Before: Aug 9 08:07:29 2025 GMT Not After : Aug 16 08:07:29 2025 GMT Subject: CN=689701c1-ee9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:53:d9:49:87:47:a4:ae:e2:22:5b:f9:17:f0: c7:eb:9a:23:fa:f2:88:8a:86:16:52:a1:13:92:d6: 70:3c:4f:01:4b:1d:b5:5f:5c:3c:04:de:e2:c0:31: 1d:e8:1d:87:e4:dc:51:2e:e7:70:4d:44:da:84:37: 5e:cd:ea:a2:aa:f6:81:30:73:dc:53:a4:23:09:c8: eb:78:c2:ca:56:87:7f:1f:43:76:63:a9:60:d6:1e: 36:2e:37:b4:60:91:a8:a9:08:3e:23:bb:1a:db:5f: 0b:46:3b:f5:99:ba:f1:e7:ea:fe:32:d1:3a:65:7e: 03:b1:4f:b1:17:09:97:7c:3a:bc:28:8a:86:1c:c3: 7d:52:a8:f1:11:6b:80:e5:e1:50:ed:30:77:37:c9: 43:2c:04:b0:0d:61:f5:b0:59:fc:5b:75:79:70:ef: ad:75:b6:c1:57:94:50:7b:2b:91:19:bd:81:f9:c1: 16:eb:a7:4b:62:73:7f:1d:96:82:a0:c2:cf:e8:18: 0e:d5:49:d1:45:22:58:06:18:f2:0e:f2:ff:57:53: 81:d6:25:cd:dd:ec:b8:fb:ab:58:12:f9:75:83:6d: 25:4f:71:73:60:14:cf:d5:41:b5:a7:c3:54:02:01: 8b:e0:8a:16:9c:49:00:a6:b3:8a:8f:ae:22:24:f7: 1d:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:7C:76:92:C4:8E:0F:EB:81:61:E9:85:67:2A:3F:77:9E:83:9E:FA X509v3 Authority Key Identifier: keyid:D2:BA:25:1F:83:11:6B:BB:53:A0:C8:92:31:0F:4F:F7:AD:EF:FD:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rolH4MRa7tToMiSMQ9P963v_es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:80:20:f4:3f:9c:03:30:64:93:2f:b5:68:5c:5a:f1:cc:0e: f6:8b:0e:8d:18:ea:6b:01:82:0d:29:ef:f2:0b:24:48:4f:65: 59:67:cb:96:d0:5b:3b:3b:97:13:60:2a:dd:48:59:7b:93:93: 11:a7:44:b3:76:d0:d2:3c:fa:27:d3:fd:c4:d5:a4:c3:7d:a3: 1a:e2:65:2f:7e:28:4d:d5:11:30:bd:fd:23:c2:2e:52:16:07: 91:12:45:4a:0f:b3:c2:3b:4e:2b:08:bf:6c:cc:26:00:fd:17: 55:03:ba:33:96:ba:25:f6:7d:a1:33:24:bf:f3:c2:c0:95:4c: 2d:43:1b:6f:5f:cf:1b:01:76:20:1c:62:0b:b0:c8:30:1b:87: 20:b1:1b:67:6c:2f:d2:36:d4:a8:2f:76:c7:ea:c0:44:fe:05: fc:a9:7d:fd:16:86:8b:d3:5e:01:c0:34:71:b5:53:12:56:7a: e5:c4:a3:fe:e3:cc:e2:c3:06:c9:af:c9:ac:91:6b:67:a8:8e: f0:2e:2c:8e:17:95:b0:d3:8b:02:3b:2e:ad:e6:22:4d:f8:4d: cb:5c:d0:1f:d8:28:92:74:60:98:38:b6:14:89:02:71:ab:01: 3c:fc:e9:ed:40:f8:0f:9a:80:50:cc:e5:36:37:d3:bc:a1:11: 78:53:73:a8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NUI0MjExMC8GA1UEBRMoRDJCQTI1MUY4MzExNkJCQjUzQTBDODkyMzEwRjRGRjdB REVGRkRFQjAeFw0yNTA4MDkwODA3MjlaFw0yNTA4MTYwODA3MjlaMBgxFjAUBgNV BAMTDTY4OTcwMWMxLWVlOWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHU9lJh0ekruIiW/kX8MfrmiP68oiKhhZSoROS1nA8TwFLHbVfXDwE3uLAMR3o HYfk3FEu53BNRNqEN17N6qKq9oEwc9xTpCMJyOt4wspWh38fQ3ZjqWDWHjYuN7Rg kaipCD4juxrbXwtGO/WZuvHn6v4y0TplfgOxT7EXCZd8OrwoioYcw31SqPERa4Dl 4VDtMHc3yUMsBLANYfWwWfxbdXlw7611tsFXlFB7K5EZvYH5wRbrp0tic38dloKg ws/oGA7VSdFFIlgGGPIO8v9XU4HWJc3d7Lj7q1gS+XWDbSVPcXNgFM/VQbWnw1QC AYvgihacSQCms4qPriIk9x13AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUUnx2ksSO D+uBYemFZyo/d56DnvowHwYDVR0jBBgwFoAU0rolH4MRa7tToMiSMQ9P963v/esw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1QjQyLzQ4RkVCMUMwMjY2 NTExRjA4MDE1QUI2MkM0RjlBRTAyLzByb2xINE1SYTd0VG9NaVNNUTlQOTYzdl9l cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMHJvbEg0TVJhN3RUb01pU01ROVA5NjN2X2VzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1 QjQyLzQ4RkVCMUMwMjY2NTExRjA4MDE1QUI2MkM0RjlBRTAyLzByb2xINE1SYTd0 VG9NaVNNUTlQOTYzdl9lcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJOAIPQ/nAMwZJMvtWhcWvHMDvaLDo0Y6msBgg0p7/ILJEhPZVlny5bQ Wzs7lxNgKt1IWXuTkxGnRLN20NI8+ifT/cTVpMN9oxriZS9+KE3VETC9/SPCLlIW B5ESRUoPs8I7TisIv2zMJgD9F1UDujOWuiX2faEzJL/zwsCVTC1DG29fzxsBdiAc YguwyDAbhyCxG2dsL9I21KgvdsfqwET+Bfypff0WhovTXgHANHG1UxJWeuXEo/7j zOLDBsmvyayRa2eojvAuLI4XlbDTiwI7Lq3mIk34Tctc0B/YKJJ0YJg4thSJAnGr ATz86e1A+A+agFDM5TY307yhEXhTc6g= -----END CERTIFICATE-----Generated at Sat Aug 9 15:09:09 2025 by rpki-client