$ rpki-client -vvf rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.mft File: g2LSOGrBMH7vi7_YdPc45tqjVXI.mft (raw, json) Hash identifier: /DPU98A5dCGcCW8YC0eo7pV+fS1pH+qzHDjrmswzWcM= Subject key identifier: D1:CD:60:2C:99:0A:13:05:D0:B5:FD:3A:88:A6:53:09:6F:95:B4:EC Authority key identifier: 83:62:D2:38:6A:C1:30:7E:EF:8B:BF:D8:74:F7:38:E6:DA:A3:55:72 Certificate issuer: /CN=A917C0F5/serialNumber=8362D2386AC1307EEF8BBFD874F738E6DAA35572 Certificate serial: 0D40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g2LSOGrBMH7vi7_YdPc45tqjVXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.mft Manifest number: 0D39 Signing time: Wed 06 Aug 2025 18:11:27 +0000 Manifest this update: Wed 06 Aug 2025 18:11:26 +0000 Manifest next update: Wed 13 Aug 2025 18:11:26 +0000 Files and hashes: 1: g2LSOGrBMH7vi7_YdPc45tqjVXI.crl (hash: yZtsb1bxD5J/fHLDmpj8CAa7DqfP2gondx8L17PTEwc=) 2: D11C8B12DB7111E981104A54C4F9AE02.roa (hash: b+YvMULskW1aqcLGiau9z7PDlxuascZM6xtTvuLKH/M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.crl rsync://rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g2LSOGrBMH7vi7_YdPc45tqjVXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 18:11:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3392 (0xd40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C0F5, serialNumber=8362D2386AC1307EEF8BBFD874F738E6DAA35572 Validity Not Before: Aug 6 18:11:26 2025 GMT Not After : Aug 13 18:11:26 2025 GMT Subject: CN=68939acf-dd65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:4a:57:7d:b4:db:4f:22:4e:b2:43:c1:67:77: 0f:14:d2:72:78:b9:bd:a6:e1:0d:07:bf:3f:82:a0: 71:d9:0c:02:e5:b9:99:55:c2:34:99:2d:18:fa:fa: a3:e5:ef:25:f5:7e:04:dd:c6:fe:15:20:cd:e9:c7: e4:c0:7a:c9:41:b0:a7:af:37:e3:76:af:9c:46:34: 41:5f:46:3f:d7:f3:1f:a2:78:a7:5f:94:84:47:c9: c1:b5:4e:85:e9:ff:25:25:52:49:83:d7:ae:a5:f0: cc:ca:3f:f3:2e:05:70:52:3a:70:b6:16:d7:f2:68: 2d:db:d2:39:03:7a:68:b1:a8:c8:98:c9:15:71:41: 51:b9:8f:da:6b:b4:72:9c:e9:46:83:bd:89:06:b7: 4a:42:a9:e2:ad:d5:f9:02:5f:17:39:16:68:e3:b4: e0:cd:5b:a6:a7:0e:ed:0c:94:c8:a3:80:9b:e0:ea: 95:42:4b:a9:ba:a9:bc:f7:08:27:0c:6f:10:f3:0f: 86:0a:4e:fa:43:f2:fd:59:a5:01:ef:9c:38:49:17: 8c:6c:9b:4c:64:c8:3d:f2:73:c5:ee:d1:d0:13:7e: 2d:af:a1:8f:f3:fd:5d:c0:5e:f9:ad:c1:85:3d:cb: 69:f0:53:63:ab:a0:60:84:91:13:f5:c3:be:da:a0: 05:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:CD:60:2C:99:0A:13:05:D0:B5:FD:3A:88:A6:53:09:6F:95:B4:EC X509v3 Authority Key Identifier: keyid:83:62:D2:38:6A:C1:30:7E:EF:8B:BF:D8:74:F7:38:E6:DA:A3:55:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g2LSOGrBMH7vi7_YdPc45tqjVXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:4b:cd:7e:61:9d:47:03:89:4c:97:3c:21:96:5b:10:a6:ab: e6:c0:19:db:34:35:80:67:c5:1f:c9:a7:22:05:fa:f4:7d:a3: d5:92:35:0f:1b:d4:db:1e:4d:e7:13:c9:cc:96:a3:03:4e:e0: 75:02:c5:1d:70:7f:8d:26:26:d0:fd:51:51:9c:fd:4d:4e:48: 4d:b9:5a:a1:7b:3e:3d:0c:94:0d:4f:02:32:9b:d8:b0:aa:9d: 4c:25:98:c8:d8:84:e0:b1:8c:be:43:d1:7f:50:c4:17:c1:30: fd:45:f8:ff:4b:f3:b9:31:28:62:ec:fb:39:19:05:84:95:ec: 81:4f:8e:5d:df:16:a7:a0:6a:eb:20:50:0f:4d:a6:4c:3c:e6: 02:fe:a6:45:8b:25:47:1a:98:bb:ae:1d:dc:b5:3c:33:6c:24: bc:bb:c0:a4:f6:21:bf:81:1c:e7:9e:75:3c:84:7b:73:64:2f: e3:f5:ae:bb:5e:77:17:3e:e6:8b:07:74:c3:d8:f0:a4:d0:93: 1b:8a:20:1b:1a:09:55:2c:2b:91:63:bc:c2:0f:69:e1:21:ad: e7:21:c2:15:3a:01:eb:16:f2:5b:1f:cb:e6:75:30:72:00:e1: e3:b0:36:3a:a4:1a:2b:ef:98:3b:58:d5:d6:15:c2:59:c7:c8: c9:9e:f2:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MwRjUxMTAvBgNVBAUTKDgzNjJEMjM4NkFDMTMwN0VFRjhCQkZEODc0RjczOEU2 REFBMzU1NzIwHhcNMjUwODA2MTgxMTI2WhcNMjUwODEzMTgxMTI2WjAYMRYwFAYD VQQDEw02ODkzOWFjZi1kZDY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtkpXfbTbTyJOskPBZ3cPFNJyeLm9puENB78/gqBx2QwC5bmZVcI0mS0Y+vqj 5e8l9X4E3cb+FSDN6cfkwHrJQbCnrzfjdq+cRjRBX0Y/1/MfoninX5SER8nBtU6F 6f8lJVJJg9eupfDMyj/zLgVwUjpwthbX8mgt29I5A3posajImMkVcUFRuY/aa7Ry nOlGg72JBrdKQqnirdX5Al8XORZo47TgzVumpw7tDJTIo4Cb4OqVQkupuqm89wgn DG8Q8w+GCk76Q/L9WaUB75w4SReMbJtMZMg98nPF7tHQE34tr6GP8/1dwF75rcGF Pctp8FNjq6BghJET9cO+2qAFqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNHNYCyZ ChMF0LX9OoimUwlvlbTsMB8GA1UdIwQYMBaAFINi0jhqwTB+74u/2HT3OObao1Vy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzBGNS8xRUM0RTA5QURC NzExMUU5QjYxMDUzNTNDNEY5QUUwMi9nMkxTT0dyQk1IN3ZpN19ZZFBjNDV0cWpW WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2cyTFNPR3JCTUg3dmk3X1lkUGM0NXRxalZYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzBGNS8xRUM0RTA5QURCNzExMUU5QjYxMDUzNTNDNEY5QUUwMi9nMkxTT0dyQk1I N3ZpN19ZZFBjNDV0cWpWWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLS81+YZ1HA4lMlzwhllsQpqvmwBnbNDWAZ8UfyaciBfr0faPVkjUP G9TbHk3nE8nMlqMDTuB1AsUdcH+NJibQ/VFRnP1NTkhNuVqhez49DJQNTwIym9iw qp1MJZjI2ITgsYy+Q9F/UMQXwTD9Rfj/S/O5MShi7Ps5GQWEleyBT45d3xanoGrr IFAPTaZMPOYC/qZFiyVHGpi7rh3ctTwzbCS8u8Ck9iG/gRznnnU8hHtzZC/j9a67 XncXPuaLB3TD2PCk0JMbiiAbGglVLCuRY7zCD2nhIa3nIcIVOgHrFvJbH8vmdTBy AOHjsDY6pBor75g7WNXWFcJZx8jJnvIE -----END CERTIFICATE-----Generated at Fri Aug 8 19:39:34 2025 by rpki-client