$ rpki-client -vvf rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft File: 40IvTt5eaM7JqqfjxuMnjHMOHnw.mft (raw, json) Hash identifier: YkZMS8bo0SDiatDKGf6WOw0XiX6aNxqyJPCaLsp4bVM= Subject key identifier: D3:AC:00:1C:15:33:C3:7E:ED:15:C9:31:34:D4:91:85:4A:C8:6B:86 Authority key identifier: E3:42:2F:4E:DE:5E:68:CE:C9:AA:A7:E3:C6:E3:27:8C:73:0E:1E:7C Certificate issuer: /CN=A9180DA4/serialNumber=E3422F4EDE5E68CEC9AAA7E3C6E3278C730E1E7C Certificate serial: 348A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft Manifest number: 348A Signing time: Sat 14 Jun 2025 14:39:32 +0000 Manifest this update: Sat 14 Jun 2025 14:39:32 +0000 Manifest next update: Sat 21 Jun 2025 14:39:32 +0000 Files and hashes: 1: 40IvTt5eaM7JqqfjxuMnjHMOHnw.crl (hash: ltE3eu/u9rBfKIC0Gqj2+kXNUhNV3hiD6dzUVLMAtuE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.crl rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 14:39:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13450 (0x348a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180DA4, serialNumber=E3422F4EDE5E68CEC9AAA7E3C6E3278C730E1E7C Validity Not Before: Jun 14 14:39:32 2025 GMT Not After : Jun 21 14:39:32 2025 GMT Subject: CN=684d89a4-8030 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:7f:bd:d3:86:cc:da:9e:a2:44:f8:68:c5:d5: ae:d2:f9:97:28:d8:fb:c1:f9:30:b4:c8:79:b3:bf: 4a:2a:e1:e2:c0:aa:3c:ca:a9:24:91:92:40:d3:42: bd:55:28:d2:a6:de:af:b7:c0:39:f6:3e:75:fc:3a: 3a:ef:b7:d9:f6:05:74:c5:56:06:f5:13:68:2a:ef: 89:9d:fe:e9:1b:bd:57:c3:45:d6:49:0e:51:1d:df: 7c:9b:a8:ba:49:05:c6:89:2d:c5:50:cc:fe:81:b1: d8:95:f5:58:5c:f1:0f:54:d1:26:e4:e0:4f:73:1f: 6a:19:36:e9:3e:f3:70:99:01:23:fe:7e:85:91:da: 7c:84:b8:8c:49:28:85:b0:54:b2:78:45:34:4f:ac: 2d:bb:d4:b6:36:1b:3f:b8:06:3e:cd:07:e6:21:d5: 74:d3:6e:58:34:6c:e8:03:24:e7:47:15:b2:41:98: 14:8a:8f:60:50:5a:cb:73:ff:fe:b9:a2:a0:c9:88: 34:3f:de:57:b3:38:21:1d:f8:20:13:c0:3a:03:08: 34:ac:ab:e7:e4:4b:bb:ec:0a:17:47:63:5f:d6:70: 55:93:a7:3c:9d:a3:2b:0d:70:58:20:64:ec:8b:2a: ae:bd:75:34:ff:08:57:48:9b:4e:6e:2e:45:5d:46: b3:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:AC:00:1C:15:33:C3:7E:ED:15:C9:31:34:D4:91:85:4A:C8:6B:86 X509v3 Authority Key Identifier: keyid:E3:42:2F:4E:DE:5E:68:CE:C9:AA:A7:E3:C6:E3:27:8C:73:0E:1E:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:29:ac:c2:db:75:c1:dc:5d:57:de:7a:3b:e1:66:44:80:be: 73:dc:84:85:25:d9:7f:40:cc:f7:c6:44:81:a9:26:d6:23:02: ad:13:f8:ee:d7:c4:91:7a:d6:5b:07:62:50:ab:e3:0e:5a:a9: e3:75:7e:4f:a8:cc:58:41:15:89:39:54:1d:3a:30:7d:c4:85: 49:c9:2a:4b:41:51:4a:29:6d:dd:86:9c:53:b0:13:99:41:d6: 9c:63:c4:f8:9e:97:6d:9c:f3:69:0b:35:13:86:61:81:5d:b7: 12:07:f9:bb:c9:8a:8d:ae:89:1c:7a:63:e6:7f:6b:6d:eb:32: 34:c6:55:98:05:15:b0:4f:9e:50:b1:2a:ef:66:93:1c:09:cd: 10:7e:d4:1a:d3:f2:b9:d2:d1:c2:90:67:37:81:23:c2:90:a1: bf:5a:d0:d3:23:78:88:da:21:dc:04:ac:f0:11:30:2d:2e:3c: cf:f0:4e:d8:77:9e:60:bb:55:d5:4a:c0:e4:19:e4:e6:56:93: d2:be:c9:b6:e7:f0:a0:ff:8b:96:85:0d:88:65:c4:4e:6a:f6: 7a:b4:2c:16:bb:c0:1c:28:69:85:ce:10:77:c3:c1:98:79:8b: 17:bf:aa:ee:99:b2:41:5f:8c:42:f2:ce:fe:7f:d6:59:85:81: 07:2d:6f:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODBEQTQxMTAvBgNVBAUTKEUzNDIyRjRFREU1RTY4Q0VDOUFBQTdFM0M2RTMyNzhD NzMwRTFFN0MwHhcNMjUwNjE0MTQzOTMyWhcNMjUwNjIxMTQzOTMyWjAYMRYwFAYD VQQDEw02ODRkODlhNC04MDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoX+904bM2p6iRPhoxdWu0vmXKNj7wfkwtMh5s79KKuHiwKo8yqkkkZJA00K9 VSjSpt6vt8A59j51/Do677fZ9gV0xVYG9RNoKu+Jnf7pG71Xw0XWSQ5RHd98m6i6 SQXGiS3FUMz+gbHYlfVYXPEPVNEm5OBPcx9qGTbpPvNwmQEj/n6Fkdp8hLiMSSiF sFSyeEU0T6wtu9S2Nhs/uAY+zQfmIdV0025YNGzoAyTnRxWyQZgUio9gUFrLc//+ uaKgyYg0P95XszghHfggE8A6Awg0rKvn5Eu77AoXR2Nf1nBVk6c8naMrDXBYIGTs iyquvXU0/whXSJtObi5FXUazfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNOsABwV M8N+7RXJMTTUkYVKyGuGMB8GA1UdIwQYMBaAFONCL07eXmjOyaqn48bjJ4xzDh58 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MERBNC80NzNDNjQ1MDFE OEYxMUUyOEU5MTNERUUwOEIwMkNEMi80MEl2VHQ1ZWFNN0pxcWZqeHVNbmpITU9I bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwSXZUdDVlYU03SnFxZmp4dU1uakhNT0hudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MERBNC80NzNDNjQ1MDFEOEYxMUUyOEU5MTNERUUwOEIwMkNEMi80MEl2VHQ1ZWFN N0pxcWZqeHVNbmpITU9IbncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+KazC23XB3F1X3no74WZEgL5z3ISFJdl/QMz3xkSBqSbWIwKtE/ju 18SRetZbB2JQq+MOWqnjdX5PqMxYQRWJOVQdOjB9xIVJySpLQVFKKW3dhpxTsBOZ QdacY8T4npdtnPNpCzUThmGBXbcSB/m7yYqNrokcemPmf2tt6zI0xlWYBRWwT55Q sSrvZpMcCc0QftQa0/K50tHCkGc3gSPCkKG/WtDTI3iI2iHcBKzwETAtLjzP8E7Y d55gu1XVSsDkGeTmVpPSvsm25/Cg/4uWhQ2IZcROavZ6tCwWu8AcKGmFzhB3w8GY eYsXv6rumbJBX4xC8s7+f9ZZhYEHLW+2 -----END CERTIFICATE-----Generated at Sat Jun 14 18:48:10 2025 by rpki-client