$ rpki-client -vvf rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft File: 2MZzCV6Cqbfn381GWA94MajRiso.mft (raw, json) Hash identifier: v5EzTdelkudZH1yJCXAC02EOWeXDnIxL9rtMIj3D4B0= Subject key identifier: 72:2A:C4:3C:74:07:A3:BD:E0:C0:68:1A:4C:F6:D6:85:F4:59:94:C3 Authority key identifier: D8:C6:73:09:5E:82:A9:B7:E7:DF:CD:46:58:0F:78:31:A8:D1:8A:CA Certificate issuer: /CN=A911862D/serialNumber=D8C673095E82A9B7E7DFCD46580F7831A8D18ACA Certificate serial: 174A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft Manifest number: 172F Signing time: Fri 04 Jul 2025 16:53:53 +0000 Manifest this update: Fri 04 Jul 2025 16:53:53 +0000 Manifest next update: Fri 11 Jul 2025 16:53:53 +0000 Files and hashes: 1: 2MZzCV6Cqbfn381GWA94MajRiso.crl (hash: fpd2dwSyJ/kU7Qz6or8yJIEXYqWK9nJ3GpXFYXrET0A=) 2: D4A7497E6E6B11EF9FC61C6AC4F9AE02.roa (hash: JBsRHnJPdnzdINV0pvwEs0IpHO7Li2A9KaO/T3DyLM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.crl rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5962 (0x174a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911862D, serialNumber=D8C673095E82A9B7E7DFCD46580F7831A8D18ACA Validity Not Before: Jul 4 16:53:53 2025 GMT Not After : Jul 11 16:53:53 2025 GMT Subject: CN=68680721-0eba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:d2:26:97:24:5c:6e:d6:21:af:2f:ae:a8:3b: 6c:c3:5e:9b:2d:3d:db:1b:f4:a8:71:bd:06:b1:22: cf:d1:51:7f:bb:49:c2:1f:97:81:e8:ce:6a:fd:df: 8d:b6:07:47:c3:41:0a:81:d0:d8:87:b0:98:60:ab: 08:0b:00:a9:45:dc:9d:5a:cd:c9:c0:4e:f2:52:35: 55:47:95:13:52:a9:45:80:da:19:48:4d:9c:0d:73: 5a:fc:cc:ab:7b:1f:3d:31:c1:6f:34:52:61:95:95: e7:05:be:4d:8a:df:36:fa:51:09:e8:9a:30:33:80: d2:98:04:70:15:c9:6b:e0:02:c7:31:78:d6:72:aa: c2:c7:f3:00:a7:ce:e4:5c:99:9b:88:c7:1d:6e:a5: 3c:53:0c:a7:99:40:44:e1:b7:23:3f:1e:a3:2f:14: 9e:44:1f:7f:84:a0:77:7d:e9:4e:05:95:e4:ee:ad: e5:f3:8c:93:9f:8c:e1:7e:9e:88:88:20:d4:92:92: 09:b6:3b:3e:8d:5e:94:80:01:c1:a5:78:03:bf:f0: 8c:7a:e9:43:0f:cf:04:b5:86:15:2b:c8:cf:55:5e: e7:9e:26:00:14:04:ed:2b:2f:5b:6c:e9:be:fb:74: 25:d0:7d:7c:d4:32:e0:6f:90:2d:ce:1d:3f:7c:02: 72:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:2A:C4:3C:74:07:A3:BD:E0:C0:68:1A:4C:F6:D6:85:F4:59:94:C3 X509v3 Authority Key Identifier: keyid:D8:C6:73:09:5E:82:A9:B7:E7:DF:CD:46:58:0F:78:31:A8:D1:8A:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:fe:18:05:61:8e:76:df:23:c9:11:ea:7d:0d:4e:e1:60:44: 97:88:48:31:d6:02:0f:f3:02:a8:01:84:7c:7a:38:a8:b2:f3: d5:a7:69:9c:3b:87:fe:ec:02:22:25:63:e4:a4:18:0b:d7:d0: e8:f8:cc:29:e4:3b:6d:ba:5c:92:52:32:d0:06:02:64:f1:a6: d1:8a:d0:a5:66:12:bb:86:c6:87:77:2f:df:29:d6:da:0c:33: dd:d6:d8:ab:9c:94:4e:12:d3:ca:8a:2a:81:1d:7e:35:f9:6f: 3f:3c:38:08:53:82:9c:8a:12:5f:99:fd:de:f3:83:fc:4b:e6: 10:40:1f:6a:75:d5:4e:74:83:63:23:ef:cd:58:1a:63:d2:fe: 8b:fa:48:9b:55:f8:87:8d:30:f0:02:94:5c:11:a8:0f:1c:c1: a7:b8:84:7b:9f:6f:6c:f8:cc:6a:39:70:b0:90:93:b0:76:9b: 45:14:7c:02:1c:4e:a6:68:0b:c8:83:7d:55:81:36:18:e9:5e: 85:af:c4:9f:9c:a1:ff:58:3e:c7:bd:34:c1:e5:11:bb:ab:1e: 52:24:72:dc:ff:92:3a:e1:6b:38:77:4a:54:57:30:d0:1f:ac: 60:06:1c:79:55:51:03:23:d4:8a:a6:fc:22:0b:47:1b:d6:79: 40:ae:ae:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF0owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg2MkQxMTAvBgNVBAUTKEQ4QzY3MzA5NUU4MkE5QjdFN0RGQ0Q0NjU4MEY3ODMx QThEMThBQ0EwHhcNMjUwNzA0MTY1MzUzWhcNMjUwNzExMTY1MzUzWjAYMRYwFAYD VQQDEw02ODY4MDcyMS0wZWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6tImlyRcbtYhry+uqDtsw16bLT3bG/Socb0GsSLP0VF/u0nCH5eB6M5q/d+N tgdHw0EKgdDYh7CYYKsICwCpRdydWs3JwE7yUjVVR5UTUqlFgNoZSE2cDXNa/Myr ex89McFvNFJhlZXnBb5Nit82+lEJ6JowM4DSmARwFclr4ALHMXjWcqrCx/MAp87k XJmbiMcdbqU8UwynmUBE4bcjPx6jLxSeRB9/hKB3felOBZXk7q3l84yTn4zhfp6I iCDUkpIJtjs+jV6UgAHBpXgDv/CMeulDD88EtYYVK8jPVV7nniYAFATtKy9bbOm+ +3Ql0H181DLgb5Atzh0/fAJyRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHIqxDx0 B6O94MBoGkz21oX0WZTDMB8GA1UdIwQYMBaAFNjGcwlegqm359/NRlgPeDGo0YrK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODYyRC8zMjg3OUQzQUU4 QkExMUU3OEE2QTcwNDJDNEY5QUUwMi8yTVp6Q1Y2Q3FiZm4zODFHV0E5NE1halJp c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJNWnpDVjZDcWJmbjM4MUdXQTk0TWFqUmlzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODYyRC8zMjg3OUQzQUU4QkExMUU3OEE2QTcwNDJDNEY5QUUwMi8yTVp6Q1Y2Q3Fi Zm4zODFHV0E5NE1halJpc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCe/hgFYY523yPJEep9DU7hYESXiEgx1gIP8wKoAYR8ejiosvPVp2mc O4f+7AIiJWPkpBgL19Do+Mwp5DttulySUjLQBgJk8abRitClZhK7hsaHdy/fKdba DDPd1tirnJROEtPKiiqBHX41+W8/PDgIU4KcihJfmf3e84P8S+YQQB9qddVOdINj I+/NWBpj0v6L+kibVfiHjTDwApRcEagPHMGnuIR7n29s+MxqOXCwkJOwdptFFHwC HE6maAvIg31VgTYY6V6Fr8SfnKH/WD7HvTTB5RG7qx5SJHLc/5I64Ws4d0pUVzDQ H6xgBhx5VVEDI9SKpvwiC0cb1nlArq7Q -----END CERTIFICATE-----Generated at Fri Jul 4 18:36:00 2025 by rpki-client