$ rpki-client -vvf rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft File: 2WQZRdW0z31j_JExr89yeuNtkCA.mft (raw, json) Hash identifier: AAE0zfLJoMt7PYUTwfcVAMdaRU+I1AQLjv2XbHnSBzg= Subject key identifier: E8:7A:23:B0:B8:87:BF:5F:5B:79:13:96:6C:38:AB:01:E0:FB:4E:0D Authority key identifier: D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 Certificate issuer: /CN=A911F316/serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Certificate serial: 01ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft Manifest number: 01E3 Signing time: Thu 03 Jul 2025 02:46:50 +0000 Manifest this update: Thu 03 Jul 2025 02:46:50 +0000 Manifest next update: Thu 10 Jul 2025 02:46:50 +0000 Files and hashes: 1: 2WQZRdW0z31j_JExr89yeuNtkCA.crl (hash: GWWgEzfkNr9xZLJeD892+fjHtRBVyMoZm/fwdua593w=) 2: 15714ED2776A11ED98AF7341C4F9AE02.roa (hash: WBxu67wj7qK+1XHnF6Gm/tpT83HjDxcRJ+5R7dbCf7I=) 3: 77490C9A792F11EEBF849942C4F9AE02.roa (hash: +qSb4R4TGVMwO8UibifLnyUfy5g07BZr/1fOfOFiaKg=) 4: 590A6A9A792E11EEA5AAB840C4F9AE02.roa (hash: TjgZvd8NTyfnTIYx+SMzczM6IMYvFc5scP1aWMMbHyE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:46:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 493 (0x1ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F316, serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Validity Not Before: Jul 3 02:46:50 2025 GMT Not After : Jul 10 02:46:50 2025 GMT Subject: CN=6865ef1a-9971 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:04:cf:c2:19:9b:d7:54:27:42:48:d8:f6:7d: c7:6b:25:af:08:28:2e:08:c2:cb:c8:ef:cb:e4:aa: 0e:b4:d4:fe:13:a6:ac:c0:8e:ea:51:3e:9f:2b:9b: 96:7f:84:9f:a7:3c:47:53:8d:34:49:79:01:b5:ae: c6:a8:d1:c4:26:32:d8:b1:39:98:7e:9c:ad:11:d7: ef:ba:01:f7:f2:3b:5d:62:78:02:bc:b4:0d:ec:6b: b5:84:ca:1d:06:29:2e:de:b5:82:42:24:bc:0b:66: b9:62:48:62:93:fd:70:6e:aa:39:b3:c3:a3:0f:e1: 47:27:6b:3b:75:32:cf:2f:7d:3f:0a:b0:df:c9:22: ee:34:db:96:01:b4:28:57:25:f5:64:02:44:ac:5a: 8f:37:e6:10:9c:cd:0c:51:f8:7d:cd:08:9c:79:35: 37:c3:09:6c:53:c8:b4:ce:f8:4a:5e:43:75:8b:e4: 99:ee:11:eb:1a:3c:f3:43:e5:f7:42:2e:14:64:1c: ad:45:57:5c:90:69:86:a1:8c:df:9a:3a:25:f3:fe: 35:36:6e:ee:06:6d:85:19:0c:33:5c:9f:11:73:cb: 47:93:6a:ae:5a:58:ac:f2:d6:f0:22:07:6a:f3:ca: ae:d3:e3:5b:1b:e2:41:d9:8c:65:5a:b7:d3:e8:98: 30:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:7A:23:B0:B8:87:BF:5F:5B:79:13:96:6C:38:AB:01:E0:FB:4E:0D X509v3 Authority Key Identifier: keyid:D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:03:28:b2:dd:40:0f:eb:1d:6f:e9:04:ed:4b:9a:e1:ef:87: a7:54:92:5f:e2:2e:f0:b7:fb:f8:03:d6:1b:86:b9:21:a8:63: 5a:bb:fd:61:c7:bc:92:2f:d6:7c:c3:04:6d:03:2a:3b:64:a7: 0e:44:27:7f:98:1a:11:27:60:e9:d1:bc:0f:89:76:5c:69:2b: 79:98:03:2b:ae:8d:23:8c:ec:ce:96:3d:6a:4a:e3:a5:23:8d: 15:b2:49:ca:80:f1:a1:cb:6c:0e:cb:bd:b9:a3:52:b7:c1:1f: 06:2f:0c:2c:2e:e0:e2:bf:5e:43:2f:c4:a5:e1:13:36:16:4e: e9:78:ca:71:59:b1:5b:37:21:51:d3:d8:7f:65:80:64:d4:44: b2:a6:56:51:72:36:ff:cb:08:39:e1:32:17:e7:be:c4:74:36: 20:d0:ef:d8:d6:0d:ed:50:38:f4:8a:40:31:bf:ce:19:1a:09: ec:2b:21:c5:78:23:ea:6e:e0:60:e7:0d:10:56:9f:1d:4f:1d: 49:53:51:84:22:da:25:76:f2:de:44:b8:c8:50:75:6d:8c:44: b2:0b:81:07:c3:97:8e:d6:1e:67:b9:f6:13:99:95:e3:b6:ef: 0f:b3:a2:eb:14:7a:88:1e:b4:ba:50:0c:02:fc:99:42:e1:40: d9:1c:39:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYzMTYxMTAvBgNVBAUTKEQ5NjQxOTQ1RDVCNENGN0Q2M0ZDOTEzMUFGQ0Y3MjdB RTM2RDkwMjAwHhcNMjUwNzAzMDI0NjUwWhcNMjUwNzEwMDI0NjUwWjAYMRYwFAYD VQQDEw02ODY1ZWYxYS05OTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAngTPwhmb11QnQkjY9n3HayWvCCguCMLLyO/L5KoOtNT+E6aswI7qUT6fK5uW f4SfpzxHU400SXkBta7GqNHEJjLYsTmYfpytEdfvugH38jtdYngCvLQN7Gu1hMod Biku3rWCQiS8C2a5Ykhik/1wbqo5s8OjD+FHJ2s7dTLPL30/CrDfySLuNNuWAbQo VyX1ZAJErFqPN+YQnM0MUfh9zQiceTU3wwlsU8i0zvhKXkN1i+SZ7hHrGjzzQ+X3 Qi4UZBytRVdckGmGoYzfmjol8/41Nm7uBm2FGQwzXJ8Rc8tHk2quWlis8tbwIgdq 88qu0+NbG+JB2YxlWrfT6JgwqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOh6I7C4 h79fW3kTlmw4qwHg+04NMB8GA1UdIwQYMBaAFNlkGUXVtM99Y/yRMa/PcnrjbZAg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjMxNi9BMURGMTUyMDc3 NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHozMWpfSkV4cjg5eWV1TnRr Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJXUVpSZFcwejMxal9KRXhyODl5ZXVOdGtDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjMxNi9BMURGMTUyMDc3NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHoz MWpfSkV4cjg5eWV1TnRrQ0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARAyiy3UAP6x1v6QTtS5rh74enVJJf4i7wt/v4A9YbhrkhqGNau/1h x7ySL9Z8wwRtAyo7ZKcORCd/mBoRJ2Dp0bwPiXZcaSt5mAMrro0jjOzOlj1qSuOl I40VsknKgPGhy2wOy725o1K3wR8GLwwsLuDiv15DL8Sl4RM2Fk7peMpxWbFbNyFR 09h/ZYBk1ESyplZRcjb/ywg54TIX577EdDYg0O/Y1g3tUDj0ikAxv84ZGgnsKyHF eCPqbuBg5w0QVp8dTx1JU1GEItoldvLeRLjIUHVtjESyC4EHw5eO1h5nufYTmZXj tu8Ps6LrFHqIHrS6UAwC/JlC4UDZHDlr -----END CERTIFICATE-----Generated at Fri Jul 4 08:20:48 2025 by rpki-client