$ rpki-client -vvf rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft File: 2lexkcVbszGevZGC3A1Oau8-Ddg.mft (raw, json) Hash identifier: /bBQ8/yVRvx+jx56E0pcmU/8G+FXfosvix/ax3Mqfw0= Subject key identifier: CD:89:AF:87:82:04:16:80:5D:70:66:0E:D5:BC:50:07:EE:19:B2:E2 Authority key identifier: DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 Certificate issuer: /CN=A912A31E/serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Certificate serial: 0199 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft Manifest number: 0196 Signing time: Tue 01 Jul 2025 03:48:15 +0000 Manifest this update: Tue 01 Jul 2025 03:48:14 +0000 Manifest next update: Tue 08 Jul 2025 03:48:14 +0000 Files and hashes: 1: 2lexkcVbszGevZGC3A1Oau8-Ddg.crl (hash: Ew31YbcJxAskB6JNnb8yKa/XhNXz1D9R6e6kcjcicrk=) 2: 5181F33CE8C011EDADA54A23C4F9AE02.roa (hash: 9wRwgsGB8Fy9z1Xq7bw5sLUsMsE1FSTZuA/DyllyXak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:48:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 409 (0x199) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A31E, serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Validity Not Before: Jul 1 03:48:14 2025 GMT Not After : Jul 8 03:48:14 2025 GMT Subject: CN=68635a7e-12e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:d2:df:5d:25:3e:4c:ff:b3:6f:aa:bf:aa:cd: d4:f9:aa:83:15:8e:91:4a:98:19:17:28:f5:d7:8a: 67:7d:f7:cd:83:41:95:7a:08:71:69:0f:19:39:6c: 4f:f3:b5:86:3b:65:cc:cf:25:66:4d:93:d7:ca:eb: 6b:3e:6a:28:dd:a9:4b:e9:22:ce:5c:e4:6e:21:ca: 11:cc:81:c9:9c:7d:82:51:81:a4:a1:dd:8c:74:72: fb:34:32:aa:df:ec:3c:5f:bc:94:fb:cd:be:90:25: 53:93:d1:04:ce:fd:d1:e2:16:0b:22:00:07:e6:81: 2a:cb:19:15:1e:b2:3b:b2:4c:3a:b8:a4:89:ac:f5: fd:bc:3b:de:f6:32:99:c8:6a:0c:ee:af:83:d1:d7: 37:79:2e:9d:66:b8:8e:12:4a:aa:32:9f:b9:03:b2: 87:a9:ef:7d:45:96:44:36:2d:ec:d4:b9:96:6b:06: 7f:d1:50:9f:3e:5d:f6:f6:2f:9f:df:37:4b:67:75: 90:0b:73:5d:76:1a:5b:41:91:77:24:64:57:d4:3d: c7:25:2d:ea:ed:0f:25:54:f1:de:25:db:36:f0:21: 2b:e6:4f:26:86:ac:55:c2:2b:f0:9a:20:ca:7d:c3: ea:f2:98:11:f5:38:57:77:d4:4e:8a:08:ee:bf:0c: 92:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:89:AF:87:82:04:16:80:5D:70:66:0E:D5:BC:50:07:EE:19:B2:E2 X509v3 Authority Key Identifier: keyid:DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:42:95:c1:31:85:e2:89:17:63:22:40:1f:5e:95:2b:4a:f9: 58:da:e6:ed:44:4c:94:e0:1e:12:6b:24:92:b4:a9:2b:97:dd: e0:7e:74:cd:72:cd:50:ab:40:f8:78:36:4f:32:9f:54:13:8b: f5:53:2b:3d:15:b8:96:2f:8b:af:75:34:70:97:39:4c:c1:4c: d0:80:9e:23:ce:b2:5e:0d:6d:c0:49:97:7e:1b:3b:e8:e5:16: e0:96:d2:f3:03:c1:09:00:14:bf:e8:67:d5:89:a5:56:53:b2: 76:13:82:15:58:1b:31:a5:99:d7:3d:2a:66:31:c0:aa:56:4d: 4a:7d:38:ac:ca:65:9e:82:5c:8b:24:a5:10:01:49:b0:a1:3c: ea:0f:a8:88:33:35:a6:f8:b6:73:1a:ca:46:1a:59:46:5d:fe: 08:41:70:bf:e4:3c:8a:e9:f0:f7:30:61:1b:5e:f3:44:71:1d: 0b:39:2e:80:2b:97:9c:88:d9:91:4f:be:5b:0e:78:9c:ca:d3: f2:dc:b6:0d:ca:4b:40:9e:45:18:00:22:7c:4c:5b:e9:e1:2c: 8a:4d:47:c4:d8:ba:cd:88:a2:98:35:e9:1d:af:49:06:71:e6: d2:bd:d4:98:1f:f1:20:c0:02:f0:c9:81:fa:df:c2:d1:d9:83: e7:ac:28:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEzMUUxMTAvBgNVBAUTKERBNTdCMTkxQzU1QkIzMzE5RUJEOTE4MkRDMEQ0RTZB RUYzRTBERDgwHhcNMjUwNzAxMDM0ODE0WhcNMjUwNzA4MDM0ODE0WjAYMRYwFAYD VQQDEw02ODYzNWE3ZS0xMmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA49LfXSU+TP+zb6q/qs3U+aqDFY6RSpgZFyj114pnfffNg0GVeghxaQ8ZOWxP 87WGO2XMzyVmTZPXyutrPmoo3alL6SLOXORuIcoRzIHJnH2CUYGkod2MdHL7NDKq 3+w8X7yU+82+kCVTk9EEzv3R4hYLIgAH5oEqyxkVHrI7skw6uKSJrPX9vDve9jKZ yGoM7q+D0dc3eS6dZriOEkqqMp+5A7KHqe99RZZENi3s1LmWawZ/0VCfPl329i+f 3zdLZ3WQC3NddhpbQZF3JGRX1D3HJS3q7Q8lVPHeJds28CEr5k8mhqxVwivwmiDK fcPq8pgR9ThXd9ROigjuvwySiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM2Jr4eC BBaAXXBmDtW8UAfuGbLiMB8GA1UdIwQYMBaAFNpXsZHFW7Mxnr2RgtwNTmrvPg3Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTMxRS9DOEE0QzRFNEU4 QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6R2V2WkdDM0ExT2F1OC1E ZGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsZXhrY1Zic3pHZXZaR0MzQTFPYXU4LURkZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTMxRS9DOEE0QzRFNEU4QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6 R2V2WkdDM0ExT2F1OC1EZGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZQpXBMYXiiRdjIkAfXpUrSvlY2ubtREyU4B4SaySStKkrl93gfnTN cs1Qq0D4eDZPMp9UE4v1Uys9FbiWL4uvdTRwlzlMwUzQgJ4jzrJeDW3ASZd+Gzvo 5RbgltLzA8EJABS/6GfViaVWU7J2E4IVWBsxpZnXPSpmMcCqVk1KfTisymWeglyL JKUQAUmwoTzqD6iIMzWm+LZzGspGGllGXf4IQXC/5DyK6fD3MGEbXvNEcR0LOS6A K5eciNmRT75bDnicytPy3LYNyktAnkUYACJ8TFvp4SyKTUfE2LrNiKKYNekdr0kG cebSvdSYH/EgwALwyYH638LR2YPnrCjt -----END CERTIFICATE-----Generated at Thu Jul 3 00:53:20 2025 by rpki-client