$ rpki-client -vvf rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft File: R2lFsh8liffnEnUf50f6IUOlI1s.mft (raw, json) Hash identifier: L/jT2w/aChcre9JSMKHQPWP7CqAFmd7A//QsIZz9Z6A= Subject key identifier: E4:82:D1:45:89:45:D2:BC:C9:EC:1E:F2:CB:07:4D:03:C5:31:61:2E Authority key identifier: 47:69:45:B2:1F:25:89:F7:E7:12:75:1F:E7:47:FA:21:43:A5:23:5B Certificate issuer: /CN=A9132B1D/serialNumber=476945B21F2589F7E712751FE747FA2143A5235B Certificate serial: 0274 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2lFsh8liffnEnUf50f6IUOlI1s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft Manifest number: 0270 Signing time: Thu 03 Jul 2025 02:09:13 +0000 Manifest this update: Thu 03 Jul 2025 02:09:13 +0000 Manifest next update: Thu 10 Jul 2025 02:09:13 +0000 Files and hashes: 1: R2lFsh8liffnEnUf50f6IUOlI1s.crl (hash: JE25YbpDSQfCvs5tqQXi/yRQyljsH4CjUDkaQkiBbq4=) 2: A917D87217A711ED8D17FC7CC4F9AE02.roa (hash: Zl1OdprsSbZO6kJ93156dFn5LZrbdumG7KQVdLYJ1W0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.crl rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2lFsh8liffnEnUf50f6IUOlI1s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:09:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 628 (0x274) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132B1D, serialNumber=476945B21F2589F7E712751FE747FA2143A5235B Validity Not Before: Jul 3 02:09:13 2025 GMT Not After : Jul 10 02:09:13 2025 GMT Subject: CN=6865e649-89a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:7f:72:dc:e0:50:c1:a5:5b:a2:4e:74:7b:f8: 31:9b:69:15:43:80:c9:f4:17:43:92:70:23:5b:e1: ca:a2:7c:7c:42:c0:b3:58:68:fb:ac:34:d4:bf:d9: af:15:23:60:88:0d:b9:7b:3a:c0:fa:2f:a1:68:57: 6d:21:a2:3e:2a:50:5b:b8:cc:d9:02:79:26:e8:ea: 65:63:eb:74:ab:f7:b5:6c:34:d9:d2:45:9a:01:74: 88:10:6c:ce:1d:d7:8e:f2:54:d3:52:65:45:f9:33: a5:23:75:33:e4:b7:08:af:01:42:a6:99:a6:c5:13: 38:7a:b2:eb:87:03:00:3e:e9:a7:96:97:d2:6b:e6: b2:a1:b1:6b:05:8f:ce:27:13:8c:31:7a:c8:5f:e8: 78:95:7c:0b:d6:75:ed:e0:b9:42:4b:78:ad:65:01: 65:64:e2:e5:a6:6f:85:e5:6a:9d:8e:b8:47:60:af: fc:8f:5d:3c:99:b1:97:48:e3:5d:86:23:89:5b:a1: cd:2f:17:c6:7e:8b:73:93:34:9d:8d:15:ca:68:47: 8d:f4:9b:7e:eb:95:77:bf:08:43:1f:8f:9e:7e:0e: d5:fb:19:69:11:36:c5:d8:db:c6:1e:e3:1b:bc:bc: 5e:7d:59:33:73:85:26:01:08:d1:08:0a:bf:f8:22: 43:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:82:D1:45:89:45:D2:BC:C9:EC:1E:F2:CB:07:4D:03:C5:31:61:2E X509v3 Authority Key Identifier: keyid:47:69:45:B2:1F:25:89:F7:E7:12:75:1F:E7:47:FA:21:43:A5:23:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2lFsh8liffnEnUf50f6IUOlI1s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:65:9f:0f:40:89:fa:9a:65:4a:28:b6:3d:1e:d4:fb:73:17: 2d:2d:b1:81:c3:42:99:e7:75:66:44:5a:11:41:34:4e:0f:ff: 67:92:ab:ac:40:ea:20:b6:1f:89:31:29:6d:c1:63:f0:2f:ba: f2:c2:60:1b:c7:8a:aa:c4:6b:65:82:8d:54:f9:58:a0:a2:db: eb:86:f9:bb:15:af:19:26:92:8d:60:54:c9:23:3f:db:59:38: a8:0a:94:0c:9d:3a:d9:2c:b4:ac:62:09:17:b9:2f:20:bc:c1: b4:8b:af:f1:39:7a:56:c1:15:09:37:e2:ed:e8:c6:ce:01:4a: bf:a5:b8:a6:17:ac:d9:2b:49:31:6c:0f:05:05:ac:dc:b2:63: e1:97:97:f8:a4:7c:ae:1b:6f:b7:5a:27:00:3b:30:4b:f1:c7: 94:03:88:19:5c:86:d4:2b:e9:bb:d8:6a:8c:f7:04:aa:38:d3: 16:f4:ff:29:ab:67:0a:4d:24:bc:1d:93:5b:03:e0:e6:99:6c: a0:eb:0d:75:aa:dd:0f:d3:aa:44:e9:f6:36:7a:37:9d:91:e8: 53:f4:2a:fd:6f:b6:d8:08:e5:72:5b:de:01:90:99:6d:f9:5d: 88:ab:09:1d:29:1b:a8:70:29:ba:22:70:09:50:a2:b9:42:55: b9:a7:0c:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJCMUQxMTAvBgNVBAUTKDQ3Njk0NUIyMUYyNTg5RjdFNzEyNzUxRkU3NDdGQTIx NDNBNTIzNUIwHhcNMjUwNzAzMDIwOTEzWhcNMjUwNzEwMDIwOTEzWjAYMRYwFAYD VQQDEw02ODY1ZTY0OS04OWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt39y3OBQwaVbok50e/gxm2kVQ4DJ9BdDknAjW+HKonx8QsCzWGj7rDTUv9mv FSNgiA25ezrA+i+haFdtIaI+KlBbuMzZAnkm6OplY+t0q/e1bDTZ0kWaAXSIEGzO HdeO8lTTUmVF+TOlI3Uz5LcIrwFCppmmxRM4erLrhwMAPumnlpfSa+ayobFrBY/O JxOMMXrIX+h4lXwL1nXt4LlCS3itZQFlZOLlpm+F5WqdjrhHYK/8j108mbGXSONd hiOJW6HNLxfGfotzkzSdjRXKaEeN9Jt+65V3vwhDH4+efg7V+xlpETbF2NvGHuMb vLxefVkzc4UmAQjRCAq/+CJD1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOSC0UWJ RdK8yewe8ssHTQPFMWEuMB8GA1UdIwQYMBaAFEdpRbIfJYn35xJ1H+dH+iFDpSNb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkIxRC8zMDIwM0VEMDE3 QTQxMUVEQjM2MDE1NjRDNEY5QUUwMi9SMmxGc2g4bGlmZm5FblVmNTBmNklVT2xJ MXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IybEZzaDhsaWZmbkVuVWY1MGY2SVVPbEkxcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkIxRC8zMDIwM0VEMDE3QTQxMUVEQjM2MDE1NjRDNEY5QUUwMi9SMmxGc2g4bGlm Zm5FblVmNTBmNklVT2xJMXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsZZ8PQIn6mmVKKLY9HtT7cxctLbGBw0KZ53VmRFoRQTROD/9nkqus QOogth+JMSltwWPwL7rywmAbx4qqxGtlgo1U+Vigotvrhvm7Fa8ZJpKNYFTJIz/b WTioCpQMnTrZLLSsYgkXuS8gvMG0i6/xOXpWwRUJN+Lt6MbOAUq/pbimF6zZK0kx bA8FBazcsmPhl5f4pHyuG2+3WicAOzBL8ceUA4gZXIbUK+m72GqM9wSqONMW9P8p q2cKTSS8HZNbA+DmmWyg6w11qt0P06pE6fY2ejedkehT9Cr9b7bYCOVyW94BkJlt +V2IqwkdKRuocCm6InAJUKK5QlW5pwz/ -----END CERTIFICATE-----Generated at Thu Jul 3 14:24:36 2025 by rpki-client