$ rpki-client -vvf rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft File: 2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft (raw, json) Hash identifier: 91ShHgB4d4wxlO4fwuST0ZLm0GjlXRK6vmnvhegYRS8= Subject key identifier: B5:67:CA:B8:E3:A9:5E:CA:1E:46:5A:C3:BB:AC:45:30:D9:E6:73:D9 Authority key identifier: DA:54:7E:D6:92:8A:AD:1E:CF:B6:84:7A:1B:07:43:2B:D8:7B:19:EF Certificate issuer: /CN=A9140E66/serialNumber=DA547ED6928AAD1ECFB6847A1B07432BD87B19EF Certificate serial: 0C79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft Manifest number: 0C72 Signing time: Wed 02 Jul 2025 18:28:42 +0000 Manifest this update: Wed 02 Jul 2025 18:28:42 +0000 Manifest next update: Wed 09 Jul 2025 18:28:42 +0000 Files and hashes: 1: 2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl (hash: 2dqMB7Zf6DaGctTDQ1638fjUVBPwpglEnEqJzQdr6Wo=) 2: 7665CD0AFF7011E99CDC306AC4F9AE02.roa (hash: z3upKKYJCOGZgcUebN34+AOq4O4dzcNdCU/gNvo/rxQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:28:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3193 (0xc79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140E66, serialNumber=DA547ED6928AAD1ECFB6847A1B07432BD87B19EF Validity Not Before: Jul 2 18:28:42 2025 GMT Not After : Jul 9 18:28:42 2025 GMT Subject: CN=68657a5a-3377 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:6b:7e:e5:91:cf:84:be:af:38:2e:b2:d7:41: 89:84:80:f5:c8:a5:30:86:d8:2d:e9:20:ef:67:8f: c1:69:90:7a:de:6c:73:13:79:b3:a3:b6:dd:e0:a9: c6:d5:25:d3:91:27:17:9b:fb:29:59:00:6b:6e:8d: 51:19:80:03:3d:3f:ba:6f:e1:fd:36:27:73:fc:fb: d3:59:fc:22:fc:0b:14:97:86:1f:de:52:03:5c:7f: 5c:69:ba:94:e2:82:30:87:6b:8f:c4:b6:e4:68:16: 2b:48:71:6b:d5:29:12:00:54:86:2e:cd:4c:da:bf: c0:b0:f0:a9:4a:b1:bb:75:3f:48:74:84:c1:f3:5a: 09:d2:80:68:81:c3:32:41:9e:71:65:d9:f3:03:80: a5:f1:84:14:e7:bf:07:53:ae:0b:77:f2:6c:85:b4: d0:f4:de:35:72:88:ad:29:4f:9c:fe:83:64:4b:c2: 98:8f:63:ed:ba:91:2d:d9:7c:64:3c:5b:59:2a:15: 8e:0a:c5:e1:ed:9c:1d:73:71:95:72:cb:b9:0f:5b: 17:b3:4b:21:5b:f4:72:6a:68:6f:65:e1:f3:ee:50: 18:1d:ab:fd:52:6b:3e:d2:75:9e:65:d5:09:e3:f4: 0d:68:28:5a:c0:32:19:ad:1a:3f:c5:dd:f5:99:1e: aa:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:67:CA:B8:E3:A9:5E:CA:1E:46:5A:C3:BB:AC:45:30:D9:E6:73:D9 X509v3 Authority Key Identifier: keyid:DA:54:7E:D6:92:8A:AD:1E:CF:B6:84:7A:1B:07:43:2B:D8:7B:19:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:3d:49:cf:1d:9a:4d:7c:76:90:8a:77:7b:41:9b:69:14:85: d3:96:a8:ec:de:de:8c:a6:66:2a:ab:77:70:1d:12:e1:52:e7: ca:87:78:e1:4f:a0:e8:31:47:49:e5:db:1a:d9:06:4c:05:53: a4:5e:cb:81:78:44:2f:53:d9:f4:bc:92:6d:5e:02:f9:74:f8: 1b:29:77:5e:1b:a1:f2:fa:9e:10:95:dd:44:54:3f:49:92:e0: 20:ef:67:f7:7e:5e:53:e3:8f:99:0e:17:d4:de:12:e9:97:7c: 94:fc:e3:0c:29:76:bc:4d:33:07:15:cb:14:59:c8:78:97:4c: df:5e:39:4c:fe:3d:3b:19:a8:c9:8f:23:33:fe:52:ac:68:fd: 37:88:ad:5d:2f:6b:25:cd:12:dc:62:44:c2:17:50:ab:94:47: fa:cf:7d:fb:cb:1a:74:57:fb:db:ef:70:ff:57:99:87:c3:63: b0:38:79:d8:b6:a4:0c:85:81:99:f3:d2:02:81:d3:27:a0:98: ac:2a:b8:1c:ff:f8:7c:46:fc:4b:af:5d:25:13:6b:e9:7c:5c: 09:15:c3:53:c7:22:af:5b:62:f2:0f:60:f9:7a:db:b2:37:8e: 3b:e2:34:79:cc:6c:ca:8c:d7:fa:d3:dd:d7:80:ac:b2:3b:d0: f1:8e:12:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFNjYxMTAvBgNVBAUTKERBNTQ3RUQ2OTI4QUFEMUVDRkI2ODQ3QTFCMDc0MzJC RDg3QjE5RUYwHhcNMjUwNzAyMTgyODQyWhcNMjUwNzA5MTgyODQyWjAYMRYwFAYD VQQDEw02ODY1N2E1YS0zMzc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxGt+5ZHPhL6vOC6y10GJhID1yKUwhtgt6SDvZ4/BaZB63mxzE3mzo7bd4KnG 1SXTkScXm/spWQBrbo1RGYADPT+6b+H9Nidz/PvTWfwi/AsUl4Yf3lIDXH9cabqU 4oIwh2uPxLbkaBYrSHFr1SkSAFSGLs1M2r/AsPCpSrG7dT9IdITB81oJ0oBogcMy QZ5xZdnzA4Cl8YQU578HU64Ld/JshbTQ9N41coitKU+c/oNkS8KYj2PtupEt2Xxk PFtZKhWOCsXh7Zwdc3GVcsu5D1sXs0shW/RyamhvZeHz7lAYHav9Ums+0nWeZdUJ 4/QNaChawDIZrRo/xd31mR6qSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLVnyrjj qV7KHkZaw7usRTDZ5nPZMB8GA1UdIwQYMBaAFNpUftaSiq0ez7aEehsHQyvYexnv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEU2Ni83MDYzOUVGQ0ZG NkUxMUU5ODVBODhDNjdDNEY5QUUwMi8ybFItMXBLS3JSN1B0b1I2R3dkREs5aDdH ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsUi0xcEtLclI3UHRvUjZHd2RESzloN0dlOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEU2Ni83MDYzOUVGQ0ZGNkUxMUU5ODVBODhDNjdDNEY5QUUwMi8ybFItMXBLS3JS N1B0b1I2R3dkREs5aDdHZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwPUnPHZpNfHaQind7QZtpFIXTlqjs3t6MpmYqq3dwHRLhUufKh3jh T6DoMUdJ5dsa2QZMBVOkXsuBeEQvU9n0vJJtXgL5dPgbKXdeG6Hy+p4Qld1EVD9J kuAg72f3fl5T44+ZDhfU3hLpl3yU/OMMKXa8TTMHFcsUWch4l0zfXjlM/j07GajJ jyMz/lKsaP03iK1dL2slzRLcYkTCF1CrlEf6z337yxp0V/vb73D/V5mHw2OwOHnY tqQMhYGZ89ICgdMnoJisKrgc//h8RvxLr10lE2vpfFwJFcNTxyKvW2LyD2D5etuy N4474jR5zGzKjNf6093XgKyyO9DxjhIh -----END CERTIFICATE-----Generated at Thu Jul 3 12:29:53 2025 by rpki-client