$ rpki-client -vvf rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft File: X2mHOU7ukmatexkjRBv29RNP-VA.mft (raw, json) Hash identifier: NFURu95Ef1WyVQyCD+ofVxqR3JStL3vUisJilqFfQ3g= Subject key identifier: 20:3A:36:D5:BF:94:DF:09:6F:37:A3:35:FF:F0:BA:11:56:C8:F2:5D Authority key identifier: 5F:69:87:39:4E:EE:92:66:AD:7B:19:23:44:1B:F6:F5:13:4F:F9:50 Certificate issuer: /CN=A9147241/serialNumber=5F6987394EEE9266AD7B1923441BF6F5134FF950 Certificate serial: 07FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft Manifest number: 07F3 Signing time: Wed 02 Jul 2025 21:13:53 +0000 Manifest this update: Wed 02 Jul 2025 21:13:53 +0000 Manifest next update: Wed 09 Jul 2025 21:13:53 +0000 Files and hashes: 1: X2mHOU7ukmatexkjRBv29RNP-VA.crl (hash: 7ZFWSeSMaZWP7dZli/QpJjiKuJIs1a51ybYzLYP7SzI=) 2: F69648C2ECF211EABBFDDD24C4F9AE02.roa (hash: 90ekW1pDIqXWRjwU9tVaYqCrzXTRiG8h8pa7XJ3ojS8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.crl rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:13:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2042 (0x7fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147241, serialNumber=5F6987394EEE9266AD7B1923441BF6F5134FF950 Validity Not Before: Jul 2 21:13:53 2025 GMT Not After : Jul 9 21:13:53 2025 GMT Subject: CN=6865a111-363f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:59:d7:98:63:5c:32:c0:ff:4a:bf:de:bf:0e: 4c:b6:b2:8c:88:47:22:97:16:bf:81:c7:06:7a:ad: bd:e0:d9:9b:53:25:5a:cd:9b:1b:91:92:26:5a:cb: 41:b2:3b:28:17:86:74:68:e0:e8:fc:8e:64:81:01: 3e:93:48:08:da:bf:fe:75:46:26:1f:a2:0f:4a:ec: d5:d9:f9:71:a0:de:1b:9c:74:c4:1a:23:7a:23:c9: 89:f7:f7:ec:5d:c5:68:f3:d6:44:da:88:09:83:83: d3:45:8c:64:31:83:a2:84:95:5d:f3:5c:29:d3:6c: 50:3b:ca:96:95:ef:9c:be:b3:67:8a:86:1e:cd:03: 20:0d:0e:66:75:5c:57:f7:89:c5:45:09:89:a6:97: ca:6e:1a:5f:81:ce:8e:57:eb:a6:7b:2f:06:b4:e2: 64:eb:4a:cf:f1:47:d3:66:9d:4f:40:1e:b1:3e:8a: 2a:58:80:6d:b6:c9:e8:35:ba:ee:4c:3b:1a:e7:38: 0a:03:4e:b3:46:f5:be:df:29:04:0e:7e:da:1f:47: 55:67:e3:68:da:90:4f:2a:88:8c:49:c3:92:10:cf: a5:d5:c9:6f:a6:24:3b:61:99:d8:60:81:34:86:c4: 55:46:3c:fc:7f:c0:1b:61:5d:9a:39:55:ab:0d:5d: c1:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:3A:36:D5:BF:94:DF:09:6F:37:A3:35:FF:F0:BA:11:56:C8:F2:5D X509v3 Authority Key Identifier: keyid:5F:69:87:39:4E:EE:92:66:AD:7B:19:23:44:1B:F6:F5:13:4F:F9:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:85:0e:4d:9f:8d:50:a4:67:9d:c1:cb:c5:01:a8:33:fd:e6: e7:b3:53:9b:bb:f2:8c:44:68:b5:44:d3:20:0f:e3:10:be:57: d5:51:df:03:06:58:21:c6:19:11:43:f0:f9:ca:fe:36:be:f0: 9b:b2:48:30:9f:44:a2:e2:da:4f:5e:a9:41:10:b0:23:54:47: 41:df:ae:29:23:24:b7:d7:3e:8d:ca:a5:c4:6b:5a:56:ee:c5: 15:f6:cd:55:2e:6e:16:81:bc:43:81:3e:34:b8:f2:0c:44:70: 59:44:66:93:85:c9:af:69:7e:db:d9:69:35:a1:92:0b:9d:28: 1b:c0:72:89:4b:72:52:fe:3c:81:a6:65:07:34:84:56:84:f5: 45:60:88:a0:ba:31:24:d1:e1:48:ca:8c:28:eb:4a:98:e7:30: 5c:05:6b:c3:b5:b7:68:0f:5f:bd:97:2b:90:85:61:17:82:de: 32:6b:f5:06:3f:cf:87:6d:dc:e3:e0:65:ba:6a:45:f6:e4:39: b5:71:d3:4a:3c:6a:fc:b0:d5:4c:fd:5c:88:ce:15:41:0e:3f: 90:de:7f:c9:27:5e:16:71:c8:0e:93:ae:85:01:c2:50:34:87: c3:11:26:15:6c:0d:1d:56:04:2c:53:60:ba:e9:c9:47:97:ff: 48:61:48:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcyNDExMTAvBgNVBAUTKDVGNjk4NzM5NEVFRTkyNjZBRDdCMTkyMzQ0MUJGNkY1 MTM0RkY5NTAwHhcNMjUwNzAyMjExMzUzWhcNMjUwNzA5MjExMzUzWjAYMRYwFAYD VQQDEw02ODY1YTExMS0zNjNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA21nXmGNcMsD/Sr/evw5MtrKMiEcilxa/gccGeq294NmbUyVazZsbkZImWstB sjsoF4Z0aODo/I5kgQE+k0gI2r/+dUYmH6IPSuzV2flxoN4bnHTEGiN6I8mJ9/fs XcVo89ZE2ogJg4PTRYxkMYOihJVd81wp02xQO8qWle+cvrNnioYezQMgDQ5mdVxX 94nFRQmJppfKbhpfgc6OV+umey8GtOJk60rP8UfTZp1PQB6xPooqWIBttsnoNbru TDsa5zgKA06zRvW+3ykEDn7aH0dVZ+No2pBPKoiMScOSEM+l1clvpiQ7YZnYYIE0 hsRVRjz8f8AbYV2aOVWrDV3B3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCA6NtW/ lN8JbzejNf/wuhFWyPJdMB8GA1UdIwQYMBaAFF9phzlO7pJmrXsZI0Qb9vUTT/lQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzI0MS82MkJCNUM3NEVD RjExMUVBQTM5RDU3MjJDNEY5QUUwMi9YMm1IT1U3dWttYXRleGtqUkJ2MjlSTlAt VkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gybUhPVTd1a21hdGV4a2pSQnYyOVJOUC1WQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzI0MS82MkJCNUM3NEVDRjExMUVBQTM5RDU3MjJDNEY5QUUwMi9YMm1IT1U3dWtt YXRleGtqUkJ2MjlSTlAtVkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADhQ5Nn41QpGedwcvFAagz/ebns1Obu/KMRGi1RNMgD+MQvlfVUd8D BlghxhkRQ/D5yv42vvCbskgwn0Si4tpPXqlBELAjVEdB364pIyS31z6NyqXEa1pW 7sUV9s1VLm4WgbxDgT40uPIMRHBZRGaThcmvaX7b2Wk1oZILnSgbwHKJS3JS/jyB pmUHNIRWhPVFYIigujEk0eFIyowo60qY5zBcBWvDtbdoD1+9lyuQhWEXgt4ya/UG P8+Hbdzj4GW6akX25Dm1cdNKPGr8sNVM/VyIzhVBDj+Q3n/JJ14WccgOk66FAcJQ NIfDESYVbA0dVgQsU2C66clHl/9IYUj2 -----END CERTIFICATE-----Generated at Thu Jul 3 01:15:54 2025 by rpki-client