$ rpki-client -vvf rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft File: 2gQijT7rRR_A8iM2aXFwV_irNmk.mft (raw, json) Hash identifier: pjZxLOCGatU68uLfNwIvuxOt4BHQXgRJEpZkwVDPcvc= Subject key identifier: 34:1C:48:F9:34:30:7E:B3:CE:45:28:24:20:F5:78:0C:37:E4:23:78 Authority key identifier: DA:04:22:8D:3E:EB:45:1F:C0:F2:23:36:69:71:70:57:F8:AB:36:69 Certificate issuer: /CN=A914B165/serialNumber=DA04228D3EEB451FC0F2233669717057F8AB3669 Certificate serial: 088A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft Manifest number: 0884 Signing time: Mon 30 Jun 2025 20:50:16 +0000 Manifest this update: Mon 30 Jun 2025 20:50:16 +0000 Manifest next update: Mon 07 Jul 2025 20:50:16 +0000 Files and hashes: 1: 2gQijT7rRR_A8iM2aXFwV_irNmk.crl (hash: t97eNFqSIi8yeK4u1pA0E7pOomnnPdQqfp0INWYUKmA=) 2: 26AECD92C2B211EABBD0ED4AC4F9AE02.roa (hash: 8bFMS7lUFa5a04616nMhBCIyPXjI0vGFlv2YHmEk/tM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.crl rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 20:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2186 (0x88a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B165, serialNumber=DA04228D3EEB451FC0F2233669717057F8AB3669 Validity Not Before: Jun 30 20:50:16 2025 GMT Not After : Jul 7 20:50:16 2025 GMT Subject: CN=6862f888-3e43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:1e:23:0b:dd:14:99:ce:15:01:b6:02:d9:bf: 98:d6:d8:6f:2c:f2:99:0f:bb:75:2a:41:43:b2:46: e3:a1:80:4d:29:9a:2f:7e:1b:d4:27:8e:90:9d:3e: 8f:92:ad:5b:b6:ec:22:f3:93:99:b8:e4:b5:83:7c: 06:fd:d2:a0:95:e5:57:49:ef:fb:09:6f:cc:8d:f9: 7d:5d:cb:12:3a:78:48:98:e5:79:6e:46:98:c8:6a: 5e:90:e9:da:73:49:24:f8:a1:5e:bc:4c:29:e4:36: ed:bb:20:6c:1d:05:cd:c9:bc:4d:31:29:02:c0:05: 23:25:98:0b:4d:3f:35:08:2e:9e:3d:62:3f:6a:b5: 23:7f:d3:84:a1:cf:76:1f:68:4e:a4:a1:24:15:6d: 75:97:f0:96:ea:e9:5b:09:88:4b:71:18:46:65:6d: ee:76:a0:ad:53:87:f9:21:d8:60:b3:9a:0a:a3:8a: 05:87:52:33:1b:f1:54:d7:ba:89:9c:17:d5:22:f0: 84:50:b0:91:33:24:f4:d1:54:8b:81:c6:18:ba:13: 4a:af:32:0f:a1:8c:bc:7e:d6:9a:7a:df:ec:24:2f: 83:49:eb:de:44:00:6c:68:a1:12:30:2c:6b:94:42: df:c1:3c:f0:39:c2:c3:8e:98:14:52:bc:10:4b:cc: 65:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:1C:48:F9:34:30:7E:B3:CE:45:28:24:20:F5:78:0C:37:E4:23:78 X509v3 Authority Key Identifier: keyid:DA:04:22:8D:3E:EB:45:1F:C0:F2:23:36:69:71:70:57:F8:AB:36:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:d3:b5:26:ef:39:b8:05:24:b6:08:65:93:15:e1:ef:9c:87: 68:24:f1:97:df:f1:f0:39:b9:36:83:68:7d:f8:11:00:4c:46: ae:7f:d3:4c:c1:ff:9a:43:0e:d1:60:28:4e:30:af:03:ff:39: 33:19:84:a0:e3:1a:7a:e0:6b:34:6b:ed:68:aa:2c:76:1c:d1: 8c:f5:46:1c:03:32:f3:e2:7e:81:91:7e:0a:64:e0:1c:6e:70: b2:ff:f5:7d:57:dd:2b:cf:87:48:e1:47:36:0f:0c:f2:0a:b5: b9:47:f1:76:3e:46:ef:10:8b:55:21:3f:a2:cf:f6:7e:87:a5: 30:f2:04:29:44:aa:78:98:9f:06:ae:e4:3e:7a:6c:d6:38:72: a0:83:8d:5f:f3:f6:33:d9:83:09:b9:4e:45:4c:2b:a9:4c:57: 26:11:42:fc:5e:69:a0:8e:05:69:1d:cc:ef:ab:93:b1:0e:69: a3:d1:52:9f:6d:8d:bd:de:f6:e3:41:3b:f3:0b:73:3e:63:f1: 52:76:b0:6c:67:26:c9:24:53:c3:dc:d0:83:48:e5:9a:c5:b2: e0:ea:a8:e0:50:94:de:34:2e:9b:f3:10:a9:d8:bd:4a:72:4a: 9e:9b:29:72:22:cf:d4:e2:57:40:8a:95:1c:f1:d6:78:b3:42: c1:fa:f6:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIxNjUxMTAvBgNVBAUTKERBMDQyMjhEM0VFQjQ1MUZDMEYyMjMzNjY5NzE3MDU3 RjhBQjM2NjkwHhcNMjUwNjMwMjA1MDE2WhcNMjUwNzA3MjA1MDE2WjAYMRYwFAYD VQQDEw02ODYyZjg4OC0zZTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4R4jC90Umc4VAbYC2b+Y1thvLPKZD7t1KkFDskbjoYBNKZovfhvUJ46QnT6P kq1btuwi85OZuOS1g3wG/dKgleVXSe/7CW/Mjfl9XcsSOnhImOV5bkaYyGpekOna c0kk+KFevEwp5DbtuyBsHQXNybxNMSkCwAUjJZgLTT81CC6ePWI/arUjf9OEoc92 H2hOpKEkFW11l/CW6ulbCYhLcRhGZW3udqCtU4f5Idhgs5oKo4oFh1IzG/FU17qJ nBfVIvCEULCRMyT00VSLgcYYuhNKrzIPoYy8ftaaet/sJC+DSeveRABsaKESMCxr lELfwTzwOcLDjpgUUrwQS8xlKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDQcSPk0 MH6zzkUoJCD1eAw35CN4MB8GA1UdIwQYMBaAFNoEIo0+60UfwPIjNmlxcFf4qzZp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjE2NS82QTNFQjhCNkMy QjExMUVBOTIwQkI5NEFDNEY5QUUwMi8yZ1FpalQ3clJSX0E4aU0yYVhGd1ZfaXJO bWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnUWlqVDdyUlJfQThpTTJhWEZ3Vl9pck5tay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjE2NS82QTNFQjhCNkMyQjExMUVBOTIwQkI5NEFDNEY5QUUwMi8yZ1FpalQ3clJS X0E4aU0yYVhGd1ZfaXJObWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAY07Um7zm4BSS2CGWTFeHvnIdoJPGX3/HwObk2g2h9+BEATEauf9NM wf+aQw7RYChOMK8D/zkzGYSg4xp64Gs0a+1oqix2HNGM9UYcAzLz4n6BkX4KZOAc bnCy//V9V90rz4dI4Uc2DwzyCrW5R/F2PkbvEItVIT+iz/Z+h6Uw8gQpRKp4mJ8G ruQ+emzWOHKgg41f8/Yz2YMJuU5FTCupTFcmEUL8XmmgjgVpHczvq5OxDmmj0VKf bY293vbjQTvzC3M+Y/FSdrBsZybJJFPD3NCDSOWaxbLg6qjgUJTeNC6b8xCp2L1K ckqemylyIs/U4ldAipUc8dZ4s0LB+vbo -----END CERTIFICATE-----Generated at Tue Jul 1 13:15:45 2025 by rpki-client