$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft File: 2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft (raw, json) Hash identifier: q4BtZ09Dm8z9CJ4udv04cLyij5ACkV+rY3yfnR353Bg= Subject key identifier: 7C:0D:3D:83:13:66:0A:9F:C3:16:B6:2C:44:8F:CF:CE:B8:B4:4D:A2 Authority key identifier: D9:85:29:14:8C:BA:5D:DE:D3:B7:3D:60:52:EE:05:16:C0:24:C4:F3 Certificate issuer: /CN=A914C4ED/serialNumber=D98529148CBA5DDED3B73D6052EE0516C024C4F3 Certificate serial: 01EF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft Manifest number: 01EA Signing time: Thu 03 Jul 2025 01:15:13 +0000 Manifest this update: Thu 03 Jul 2025 01:15:12 +0000 Manifest next update: Thu 10 Jul 2025 01:15:12 +0000 Files and hashes: 1: 2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl (hash: wVMPJ70LShS6m2VqKJN42zHrbUI3RBftCSu9w5Cp4+E=) 2: F060FF0E720D11EDA84BE02EC4F9AE02.roa (hash: MTvQaAV2j4a15rRSTpoB41scqYTwrnry9bJaizx2K5M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 495 (0x1ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C4ED, serialNumber=D98529148CBA5DDED3B73D6052EE0516C024C4F3 Validity Not Before: Jul 3 01:15:12 2025 GMT Not After : Jul 10 01:15:12 2025 GMT Subject: CN=6865d9a1-cf2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:62:05:df:17:5c:dd:5c:ce:ec:03:40:31:6a: 48:f1:a7:ef:14:77:6b:7b:7b:3f:fd:62:f0:10:c0: 89:cf:95:fc:6c:2d:20:8a:ec:2c:b9:1a:b5:59:ae: da:a6:3c:59:d0:ba:a4:02:bf:d5:80:75:3a:a9:99: 97:58:44:3b:a8:e9:65:c0:eb:96:65:4c:0a:f1:d8: 76:db:d1:be:6e:d2:65:da:d6:b2:4d:c6:36:c3:25: e3:0b:fc:ef:ae:0c:ea:1a:a3:f4:fc:71:e3:cd:a3: 2a:13:cc:bb:12:7d:21:cb:78:86:b1:a8:a4:30:1e: c7:00:79:f3:de:12:af:3d:56:6c:1a:89:2a:71:4d: b5:97:fa:61:fc:e2:30:a3:4f:dc:ea:c2:b0:08:2f: 33:a3:dc:3a:97:e1:7d:e6:d0:2e:c6:b9:9b:51:73: cd:4c:c3:7f:ba:ed:1c:57:b2:33:85:38:d5:8a:39: 41:c0:81:03:0f:b2:6a:03:a6:f4:73:60:82:74:7c: ee:86:10:3e:bd:87:a6:53:fe:b0:d6:d2:c9:43:af: cd:54:88:2d:e3:9d:dd:7c:06:79:8d:69:9c:2c:d1: 55:a9:7b:30:e7:0b:77:8c:1c:b6:f9:57:f3:30:aa: 8d:58:2f:75:97:f3:72:21:7d:0b:6f:d4:1c:cb:b5: 55:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:0D:3D:83:13:66:0A:9F:C3:16:B6:2C:44:8F:CF:CE:B8:B4:4D:A2 X509v3 Authority Key Identifier: keyid:D9:85:29:14:8C:BA:5D:DE:D3:B7:3D:60:52:EE:05:16:C0:24:C4:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:be:f2:f9:0e:25:1a:76:6d:68:d2:1d:12:db:df:4e:89:cc: 56:0c:67:1b:34:cb:c5:4a:bb:67:55:f7:6d:0f:1c:b1:d4:84: 7a:e2:dc:ca:d6:51:dd:1b:c0:da:52:61:5b:e1:27:78:8e:c8: 15:13:3b:b7:de:47:36:7e:9d:10:0c:5c:6b:e3:b9:ae:06:b6: 9d:bb:6c:8d:4e:83:c6:2e:83:57:06:d5:57:35:ba:04:db:4a: f8:56:a7:dd:b1:e5:d8:09:2d:bb:2b:5a:13:89:9c:81:03:22: e0:5a:e7:9c:1c:c9:a6:fb:69:dc:ed:0d:cd:7f:e8:07:d5:59: 40:a9:51:98:61:fb:bd:f0:86:47:5a:bb:fe:0c:0c:28:e6:2a: 68:3e:b2:91:e7:9f:97:f4:38:07:7e:7d:c2:79:d1:b9:c7:37: 6f:10:84:ae:62:fc:d5:7e:a9:1c:00:23:88:04:d1:3b:49:f6: 0e:fe:a4:01:25:7d:70:a9:9b:8a:48:06:35:f8:1f:7a:46:fa: 67:86:b8:2a:34:97:ff:3b:12:c9:01:9a:b8:71:d6:c2:47:d0: 03:6c:90:9e:9a:7a:3f:81:15:94:0d:33:d4:25:25:af:8c:12: 3b:96:04:6b:05:86:62:20:a4:a8:ce:64:66:70:61:05:ae:24: 57:90:7d:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0RUQxMTAvBgNVBAUTKEQ5ODUyOTE0OENCQTVEREVEM0I3M0Q2MDUyRUUwNTE2 QzAyNEM0RjMwHhcNMjUwNzAzMDExNTEyWhcNMjUwNzEwMDExNTEyWjAYMRYwFAYD VQQDEw02ODY1ZDlhMS1jZjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtmIF3xdc3VzO7ANAMWpI8afvFHdre3s//WLwEMCJz5X8bC0giuwsuRq1Wa7a pjxZ0LqkAr/VgHU6qZmXWEQ7qOllwOuWZUwK8dh229G+btJl2tayTcY2wyXjC/zv rgzqGqP0/HHjzaMqE8y7En0hy3iGsaikMB7HAHnz3hKvPVZsGokqcU21l/ph/OIw o0/c6sKwCC8zo9w6l+F95tAuxrmbUXPNTMN/uu0cV7IzhTjVijlBwIEDD7JqA6b0 c2CCdHzuhhA+vYemU/6w1tLJQ6/NVIgt453dfAZ5jWmcLNFVqXsw5wt3jBy2+Vfz MKqNWC91l/NyIX0Lb9Qcy7VVLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHwNPYMT Zgqfwxa2LESPz864tE2iMB8GA1UdIwQYMBaAFNmFKRSMul3e07c9YFLuBRbAJMTz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzRFRC83NTk4NDQ0NDcy MEQxMUVEQjU0NUUwMzBDNEY5QUUwMi8yWVVwRkl5NlhkN1R0ejFnVXU0RkZzQWt4 UE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJZVXBGSXk2WGQ3VHR6MWdVdTRGRnNBa3hQTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzRFRC83NTk4NDQ0NDcyMEQxMUVEQjU0NUUwMzBDNEY5QUUwMi8yWVVwRkl5Nlhk N1R0ejFnVXU0RkZzQWt4UE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzvvL5DiUadm1o0h0S299OicxWDGcbNMvFSrtnVfdtDxyx1IR64tzK 1lHdG8DaUmFb4Sd4jsgVEzu33kc2fp0QDFxr47muBradu2yNToPGLoNXBtVXNboE 20r4VqfdseXYCS27K1oTiZyBAyLgWuecHMmm+2nc7Q3Nf+gH1VlAqVGYYfu98IZH Wrv+DAwo5ipoPrKR55+X9DgHfn3CedG5xzdvEISuYvzVfqkcACOIBNE7SfYO/qQB JX1wqZuKSAY1+B96RvpnhrgqNJf/OxLJAZq4cdbCR9ADbJCemno/gRWUDTPUJSWv jBI7lgRrBYZiIKSozmRmcGEFriRXkH02 -----END CERTIFICATE-----Generated at Thu Jul 3 08:43:34 2025 by rpki-client