$ rpki-client -vvf rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft File: 2HXmPHNQjdifas3MBgFEoIwIZtw.mft (raw, json) Hash identifier: zswi+xR4iFeJ+x4lyuJ0q2uglzj9OnPYitwzP1pWMDA= Subject key identifier: 6C:F0:34:09:0C:47:A8:AB:2B:2E:8B:1A:14:00:FB:59:49:CC:B8:93 Authority key identifier: D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC Certificate issuer: /CN=A914E950/serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Certificate serial: 03D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft Manifest number: 03CD Signing time: Thu 03 Jul 2025 00:57:36 +0000 Manifest this update: Thu 03 Jul 2025 00:57:36 +0000 Manifest next update: Thu 10 Jul 2025 00:57:36 +0000 Files and hashes: 1: 2HXmPHNQjdifas3MBgFEoIwIZtw.crl (hash: CWdlm9ehD1O5ULWElynqDVYqKrRCP8DN/2vjX185pVo=) 2: 6199B5668DE011ECB9F9C06EC4F9AE02.roa (hash: 2v76irvv8YBootZ9ixmNS7BdVolsdY5VCXkGVLqaKlA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:57:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 977 (0x3d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E950, serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Validity Not Before: Jul 3 00:57:36 2025 GMT Not After : Jul 10 00:57:36 2025 GMT Subject: CN=6865d580-c1cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:fa:84:df:f5:a0:d3:af:f6:9d:23:e6:05:06: 2e:2f:c9:c7:57:dc:3f:be:1b:7d:56:1e:8c:32:bd: 06:95:63:c4:51:0f:66:48:a3:c4:50:67:39:2e:02: c8:f6:82:3a:0e:e1:7e:2b:57:e3:75:e1:7d:ac:e6: ad:d7:d5:a1:12:7f:68:65:dc:a5:02:7d:d1:9d:a2: bc:30:7f:19:54:0e:9d:6e:10:e3:20:31:82:74:65: b5:0b:73:8b:55:cd:27:d7:06:9f:cb:7e:7b:78:54: 4f:3b:57:b9:50:cf:c2:55:98:09:82:7b:47:27:c3: 03:00:f5:ae:9f:ce:62:0a:75:fc:e8:e6:c8:a2:f6: b5:20:4f:47:0c:1c:d6:99:dd:6b:ac:84:49:28:ea: 4c:34:45:a6:11:b3:b2:8f:24:a2:c9:e3:77:af:6b: db:8c:cc:65:db:af:42:e5:94:d7:cb:0b:fb:45:03: fe:0e:19:bc:1a:3c:76:cd:22:66:88:01:47:57:09: 7e:2b:e3:79:68:9f:ce:b6:0d:bd:41:3b:ab:83:60: 53:d3:90:c4:d0:0f:6e:7b:c5:89:bc:22:4f:85:ce: 50:44:1d:27:aa:fd:24:3d:f0:51:07:89:c4:bd:78: f4:7e:01:b5:84:df:15:3c:c0:10:7c:7e:f9:74:59: 04:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:F0:34:09:0C:47:A8:AB:2B:2E:8B:1A:14:00:FB:59:49:CC:B8:93 X509v3 Authority Key Identifier: keyid:D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:0e:9e:45:43:4f:71:9f:5d:1a:3a:61:57:c9:46:fe:8d:34: f9:20:bd:19:3c:3a:ec:8c:aa:49:c9:a7:3c:78:cc:dc:c8:e9: 26:34:67:f1:a8:a5:07:fc:95:32:80:20:35:76:12:d9:27:b5: 98:d8:e3:6f:94:71:c2:a7:1a:12:4b:e4:47:c0:14:f7:95:a4: 13:ff:b2:61:51:c8:43:83:72:00:79:ca:4c:e7:36:e1:09:25: f5:50:dc:a5:ad:b4:2f:d0:8f:bb:2d:d4:96:86:ee:0c:d6:24: a4:29:32:e4:27:cf:0a:3d:91:64:19:50:60:33:2e:9b:21:9f: d5:9d:9f:77:06:05:f5:8e:23:e3:8a:b9:a9:41:f5:4d:4a:00: d0:13:0a:e6:0e:f6:b7:92:9f:a1:4c:ad:5a:d5:a3:37:9f:12: 1e:d6:5a:42:bb:e8:68:85:6b:e6:aa:ff:ca:11:09:cf:64:f1: 90:aa:a2:53:8c:02:f2:99:81:05:a0:5e:6c:bf:9d:4f:82:91: 28:0c:da:19:fe:91:7f:8d:b9:6a:96:24:1d:9c:78:b8:34:c4: cb:b9:33:29:65:2a:c7:93:ad:ce:55:1f:0a:33:27:0b:9d:a2: 07:b1:01:6c:5c:ba:0a:50:d3:a8:57:89:ac:2d:ea:06:48:33: 26:59:47:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5NTAxMTAvBgNVBAUTKEQ4NzVFNjNDNzM1MDhERDg5RjZBQ0RDQzA2MDE0NEEw OEMwODY2REMwHhcNMjUwNzAzMDA1NzM2WhcNMjUwNzEwMDA1NzM2WjAYMRYwFAYD VQQDEw02ODY1ZDU4MC1jMWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqvqE3/Wg06/2nSPmBQYuL8nHV9w/vht9Vh6MMr0GlWPEUQ9mSKPEUGc5LgLI 9oI6DuF+K1fjdeF9rOat19WhEn9oZdylAn3RnaK8MH8ZVA6dbhDjIDGCdGW1C3OL Vc0n1wafy357eFRPO1e5UM/CVZgJgntHJ8MDAPWun85iCnX86ObIova1IE9HDBzW md1rrIRJKOpMNEWmEbOyjySiyeN3r2vbjMxl269C5ZTXywv7RQP+Dhm8Gjx2zSJm iAFHVwl+K+N5aJ/Otg29QTurg2BT05DE0A9ue8WJvCJPhc5QRB0nqv0kPfBRB4nE vXj0fgG1hN8VPMAQfH75dFkE6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGzwNAkM R6irKy6LGhQA+1lJzLiTMB8GA1UdIwQYMBaAFNh15jxzUI3Yn2rNzAYBRKCMCGbc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTk1MC9DQkYwNkYzMDhE REMxMUVDQTE0MDBDNjlDNEY5QUUwMi8ySFhtUEhOUWpkaWZhczNNQmdGRW9Jd0la dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJIWG1QSE5RamRpZmFzM01CZ0ZFb0l3SVp0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTk1MC9DQkYwNkYzMDhEREMxMUVDQTE0MDBDNjlDNEY5QUUwMi8ySFhtUEhOUWpk aWZhczNNQmdGRW9Jd0ladHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/Dp5FQ09xn10aOmFXyUb+jTT5IL0ZPDrsjKpJyac8eMzcyOkmNGfx qKUH/JUygCA1dhLZJ7WY2ONvlHHCpxoSS+RHwBT3laQT/7JhUchDg3IAecpM5zbh CSX1UNylrbQv0I+7LdSWhu4M1iSkKTLkJ88KPZFkGVBgMy6bIZ/VnZ93BgX1jiPj irmpQfVNSgDQEwrmDva3kp+hTK1a1aM3nxIe1lpCu+hohWvmqv/KEQnPZPGQqqJT jALymYEFoF5sv51PgpEoDNoZ/pF/jblqliQdnHi4NMTLuTMpZSrHk63OVR8KMycL naIHsQFsXLoKUNOoV4msLeoGSDMmWUfu -----END CERTIFICATE-----Generated at Thu Jul 3 10:20:38 2025 by rpki-client