$ rpki-client -vvf rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.mft File: 2DvcT6zNnbegvEa0JE6jEHBgS5c.mft (raw, json) Hash identifier: OypfE3ZK5dLInhEgqLG22BsZVZEzN/gYJUnT1wuLxek= Subject key identifier: DD:A7:07:79:B1:A1:8F:5D:34:87:77:D4:04:65:9F:0E:16:7D:74:C1 Authority key identifier: D8:3B:DC:4F:AC:CD:9D:B7:A0:BC:46:B4:24:4E:A3:10:70:60:4B:97 Certificate issuer: /CN=A914F870/serialNumber=D83BDC4FACCD9DB7A0BC46B4244EA31070604B97 Certificate serial: 53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DvcT6zNnbegvEa0JE6jEHBgS5c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.mft Manifest number: 53 Signing time: Tue 01 Jul 2025 08:00:44 +0000 Manifest this update: Tue 01 Jul 2025 08:00:44 +0000 Manifest next update: Tue 08 Jul 2025 08:00:44 +0000 Files and hashes: 1: 2DvcT6zNnbegvEa0JE6jEHBgS5c.crl (hash: xCK0vN018ZxbrLql+W1IoTq3o9YytXO14Z7G1avwEBY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.crl rsync://rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DvcT6zNnbegvEa0JE6jEHBgS5c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F870, serialNumber=D83BDC4FACCD9DB7A0BC46B4244EA31070604B97 Validity Not Before: Jul 1 08:00:44 2025 GMT Not After : Jul 8 08:00:44 2025 GMT Subject: CN=686395ac-43c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ab:16:e2:e2:bc:bb:cb:af:dc:76:44:10:5f: 14:c4:75:93:74:28:d3:58:57:63:25:77:d9:85:d7: 81:d4:0d:26:35:05:10:98:ca:54:a6:fb:fc:90:7a: 03:38:e3:5c:f5:72:dc:48:17:1f:f2:c7:00:4e:9e: 82:1b:03:db:72:c1:79:49:86:2d:de:a0:24:69:97: 87:a2:a7:16:4d:63:79:a2:3d:f3:c0:c3:52:0e:f2: da:0c:0e:72:00:33:73:e2:1a:b3:99:9b:c4:2f:2a: b9:d6:f2:46:ad:79:72:bc:ff:c7:56:54:45:3f:e4: 61:5f:19:ee:65:fe:2e:ec:c4:5c:04:1a:3e:46:12: 73:98:bc:ad:15:4c:23:7f:77:bb:09:06:59:4f:8d: e4:f8:69:42:ba:ac:74:d1:23:05:e5:20:43:e7:5c: d4:ae:a8:0a:11:48:76:1e:ec:59:64:12:3b:71:cc: d1:1b:b0:ae:6d:83:85:8e:be:31:a5:2c:b6:02:c1: 37:22:b8:ff:5c:44:8c:ff:da:31:11:01:e4:47:a9: 7d:94:52:4b:ff:4c:b9:8d:13:7e:d9:86:33:a3:77: f8:1c:0f:39:59:7a:a3:09:16:28:b1:bc:a6:48:55: a4:ed:9d:38:72:96:06:7f:c7:e3:3c:68:ba:1c:e9: 4b:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:A7:07:79:B1:A1:8F:5D:34:87:77:D4:04:65:9F:0E:16:7D:74:C1 X509v3 Authority Key Identifier: keyid:D8:3B:DC:4F:AC:CD:9D:B7:A0:BC:46:B4:24:4E:A3:10:70:60:4B:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DvcT6zNnbegvEa0JE6jEHBgS5c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:63:76:cf:a2:3e:53:32:bf:59:2f:42:6c:cc:08:84:0b:17: 04:74:aa:87:78:5e:6a:c3:c6:21:b1:c7:b1:05:f7:fb:cf:8c: db:07:6d:5f:78:7d:16:3a:c7:c4:07:04:bc:0b:b6:af:1e:98: 7e:5e:48:08:ec:52:19:32:b7:97:19:ba:bb:58:e2:b5:e2:9e: 07:5c:04:f5:af:d3:7f:93:e6:39:89:f8:03:c5:91:48:e8:80: 2c:b2:c2:27:b3:60:f9:1e:12:60:19:c1:ba:ba:1c:66:2d:7c: 23:e9:61:cb:40:0b:b0:10:1d:a5:49:37:97:82:16:3b:e0:bc: 6a:bb:31:56:ab:50:f3:85:29:fd:74:7b:cb:aa:da:6a:97:8f: 40:f7:8e:9d:ae:11:48:db:79:7b:f4:95:04:4f:43:32:15:57: 94:4c:3f:eb:15:f5:88:4b:ad:35:86:f6:e6:06:34:ea:58:3d: 32:61:52:b1:c5:42:4e:09:4f:a3:6f:3b:db:39:a0:01:4a:08: 1f:9b:e6:e7:80:9e:c1:a1:bc:36:7f:65:20:b4:d9:9e:e5:6b: f6:1c:2a:e9:cd:b2:19:54:6b:08:38:50:30:79:a8:68:bc:fa: c4:d7:98:34:83:63:1b:25:9a:0a:4c:8a:9d:2a:ad:bc:f9:86: b9:86:6d:01 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 Rjg3MDExMC8GA1UEBRMoRDgzQkRDNEZBQ0NEOURCN0EwQkM0NkI0MjQ0RUEzMTA3 MDYwNEI5NzAeFw0yNTA3MDEwODAwNDRaFw0yNTA3MDgwODAwNDRaMBgxFjAUBgNV BAMTDTY4NjM5NWFjLTQzYzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDcqxbi4ry7y6/cdkQQXxTEdZN0KNNYV2Mld9mF14HUDSY1BRCYylSm+/yQegM4 41z1ctxIFx/yxwBOnoIbA9tywXlJhi3eoCRpl4eipxZNY3miPfPAw1IO8toMDnIA M3PiGrOZm8QvKrnW8kateXK8/8dWVEU/5GFfGe5l/i7sxFwEGj5GEnOYvK0VTCN/ d7sJBllPjeT4aUK6rHTRIwXlIEPnXNSuqAoRSHYe7FlkEjtxzNEbsK5tg4WOvjGl LLYCwTciuP9cRIz/2jERAeRHqX2UUkv/TLmNE37ZhjOjd/gcDzlZeqMJFiixvKZI VaTtnThylgZ/x+M8aLoc6UsTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU3acHebGh j100h3fUBGWfDhZ9dMEwHwYDVR0jBBgwFoAU2DvcT6zNnbegvEa0JE6jEHBgS5cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRGODcwL0QyRTI0Qzk4RDdF MjExRUZBRjBCM0I3REM0RjlBRTAyLzJEdmNUNnpObmJlZ3ZFYTBKRTZqRUhCZ1M1 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMkR2Y1Q2ek5uYmVndkVhMEpFNmpFSEJnUzVjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRG ODcwL0QyRTI0Qzk4RDdFMjExRUZBRjBCM0I3REM0RjlBRTAyLzJEdmNUNnpObmJl Z3ZFYTBKRTZqRUhCZ1M1Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAtjds+iPlMyv1kvQmzMCIQLFwR0qod4XmrDxiGxx7EF9/vPjNsHbV94 fRY6x8QHBLwLtq8emH5eSAjsUhkyt5cZurtY4rXingdcBPWv03+T5jmJ+APFkUjo gCyywiezYPkeEmAZwbq6HGYtfCPpYctAC7AQHaVJN5eCFjvgvGq7MVarUPOFKf10 e8uq2mqXj0D3jp2uEUjbeXv0lQRPQzIVV5RMP+sV9YhLrTWG9uYGNOpYPTJhUrHF Qk4JT6NvO9s5oAFKCB+b5ueAnsGhvDZ/ZSC02Z7la/YcKunNshlUawg4UDB5qGi8 +sTXmDSDYxslmgpMip0qrbz5hrmGbQE= -----END CERTIFICATE-----Generated at Wed Jul 2 16:19:42 2025 by rpki-client