$ rpki-client -vvf rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft File: 2iwTK47FBxr425BJG63bwPCntEU.mft (raw, json) Hash identifier: 0DL8lEyunH2hnfuUa/2vL0ZZw4ZFY1ZhxG379I0WGDg= Subject key identifier: FE:88:19:54:7F:63:CE:E5:86:3E:D0:A6:4C:6D:03:51:CC:C5:78:C2 Authority key identifier: DA:2C:13:2B:8E:C5:07:1A:F8:DB:90:49:1B:AD:DB:C0:F0:A7:B4:45 Certificate issuer: /CN=A91534B8/serialNumber=DA2C132B8EC5071AF8DB90491BADDBC0F0A7B445 Certificate serial: 029A Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft Manifest number: 029A Signing time: Thu 03 Jul 2025 01:59:10 +0000 Manifest this update: Thu 03 Jul 2025 01:59:10 +0000 Manifest next update: Thu 10 Jul 2025 01:59:10 +0000 Files and hashes: 1: 2iwTK47FBxr425BJG63bwPCntEU.crl (hash: yRld90B4aHnZ3YvuDEQlZOfyFQp4S0pEgN7E7G4exZg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.crl rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:59:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 666 (0x29a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91534B8, serialNumber=DA2C132B8EC5071AF8DB90491BADDBC0F0A7B445 Validity Not Before: Jul 3 01:59:10 2025 GMT Not After : Jul 10 01:59:10 2025 GMT Subject: CN=6865e3ee-4308 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:0f:4b:f9:67:f2:7b:4b:67:84:a0:0b:5c:c4: dd:d5:04:db:95:7b:87:51:98:14:46:63:76:f3:3f: fb:e0:cb:62:ea:25:18:0c:50:87:d2:ea:11:e0:08: e8:c5:8b:f1:d2:a3:c7:d7:9a:45:d5:38:1d:cb:bb: 58:f3:5b:8d:fe:3f:7a:e5:e9:57:66:fc:b6:52:e9: 50:00:64:cb:0e:a5:b2:d3:6e:81:18:8d:92:0f:9c: 15:f8:84:0f:dd:e0:74:0b:72:06:9b:ed:59:cf:dd: db:bc:4c:2c:04:16:57:9f:fb:92:71:02:7d:a3:9a: c8:cc:9b:35:f0:3f:9b:9b:2a:d5:0c:0d:ec:0c:00: d1:e2:65:c1:b8:20:96:4b:05:25:29:97:6c:1d:f5: 25:91:be:f3:34:9c:7d:c5:b0:92:73:2f:eb:57:f9: bc:2a:f9:47:35:4d:0b:79:9f:a1:76:bf:29:08:e4: 0f:dd:7e:03:25:bb:4c:02:5a:9c:9e:4c:fa:75:3f: b2:be:67:f7:fd:47:00:d1:07:34:09:ad:29:02:7f: e8:a1:b2:07:34:6d:08:6e:dd:6b:8e:d2:07:78:f3: 95:76:6a:15:93:46:bd:7b:dc:d9:d4:8a:d5:34:53: da:8e:1b:9f:8a:58:cd:d6:21:0d:d6:9f:b6:4b:02: 2d:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:88:19:54:7F:63:CE:E5:86:3E:D0:A6:4C:6D:03:51:CC:C5:78:C2 X509v3 Authority Key Identifier: keyid:DA:2C:13:2B:8E:C5:07:1A:F8:DB:90:49:1B:AD:DB:C0:F0:A7:B4:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:6b:2c:8c:b5:7a:a4:34:42:d0:64:a6:0c:9e:78:ff:9a:18: 13:ad:18:11:3e:b3:18:02:3e:04:50:71:b0:4e:76:20:b0:dd: 78:c7:eb:73:5c:20:d2:41:eb:0f:47:2e:78:2c:a1:7b:da:62: 1a:ab:50:d3:d6:cb:8f:4d:22:6e:44:d8:9f:1a:85:b6:65:15: 4c:be:b7:d2:13:58:f6:8f:0f:47:1d:4c:1f:a2:7f:4b:50:d9: 4a:67:14:d3:2c:82:71:08:00:4d:37:94:a4:75:ce:e0:9a:9f: 6d:a1:1d:38:24:85:61:f2:30:0b:8e:99:00:54:5e:35:76:92: a8:be:ba:4e:1d:6a:18:e1:65:da:17:97:14:93:2c:bd:ce:9b: d2:ac:bc:93:72:96:5f:06:96:9a:f8:10:ba:89:c8:ee:42:f3: 13:67:e1:58:b7:1d:48:e9:dc:45:e0:45:e3:fc:71:f9:3d:0f: 45:ff:42:cf:b6:73:42:a7:94:44:99:dd:53:17:53:63:b0:61: a5:a6:b3:fb:6f:21:70:0e:49:4f:e5:80:42:b9:1a:44:59:45: 05:c3:62:cf:78:f6:d0:93:53:6a:ad:cc:56:2c:9b:f1:81:7c: 33:27:bb:71:b4:28:2f:98:8a:ec:e8:5b:8f:a0:64:ba:b8:e7: 64:51:3f:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0QjgxMTAvBgNVBAUTKERBMkMxMzJCOEVDNTA3MUFGOERCOTA0OTFCQUREQkMw RjBBN0I0NDUwHhcNMjUwNzAzMDE1OTEwWhcNMjUwNzEwMDE1OTEwWjAYMRYwFAYD VQQDEw02ODY1ZTNlZS00MzA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApw9L+Wfye0tnhKALXMTd1QTblXuHUZgURmN28z/74Mti6iUYDFCH0uoR4Ajo xYvx0qPH15pF1Tgdy7tY81uN/j965elXZvy2UulQAGTLDqWy026BGI2SD5wV+IQP 3eB0C3IGm+1Zz93bvEwsBBZXn/uScQJ9o5rIzJs18D+bmyrVDA3sDADR4mXBuCCW SwUlKZdsHfUlkb7zNJx9xbCScy/rV/m8KvlHNU0LeZ+hdr8pCOQP3X4DJbtMAlqc nkz6dT+yvmf3/UcA0Qc0Ca0pAn/oobIHNG0Ibt1rjtIHePOVdmoVk0a9e9zZ1IrV NFPajhufiljN1iEN1p+2SwIt+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP6IGVR/ Y87lhj7QpkxtA1HMxXjCMB8GA1UdIwQYMBaAFNosEyuOxQca+NuQSRut28Dwp7RF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzRCOC85NjY1OTk3RTA5 NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8yaXdUSzQ3RkJ4cjQyNUJKRzYzYndQQ250 RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzJpd1RLNDdGQnhyNDI1QkpHNjNid1BDbnRFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzRCOC85NjY1OTk3RTA5NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8yaXdUSzQ3RkJ4 cjQyNUJKRzYzYndQQ250RVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8ayyMtXqkNELQZKYMnnj/mhgTrRgRPrMYAj4EUHGwTnYgsN14x+tz XCDSQesPRy54LKF72mIaq1DT1suPTSJuRNifGoW2ZRVMvrfSE1j2jw9HHUwfon9L UNlKZxTTLIJxCABNN5Skdc7gmp9toR04JIVh8jALjpkAVF41dpKovrpOHWoY4WXa F5cUkyy9zpvSrLyTcpZfBpaa+BC6icjuQvMTZ+FYtx1I6dxF4EXj/HH5PQ9F/0LP tnNCp5REmd1TF1NjsGGlprP7byFwDklP5YBCuRpEWUUFw2LPePbQk1NqrcxWLJvx gXwzJ7txtCgvmIrs6FuPoGS6uOdkUT+H -----END CERTIFICATE-----Generated at Fri Jul 4 07:11:04 2025 by rpki-client