$ rpki-client -vvf rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft File: 2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft (raw, json) Hash identifier: TSwZKxl7qxuz2sv7HUtBSRk9cqYnCVfbsS4KrifVex8= Subject key identifier: 5E:95:BF:FD:9D:1D:59:DE:91:01:F8:E8:CE:48:D3:C7:B8:3C:DC:8B Authority key identifier: D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24 Certificate issuer: /CN=A9159ECD/serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124 Certificate serial: BE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft Manifest number: BC Signing time: Wed 02 Jul 2025 23:51:24 +0000 Manifest this update: Wed 02 Jul 2025 23:51:23 +0000 Manifest next update: Wed 09 Jul 2025 23:51:23 +0000 Files and hashes: 1: 2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl (hash: voITOAejokD/H/gOUu7VMLjqFY8Y819uENqR9fv+9YA=) 2: 5A4723DA6F3C11EF8FD45F13C4F9AE02.roa (hash: kyChUBrK7l3YN4vwLMgx+ZZf43nxmdSV9d2PzrRyBN4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:51:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159ECD, serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124 Validity Not Before: Jul 2 23:51:23 2025 GMT Not After : Jul 9 23:51:23 2025 GMT Subject: CN=6865c5fb-da4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:5d:1a:f3:2d:cb:ab:90:56:78:6a:ef:6c:6b: 25:08:20:33:a4:7c:3b:65:e0:fa:9d:91:fd:b6:d3: 3e:d5:10:2b:f7:d2:5a:67:14:8a:6e:a2:29:75:52: ef:a2:fd:08:c3:c3:c6:5d:2a:ff:04:23:e4:5c:2a: 41:1a:bb:e9:7c:1b:ff:d7:59:d2:39:44:7c:e9:a3: ed:c4:30:10:3a:12:4f:b5:1c:ae:a0:61:a2:08:97: 32:cc:17:02:29:9a:de:3f:76:c5:29:f2:26:70:36: 57:c1:c6:b3:62:2d:fc:cf:33:e5:1a:f4:cb:7f:d8: a0:7b:90:ef:b9:f9:28:42:ad:02:ab:71:6c:40:1c: f1:b0:31:0d:fb:85:a7:5c:1c:01:44:32:cd:de:46: 33:34:1d:8e:53:31:aa:37:fd:6d:4a:48:e0:4a:35: 2e:ba:e6:c5:a2:40:9b:a5:83:5a:75:b1:0e:39:28: 9f:3e:73:53:33:5a:00:7f:5d:bb:c7:e2:ca:41:eb: 16:2e:78:0a:c0:aa:d6:6d:a7:9c:9d:a4:4a:41:f6: 73:8a:d6:39:d0:83:05:f7:84:50:83:b8:10:19:89: da:43:dd:14:61:c1:d4:00:8d:18:78:2b:88:26:2a: 7d:e8:46:ad:dd:5a:2c:59:f5:c6:fd:a8:f4:b7:c8: d6:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:95:BF:FD:9D:1D:59:DE:91:01:F8:E8:CE:48:D3:C7:B8:3C:DC:8B X509v3 Authority Key Identifier: keyid:D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:c5:56:0a:f5:9b:dc:c8:77:7e:84:25:27:eb:b0:2f:1b:eb: 7f:7d:ac:77:8d:fd:e0:53:31:33:26:e5:f9:c1:79:59:0f:36: f8:fd:20:68:4d:40:96:32:8f:23:4f:45:be:28:98:37:e9:bc: ab:09:74:a9:81:61:40:8c:a2:18:02:4b:ba:a8:5d:43:d6:a0: 9b:60:1a:1a:74:76:99:c3:e2:cd:70:95:dc:b0:67:a3:44:30: 5f:02:dc:05:a2:d3:46:e7:d8:24:31:37:3c:d7:cf:89:d2:e3: b2:07:5b:40:3c:8b:dc:1e:f8:45:65:1c:64:24:4d:06:8d:62: 0c:74:c4:c1:97:8f:1f:ed:19:61:99:11:08:79:68:97:1e:0e: fb:ec:bf:4e:96:33:5b:8d:ae:0a:18:06:71:ac:58:b2:18:2d: f6:3e:b6:0d:62:c3:9e:d7:d0:9c:80:03:55:f3:f8:b4:63:95: c9:10:09:34:f3:dd:55:10:c2:ea:33:e2:ce:3a:f3:c6:55:76: 6a:21:f8:a9:4a:f5:e7:ea:e9:b9:49:46:29:c5:9d:dc:89:ce: d3:14:d0:89:57:53:53:2c:ac:41:3c:ae:ec:83:65:99:9b:29: 47:ab:51:78:24:a6:44:d1:34:21:4c:47:37:7f:94:51:b5:b0: bb:b0:b0:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTlFQ0QxMTAvBgNVBAUTKEQ5NURBMTE3MTQxMjMwMEFCNTNCM0U0ODcwRjJGNDQx RjA2QzgxMjQwHhcNMjUwNzAyMjM1MTIzWhcNMjUwNzA5MjM1MTIzWjAYMRYwFAYD VQQDEw02ODY1YzVmYi1kYTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxl0a8y3Lq5BWeGrvbGslCCAzpHw7ZeD6nZH9ttM+1RAr99JaZxSKbqIpdVLv ov0Iw8PGXSr/BCPkXCpBGrvpfBv/11nSOUR86aPtxDAQOhJPtRyuoGGiCJcyzBcC KZreP3bFKfImcDZXwcazYi38zzPlGvTLf9ige5DvufkoQq0Cq3FsQBzxsDEN+4Wn XBwBRDLN3kYzNB2OUzGqN/1tSkjgSjUuuubFokCbpYNadbEOOSifPnNTM1oAf127 x+LKQesWLngKwKrWbaecnaRKQfZzitY50IMF94RQg7gQGYnaQ90UYcHUAI0YeCuI Jip96Eat3VosWfXG/aj0t8jWqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF6Vv/2d HVnekQH46M5I08e4PNyLMB8GA1UdIwQYMBaAFNldoRcUEjAKtTs+SHDy9EHwbIEk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OUVDRC9FRjYzODNFMjNE OUYxMUVGOTkwMzM3NjhDNEY5QUUwMi8yVjJoRnhRU01BcTFPejVJY1BMMFFmQnNn U1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJWMmhGeFFTTUFxMU96NUljUEwwUWZCc2dTUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OUVDRC9FRjYzODNFMjNEOUYxMUVGOTkwMzM3NjhDNEY5QUUwMi8yVjJoRnhRU01B cTFPejVJY1BMMFFmQnNnU1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoxVYK9ZvcyHd+hCUn67AvG+t/fax3jf3gUzEzJuX5wXlZDzb4/SBo TUCWMo8jT0W+KJg36byrCXSpgWFAjKIYAku6qF1D1qCbYBoadHaZw+LNcJXcsGej RDBfAtwFotNG59gkMTc818+J0uOyB1tAPIvcHvhFZRxkJE0GjWIMdMTBl48f7Rlh mREIeWiXHg777L9OljNbja4KGAZxrFiyGC32PrYNYsOe19CcgANV8/i0Y5XJEAk0 891VEMLqM+LOOvPGVXZqIfipSvXn6um5SUYpxZ3cic7TFNCJV1NTLKxBPK7sg2WZ mylHq1F4JKZE0TQhTEc3f5RRtbC7sLBY -----END CERTIFICATE-----Generated at Thu Jul 3 09:47:48 2025 by rpki-client