$ rpki-client -vvf rpki.apnic.net/member_repository/A915BA28/A47D2028285511E9AD381151C4F9AE02/f2BFo3Z2W_gnkqpwW72JlRnLGcc.mft File: f2BFo3Z2W_gnkqpwW72JlRnLGcc.mft (raw, json) Hash identifier: 5e7YyniLAMBSwSbEK/tPMdwF7cVnE2OnRcKJ8Nba8ug= Subject key identifier: B4:25:6F:17:A0:1C:AC:7A:F9:A2:F2:E2:BB:44:FC:86:5D:B1:C3:46 Authority key identifier: 7F:60:45:A3:76:76:5B:F8:27:92:AA:70:5B:BD:89:95:19:CB:19:C7 Certificate issuer: /CN=A915BA28/serialNumber=7F6045A376765BF82792AA705BBD899519CB19C7 Certificate serial: 10C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2BFo3Z2W_gnkqpwW72JlRnLGcc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BA28/A47D2028285511E9AD381151C4F9AE02/f2BFo3Z2W_gnkqpwW72JlRnLGcc.mft Manifest number: 10BA Signing time: Wed 02 Jul 2025 17:31:16 +0000 Manifest this update: Wed 02 Jul 2025 17:31:16 +0000 Manifest next update: Wed 09 Jul 2025 17:31:16 +0000 Files and hashes: 1: f2BFo3Z2W_gnkqpwW72JlRnLGcc.crl (hash: nDBSBB/VBiz+Fx5ggO2beMV+No+nbr6wkJJLfJnREdQ=) 2: C90C4476FBA611E9BA00AB33C4F9AE02.roa (hash: ibzIHQiS71/cKL/AN17g76C8mULHtazMynL8XoJHu8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BA28/A47D2028285511E9AD381151C4F9AE02/f2BFo3Z2W_gnkqpwW72JlRnLGcc.crl rsync://rpki.apnic.net/member_repository/A915BA28/A47D2028285511E9AD381151C4F9AE02/f2BFo3Z2W_gnkqpwW72JlRnLGcc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2BFo3Z2W_gnkqpwW72JlRnLGcc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:31:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4297 (0x10c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BA28, serialNumber=7F6045A376765BF82792AA705BBD899519CB19C7 Validity Not Before: Jul 2 17:31:16 2025 GMT Not After : Jul 9 17:31:16 2025 GMT Subject: CN=68656ce4-279c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:34:3a:51:ca:b9:f9:70:75:98:10:2b:c1:8a: b4:61:f5:ec:44:a8:f2:7f:57:d6:d4:74:37:ab:e7: 12:c6:24:5c:92:71:a7:7f:f1:e4:22:0c:66:d1:7e: d5:8a:80:10:74:dd:a4:b9:4b:f6:51:a8:54:25:c9: f7:11:28:7f:7b:73:d8:21:d1:b5:c9:80:52:dc:51: 83:f5:4a:09:c7:b2:14:a7:f2:0d:d9:55:98:3b:61: a0:89:75:10:99:10:8d:31:bc:34:af:82:88:fb:c1: 10:1a:44:12:b8:92:b1:d7:d7:03:52:d4:b9:77:ba: bd:96:b7:ce:a8:f9:11:d9:a9:d2:97:32:39:c3:e0: 44:26:65:29:00:aa:3e:a6:06:2b:2d:a6:6c:7a:b1: 5a:1c:c0:4c:e7:90:7e:94:1e:1d:02:2a:b1:f2:26: 36:f9:c4:77:cf:8f:46:c8:c4:76:15:39:74:32:e3: 1d:d4:0f:6c:85:9d:56:aa:15:3e:47:6a:48:e1:97: 5d:80:f5:2c:5f:a2:31:0c:13:20:61:17:8d:0e:95: bc:0f:16:61:34:8f:a3:fd:15:48:2b:da:15:9a:fa: 5b:b1:4d:42:76:34:f8:9d:87:8a:9f:49:e7:86:64: 2c:7c:c6:8d:79:fb:b7:4a:58:29:bf:ab:58:08:ad: ab:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:25:6F:17:A0:1C:AC:7A:F9:A2:F2:E2:BB:44:FC:86:5D:B1:C3:46 X509v3 Authority Key Identifier: keyid:7F:60:45:A3:76:76:5B:F8:27:92:AA:70:5B:BD:89:95:19:CB:19:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BA28/A47D2028285511E9AD381151C4F9AE02/f2BFo3Z2W_gnkqpwW72JlRnLGcc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2BFo3Z2W_gnkqpwW72JlRnLGcc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BA28/A47D2028285511E9AD381151C4F9AE02/f2BFo3Z2W_gnkqpwW72JlRnLGcc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:05:22:92:27:c2:98:d5:ea:43:a8:16:16:3c:ef:2d:30:4b: e3:4e:5d:bb:b4:ba:1d:5d:b6:4c:09:87:87:30:6a:e5:cc:b7: 74:f7:93:63:57:bc:bd:66:5c:2a:91:25:bf:a6:9c:9e:f4:d9: ee:36:f2:60:42:75:2f:04:64:41:f9:b6:3d:9f:52:b2:d1:9c: 75:9d:c6:1c:6f:08:44:f8:55:58:c5:f5:e8:7d:f4:e2:83:b7: 4d:c4:7b:46:df:ba:e5:24:98:a4:55:f5:79:db:98:a2:1b:fc: 3a:03:f8:2a:00:46:08:8f:96:da:88:41:1a:4d:1d:c3:31:1f: fe:c1:2f:c5:29:7f:50:03:2f:a2:1e:dc:32:d7:89:87:67:df: 6f:5c:e2:da:10:73:3c:34:52:4c:ab:e3:09:82:9e:27:c0:5f: a0:cb:99:20:07:b8:9e:32:d6:12:fd:5c:c0:9d:43:5c:ff:a4: d4:3a:bc:96:84:b2:ed:58:7b:16:44:c1:c8:7f:c2:50:79:6d: 74:27:c9:33:18:f1:01:6e:9a:4f:4e:b4:10:6f:50:34:fa:d0: 5d:c8:8c:fc:64:cc:9c:99:79:e5:35:64:2a:cf:fd:88:38:b6: 56:fc:44:da:1f:90:3a:65:30:59:e6:84:fe:af:dc:81:9e:37: 1a:2d:a3:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUJBMjgxMTAvBgNVBAUTKDdGNjA0NUEzNzY3NjVCRjgyNzkyQUE3MDVCQkQ4OTk1 MTlDQjE5QzcwHhcNMjUwNzAyMTczMTE2WhcNMjUwNzA5MTczMTE2WjAYMRYwFAYD VQQDEw02ODY1NmNlNC0yNzljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1jQ6Ucq5+XB1mBArwYq0YfXsRKjyf1fW1HQ3q+cSxiRcknGnf/HkIgxm0X7V ioAQdN2kuUv2UahUJcn3ESh/e3PYIdG1yYBS3FGD9UoJx7IUp/IN2VWYO2GgiXUQ mRCNMbw0r4KI+8EQGkQSuJKx19cDUtS5d7q9lrfOqPkR2anSlzI5w+BEJmUpAKo+ pgYrLaZserFaHMBM55B+lB4dAiqx8iY2+cR3z49GyMR2FTl0MuMd1A9shZ1WqhU+ R2pI4ZddgPUsX6IxDBMgYReNDpW8DxZhNI+j/RVIK9oVmvpbsU1CdjT4nYeKn0nn hmQsfMaNefu3Slgpv6tYCK2rYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLQlbxeg HKx6+aLy4rtE/IZdscNGMB8GA1UdIwQYMBaAFH9gRaN2dlv4J5KqcFu9iZUZyxnH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QkEyOC9BNDdEMjAyODI4 NTUxMUU5QUQzODExNTFDNEY5QUUwMi9mMkJGbzNaMldfZ25rcXB3VzcySmxSbkxH Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2YyQkZvM1oyV19nbmtxcHdXNzJKbFJuTEdjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QkEyOC9BNDdEMjAyODI4NTUxMUU5QUQzODExNTFDNEY5QUUwMi9mMkJGbzNaMldf Z25rcXB3VzcySmxSbkxHY2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnBSKSJ8KY1epDqBYWPO8tMEvjTl27tLodXbZMCYeHMGrlzLd095Nj V7y9ZlwqkSW/ppye9NnuNvJgQnUvBGRB+bY9n1Ky0Zx1ncYcbwhE+FVYxfXoffTi g7dNxHtG37rlJJikVfV525iiG/w6A/gqAEYIj5baiEEaTR3DMR/+wS/FKX9QAy+i Htwy14mHZ99vXOLaEHM8NFJMq+MJgp4nwF+gy5kgB7ieMtYS/VzAnUNc/6TUOryW hLLtWHsWRMHIf8JQeW10J8kzGPEBbppPTrQQb1A0+tBdyIz8ZMycmXnlNWQqz/2I OLZW/ETaH5A6ZTBZ5oT+r9yBnjcaLaPP -----END CERTIFICATE-----Generated at Fri Jul 4 14:55:40 2025 by rpki-client