$ rpki-client -vvf rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.mft File: 2dCjxqTde6e0VN6uAa9nryxUxDM.mft (raw, json) Hash identifier: ugbMSwU/NeezkIYOIJgwMMR5i1rRnDWZ7aSmuykyygM= Subject key identifier: 1F:28:35:45:29:4D:D7:FC:E2:93:5A:91:1B:40:EB:E0:04:DB:20:E8 Authority key identifier: D9:D0:A3:C6:A4:DD:7B:A7:B4:54:DE:AE:01:AF:67:AF:2C:54:C4:33 Certificate issuer: /CN=A915C9B7/serialNumber=D9D0A3C6A4DD7BA7B454DEAE01AF67AF2C54C433 Certificate serial: 07FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dCjxqTde6e0VN6uAa9nryxUxDM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.mft Manifest number: 07F0 Signing time: Wed 02 Jul 2025 21:14:15 +0000 Manifest this update: Wed 02 Jul 2025 21:14:15 +0000 Manifest next update: Wed 09 Jul 2025 21:14:15 +0000 Files and hashes: 1: 2dCjxqTde6e0VN6uAa9nryxUxDM.crl (hash: rPWcS5pgGymNURqdT4bUX2x/DFoqaOOH75Q/qRGv0rY=) 2: 12A47D4E9CDB11EF857FB626C4F9AE02.roa (hash: 6+tk9n+mwKmveOFrTOSyNOKqHKQyrXgQ60Gavs+tji8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.crl rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dCjxqTde6e0VN6uAa9nryxUxDM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:14:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2042 (0x7fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C9B7, serialNumber=D9D0A3C6A4DD7BA7B454DEAE01AF67AF2C54C433 Validity Not Before: Jul 2 21:14:15 2025 GMT Not After : Jul 9 21:14:15 2025 GMT Subject: CN=6865a127-6481 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:81:2e:3b:98:f2:f9:33:c0:70:79:5e:a2:7b: 7c:df:e6:19:82:31:c7:98:f9:c2:86:93:f8:d4:88: f2:c8:ad:b2:1a:41:42:f7:eb:e3:35:c1:47:1e:e5: e7:4b:9a:29:c8:f9:bf:8e:66:51:78:61:60:49:bf: 0e:bb:24:ba:32:71:94:d7:48:3a:7b:ce:51:9e:87: ae:85:b2:99:93:21:ae:c8:5c:9f:c4:b4:2c:90:72: 73:06:0c:84:08:fa:9b:88:fc:a8:1a:af:1e:64:99: 48:ca:3b:dd:fd:f6:59:8a:da:34:d8:7f:13:ef:66: 64:bf:0b:7d:0d:42:11:05:86:7f:57:4c:ef:de:5b: 01:fc:bd:9c:f7:5a:de:18:e2:6a:43:eb:9a:ca:4a: ac:e3:0a:6c:44:e1:11:dd:8c:ea:48:db:28:d3:9c: aa:71:4a:52:bc:c0:52:3a:37:50:77:3c:a1:16:4c: ed:17:e0:64:99:c8:2a:45:26:ee:ca:30:f0:64:fa: 04:81:0e:8d:87:e2:99:29:50:f2:e8:f2:91:df:e6: a3:fd:fe:4a:6d:d7:28:62:4e:9c:05:a6:87:6c:b4: 3d:e0:34:75:07:17:b5:04:16:be:2f:b9:10:a9:88: 1c:88:6d:1d:3d:1d:74:85:64:c0:e1:c7:98:09:25: fa:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:28:35:45:29:4D:D7:FC:E2:93:5A:91:1B:40:EB:E0:04:DB:20:E8 X509v3 Authority Key Identifier: keyid:D9:D0:A3:C6:A4:DD:7B:A7:B4:54:DE:AE:01:AF:67:AF:2C:54:C4:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dCjxqTde6e0VN6uAa9nryxUxDM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:65:0e:e6:c5:a2:dc:06:39:15:58:b2:f4:a4:38:12:52:97: d7:f8:56:4f:1c:7a:d2:52:f5:5f:df:54:b3:91:93:12:24:e5: 37:09:a7:52:b8:4f:b0:73:ef:25:78:fb:fa:dc:c7:85:2a:78: ef:2c:30:63:07:21:da:b2:e6:7f:cc:63:2a:da:ee:ef:cd:99: 93:16:d7:2c:5c:8c:01:7d:71:ac:ae:a4:e7:44:65:44:a3:72: 2c:95:75:a7:ce:19:7b:04:09:c6:be:ad:05:34:84:04:a9:43: 55:fb:0e:24:c9:8a:3f:7c:80:fc:8a:35:0e:3e:22:e8:30:07: b0:ee:80:af:eb:1c:f5:57:88:0c:82:6d:fa:e8:09:ef:34:b5: 12:d3:8c:d2:27:58:ef:4b:53:aa:d9:19:31:74:b0:40:04:ae: 70:36:e3:11:a3:66:89:c5:a7:80:02:a0:6f:f9:ee:f8:cb:a3: c1:8d:ca:30:b0:49:4d:9d:48:83:2b:a9:47:70:13:30:95:c8: 45:00:6e:63:25:76:1e:3f:ad:59:3a:e4:01:8a:ef:6e:6c:56: dd:98:c3:fc:ff:65:0a:3d:d1:07:49:67:83:85:db:41:c2:9b: 36:24:6f:6a:26:20:b4:d1:29:d1:fb:db:66:4f:34:77:ba:ee: 5a:6e:cf:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM5QjcxMTAvBgNVBAUTKEQ5RDBBM0M2QTRERDdCQTdCNDU0REVBRTAxQUY2N0FG MkM1NEM0MzMwHhcNMjUwNzAyMjExNDE1WhcNMjUwNzA5MjExNDE1WjAYMRYwFAYD VQQDEw02ODY1YTEyNy02NDgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyYEuO5jy+TPAcHleont83+YZgjHHmPnChpP41IjyyK2yGkFC9+vjNcFHHuXn S5opyPm/jmZReGFgSb8OuyS6MnGU10g6e85RnoeuhbKZkyGuyFyfxLQskHJzBgyE CPqbiPyoGq8eZJlIyjvd/fZZito02H8T72Zkvwt9DUIRBYZ/V0zv3lsB/L2c91re GOJqQ+uaykqs4wpsROER3YzqSNso05yqcUpSvMBSOjdQdzyhFkztF+BkmcgqRSbu yjDwZPoEgQ6Nh+KZKVDy6PKR3+aj/f5KbdcoYk6cBaaHbLQ94DR1Bxe1BBa+L7kQ qYgciG0dPR10hWTA4ceYCSX6EwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB8oNUUp Tdf84pNakRtA6+AE2yDoMB8GA1UdIwQYMBaAFNnQo8ak3XuntFTergGvZ68sVMQz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzlCNy84QzI2NEZEMkVF NUExMUVBQUQ3NjkwMzNDNEY5QUUwMi8yZENqeHFUZGU2ZTBWTjZ1QWE5bnJ5eFV4 RE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJkQ2p4cVRkZTZlMFZONnVBYTlucnl4VXhETS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzlCNy84QzI2NEZEMkVFNUExMUVBQUQ3NjkwMzNDNEY5QUUwMi8yZENqeHFUZGU2 ZTBWTjZ1QWE5bnJ5eFV4RE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqZQ7mxaLcBjkVWLL0pDgSUpfX+FZPHHrSUvVf31SzkZMSJOU3CadS uE+wc+8lePv63MeFKnjvLDBjByHasuZ/zGMq2u7vzZmTFtcsXIwBfXGsrqTnRGVE o3IslXWnzhl7BAnGvq0FNIQEqUNV+w4kyYo/fID8ijUOPiLoMAew7oCv6xz1V4gM gm366AnvNLUS04zSJ1jvS1Oq2RkxdLBABK5wNuMRo2aJxaeAAqBv+e74y6PBjcow sElNnUiDK6lHcBMwlchFAG5jJXYeP61ZOuQBiu9ubFbdmMP8/2UKPdEHSWeDhdtB wps2JG9qJiC00SnR+9tmTzR3uu5abs/r -----END CERTIFICATE-----Generated at Fri Jul 4 17:42:28 2025 by rpki-client