$ rpki-client -vvf rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft File: LOCE4B2sa01jSTjXbOraWWNVvVM.mft (raw, json) Hash identifier: SR4YutP1ig1xNOTYpyDnv+4KBnKsVHqNegBXlaz20K0= Subject key identifier: CF:38:6F:97:B5:A8:54:4C:BC:C5:1C:06:85:63:BB:F4:A3:D5:C4:C0 Authority key identifier: 2C:E0:84:E0:1D:AC:6B:4D:63:49:38:D7:6C:EA:DA:59:63:55:BD:53 Certificate issuer: /CN=A915EA8F/serialNumber=2CE084E01DAC6B4D634938D76CEADA596355BD53 Certificate serial: 024E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOCE4B2sa01jSTjXbOraWWNVvVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft Manifest number: 024B Signing time: Sun 29 Jun 2025 01:21:52 +0000 Manifest this update: Sun 29 Jun 2025 01:21:51 +0000 Manifest next update: Sun 06 Jul 2025 01:21:51 +0000 Files and hashes: 1: LOCE4B2sa01jSTjXbOraWWNVvVM.crl (hash: tN0lhL/VTMwLrARyPQfqM9zYXGt9z8ae5zPV8aDUjwM=) 2: 028640A8242B11ED9547B486C4F9AE02.roa (hash: DITeel3omkt/jAmQ2Y46ZSrzxcvWz4LWzu2U9pUQbEA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.crl rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOCE4B2sa01jSTjXbOraWWNVvVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 01:21:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 590 (0x24e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EA8F, serialNumber=2CE084E01DAC6B4D634938D76CEADA596355BD53 Validity Not Before: Jun 29 01:21:51 2025 GMT Not After : Jul 6 01:21:51 2025 GMT Subject: CN=6860952f-6e03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:65:dc:e8:95:61:a2:2c:dd:50:01:62:9a:4f: ba:0e:c3:4b:f2:ce:aa:8f:8e:ef:7e:4c:da:54:26: d1:00:36:c6:89:3d:6e:01:da:99:4a:e9:14:42:07: 6d:22:82:82:a5:d9:88:9f:c2:17:23:e0:80:48:5b: 66:7f:9e:56:89:82:2f:53:55:34:6e:3f:a6:6c:e4: e2:58:a0:3e:86:9e:13:d5:76:2b:de:53:f6:1c:ca: f2:ff:54:d6:08:f1:37:5a:43:e3:32:a0:7f:4f:05: a4:ba:4c:49:d3:ab:f7:1b:c8:73:bb:84:7a:24:00: ef:74:50:a1:25:29:7c:d9:12:dd:c1:21:0f:31:cb: cb:e3:4c:36:15:12:21:0a:ed:9f:92:43:44:07:ce: 4f:86:ec:6e:8b:34:1b:da:86:bb:f2:55:7a:02:d7: 2d:2b:cd:0c:3b:a6:a4:19:76:31:b9:34:2a:cb:62: b5:a1:1e:1f:84:2a:1b:f7:d7:27:eb:15:ca:f7:03: b2:87:36:44:ac:da:fe:0c:f3:04:33:da:f9:25:0d: 3e:88:b5:2b:42:31:d6:74:54:44:00:73:8e:a0:3f: 64:1b:77:d6:d9:6f:09:2e:7e:12:1b:f2:91:58:75: 49:70:34:a7:25:74:6d:ae:0b:72:79:8d:f0:dc:b5: 7f:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:38:6F:97:B5:A8:54:4C:BC:C5:1C:06:85:63:BB:F4:A3:D5:C4:C0 X509v3 Authority Key Identifier: keyid:2C:E0:84:E0:1D:AC:6B:4D:63:49:38:D7:6C:EA:DA:59:63:55:BD:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOCE4B2sa01jSTjXbOraWWNVvVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:bc:c0:14:7b:fe:f0:46:4c:c3:49:1b:d2:b9:30:a2:ba:0c: 27:f0:c9:de:47:40:6d:4a:d9:62:c1:67:10:c0:4f:04:69:8e: 6e:aa:e2:96:df:a4:84:29:5b:16:34:b9:99:9d:1a:c5:30:6b: 0e:0a:a1:e9:fc:6f:97:9c:a8:3d:9e:4f:52:e6:74:3c:a0:c5: 98:b3:19:76:37:f3:d5:f7:dc:07:20:ca:7d:54:42:42:22:a7: 22:a1:b3:86:1c:f3:f9:d8:09:54:47:b1:d9:65:e4:5f:df:b8: 95:e1:6f:6d:c1:6a:60:08:ef:03:92:9c:ac:e8:c8:17:ba:7a: 89:83:73:d3:4c:f7:a8:2c:f6:99:1c:fe:e5:dd:69:bc:d9:5b: a1:16:2e:ea:6b:83:70:22:1b:bc:67:9d:6a:10:3a:0b:f4:32: ea:7e:69:8f:81:9e:e4:59:fa:ab:a7:2f:9d:cf:fc:27:20:3c: 2a:e4:5d:79:d3:e4:21:e7:82:04:ea:22:1c:44:61:7b:bd:3e: c8:a8:e8:5c:91:1f:14:da:42:5c:38:e1:31:62:31:f2:ad:71: 59:4c:b4:17:5e:a0:98:1b:d7:ce:76:71:3f:d6:aa:3d:bd:0e: eb:c4:d2:80:dd:fb:78:e9:df:90:c2:fd:84:b7:a1:2f:46:95: 36:85:12:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAk4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVBOEYxMTAvBgNVBAUTKDJDRTA4NEUwMURBQzZCNEQ2MzQ5MzhENzZDRUFEQTU5 NjM1NUJENTMwHhcNMjUwNjI5MDEyMTUxWhcNMjUwNzA2MDEyMTUxWjAYMRYwFAYD VQQDEw02ODYwOTUyZi02ZTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqGXc6JVhoizdUAFimk+6DsNL8s6qj47vfkzaVCbRADbGiT1uAdqZSukUQgdt IoKCpdmIn8IXI+CASFtmf55WiYIvU1U0bj+mbOTiWKA+hp4T1XYr3lP2HMry/1TW CPE3WkPjMqB/TwWkukxJ06v3G8hzu4R6JADvdFChJSl82RLdwSEPMcvL40w2FRIh Cu2fkkNEB85PhuxuizQb2oa78lV6AtctK80MO6akGXYxuTQqy2K1oR4fhCob99cn 6xXK9wOyhzZErNr+DPMEM9r5JQ0+iLUrQjHWdFREAHOOoD9kG3fW2W8JLn4SG/KR WHVJcDSnJXRtrgtyeY3w3LV/BwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM84b5e1 qFRMvMUcBoVju/Sj1cTAMB8GA1UdIwQYMBaAFCzghOAdrGtNY0k412zq2lljVb1T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUE4Ri9FM0EzNUJCNDI0 MjgxMUVEOEZEMjRDODZDNEY5QUUwMi9MT0NFNEIyc2EwMWpTVGpYYk9yYVdXTlZ2 Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xPQ0U0QjJzYTAxalNUalhiT3JhV1dOVnZWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RUE4Ri9FM0EzNUJCNDI0MjgxMUVEOEZEMjRDODZDNEY5QUUwMi9MT0NFNEIyc2Ew MWpTVGpYYk9yYVdXTlZ2Vk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSvMAUe/7wRkzDSRvSuTCiugwn8MneR0BtStliwWcQwE8EaY5uquKW 36SEKVsWNLmZnRrFMGsOCqHp/G+XnKg9nk9S5nQ8oMWYsxl2N/PV99wHIMp9VEJC IqciobOGHPP52AlUR7HZZeRf37iV4W9twWpgCO8Dkpys6MgXunqJg3PTTPeoLPaZ HP7l3Wm82VuhFi7qa4NwIhu8Z51qEDoL9DLqfmmPgZ7kWfqrpy+dz/wnIDwq5F15 0+Qh54IE6iIcRGF7vT7IqOhckR8U2kJcOOExYjHyrXFZTLQXXqCYG9fOdnE/1qo9 vQ7rxNKA3ft46d+Qwv2Et6EvRpU2hRIA -----END CERTIFICATE-----Generated at Mon Jun 30 22:33:59 2025 by rpki-client