$ rpki-client -vvf rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft File: 2RBlAbU10PfK1XyOenR8oGnQTVk.mft (raw, json) Hash identifier: dk3IZi8cuJz4B/LLWU6LtKzn1CJtZoh93hiCK0MzyhM= Subject key identifier: CC:25:E5:FC:88:C3:B9:27:06:21:06:2E:CF:D9:75:F1:8C:33:E1:78 Authority key identifier: D9:10:65:01:B5:35:D0:F7:CA:D5:7C:8E:7A:74:7C:A0:69:D0:4D:59 Certificate issuer: /CN=A916FACB/serialNumber=D9106501B535D0F7CAD57C8E7A747CA069D04D59 Certificate serial: 03C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2RBlAbU10PfK1XyOenR8oGnQTVk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft Manifest number: 03C3 Signing time: Thu 03 Jul 2025 01:00:08 +0000 Manifest this update: Thu 03 Jul 2025 01:00:08 +0000 Manifest next update: Thu 10 Jul 2025 01:00:08 +0000 Files and hashes: 1: 2RBlAbU10PfK1XyOenR8oGnQTVk.crl (hash: ZbunMPj//9Z9Net8W8fIJY70Qbz4eML0x1QFM815t84=) 2: 97D35382924311EC927C972FC4F9AE02.roa (hash: F5cT4m4LGvhZopgIl7MS1o33/eaQaKX2bSwBB1GnJYA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.crl rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2RBlAbU10PfK1XyOenR8oGnQTVk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:00:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 967 (0x3c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916FACB, serialNumber=D9106501B535D0F7CAD57C8E7A747CA069D04D59 Validity Not Before: Jul 3 01:00:08 2025 GMT Not After : Jul 10 01:00:08 2025 GMT Subject: CN=6865d618-182c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a0:8c:94:8d:bd:a4:fd:78:5c:8f:db:80:60: 4a:62:8b:05:e8:5c:70:4c:3d:02:48:c3:11:d8:aa: 3f:6f:54:19:c5:32:c4:e0:db:63:51:e9:81:dc:28: 71:be:20:82:b4:4a:04:a5:c8:6a:13:bd:16:8f:8f: 3e:e0:76:f8:c1:bd:55:52:ca:f7:4b:0e:00:84:21: 20:fc:86:47:b6:59:70:b6:42:55:01:2d:4e:05:96: e7:d4:18:a5:91:fa:e3:00:a1:45:a3:ad:02:95:a7: ee:61:c8:c0:25:13:ee:50:28:c0:6e:0e:4d:8e:33: a3:4c:f6:01:95:2d:8f:0c:39:44:71:3e:90:da:d4: 06:e6:d5:4c:e3:1d:7b:f5:51:bc:a5:61:42:84:58: 78:b2:5d:90:a8:1c:6d:e4:bb:2d:80:86:79:47:3d: 57:de:a9:f2:53:87:70:52:2a:38:93:16:18:72:f3: 73:89:df:80:3b:05:9a:df:d6:8a:61:4a:2c:97:79: cd:70:4e:ce:90:31:94:3c:66:d6:33:43:97:8f:d9: 48:18:7c:08:b9:7f:99:2e:14:f3:4d:30:f8:20:cb: d4:44:83:dc:a5:64:3e:59:ba:bf:24:ec:76:bb:97: 84:c4:4a:cb:45:bd:2f:3e:f9:dd:06:b9:9e:6d:9d: df:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:25:E5:FC:88:C3:B9:27:06:21:06:2E:CF:D9:75:F1:8C:33:E1:78 X509v3 Authority Key Identifier: keyid:D9:10:65:01:B5:35:D0:F7:CA:D5:7C:8E:7A:74:7C:A0:69:D0:4D:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2RBlAbU10PfK1XyOenR8oGnQTVk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:80:00:e5:2e:91:aa:19:e2:a4:a2:dd:d0:91:d8:29:06:5b: cf:c8:44:e1:20:f1:db:f2:f8:fe:38:6e:9c:71:4c:05:ab:e7: e5:91:58:bd:c1:39:61:6d:4e:29:e1:95:d1:29:22:32:77:b2: c8:c2:fa:b6:a3:57:2f:84:ef:21:e3:31:4d:f4:44:0e:0f:00: eb:03:32:c1:32:ef:fa:c8:d6:4f:4c:de:46:4d:06:1a:f1:cc: aa:ca:78:91:71:06:90:9a:9c:0c:0c:df:d7:b0:fd:04:83:9a: cd:23:1e:d2:ff:9e:80:41:14:58:cb:16:0b:b6:96:d2:3e:00: 1d:0f:84:8a:65:58:bd:d1:7a:91:e4:14:ca:ac:91:6a:7f:8a: db:27:56:89:ce:04:b4:e2:c0:21:43:3e:93:e5:8f:0d:6a:14: 10:3a:3b:ed:06:5c:44:a0:9e:94:3e:02:c1:1b:e7:06:9e:3a: c2:a1:4b:e8:4a:3d:c5:f4:4f:67:4d:ec:f3:1a:4d:9c:ad:06: b7:51:31:22:1e:d0:46:43:0b:3c:ee:cb:04:ed:6b:da:ff:07: 4b:f1:fa:ff:b4:5b:97:eb:89:1f:0e:4e:5d:1d:95:17:d2:82: 96:17:37:c0:ca:19:d1:f4:8a:b6:f4:07:05:12:83:2d:cc:f0: 1a:91:89:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkZBQ0IxMTAvBgNVBAUTKEQ5MTA2NTAxQjUzNUQwRjdDQUQ1N0M4RTdBNzQ3Q0Ew NjlEMDRENTkwHhcNMjUwNzAzMDEwMDA4WhcNMjUwNzEwMDEwMDA4WjAYMRYwFAYD VQQDEw02ODY1ZDYxOC0xODJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq6CMlI29pP14XI/bgGBKYosF6FxwTD0CSMMR2Ko/b1QZxTLE4NtjUemB3Chx viCCtEoEpchqE70Wj48+4Hb4wb1VUsr3Sw4AhCEg/IZHtllwtkJVAS1OBZbn1Bil kfrjAKFFo60ClafuYcjAJRPuUCjAbg5NjjOjTPYBlS2PDDlEcT6Q2tQG5tVM4x17 9VG8pWFChFh4sl2QqBxt5LstgIZ5Rz1X3qnyU4dwUio4kxYYcvNzid+AOwWa39aK YUosl3nNcE7OkDGUPGbWM0OXj9lIGHwIuX+ZLhTzTTD4IMvURIPcpWQ+Wbq/JOx2 u5eExErLRb0vPvndBrmebZ3fwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMwl5fyI w7knBiEGLs/ZdfGMM+F4MB8GA1UdIwQYMBaAFNkQZQG1NdD3ytV8jnp0fKBp0E1Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RkFDQi9GNTU5OEQwODky NDAxMUVDQkVENERBMkNDNEY5QUUwMi8yUkJsQWJVMTBQZksxWHlPZW5SOG9HblFU VmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJSQmxBYlUxMFBmSzFYeU9lblI4b0duUVRWay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RkFDQi9GNTU5OEQwODkyNDAxMUVDQkVENERBMkNDNEY5QUUwMi8yUkJsQWJVMTBQ ZksxWHlPZW5SOG9HblFUVmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNgADlLpGqGeKkot3QkdgpBlvPyEThIPHb8vj+OG6ccUwFq+flkVi9 wTlhbU4p4ZXRKSIyd7LIwvq2o1cvhO8h4zFN9EQODwDrAzLBMu/6yNZPTN5GTQYa 8cyqyniRcQaQmpwMDN/XsP0Eg5rNIx7S/56AQRRYyxYLtpbSPgAdD4SKZVi90XqR 5BTKrJFqf4rbJ1aJzgS04sAhQz6T5Y8NahQQOjvtBlxEoJ6UPgLBG+cGnjrCoUvo Sj3F9E9nTezzGk2crQa3UTEiHtBGQws87ssE7Wva/wdL8fr/tFuX64kfDk5dHZUX 0oKWFzfAyhnR9Iq29AcFEoMtzPAakYk0 -----END CERTIFICATE-----Generated at Thu Jul 3 07:14:53 2025 by rpki-client