$ rpki-client -vvf rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft File: 2CVmixrBt_OBXwe82lfnSMSWSpo.mft (raw, json) Hash identifier: LuG0TpRiL8qy1Sy0NUDIlQB5s3xkYU9E6TW/F0HnfoU= Subject key identifier: 74:FB:84:6E:D9:A4:9E:56:55:E4:28:75:DA:4A:63:22:15:1F:F6:C4 Authority key identifier: D8:25:66:8B:1A:C1:B7:F3:81:5F:07:BC:DA:57:E7:48:C4:96:4A:9A Certificate issuer: /CN=A91756C3/serialNumber=D825668B1AC1B7F3815F07BCDA57E748C4964A9A Certificate serial: 4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CVmixrBt_OBXwe82lfnSMSWSpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft Manifest number: 4D Signing time: Tue 01 Jul 2025 08:03:53 +0000 Manifest this update: Tue 01 Jul 2025 08:03:52 +0000 Manifest next update: Tue 08 Jul 2025 08:03:52 +0000 Files and hashes: 1: 2CVmixrBt_OBXwe82lfnSMSWSpo.crl (hash: dhmZWPqDg79CcsjQ63hP6zPWMF/zNaQl4SPHRhwFU4Q=) 2: 00078764E06811EF8716401DC4F9AE02.roa (hash: xskJHyJy9wOT0np+Xdp4jl5Zejz4/7Uevmd8xiyRBK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.crl rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CVmixrBt_OBXwe82lfnSMSWSpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:03:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91756C3, serialNumber=D825668B1AC1B7F3815F07BCDA57E748C4964A9A Validity Not Before: Jul 1 08:03:52 2025 GMT Not After : Jul 8 08:03:52 2025 GMT Subject: CN=68639669-5b66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:bb:ef:51:51:b1:d9:ca:e5:2e:f9:1b:36:b3: c9:03:76:ad:ec:47:bf:b1:89:c7:b6:b7:f4:b6:6a: ae:cc:57:6c:14:b6:4e:ac:85:95:5f:a5:03:d2:f5: b4:c1:82:c5:f6:6a:5b:eb:01:a9:48:d2:28:23:d4: db:d3:d6:08:16:eb:14:fd:85:28:dd:98:23:c3:80: 61:dd:02:a9:db:ed:07:e0:55:1c:65:f6:62:c0:06: 6e:85:9f:84:aa:2e:59:95:b9:c9:77:dc:dc:cc:54: 6e:f7:a8:1b:2f:a0:80:8e:04:ab:d6:13:13:3c:c0: 3a:bf:b6:07:9a:e9:74:6f:6c:a9:b0:9e:1a:19:47: e6:0c:7c:80:81:f5:12:03:b3:68:a9:f6:a7:98:67: 15:96:be:34:b0:e5:0c:ac:16:30:ce:87:d4:bc:09: 6e:1f:60:bc:1d:f3:3a:b1:09:39:af:8e:09:23:38: 89:3c:0b:dd:e6:9e:ee:66:d8:d1:43:19:7b:9f:58: 06:99:bc:45:ca:e5:15:9a:cd:8f:77:3e:30:3c:84: 11:16:3f:bb:af:3c:0d:56:f4:21:3e:dd:af:7c:c6: 19:12:01:c4:9e:c1:b4:92:1f:9f:f4:e4:a2:4f:ef: 3b:cc:a9:86:ab:a4:f3:20:00:e3:f4:9d:31:eb:79: 17:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:FB:84:6E:D9:A4:9E:56:55:E4:28:75:DA:4A:63:22:15:1F:F6:C4 X509v3 Authority Key Identifier: keyid:D8:25:66:8B:1A:C1:B7:F3:81:5F:07:BC:DA:57:E7:48:C4:96:4A:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CVmixrBt_OBXwe82lfnSMSWSpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:bd:32:58:a3:23:41:d1:0f:cf:64:4b:c0:a2:3f:6f:1a:49: 8f:2e:5b:81:bf:2f:b5:c1:75:a6:bf:0c:a2:19:a4:9a:83:67: 61:a8:be:a0:08:89:d1:56:14:1d:c6:48:7d:54:4e:35:54:ab: 2a:80:e2:1e:f1:ff:1f:fe:09:aa:27:5a:c2:29:c0:4b:26:60: 4f:93:34:45:f2:e3:29:e6:89:87:8f:f1:e9:8b:d9:41:d2:71: 61:6e:de:fd:38:a2:ab:52:4e:51:d8:a6:7f:df:2d:93:9c:2b: 02:8c:29:a1:bc:3b:e2:ad:7d:70:8d:a9:7e:f3:b0:35:6b:7c: ce:5f:75:3c:d7:f5:58:ac:d8:ad:07:17:84:9d:1a:7d:b6:ca: fa:55:c5:7a:33:93:43:49:39:3b:25:5b:6f:08:52:1e:19:f7: 5b:ae:a4:89:bf:3f:49:2d:c8:88:28:ac:57:1c:34:7a:19:de: 0c:be:a8:de:23:db:ab:fa:20:99:5d:59:3b:8b:ea:6f:fc:09: d5:81:4e:a7:5e:a1:65:0c:03:6f:6f:af:84:2d:84:9d:87:32: 31:f9:4e:1b:74:0f:ec:8f:f2:c7:dc:63:63:0d:d2:5c:75:9a: 89:71:92:21:a7:89:e6:9b:93:f2:61:f5:8d:5b:c2:ba:b2:6a: ec:29:79:e5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NTZDMzExMC8GA1UEBRMoRDgyNTY2OEIxQUMxQjdGMzgxNUYwN0JDREE1N0U3NDhD NDk2NEE5QTAeFw0yNTA3MDEwODAzNTJaFw0yNTA3MDgwODAzNTJaMBgxFjAUBgNV BAMTDTY4NjM5NjY5LTViNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWu+9RUbHZyuUu+Rs2s8kDdq3sR7+xice2t/S2aq7MV2wUtk6shZVfpQPS9bTB gsX2alvrAalI0igj1NvT1ggW6xT9hSjdmCPDgGHdAqnb7QfgVRxl9mLABm6Fn4Sq LlmVucl33NzMVG73qBsvoICOBKvWExM8wDq/tgea6XRvbKmwnhoZR+YMfICB9RID s2ip9qeYZxWWvjSw5QysFjDOh9S8CW4fYLwd8zqxCTmvjgkjOIk8C93mnu5m2NFD GXufWAaZvEXK5RWazY93PjA8hBEWP7uvPA1W9CE+3a98xhkSAcSewbSSH5/05KJP 7zvMqYarpPMgAOP0nTHreRfhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUdPuEbtmk nlZV5Ch12kpjIhUf9sQwHwYDVR0jBBgwFoAU2CVmixrBt/OBXwe82lfnSMSWSpow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1NkMzLzVCRjUxOTJBRTA2 NzExRUZCQzNEMTcxQkM0RjlBRTAyLzJDVm1peHJCdF9PQlh3ZTgybGZuU01TV1Nw by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMkNWbWl4ckJ0X09CWHdlODJsZm5TTVNXU3BvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1 NkMzLzVCRjUxOTJBRTA2NzExRUZCQzNEMTcxQkM0RjlBRTAyLzJDVm1peHJCdF9P Qlh3ZTgybGZuU01TV1Nwby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC+9MlijI0HRD89kS8CiP28aSY8uW4G/L7XBdaa/DKIZpJqDZ2GovqAI idFWFB3GSH1UTjVUqyqA4h7x/x/+CaonWsIpwEsmYE+TNEXy4ynmiYeP8emL2UHS cWFu3v04oqtSTlHYpn/fLZOcKwKMKaG8O+KtfXCNqX7zsDVrfM5fdTzX9Vis2K0H F4SdGn22yvpVxXozk0NJOTslW28IUh4Z91uupIm/P0ktyIgorFccNHoZ3gy+qN4j 26v6IJldWTuL6m/8CdWBTqdeoWUMA29vr4QthJ2HMjH5Tht0D+yP8sfcY2MN0lx1 molxkiGnieabk/Jh9Y1bwrqyauwpeeU= -----END CERTIFICATE-----Generated at Wed Jul 2 13:40:27 2025 by rpki-client