$ rpki-client -vvf rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft File: 2kdUAUEh0yaH2X05LZBgSagU_MM.mft (raw, json) Hash identifier: /ft8hQ4vs2M7z8RYnJkiSUNrjyI/eZyZjiFLerdsubc= Subject key identifier: BB:FC:48:78:04:DA:0D:08:0B:4E:48:AF:7A:B5:05:19:9A:6D:9B:63 Authority key identifier: DA:47:54:01:41:21:D3:26:87:D9:7D:39:2D:90:60:49:A8:14:FC:C3 Certificate issuer: /CN=A91777A6/serialNumber=DA4754014121D32687D97D392D906049A814FCC3 Certificate serial: 0252 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kdUAUEh0yaH2X05LZBgSagU_MM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft Manifest number: 024E Signing time: Sun 29 Jun 2025 01:21:59 +0000 Manifest this update: Sun 29 Jun 2025 01:21:59 +0000 Manifest next update: Sun 06 Jul 2025 01:21:59 +0000 Files and hashes: 1: 2kdUAUEh0yaH2X05LZBgSagU_MM.crl (hash: cxgOmMbA1gZ8vkc+10sgWloX/06z1O5cnwuhmlpAE1g=) 2: 930770F4244C11ED95AA5569C4F9AE02.roa (hash: DDdOGJKEKYKXbDa5vtjLSsnRV8BgpNNS0rM4LZRyfrY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.crl rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kdUAUEh0yaH2X05LZBgSagU_MM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 01:21:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 594 (0x252) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91777A6, serialNumber=DA4754014121D32687D97D392D906049A814FCC3 Validity Not Before: Jun 29 01:21:59 2025 GMT Not After : Jul 6 01:21:59 2025 GMT Subject: CN=68609537-6a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:90:a1:50:9a:01:d3:9d:7f:d6:6b:ec:fc:bc: 6d:5e:39:2a:dc:cc:23:a0:cc:44:d1:b6:ce:c0:89: d5:67:ca:b6:e1:ac:7c:7f:72:c3:ec:de:a0:32:7e: 88:14:ad:4f:b8:f9:06:46:7b:fb:68:56:79:33:ca: f9:55:5b:d2:d3:b9:f4:67:ff:58:8c:c0:fa:4f:e6: 8f:99:a2:9a:68:12:a4:f6:a0:c7:22:40:81:7e:7a: 70:a8:35:2e:da:67:82:5a:71:6e:da:d4:d9:b6:87: dd:31:a8:ce:82:ec:24:47:bc:0c:9a:2c:13:24:d9: 3f:a2:41:ca:91:6a:f8:e5:d3:0a:76:a0:22:4f:82: 3b:01:51:ce:fd:e0:db:3e:7c:ec:cb:ef:b3:f1:a8: a9:93:4e:7f:1c:52:28:c7:a5:ee:fb:ae:ee:39:d4: 95:0a:7d:ec:b6:69:19:c0:95:26:a1:89:3b:20:34: ad:bf:d6:13:1d:5f:a7:d1:c1:cc:d7:68:ea:f3:cf: 80:5e:47:ae:ca:23:0a:fa:78:bf:14:c6:a4:46:35: 07:e3:60:ff:45:10:7b:ba:35:60:0a:c0:7e:69:f9: 09:37:06:cc:ce:2b:af:42:53:46:22:67:76:01:72: 91:02:90:27:82:f5:80:59:f7:57:c0:69:8b:56:3a: 97:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:FC:48:78:04:DA:0D:08:0B:4E:48:AF:7A:B5:05:19:9A:6D:9B:63 X509v3 Authority Key Identifier: keyid:DA:47:54:01:41:21:D3:26:87:D9:7D:39:2D:90:60:49:A8:14:FC:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kdUAUEh0yaH2X05LZBgSagU_MM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:a5:37:a8:9a:80:69:43:41:fa:71:20:9c:a8:35:57:fa:7e: 22:5d:3c:16:cd:ef:ae:fd:6f:bb:19:3e:0f:82:c4:0b:64:54: b2:3e:a9:b6:23:b9:d9:15:92:74:e4:5a:07:55:56:2b:2e:a7: bb:64:b6:68:ec:87:cc:5f:50:26:f0:f1:5d:a1:8e:99:97:14: a6:5e:7f:28:a5:88:65:f9:30:bc:66:aa:a2:0d:35:2e:25:15: 76:e3:8f:31:79:01:f2:77:5a:13:16:80:cb:ef:cb:8c:c1:5a: 3b:7d:57:fc:1a:ea:66:85:1a:c6:24:90:fb:a0:86:1c:44:7f: ff:0d:12:04:f2:be:24:4b:59:de:8f:86:8d:b8:66:f5:03:3a: 75:90:98:d8:4d:eb:c8:5f:9b:32:7c:23:b1:dc:fb:e5:38:57: 7f:be:ac:ae:58:00:d3:6d:05:f4:72:ad:fc:a6:2b:0a:33:e7: ff:8b:53:2b:55:1c:1d:fd:f0:3a:5c:b0:cf:5a:7b:0c:3b:e1: ad:fd:b6:a0:33:c4:34:2a:10:27:25:e6:56:89:71:2f:ad:72: 1e:f0:8f:46:b5:26:3c:f9:65:11:d8:23:d1:4d:4e:93:e4:6a: 94:96:90:f3:76:39:a9:99:4c:83:dd:e9:79:7b:7c:7d:50:92: 4b:de:c2:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc3QTYxMTAvBgNVBAUTKERBNDc1NDAxNDEyMUQzMjY4N0Q5N0QzOTJEOTA2MDQ5 QTgxNEZDQzMwHhcNMjUwNjI5MDEyMTU5WhcNMjUwNzA2MDEyMTU5WjAYMRYwFAYD VQQDEw02ODYwOTUzNy02YTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3pChUJoB051/1mvs/LxtXjkq3MwjoMxE0bbOwInVZ8q24ax8f3LD7N6gMn6I FK1PuPkGRnv7aFZ5M8r5VVvS07n0Z/9YjMD6T+aPmaKaaBKk9qDHIkCBfnpwqDUu 2meCWnFu2tTZtofdMajOguwkR7wMmiwTJNk/okHKkWr45dMKdqAiT4I7AVHO/eDb Pnzsy++z8aipk05/HFIox6Xu+67uOdSVCn3stmkZwJUmoYk7IDStv9YTHV+n0cHM 12jq88+AXkeuyiMK+ni/FMakRjUH42D/RRB7ujVgCsB+afkJNwbMziuvQlNGImd2 AXKRApAngvWAWfdXwGmLVjqXNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLv8SHgE 2g0IC05Ir3q1BRmabZtjMB8GA1UdIwQYMBaAFNpHVAFBIdMmh9l9OS2QYEmoFPzD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzdBNi9DOEE3OTlEMjI0 NDcxMUVEQjE2NTUwNTNDNEY5QUUwMi8ya2RVQVVFaDB5YUgyWDA1TFpCZ1NhZ1Vf TU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrZFVBVUVoMHlhSDJYMDVMWkJnU2FnVV9NTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzdBNi9DOEE3OTlEMjI0NDcxMUVEQjE2NTUwNTNDNEY5QUUwMi8ya2RVQVVFaDB5 YUgyWDA1TFpCZ1NhZ1VfTU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgpTeomoBpQ0H6cSCcqDVX+n4iXTwWze+u/W+7GT4PgsQLZFSyPqm2 I7nZFZJ05FoHVVYrLqe7ZLZo7IfMX1Am8PFdoY6ZlxSmXn8opYhl+TC8ZqqiDTUu JRV2448xeQHyd1oTFoDL78uMwVo7fVf8GupmhRrGJJD7oIYcRH//DRIE8r4kS1ne j4aNuGb1Azp1kJjYTevIX5syfCOx3PvlOFd/vqyuWADTbQX0cq38pisKM+f/i1Mr VRwd/fA6XLDPWnsMO+Gt/bagM8Q0KhAnJeZWiXEvrXIe8I9GtSY8+WUR2CPRTU6T 5GqUlpDzdjmpmUyD3el5e3x9UJJL3sJa -----END CERTIFICATE-----Generated at Sun Jun 29 21:10:30 2025 by rpki-client