$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft File: 2H4ClpVGrcVaesygjK2yh5vGmck.mft (raw, json) Hash identifier: b3joWq85d5s5VIAhbl2V5a/apaciTXJuHr5An3sAd6g= Subject key identifier: A0:A8:73:27:F4:04:72:FB:1A:74:2D:75:06:0D:C7:16:2D:8D:8C:E5 Authority key identifier: D8:7E:02:96:95:46:AD:C5:5A:7A:CC:A0:8C:AD:B2:87:9B:C6:99:C9 Certificate issuer: /CN=A9185B5F/serialNumber=D87E02969546ADC55A7ACCA08CADB2879BC699C9 Certificate serial: 0198 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft Manifest number: 0194 Signing time: Thu 03 Jul 2025 03:32:44 +0000 Manifest this update: Thu 03 Jul 2025 03:32:44 +0000 Manifest next update: Thu 10 Jul 2025 03:32:44 +0000 Files and hashes: 1: 2H4ClpVGrcVaesygjK2yh5vGmck.crl (hash: quTrpqln9rQX3PwD8PZ6XoG7dD8Yy1WovpYeQknZ/vY=) 2: A4B0D326F0A311ED99A1471CC4F9AE02.roa (hash: 0/Ic5iho+pqF4si9nqRdEW+r600hwTvuyP9trzSoxtE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.crl rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 408 (0x198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B5F, serialNumber=D87E02969546ADC55A7ACCA08CADB2879BC699C9 Validity Not Before: Jul 3 03:32:44 2025 GMT Not After : Jul 10 03:32:44 2025 GMT Subject: CN=6865f9dc-4fa1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f9:12:85:8e:60:74:aa:cb:6b:47:3f:a3:a3: 51:8b:b1:00:2e:62:35:4c:9b:40:be:f1:d0:ef:ac: 6a:20:cc:52:24:b3:e7:8c:d0:4e:71:bd:96:66:7d: 39:1a:7e:f0:db:1f:b5:ab:9d:0e:7a:06:d1:ac:12: 13:b0:56:d3:fa:4b:5e:bf:1d:54:e0:66:e7:7b:45: 96:7e:80:03:08:b8:10:8f:6a:d0:fa:02:63:e8:6d: 6e:fa:10:51:00:d3:f2:0c:35:19:3f:f6:14:7f:8d: 41:67:dd:24:32:ad:56:90:b7:d4:26:ad:0c:1f:a3: 1f:61:27:d9:82:64:e9:ed:ca:7e:68:2f:ef:99:19: ab:48:c8:b1:66:cd:58:ee:05:b2:be:44:bd:a6:cf: d0:16:ee:53:7a:0e:6d:84:02:d4:26:9f:db:f3:04: cb:e6:0f:46:5e:f0:6b:98:42:37:59:c0:3c:4e:dc: 35:97:ee:8c:84:30:a1:b9:58:79:cc:b7:b2:11:0f: 4b:40:de:dd:eb:a8:b9:20:bc:da:04:2a:ee:3c:80: 8b:29:fc:80:31:19:51:67:17:cd:0b:41:7f:bc:de: c9:92:d6:11:c5:6d:45:e0:96:7d:5c:dd:e4:3c:ec: fe:8d:92:d3:d9:d4:4b:1e:a9:78:d9:50:2c:27:7a: 7a:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:A8:73:27:F4:04:72:FB:1A:74:2D:75:06:0D:C7:16:2D:8D:8C:E5 X509v3 Authority Key Identifier: keyid:D8:7E:02:96:95:46:AD:C5:5A:7A:CC:A0:8C:AD:B2:87:9B:C6:99:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:1d:9c:c2:d2:c4:ed:f7:81:29:3c:0a:ac:0f:a4:31:37:75: 2a:1c:0e:81:0e:4c:dd:3a:63:63:43:8c:01:45:67:1b:a7:6f: be:ed:cc:52:7f:75:0f:bf:b3:2e:4f:be:41:9e:60:08:7a:5e: 50:15:42:65:29:ee:f9:4b:fc:02:55:da:00:eb:cf:1a:a9:19: 8f:f1:8e:6e:7c:3b:d6:4b:1b:5e:b1:23:87:38:28:e7:6b:27: 16:b2:af:e1:cf:aa:f1:28:85:a2:e6:70:6b:44:a0:f9:6f:ce: fc:92:a9:55:af:cc:c5:1f:66:b5:98:b7:02:1f:75:d8:2a:5b: 33:a3:73:df:59:58:c6:71:b6:50:f8:38:cf:de:1c:33:7d:7b: a0:28:71:fc:58:fb:a6:01:69:64:29:c2:c8:37:3e:8d:57:18: 8b:da:f7:d5:8d:c3:27:6d:08:28:24:da:cc:94:16:58:a0:d6: 7c:b0:d9:6a:25:3b:da:35:30:bd:e7:bb:79:11:61:8f:f4:99: 32:08:a4:59:ba:b2:ba:f4:53:c5:98:29:46:21:af:dc:31:b6: 89:0b:40:bf:d4:7a:d8:91:ec:7e:63:fb:5b:dc:73:a9:4e:55: 29:4c:5a:80:60:d8:4b:0b:c4:a7:9d:4d:50:83:fb:3e:4c:94: e2:67:7e:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCNUYxMTAvBgNVBAUTKEQ4N0UwMjk2OTU0NkFEQzU1QTdBQ0NBMDhDQURCMjg3 OUJDNjk5QzkwHhcNMjUwNzAzMDMzMjQ0WhcNMjUwNzEwMDMzMjQ0WjAYMRYwFAYD VQQDEw02ODY1ZjlkYy00ZmExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvvkShY5gdKrLa0c/o6NRi7EALmI1TJtAvvHQ76xqIMxSJLPnjNBOcb2WZn05 Gn7w2x+1q50OegbRrBITsFbT+ktevx1U4Gbne0WWfoADCLgQj2rQ+gJj6G1u+hBR ANPyDDUZP/YUf41BZ90kMq1WkLfUJq0MH6MfYSfZgmTp7cp+aC/vmRmrSMixZs1Y 7gWyvkS9ps/QFu5Teg5thALUJp/b8wTL5g9GXvBrmEI3WcA8Ttw1l+6MhDChuVh5 zLeyEQ9LQN7d66i5ILzaBCruPICLKfyAMRlRZxfNC0F/vN7JktYRxW1F4JZ9XN3k POz+jZLT2dRLHql42VAsJ3p6ZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKCocyf0 BHL7GnQtdQYNxxYtjYzlMB8GA1UdIwQYMBaAFNh+ApaVRq3FWnrMoIytsoebxpnJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUI1Ri84RTQxODAyMEYw OUIxMUVEQTYwNkJENjJDNEY5QUUwMi8ySDRDbHBWR3JjVmFlc3lnaksyeWg1dkdt Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJINENscFZHcmNWYWVzeWdqSzJ5aDV2R21jay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUI1Ri84RTQxODAyMEYwOUIxMUVEQTYwNkJENjJDNEY5QUUwMi8ySDRDbHBWR3Jj VmFlc3lnaksyeWg1dkdtY2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsHZzC0sTt94EpPAqsD6QxN3UqHA6BDkzdOmNjQ4wBRWcbp2++7cxS f3UPv7MuT75BnmAIel5QFUJlKe75S/wCVdoA688aqRmP8Y5ufDvWSxtesSOHOCjn aycWsq/hz6rxKIWi5nBrRKD5b878kqlVr8zFH2a1mLcCH3XYKlszo3PfWVjGcbZQ +DjP3hwzfXugKHH8WPumAWlkKcLINz6NVxiL2vfVjcMnbQgoJNrMlBZYoNZ8sNlq JTvaNTC957t5EWGP9JkyCKRZurK69FPFmClGIa/cMbaJC0C/1HrYkex+Y/tb3HOp TlUpTFqAYNhLC8SnnU1Qg/s+TJTiZ36m -----END CERTIFICATE-----Generated at Thu Jul 3 17:57:25 2025 by rpki-client