$ rpki-client -vvf rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/2gElQupZNV_ohHjSHXPjbOvN88s.mft File: 2gElQupZNV_ohHjSHXPjbOvN88s.mft (raw, json) Hash identifier: hXweyz+9mfHiw2EfOprvzbbbTK+WNCVvyWNuHn36+iQ= Subject key identifier: DA:28:A2:03:34:F6:53:EB:17:64:0D:2E:FF:A5:27:2A:4B:EF:4D:0E Authority key identifier: DA:01:25:42:EA:59:35:5F:E8:84:78:D2:1D:73:E3:6C:EB:CD:F3:CB Certificate issuer: /CN=A918B241/serialNumber=DA012542EA59355FE88478D21D73E36CEBCDF3CB Certificate serial: 02DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gElQupZNV_ohHjSHXPjbOvN88s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/2gElQupZNV_ohHjSHXPjbOvN88s.mft Manifest number: 02D5 Signing time: Thu 03 Jul 2025 01:44:50 +0000 Manifest this update: Thu 03 Jul 2025 01:44:50 +0000 Manifest next update: Thu 10 Jul 2025 01:44:50 +0000 Files and hashes: 1: 2gElQupZNV_ohHjSHXPjbOvN88s.crl (hash: HTYEt5ukDyoaW/x0fHa4iUNJ5FU8zXFfRr3R5ME7ARM=) 2: A33B03A2F07911ECBDB1BC4BC4F9AE02.roa (hash: 06qlKoNMAgG5qkJwM6sNlRAgtRr58eOsszFhlsT8L0o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/2gElQupZNV_ohHjSHXPjbOvN88s.crl rsync://rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/2gElQupZNV_ohHjSHXPjbOvN88s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gElQupZNV_ohHjSHXPjbOvN88s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:44:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 730 (0x2da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B241, serialNumber=DA012542EA59355FE88478D21D73E36CEBCDF3CB Validity Not Before: Jul 3 01:44:50 2025 GMT Not After : Jul 10 01:44:50 2025 GMT Subject: CN=6865e092-b854 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:76:36:73:b3:7a:36:49:c6:ca:b1:91:39:46: 50:ea:fe:31:a2:81:e2:55:cc:2f:3c:cd:bb:4f:2a: 2a:8f:e0:a6:03:8d:10:d1:c5:99:39:57:fa:ab:0e: 8e:86:16:d4:9b:bc:1c:5a:0b:1f:f6:4c:c1:a9:7c: aa:1c:1e:b4:4a:01:ac:0f:26:69:39:18:b2:e9:42: 02:7c:af:79:5f:47:f0:e1:14:84:53:03:8d:ef:1e: 72:43:9c:e1:8c:f7:0a:7c:be:8f:5d:85:fa:2d:6f: e8:0c:5c:e8:a8:51:a3:ab:be:07:2a:6f:e9:d7:96: 8c:47:13:98:f2:48:f6:18:11:a5:13:38:cc:57:f8: 27:fe:83:f4:ba:86:f4:05:85:40:df:e8:86:e2:c6: 96:63:ea:9f:b4:b6:40:c8:f5:89:61:c6:93:6a:0e: 3c:6b:ff:10:7a:f5:af:cc:a7:cc:08:ae:b9:82:92: 36:42:1f:88:d3:fa:bf:e5:9d:5b:15:bb:75:fa:cc: c8:c7:fb:74:a6:96:b8:11:85:cf:da:30:b3:f8:69: 57:12:e9:e1:5a:da:d4:4b:f8:97:0b:d6:b0:96:27: dc:54:d4:2b:c3:51:ff:35:8c:a6:f7:35:19:2a:d2: 1a:b1:e1:b0:40:22:10:cc:89:d8:62:0d:dd:cd:60: ec:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:28:A2:03:34:F6:53:EB:17:64:0D:2E:FF:A5:27:2A:4B:EF:4D:0E X509v3 Authority Key Identifier: keyid:DA:01:25:42:EA:59:35:5F:E8:84:78:D2:1D:73:E3:6C:EB:CD:F3:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/2gElQupZNV_ohHjSHXPjbOvN88s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gElQupZNV_ohHjSHXPjbOvN88s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/2gElQupZNV_ohHjSHXPjbOvN88s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:20:ca:b9:1f:f7:a5:4c:3e:9b:a8:38:31:ec:07:7f:3a:b7: 22:10:13:ad:05:04:90:b6:5c:bf:a8:c2:79:3a:c7:c0:40:51: 02:38:34:b9:38:80:e3:70:26:c9:ef:0f:7c:5c:fc:74:e0:2f: 90:aa:a6:19:6a:3b:39:fc:76:a2:5f:0a:49:7f:98:5f:98:a4: d4:37:6d:e5:e2:9f:75:91:f2:5c:dd:9d:95:e8:79:47:92:12: 3f:70:dd:ee:6f:b3:b6:3a:77:36:ac:97:99:76:77:48:6b:e4: e4:f7:6c:14:84:97:ea:5e:85:07:d8:29:b8:e2:1c:20:9e:8a: 54:1e:57:80:f4:39:d4:c1:c2:b5:94:db:63:e7:dc:7f:8e:b9: 0d:37:19:4b:b6:05:d8:5f:32:b5:87:59:4e:d0:01:c6:d9:68: 7f:74:5e:0f:23:57:68:7e:78:46:15:da:52:a8:f9:b3:ff:4f: a1:06:a0:1d:dd:32:1f:ea:d6:25:90:37:ec:6e:21:e5:f1:53: 59:52:23:99:49:65:5f:2c:67:30:12:75:39:d1:4b:cf:0f:cb: 5f:45:d0:1d:87:dd:62:cc:75:f6:2a:6a:98:16:d6:7b:55:a0: d6:6f:89:20:fd:3e:1b:e0:d5:02:9d:72:63:62:ac:fa:c2:ab: 60:f3:56:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEIyNDExMTAvBgNVBAUTKERBMDEyNTQyRUE1OTM1NUZFODg0NzhEMjFENzNFMzZD RUJDREYzQ0IwHhcNMjUwNzAzMDE0NDUwWhcNMjUwNzEwMDE0NDUwWjAYMRYwFAYD VQQDEw02ODY1ZTA5Mi1iODU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw3Y2c7N6NknGyrGROUZQ6v4xooHiVcwvPM27Tyoqj+CmA40Q0cWZOVf6qw6O hhbUm7wcWgsf9kzBqXyqHB60SgGsDyZpORiy6UICfK95X0fw4RSEUwON7x5yQ5zh jPcKfL6PXYX6LW/oDFzoqFGjq74HKm/p15aMRxOY8kj2GBGlEzjMV/gn/oP0uob0 BYVA3+iG4saWY+qftLZAyPWJYcaTag48a/8QevWvzKfMCK65gpI2Qh+I0/q/5Z1b Fbt1+szIx/t0ppa4EYXP2jCz+GlXEunhWtrUS/iXC9awlifcVNQrw1H/NYym9zUZ KtIaseGwQCIQzInYYg3dzWDsnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNooogM0 9lPrF2QNLv+lJypL700OMB8GA1UdIwQYMBaAFNoBJULqWTVf6IR40h1z42zrzfPL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjI0MS9CNjQ5Q0E5NkYw NzQxMUVDOUE1MUQ1NDhDNEY5QUUwMi8yZ0VsUXVwWk5WX29oSGpTSFhQamJPdk44 OHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnRWxRdXBaTlZfb2hIalNIWFBqYk92Tjg4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjI0MS9CNjQ5Q0E5NkYwNzQxMUVDOUE1MUQ1NDhDNEY5QUUwMi8yZ0VsUXVwWk5W X29oSGpTSFhQamJPdk44OHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPIMq5H/elTD6bqDgx7Ad/OrciEBOtBQSQtly/qMJ5OsfAQFECODS5 OIDjcCbJ7w98XPx04C+QqqYZajs5/HaiXwpJf5hfmKTUN23l4p91kfJc3Z2V6HlH khI/cN3ub7O2Onc2rJeZdndIa+Tk92wUhJfqXoUH2Cm44hwgnopUHleA9DnUwcK1 lNtj59x/jrkNNxlLtgXYXzK1h1lO0AHG2Wh/dF4PI1dofnhGFdpSqPmz/0+hBqAd 3TIf6tYlkDfsbiHl8VNZUiOZSWVfLGcwEnU50UvPD8tfRdAdh91izHX2KmqYFtZ7 VaDWb4kg/T4b4NUCnXJjYqz6wqtg81bR -----END CERTIFICATE-----Generated at Fri Jul 4 22:24:01 2025 by rpki-client