$ rpki-client -vvf rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.mft File: 2szbgPh19VKJMaiCXRqvoYCpsXk.mft (raw, json) Hash identifier: 9xhMKZit1Qi09FQC5gq8Od4/b4ymXT0tchugbA74+0k= Subject key identifier: 0D:1B:F4:D9:AE:19:9A:C4:D4:86:89:21:DF:21:16:F4:19:97:97:B4 Authority key identifier: DA:CC:DB:80:F8:75:F5:52:89:31:A8:82:5D:1A:AF:A1:80:A9:B1:79 Certificate issuer: /CN=A918D701/serialNumber=DACCDB80F875F5528931A8825D1AAFA180A9B179 Certificate serial: 01B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2szbgPh19VKJMaiCXRqvoYCpsXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.mft Manifest number: 01AD Signing time: Tue 01 Jul 2025 03:36:46 +0000 Manifest this update: Tue 01 Jul 2025 03:36:45 +0000 Manifest next update: Tue 08 Jul 2025 03:36:45 +0000 Files and hashes: 1: 2szbgPh19VKJMaiCXRqvoYCpsXk.crl (hash: /0goNCIQflT4SVBKaRN0GrcxH9hn2s422yKkoXUEA/E=) 2: 98D5AE30C88C11ED907C1C0EC4F9AE02.roa (hash: /+RFC3ph8TBdVcE4Ho9sjOY2q50Lm+IUGN0ewBHECtI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.crl rsync://rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2szbgPh19VKJMaiCXRqvoYCpsXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:36:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 434 (0x1b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D701, serialNumber=DACCDB80F875F5528931A8825D1AAFA180A9B179 Validity Not Before: Jul 1 03:36:45 2025 GMT Not After : Jul 8 03:36:45 2025 GMT Subject: CN=686357cd-7612 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:4d:a5:5c:83:6c:dd:e4:87:6a:69:c8:03:58: a7:3b:b5:90:b0:b2:a9:ca:17:23:fc:a1:20:4b:41: f6:d9:cc:41:bd:b7:cc:8d:69:c6:fd:97:a0:5c:6c: 2d:f7:90:1b:23:43:b1:02:d6:e3:70:87:c0:fc:f3: ff:06:01:75:50:5d:f4:0f:7f:d0:46:90:c1:c1:4f: 72:ed:14:e2:26:06:c0:26:1a:ed:e2:54:02:57:11: 46:a2:ee:6a:fc:22:9f:7c:93:87:d8:21:7b:40:57: 29:d9:f8:1c:12:0f:9b:76:8c:ba:df:c8:78:09:64: 1a:89:41:23:f2:8e:f5:c5:80:d1:c8:ce:43:07:fa: c7:ad:96:ab:5c:9a:59:b3:57:b3:e8:ce:37:4d:fe: d9:e2:e1:61:5a:7a:d8:6d:f9:fe:12:ed:fb:30:6f: fc:b1:b4:16:9f:ba:b2:d9:55:1a:f5:57:eb:13:9f: c5:4a:65:3b:eb:17:c5:e3:86:08:82:c4:58:28:b2: 0f:42:b9:ce:03:45:59:a4:1e:fc:64:84:01:a6:24: dc:42:f6:08:50:1c:63:be:20:89:f1:72:13:08:00: 5e:1a:b3:65:01:c2:17:e2:f3:9e:a5:ad:87:bf:24: 57:5a:76:39:8a:a1:21:14:9d:5b:ae:69:00:0a:a6: f0:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:1B:F4:D9:AE:19:9A:C4:D4:86:89:21:DF:21:16:F4:19:97:97:B4 X509v3 Authority Key Identifier: keyid:DA:CC:DB:80:F8:75:F5:52:89:31:A8:82:5D:1A:AF:A1:80:A9:B1:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2szbgPh19VKJMaiCXRqvoYCpsXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:98:bd:d3:27:4c:23:04:ab:1e:d2:cd:bd:cf:49:eb:b9:3f: c1:06:3a:ab:e5:aa:bd:54:9f:b7:7e:3d:82:c6:d7:68:d9:ef: 02:2b:26:d3:7e:5d:e5:bf:96:26:bf:7d:d1:12:d6:f9:60:71: 2b:cc:ea:e3:e8:01:6f:53:7a:fb:98:5e:d4:58:fa:b5:5a:00: d5:03:25:3e:39:50:a4:fd:5d:51:8b:23:d6:c9:2b:df:e2:8f: 4b:5f:68:f8:09:5d:4f:89:24:31:d4:2d:7e:ca:a1:88:0e:ca: 94:07:c3:a7:88:28:18:52:9f:db:91:ad:b6:5c:c7:a5:4f:17: 02:c6:6a:79:3c:5b:a4:af:82:0f:66:f0:54:f4:20:07:fd:a1: ed:86:ee:be:cb:e6:52:56:78:03:29:dd:0c:fb:dd:f6:a8:99: 3b:97:d1:34:79:79:09:30:53:0e:37:14:55:5d:af:59:fd:08: 77:58:a7:e9:61:0d:b7:e8:40:99:3a:c4:fe:24:5a:3d:93:5b: 1c:bf:fa:af:13:e5:47:1a:cb:53:77:d9:88:81:37:0c:db:6e: c2:7e:48:5a:c9:65:57:54:18:13:17:e8:2d:ec:1b:e9:ff:82: bf:e8:46:fc:3a:01:27:aa:72:8b:60:66:55:fa:a8:d5:d2:5a: 36:60:61:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ3MDExMTAvBgNVBAUTKERBQ0NEQjgwRjg3NUY1NTI4OTMxQTg4MjVEMUFBRkEx ODBBOUIxNzkwHhcNMjUwNzAxMDMzNjQ1WhcNMjUwNzA4MDMzNjQ1WjAYMRYwFAYD VQQDEw02ODYzNTdjZC03NjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo02lXINs3eSHamnIA1inO7WQsLKpyhcj/KEgS0H22cxBvbfMjWnG/ZegXGwt 95AbI0OxAtbjcIfA/PP/BgF1UF30D3/QRpDBwU9y7RTiJgbAJhrt4lQCVxFGou5q /CKffJOH2CF7QFcp2fgcEg+bdoy638h4CWQaiUEj8o71xYDRyM5DB/rHrZarXJpZ s1ez6M43Tf7Z4uFhWnrYbfn+Eu37MG/8sbQWn7qy2VUa9VfrE5/FSmU76xfF44YI gsRYKLIPQrnOA0VZpB78ZIQBpiTcQvYIUBxjviCJ8XITCABeGrNlAcIX4vOepa2H vyRXWnY5iqEhFJ1brmkACqbwEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA0b9Nmu GZrE1IaJId8hFvQZl5e0MB8GA1UdIwQYMBaAFNrM24D4dfVSiTGogl0ar6GAqbF5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDcwMS9EMTg3OEVGNkM4 ODcxMUVEQkJFNkEzMkJDNEY5QUUwMi8yc3piZ1BoMTlWS0pNYWlDWFJxdm9ZQ3Bz WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJzemJnUGgxOVZLSk1haUNYUnF2b1lDcHNYay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDcwMS9EMTg3OEVGNkM4ODcxMUVEQkJFNkEzMkJDNEY5QUUwMi8yc3piZ1BoMTlW S0pNYWlDWFJxdm9ZQ3BzWGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzmL3TJ0wjBKse0s29z0nruT/BBjqr5aq9VJ+3fj2Cxtdo2e8CKybT fl3lv5Ymv33REtb5YHErzOrj6AFvU3r7mF7UWPq1WgDVAyU+OVCk/V1RiyPWySvf 4o9LX2j4CV1PiSQx1C1+yqGIDsqUB8OniCgYUp/bka22XMelTxcCxmp5PFukr4IP ZvBU9CAH/aHthu6+y+ZSVngDKd0M+932qJk7l9E0eXkJMFMONxRVXa9Z/Qh3WKfp YQ236ECZOsT+JFo9k1scv/qvE+VHGstTd9mIgTcM227CfkhayWVXVBgTF+gt7Bvp /4K/6Eb8OgEnqnKLYGZV+qjV0lo2YGFO -----END CERTIFICATE-----Generated at Wed Jul 2 12:23:04 2025 by rpki-client