$ rpki-client -vvf rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.mft File: 2v3gvG4K06iVvHVtbDGh5httODs.mft (raw, json) Hash identifier: Tt90vtkdOCUdowHcpN9fJLCWH/u/6zM94N8ck4ktOCk= Subject key identifier: 66:2B:D2:06:9C:F5:85:A7:B1:19:52:7A:C4:61:D7:64:8E:7E:9E:25 Authority key identifier: DA:FD:E0:BC:6E:0A:D3:A8:95:BC:75:6D:6C:31:A1:E6:1B:6D:38:3B Certificate issuer: /CN=A918FCE2/serialNumber=DAFDE0BC6E0AD3A895BC756D6C31A1E61B6D383B Certificate serial: 0874 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2v3gvG4K06iVvHVtbDGh5httODs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.mft Manifest number: 0861 Signing time: Mon 30 Jun 2025 20:56:05 +0000 Manifest this update: Mon 30 Jun 2025 20:56:04 +0000 Manifest next update: Mon 07 Jul 2025 20:56:04 +0000 Files and hashes: 1: 2v3gvG4K06iVvHVtbDGh5httODs.crl (hash: CGx/cXCt2SdK5FYwzgWcEyBS1moqLeCy28HSqq/bYMU=) 2: 311DA6AA78F611EFAFD81B5BC4F9AE02.roa (hash: N273KJZBVvsgocX2roxdV3igs8iuW9HGezq7GTon2t0=) 3: 312D1714A6F211EFBD311B19C4F9AE02.roa (hash: 3WiuON+DZCyyzbg9J4hxbgh73YCM3rOmSlSP3M274IM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.crl rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2v3gvG4K06iVvHVtbDGh5httODs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 20:56:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2164 (0x874) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FCE2, serialNumber=DAFDE0BC6E0AD3A895BC756D6C31A1E61B6D383B Validity Not Before: Jun 30 20:56:04 2025 GMT Not After : Jul 7 20:56:04 2025 GMT Subject: CN=6862f9e4-75c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:cc:cd:76:07:a6:3f:6b:47:3d:d6:e9:31:57: 21:9c:58:08:45:13:bd:e7:6c:82:22:a0:a7:8a:ed: 77:29:5f:b9:e4:50:ea:89:11:02:89:b6:af:fa:08: 3a:4f:b8:8b:b2:71:06:d3:0f:cf:a8:a7:4e:2b:98: 58:c0:86:87:38:7f:8d:d3:fd:ef:6e:c2:19:6b:36: 35:ae:71:67:ec:aa:1d:3a:fc:3a:42:b4:0d:e7:0e: 8b:00:5c:cb:57:93:f8:90:00:2a:b0:36:92:1c:b6: c9:76:c9:1f:8c:ed:b9:74:57:4a:45:01:a7:37:07: b1:df:d1:8c:0e:26:f2:52:44:d6:6c:c5:59:20:78: 9f:88:d9:0d:0d:42:f4:ea:78:11:de:8a:ed:b3:f4: 78:39:65:88:0c:4b:1b:45:46:11:69:0a:44:8d:b8: 08:13:88:c1:6a:97:a8:9a:c4:f1:c8:14:ab:31:28: bf:f1:f0:a4:f5:50:83:59:74:24:e6:d3:41:1b:26: 93:67:bd:f4:74:76:a5:57:ec:40:19:1b:3d:ed:ee: 4c:b1:24:68:c3:4b:dc:7b:db:5d:df:85:c1:8d:bc: 3c:68:a6:b9:91:39:9a:52:a2:df:ad:5a:b9:a4:ea: 4d:d1:1a:de:21:64:d6:a7:cb:5e:b6:c9:5b:c1:33: 32:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:2B:D2:06:9C:F5:85:A7:B1:19:52:7A:C4:61:D7:64:8E:7E:9E:25 X509v3 Authority Key Identifier: keyid:DA:FD:E0:BC:6E:0A:D3:A8:95:BC:75:6D:6C:31:A1:E6:1B:6D:38:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2v3gvG4K06iVvHVtbDGh5httODs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:66:c1:e2:df:4e:40:0d:98:d2:64:99:96:f4:2a:b0:59:a5: 5f:24:df:ab:40:93:99:af:31:28:68:9a:c8:fe:51:9f:81:0d: cc:00:f8:3c:fc:c8:2e:9f:b5:e2:d6:05:0a:77:6c:f1:b9:e2: f6:33:4b:42:fe:df:9f:79:e9:b6:79:7c:9a:05:75:74:2b:8c: e2:bc:ac:38:fc:08:2a:b1:38:e0:bc:26:eb:70:53:10:33:13: c9:81:0f:7c:cd:9d:39:3e:61:fa:29:11:f3:8f:d1:b4:1b:5a: f8:b7:a9:90:c1:7f:cb:c4:d0:11:2e:49:70:23:cc:2e:ce:66: 6f:02:7d:44:82:90:bd:be:3a:07:26:ae:12:75:95:ec:00:0d: 8e:ba:5b:ba:cc:6a:40:4e:75:36:95:ff:ea:6a:3c:c5:91:39: 62:88:85:39:59:01:3e:12:45:d6:a8:c4:14:a6:6c:28:04:87: 9c:a3:e9:e9:a4:ae:a8:a5:09:90:a2:c9:2b:ee:a4:f9:63:ac: 97:ae:55:21:c5:0f:9d:a5:3f:c5:7b:90:75:3f:7e:da:d6:ad: 1f:1a:34:c9:ff:b0:ef:f8:46:c3:2a:e4:54:53:5a:ce:d0:10: 7f:6e:2b:da:14:ec:fa:ce:9c:45:05:87:d6:73:84:8b:f0:6c: e2:60:89:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDRTIxMTAvBgNVBAUTKERBRkRFMEJDNkUwQUQzQTg5NUJDNzU2RDZDMzFBMUU2 MUI2RDM4M0IwHhcNMjUwNjMwMjA1NjA0WhcNMjUwNzA3MjA1NjA0WjAYMRYwFAYD VQQDEw02ODYyZjllNC03NWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxMzNdgemP2tHPdbpMVchnFgIRRO952yCIqCniu13KV+55FDqiRECibav+gg6 T7iLsnEG0w/PqKdOK5hYwIaHOH+N0/3vbsIZazY1rnFn7KodOvw6QrQN5w6LAFzL V5P4kAAqsDaSHLbJdskfjO25dFdKRQGnNwex39GMDibyUkTWbMVZIHifiNkNDUL0 6ngR3orts/R4OWWIDEsbRUYRaQpEjbgIE4jBapeomsTxyBSrMSi/8fCk9VCDWXQk 5tNBGyaTZ730dHalV+xAGRs97e5MsSRow0vce9td34XBjbw8aKa5kTmaUqLfrVq5 pOpN0RreIWTWp8tetslbwTMyJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGYr0gac 9YWnsRlSesRh12SOfp4lMB8GA1UdIwQYMBaAFNr94LxuCtOolbx1bWwxoeYbbTg7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkNFMi82MTgwQzBBMkNE NkYxMUVBOTc1NDgwNDNDNEY5QUUwMi8ydjNndkc0SzA2aVZ2SFZ0YkRHaDVodHRP RHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ2M2d2RzRLMDZpVnZIVnRiREdoNWh0dE9Ecy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkNFMi82MTgwQzBBMkNENkYxMUVBOTc1NDgwNDNDNEY5QUUwMi8ydjNndkc0SzA2 aVZ2SFZ0YkRHaDVodHRPRHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9ZsHi305ADZjSZJmW9CqwWaVfJN+rQJOZrzEoaJrI/lGfgQ3MAPg8 /Mgun7Xi1gUKd2zxueL2M0tC/t+feem2eXyaBXV0K4zivKw4/AgqsTjgvCbrcFMQ MxPJgQ98zZ05PmH6KRHzj9G0G1r4t6mQwX/LxNARLklwI8wuzmZvAn1EgpC9vjoH Jq4SdZXsAA2Oulu6zGpATnU2lf/qajzFkTliiIU5WQE+EkXWqMQUpmwoBIeco+np pK6opQmQoskr7qT5Y6yXrlUhxQ+dpT/Fe5B1P37a1q0fGjTJ/7Dv+EbDKuRUU1rO 0BB/bivaFOz6zpxFBYfWc4SL8GziYIkt -----END CERTIFICATE-----Generated at Wed Jul 2 19:57:55 2025 by rpki-client