$ rpki-client -vvf rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft File: 2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft (raw, json) Hash identifier: EOkfy3UjqIF2qNFd/eefr/i2aBYVuuF2cSEE6j2KoWE= Subject key identifier: D2:40:11:AF:DC:D2:3B:5E:D9:C9:58:27:D3:D8:CA:AB:CF:27:E4:B9 Authority key identifier: D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B Certificate issuer: /CN=A9197277/serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Certificate serial: 0118 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft Manifest number: 0112 Signing time: Thu 03 Jul 2025 05:04:39 +0000 Manifest this update: Thu 03 Jul 2025 05:04:39 +0000 Manifest next update: Thu 10 Jul 2025 05:04:39 +0000 Files and hashes: 1: 2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl (hash: kYlO5yHMvPNOxKeAhaomsXzTNlpHmcFC2rm3bklcqZ0=) 2: 2DCC0688B57211EEBB68526DC4F9AE02.roa (hash: ISi9gMsFzLmCrnxNv9LX4WndyIlBo1W9bMj3vV8OrvU=) 3: 2E31B8FCB57211EEBB68526DC4F9AE02.roa (hash: XVC372fFbzyMJ0najd3nCWGY6qSm44Rgv1v3SKiEpsU=) 4: 6F5F30B8B56111EE91C72951C4F9AE02.roa (hash: g33ewG8+stt2H8q9hyzT5GDP+B5N5luEGnz8BVmfPXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 280 (0x118) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197277, serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Validity Not Before: Jul 3 05:04:39 2025 GMT Not After : Jul 10 05:04:39 2025 GMT Subject: CN=68660f67-2bbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:79:7f:9e:57:ca:26:6f:e3:b8:dd:41:78:b7: bb:b8:20:2a:b3:9d:43:cc:64:a3:95:88:c2:b8:f3: 27:42:4d:63:72:73:57:c1:05:72:a4:3b:93:d6:7a: 8b:47:14:5f:bc:f1:e8:bf:4b:05:fe:24:9a:75:23: 5b:2f:8a:c2:aa:db:b3:10:b4:e8:f4:69:8d:14:c0: e8:d6:9c:e6:58:5b:7b:85:d8:8c:92:04:40:78:fb: 9b:e8:5e:8f:c4:30:d9:ca:69:e5:ba:1f:98:02:3c: 19:33:58:3c:7c:e9:50:36:de:9d:0c:e0:0b:7b:00: 28:27:d0:93:d2:04:c5:3f:bc:35:2a:c5:eb:27:b6: c8:67:ef:55:ec:e6:9e:8c:90:40:f3:8b:30:a4:9a: 46:56:8e:4a:6d:e3:ef:d6:67:49:c4:6b:81:01:60: 63:64:13:d4:c0:d4:fe:9c:03:b9:0e:e6:3b:14:da: 55:0e:3f:ab:e3:83:42:c3:75:32:60:c1:de:0b:ea: 0d:1f:0a:12:09:72:69:99:b4:dc:84:8f:d0:52:bf: cf:1f:21:7c:c9:05:b6:2e:66:bf:2b:98:de:ec:51: c4:86:29:1a:c9:e5:78:44:88:80:da:41:fd:7a:50: c4:5f:98:dd:63:a2:ff:2c:78:88:4f:e5:92:f1:ba: 7d:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:40:11:AF:DC:D2:3B:5E:D9:C9:58:27:D3:D8:CA:AB:CF:27:E4:B9 X509v3 Authority Key Identifier: keyid:D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:13:b0:ce:e3:3f:0e:80:fc:87:00:6f:ff:b0:9f:be:c2:af: 48:e5:64:87:bf:eb:f4:c0:77:df:53:10:78:a2:8c:35:1e:02: 57:53:79:dd:e4:f7:af:fd:44:68:82:c6:e2:77:cd:7c:44:4d: de:c6:2f:f0:dc:fa:db:06:a7:24:d1:08:76:17:b9:75:cd:9a: 74:82:95:35:d9:8d:3b:52:1e:08:c2:b6:9e:c6:27:8c:39:b0: 03:04:67:27:75:fe:ac:6d:72:18:e5:12:36:82:54:fb:e5:28: 40:37:19:81:8d:d4:48:30:39:8d:63:a7:c7:c0:2d:18:cd:95: f0:18:dd:47:85:48:6e:9b:6e:0e:a4:03:51:2f:35:1e:e9:7b: c2:93:a7:21:3b:8a:77:c9:46:c3:06:51:a2:0b:51:67:c2:78: fb:ab:e0:d1:70:22:4a:4c:7c:24:a5:ff:1d:71:c3:cd:e5:58: a5:fc:c4:22:2a:7e:7a:fa:ec:21:36:59:21:3b:08:97:0d:65: 0d:00:29:0f:a2:af:49:4b:16:5d:b2:81:09:5a:1f:e0:66:84: ac:8b:66:89:69:09:65:14:f4:8b:75:42:95:05:4e:92:05:18: b1:35:38:7e:f8:62:de:7d:32:0e:8c:ed:09:48:e7:bc:4e:50: a2:b0:67:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyNzcxMTAvBgNVBAUTKEQ4M0I5M0UzMUU5Mzk5MzdEOENCMTVGRTM5Q0E1RTZF OEZFQUZBOUIwHhcNMjUwNzAzMDUwNDM5WhcNMjUwNzEwMDUwNDM5WjAYMRYwFAYD VQQDEw02ODY2MGY2Ny0yYmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwXl/nlfKJm/juN1BeLe7uCAqs51DzGSjlYjCuPMnQk1jcnNXwQVypDuT1nqL RxRfvPHov0sF/iSadSNbL4rCqtuzELTo9GmNFMDo1pzmWFt7hdiMkgRAePub6F6P xDDZymnluh+YAjwZM1g8fOlQNt6dDOALewAoJ9CT0gTFP7w1KsXrJ7bIZ+9V7Oae jJBA84swpJpGVo5KbePv1mdJxGuBAWBjZBPUwNT+nAO5DuY7FNpVDj+r44NCw3Uy YMHeC+oNHwoSCXJpmbTchI/QUr/PHyF8yQW2Lma/K5je7FHEhikayeV4RIiA2kH9 elDEX5jdY6L/LHiIT+WS8bp9rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNJAEa/c 0jte2clYJ9PYyqvPJ+S5MB8GA1UdIwQYMBaAFNg7k+Mek5k32MsV/jnKXm6P6vqb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzI3Ny80M0E3RTg5NEI1 NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRHVUNHg2VG1UZll5eFgtT2NwZWJvX3Et cHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJEdVQ0eDZUbVRmWXl4WC1PY3BlYm9fcS1wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzI3Ny80M0E3RTg5NEI1NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRHVUNHg2VG1U Zll5eFgtT2NwZWJvX3EtcHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOE7DO4z8OgPyHAG//sJ++wq9I5WSHv+v0wHffUxB4oow1HgJXU3nd 5Pev/URogsbid818RE3exi/w3PrbBqck0Qh2F7l1zZp0gpU12Y07Uh4IwraexieM ObADBGcndf6sbXIY5RI2glT75ShANxmBjdRIMDmNY6fHwC0YzZXwGN1HhUhum24O pANRLzUe6XvCk6chO4p3yUbDBlGiC1Fnwnj7q+DRcCJKTHwkpf8dccPN5Vil/MQi Kn56+uwhNlkhOwiXDWUNACkPoq9JSxZdsoEJWh/gZoSsi2aJaQllFPSLdUKVBU6S BRixNTh++GLefTIOjO0JSOe8TlCisGch -----END CERTIFICATE-----Generated at Thu Jul 3 23:43:31 2025 by rpki-client