$ rpki-client -vvf rpki.apnic.net/member_repository/A9197ADE/89A493E2FE4D11EFA1AFFC1AC4F9AE02/2TIL_awMkLNCikT8fcoOL3kJd0E.mft File: 2TIL_awMkLNCikT8fcoOL3kJd0E.mft (raw, json) Hash identifier: 3NLyZA5N2G3gOV4cFzmaxK0uITHgQjNmWey8MPu+iVY= Subject key identifier: AE:A3:10:AA:4C:AF:F2:0F:36:FB:BC:5B:99:10:0D:BD:7A:82:45:6E Authority key identifier: D9:32:0B:FD:AC:0C:90:B3:42:8A:44:FC:7D:CA:0E:2F:79:09:77:41 Certificate issuer: /CN=A9197ADE/serialNumber=D9320BFDAC0C90B3428A44FC7DCA0E2F79097741 Certificate serial: 3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2TIL_awMkLNCikT8fcoOL3kJd0E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197ADE/89A493E2FE4D11EFA1AFFC1AC4F9AE02/2TIL_awMkLNCikT8fcoOL3kJd0E.mft Manifest number: 3C Signing time: Tue 01 Jul 2025 08:19:59 +0000 Manifest this update: Tue 01 Jul 2025 08:19:59 +0000 Manifest next update: Tue 08 Jul 2025 08:19:59 +0000 Files and hashes: 1: 2TIL_awMkLNCikT8fcoOL3kJd0E.crl (hash: 5b7Upl15KuGcXEnYiACcaXASZ+8cHpqGJ5rahSy/H2g=) 2: E0CFA54EFE4D11EF8274971BC4F9AE02.roa (hash: xErSiwEVGbEN6QlFmGLkFVWsdMEkeNM0TxyRejXCRHw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197ADE/89A493E2FE4D11EFA1AFFC1AC4F9AE02/2TIL_awMkLNCikT8fcoOL3kJd0E.crl rsync://rpki.apnic.net/member_repository/A9197ADE/89A493E2FE4D11EFA1AFFC1AC4F9AE02/2TIL_awMkLNCikT8fcoOL3kJd0E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2TIL_awMkLNCikT8fcoOL3kJd0E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:19:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197ADE, serialNumber=D9320BFDAC0C90B3428A44FC7DCA0E2F79097741 Validity Not Before: Jul 1 08:19:59 2025 GMT Not After : Jul 8 08:19:59 2025 GMT Subject: CN=68639a2f-1152 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:82:92:b2:9e:5f:d1:7e:4d:82:c4:ea:2a:37: 36:da:43:c8:72:b5:02:fd:0b:e0:70:0e:94:6a:0f: 19:07:4d:78:35:db:75:f1:83:6f:9a:15:fd:b4:76: 02:73:54:14:02:79:f6:17:f8:24:ed:80:cc:fa:5e: ea:ce:c4:0f:13:4a:63:16:db:f9:4e:07:61:8a:21: 8f:d2:a1:7a:a6:d5:62:d6:a6:b0:3e:e9:db:73:a7: 39:28:bc:03:d2:30:39:1a:62:79:47:98:b7:b8:c9: 48:c1:1b:7d:63:11:74:ce:ec:eb:61:e5:fb:b0:14: 2b:15:5f:91:a6:e2:3c:73:5f:30:f2:4f:72:7d:51: 9e:45:fa:2b:8b:0c:79:bd:79:25:68:ca:a3:4d:55: e2:e2:3f:92:ff:e1:c4:05:14:93:22:19:e9:bd:73: 9c:2a:33:7f:c6:a6:16:2f:06:51:7e:ae:75:b3:d6: 92:eb:fe:e8:ae:ef:f5:ee:3a:77:13:ac:4a:53:62: f7:39:f8:43:6f:ff:68:62:4a:57:be:fd:aa:4c:c4: 75:c5:56:12:da:89:75:f7:09:5b:86:c7:60:98:29: 1d:fe:d0:f6:ab:85:dc:3e:d1:45:98:53:45:3a:d5: b7:ed:aa:e9:5c:5d:7f:8a:46:23:56:fd:50:c3:dd: 35:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:A3:10:AA:4C:AF:F2:0F:36:FB:BC:5B:99:10:0D:BD:7A:82:45:6E X509v3 Authority Key Identifier: keyid:D9:32:0B:FD:AC:0C:90:B3:42:8A:44:FC:7D:CA:0E:2F:79:09:77:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197ADE/89A493E2FE4D11EFA1AFFC1AC4F9AE02/2TIL_awMkLNCikT8fcoOL3kJd0E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2TIL_awMkLNCikT8fcoOL3kJd0E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197ADE/89A493E2FE4D11EFA1AFFC1AC4F9AE02/2TIL_awMkLNCikT8fcoOL3kJd0E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:a6:78:8b:d5:f1:0e:14:ea:8a:ad:e7:41:ff:bd:2b:da:46: 40:f0:cc:d1:21:bf:8c:86:cc:48:93:8e:e9:e8:87:b0:9d:c7: 77:0f:d6:87:08:74:8d:d1:b7:94:29:d7:5e:94:2d:5d:26:c0: 69:28:27:6f:3c:8b:ca:6e:b2:20:b1:c2:2c:de:77:25:c1:d4: 59:91:f0:b2:38:64:ee:08:3c:ba:32:a8:ef:32:f8:94:47:27: 71:d9:68:68:bd:bb:f0:ba:f0:c0:90:d1:9d:94:50:ed:cf:5a: 21:76:a1:fc:b0:d1:b8:67:41:45:f3:a7:d6:10:70:5d:30:a5: db:de:b2:67:e1:b0:d7:9d:1b:1f:28:51:d2:32:c9:9d:c7:4b: 1f:ea:1d:da:7f:2c:cf:c2:f0:e5:15:69:7e:eb:50:70:00:c4: 14:16:51:73:3d:c4:4c:bb:87:09:50:78:e9:ee:38:ba:d9:ea: 65:30:70:09:8a:bb:60:fa:e0:a3:e8:f6:ae:60:5a:92:d7:8f: 94:92:ef:32:28:08:12:2f:35:dd:4d:fc:e2:b5:5d:10:a6:f2: a7:30:9c:29:09:4e:76:6d:af:ba:9c:14:c4:09:1e:d0:4e:7c: 0c:f2:74:82:f3:22:07:d2:a2:ac:c2:fd:24:88:49:fe:ee:51: 49:a6:2c:d3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 N0FERTExMC8GA1UEBRMoRDkzMjBCRkRBQzBDOTBCMzQyOEE0NEZDN0RDQTBFMkY3 OTA5Nzc0MTAeFw0yNTA3MDEwODE5NTlaFw0yNTA3MDgwODE5NTlaMBgxFjAUBgNV BAMTDTY4NjM5YTJmLTExNTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHgpKynl/Rfk2CxOoqNzbaQ8hytQL9C+BwDpRqDxkHTXg123Xxg2+aFf20dgJz VBQCefYX+CTtgMz6XurOxA8TSmMW2/lOB2GKIY/SoXqm1WLWprA+6dtzpzkovAPS MDkaYnlHmLe4yUjBG31jEXTO7Oth5fuwFCsVX5Gm4jxzXzDyT3J9UZ5F+iuLDHm9 eSVoyqNNVeLiP5L/4cQFFJMiGem9c5wqM3/GphYvBlF+rnWz1pLr/uiu7/XuOncT rEpTYvc5+ENv/2hiSle+/apMxHXFVhLaiXX3CVuGx2CYKR3+0Parhdw+0UWYU0U6 1bftqulcXX+KRiNW/VDD3TUzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUrqMQqkyv 8g82+7xbmRANvXqCRW4wHwYDVR0jBBgwFoAU2TIL/awMkLNCikT8fcoOL3kJd0Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3QURFLzg5QTQ5M0UyRkU0 RDExRUZBMUFGRkMxQUM0RjlBRTAyLzJUSUxfYXdNa0xOQ2lrVDhmY29PTDNrSmQw RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMlRJTF9hd01rTE5DaWtUOGZjb09MM2tKZDBFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3 QURFLzg5QTQ5M0UyRkU0RDExRUZBMUFGRkMxQUM0RjlBRTAyLzJUSUxfYXdNa0xO Q2lrVDhmY29PTDNrSmQwRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG+meIvV8Q4U6oqt50H/vSvaRkDwzNEhv4yGzEiTjunoh7Cdx3cP1ocI dI3Rt5Qp116ULV0mwGkoJ288i8pusiCxwizedyXB1FmR8LI4ZO4IPLoyqO8y+JRH J3HZaGi9u/C68MCQ0Z2UUO3PWiF2ofyw0bhnQUXzp9YQcF0wpdvesmfhsNedGx8o UdIyyZ3HSx/qHdp/LM/C8OUVaX7rUHAAxBQWUXM9xEy7hwlQeOnuOLrZ6mUwcAmK u2D64KPo9q5gWpLXj5SS7zIoCBIvNd1N/OK1XRCm8qcwnCkJTnZtr7qcFMQJHtBO fAzydILzIgfSoqzC/SSISf7uUUmmLNM= -----END CERTIFICATE-----Generated at Wed Jul 2 15:04:17 2025 by rpki-client