$ rpki-client -vvf rpki.apnic.net/member_repository/A91293E9/83A174FC8C6811EB981B2542C4F9AE02/2cYV0QtB5uVphlzKp_4oDRKOMRw.mft File: 2cYV0QtB5uVphlzKp_4oDRKOMRw.mft (raw, json) Hash identifier: Z8vbDo/CvSC9lAIAiL3FhIocV8hJtNIA6OZ/yRtybfc= Subject key identifier: 5D:56:DB:13:C7:92:E1:EC:EE:59:7C:30:96:D1:F6:81:C0:8E:3E:FA Authority key identifier: D9:C6:15:D1:0B:41:E6:E5:69:86:5C:CA:A7:FE:28:0D:12:8E:31:1C Certificate issuer: /CN=A91293E9/serialNumber=D9C615D10B41E6E569865CCAA7FE280D128E311C Certificate serial: 0667 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2cYV0QtB5uVphlzKp_4oDRKOMRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91293E9/83A174FC8C6811EB981B2542C4F9AE02/2cYV0QtB5uVphlzKp_4oDRKOMRw.mft Manifest number: 065C Signing time: Wed 18 Jun 2025 22:23:13 +0000 Manifest this update: Wed 18 Jun 2025 22:23:12 +0000 Manifest next update: Wed 25 Jun 2025 22:23:12 +0000 Files and hashes: 1: 2cYV0QtB5uVphlzKp_4oDRKOMRw.crl (hash: QzgJBQqTdb7Rok4Z0yKHXQBlC0TN7Gjo+WQFx5T8RJ4=) 2: 1AC1982A8C6A11EB91832D52C4F9AE02.roa (hash: fSfAPi/bUi9k15IOKds7b6yXEktxoZjFwfG44RAp5IM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91293E9/83A174FC8C6811EB981B2542C4F9AE02/2cYV0QtB5uVphlzKp_4oDRKOMRw.crl rsync://rpki.apnic.net/member_repository/A91293E9/83A174FC8C6811EB981B2542C4F9AE02/2cYV0QtB5uVphlzKp_4oDRKOMRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2cYV0QtB5uVphlzKp_4oDRKOMRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 22:23:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1639 (0x667) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91293E9, serialNumber=D9C615D10B41E6E569865CCAA7FE280D128E311C Validity Not Before: Jun 18 22:23:12 2025 GMT Not After : Jun 25 22:23:12 2025 GMT Subject: CN=68533c50-9f98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:35:10:f1:95:0a:25:8c:9c:c1:95:76:b1:cd: f2:f5:d9:28:43:fd:17:c3:ee:37:de:3c:c0:2d:10: 8d:ef:c1:f2:62:6e:e1:ae:ba:2e:ed:e9:06:ff:19: b4:4d:48:85:39:82:ba:72:14:2e:9c:4d:ec:cd:b4: 5c:9a:c9:15:1e:66:19:d6:64:93:a7:07:d7:a4:0f: d7:cb:7b:a6:6c:3c:2e:de:ef:25:89:53:47:21:14: ef:66:a4:0b:64:be:4b:88:f4:10:d9:3d:eb:72:10: 2e:6e:fb:e8:5d:ec:a2:8a:32:cb:05:a6:cd:9f:22: 1e:ec:da:a6:0c:f2:9b:e4:51:16:44:16:ef:6a:9f: 8a:68:db:50:e3:1c:0d:b3:26:57:f9:e9:a9:71:85: 36:4c:85:f8:e2:41:22:51:f9:6e:9f:39:45:60:98: 81:36:1d:ee:e6:f8:ac:fe:0b:ce:5a:1d:3a:60:d5: 91:a0:ab:a0:83:05:d4:d0:01:d3:7b:5c:54:1b:ed: 8d:df:1f:43:9f:67:ab:ce:d3:15:db:4d:63:0e:97: 42:80:47:6f:08:40:71:79:e5:a9:a0:54:c5:67:af: 4e:01:bd:dc:1d:ca:bb:b8:b4:a8:fc:7e:f3:19:b2: e3:bd:4c:89:8f:bb:44:b4:53:cc:a1:2f:34:93:65: b8:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:56:DB:13:C7:92:E1:EC:EE:59:7C:30:96:D1:F6:81:C0:8E:3E:FA X509v3 Authority Key Identifier: keyid:D9:C6:15:D1:0B:41:E6:E5:69:86:5C:CA:A7:FE:28:0D:12:8E:31:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91293E9/83A174FC8C6811EB981B2542C4F9AE02/2cYV0QtB5uVphlzKp_4oDRKOMRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2cYV0QtB5uVphlzKp_4oDRKOMRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91293E9/83A174FC8C6811EB981B2542C4F9AE02/2cYV0QtB5uVphlzKp_4oDRKOMRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:25:75:99:54:24:72:eb:63:ff:16:f7:78:4c:64:65:40:05: 9c:86:b2:14:c3:97:7e:bf:98:1b:fc:9e:9f:d9:0f:7e:73:67: f1:75:6e:83:f8:3b:47:21:2a:e6:7f:d8:1d:b4:6b:4c:ba:ba: 5c:4c:92:b4:2a:ee:26:b1:2c:b2:03:44:88:f6:e2:39:06:da: 70:f5:6c:ba:4c:b3:40:44:ef:f1:cc:9c:c5:24:77:be:da:18: 4d:96:84:fc:dc:ae:7f:68:4d:14:9e:a7:05:94:37:59:f7:7e: 70:b5:2d:77:2b:a3:16:25:8c:bb:9e:60:ff:13:d0:f6:1e:9f: 39:37:e6:0e:8a:15:35:8c:05:4b:8f:9f:fe:2e:12:0f:1d:67: eb:b8:e6:a3:26:60:35:b7:0b:f6:ec:59:12:aa:1a:b1:ae:0e: ad:51:79:d0:97:bb:48:0d:7c:ff:11:86:fe:86:7e:78:5f:0f: 86:23:ef:5e:e7:d4:93:82:5f:eb:78:b1:31:19:99:ca:0e:e0: 8f:1e:02:c3:4a:41:10:98:4e:df:6d:55:4e:99:57:9b:1a:57: 9a:93:db:81:d5:2c:6e:a2:90:99:91:54:fb:b2:e0:2e:3e:15: ad:56:b4:1c:13:42:3c:53:26:16:fc:9d:74:86:47:e0:3b:e6: 3d:91:93:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjkzRTkxMTAvBgNVBAUTKEQ5QzYxNUQxMEI0MUU2RTU2OTg2NUNDQUE3RkUyODBE MTI4RTMxMUMwHhcNMjUwNjE4MjIyMzEyWhcNMjUwNjI1MjIyMzEyWjAYMRYwFAYD VQQDEw02ODUzM2M1MC05Zjk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArzUQ8ZUKJYycwZV2sc3y9dkoQ/0Xw+433jzALRCN78HyYm7hrrou7ekG/xm0 TUiFOYK6chQunE3szbRcmskVHmYZ1mSTpwfXpA/Xy3umbDwu3u8liVNHIRTvZqQL ZL5LiPQQ2T3rchAubvvoXeyiijLLBabNnyIe7NqmDPKb5FEWRBbvap+KaNtQ4xwN syZX+empcYU2TIX44kEiUflunzlFYJiBNh3u5vis/gvOWh06YNWRoKuggwXU0AHT e1xUG+2N3x9Dn2erztMV201jDpdCgEdvCEBxeeWpoFTFZ69OAb3cHcq7uLSo/H7z GbLjvUyJj7tEtFPMoS80k2W4swIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF1W2xPH kuHs7ll8MJbR9oHAjj76MB8GA1UdIwQYMBaAFNnGFdELQeblaYZcyqf+KA0SjjEc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTNFOS84M0ExNzRGQzhD NjgxMUVCOTgxQjI1NDJDNEY5QUUwMi8yY1lWMFF0QjV1VnBobHpLcF80b0RSS09N UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJjWVYwUXRCNXVWcGhsektwXzRvRFJLT01Sdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OTNFOS84M0ExNzRGQzhDNjgxMUVCOTgxQjI1NDJDNEY5QUUwMi8yY1lWMFF0QjV1 VnBobHpLcF80b0RSS09NUncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPJXWZVCRy62P/Fvd4TGRlQAWchrIUw5d+v5gb/J6f2Q9+c2fxdW6D +DtHISrmf9gdtGtMurpcTJK0Ku4msSyyA0SI9uI5Btpw9Wy6TLNARO/xzJzFJHe+ 2hhNloT83K5/aE0UnqcFlDdZ935wtS13K6MWJYy7nmD/E9D2Hp85N+YOihU1jAVL j5/+LhIPHWfruOajJmA1twv27FkSqhqxrg6tUXnQl7tIDXz/EYb+hn54Xw+GI+9e 59STgl/reLExGZnKDuCPHgLDSkEQmE7fbVVOmVebGleak9uB1SxuopCZkVT7suAu PhWtVrQcE0I8UyYW/J10hkfgO+Y9kZOY -----END CERTIFICATE-----Generated at Thu Jun 19 16:10:02 2025 by rpki-client