$ rpki-client -vvf rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.mft File: 2zfNKCxsfbw6kLEDt6I53NFY_2A.mft (raw, json) Hash identifier: V+sg2myQzKBO5v1ehw7n4kQEYUZPp977Avs6EbTh5XM= Subject key identifier: DD:75:6C:6A:AF:31:2A:53:E8:E1:E2:75:D7:9A:0E:C5:2B:32:94:4D Authority key identifier: DB:37:CD:28:2C:6C:7D:BC:3A:90:B1:03:B7:A2:39:DC:D1:58:FF:60 Certificate issuer: /CN=A913E652/serialNumber=DB37CD282C6C7DBC3A90B103B7A239DCD158FF60 Certificate serial: 08D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zfNKCxsfbw6kLEDt6I53NFY_2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.mft Manifest number: 08CE Signing time: Thu 12 Jun 2025 20:12:48 +0000 Manifest this update: Thu 12 Jun 2025 20:12:47 +0000 Manifest next update: Thu 19 Jun 2025 20:12:47 +0000 Files and hashes: 1: 2zfNKCxsfbw6kLEDt6I53NFY_2A.crl (hash: 1LFaFkjspvcpJQi798fxy52dvrRWOR333+lW7pJw4Do=) 2: 6154A3B0B2B611EAA5884016C4F9AE02.roa (hash: v6eXZmLrZttsFYphww5DwQSaxSYNhoXZnZd8akGhwqk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.crl rsync://rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zfNKCxsfbw6kLEDt6I53NFY_2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 20:12:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2260 (0x8d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E652, serialNumber=DB37CD282C6C7DBC3A90B103B7A239DCD158FF60 Validity Not Before: Jun 12 20:12:47 2025 GMT Not After : Jun 19 20:12:47 2025 GMT Subject: CN=684b34c0-e603 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b7:1f:38:06:af:0f:3d:ac:f4:02:1c:90:4f: f5:a7:0a:8e:28:dc:da:68:8b:64:ed:f4:fc:48:69: 15:94:6d:ff:8d:6e:e6:9f:64:37:55:79:39:fb:ce: 35:54:74:f6:e8:5d:02:5d:fa:bf:0c:87:d2:c2:51: 09:03:39:68:bc:09:60:af:32:18:38:37:ff:36:59: 62:f1:8f:65:25:f5:fe:71:16:fc:0c:a2:f9:dd:aa: ae:0e:a3:49:26:1b:6c:93:ad:60:a7:5a:c3:ae:f8: a2:0c:51:2f:18:c9:be:1d:42:8f:c5:b5:c5:66:9b: bb:c5:e5:62:78:73:2f:bf:66:96:71:a8:1e:93:4a: 10:24:02:06:dd:e4:bf:99:9e:bd:5e:55:9a:9d:48: 35:40:fc:14:f6:77:f7:82:e6:86:21:f0:cb:4f:fe: 8b:71:fc:bd:fd:93:ae:29:0b:43:c6:75:14:bd:19: fd:a0:11:0c:e1:09:9d:6f:c2:9e:0f:de:08:04:7e: 5b:d3:0e:a2:1c:47:9c:09:a7:51:82:1c:2a:1c:09: f9:16:f4:d5:28:b5:f5:75:f2:40:13:83:63:06:e3: 45:30:c4:2d:a5:75:2b:eb:5a:eb:86:7c:b1:04:4f: b7:dd:62:8f:51:f0:23:40:d1:d6:f2:24:0a:3b:37: 2b:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:75:6C:6A:AF:31:2A:53:E8:E1:E2:75:D7:9A:0E:C5:2B:32:94:4D X509v3 Authority Key Identifier: keyid:DB:37:CD:28:2C:6C:7D:BC:3A:90:B1:03:B7:A2:39:DC:D1:58:FF:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zfNKCxsfbw6kLEDt6I53NFY_2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:f5:1f:27:71:43:41:82:57:9a:2f:27:65:90:1c:f2:ff:4a: e9:52:e6:7b:fb:87:5c:73:a0:4a:d2:ec:3b:68:31:05:35:32: 85:98:40:d8:2e:7c:5f:4b:57:22:02:5c:bd:60:23:8f:48:c9: ac:57:aa:a5:c7:3c:cf:b8:81:be:02:96:bf:2f:13:1e:1c:ee: 6d:9e:d9:12:e4:b7:43:3f:0a:fe:a0:91:f3:f1:e9:7e:ac:a8: 39:5d:0f:e5:08:2b:6a:40:3b:17:44:2a:b5:50:8f:e3:ce:a3: 41:a7:e0:6f:f1:23:6f:30:cb:3d:21:07:6b:f6:29:55:28:65: a3:42:ea:d3:66:ec:6c:b5:8d:27:09:c8:db:d1:dd:17:58:d1: d6:72:15:65:8d:7a:e4:c1:44:ca:d4:be:0f:e5:dc:48:c4:6a: a0:8a:af:24:d3:11:18:a2:bb:39:4b:0c:63:91:8d:0d:a6:4e: 56:30:e6:0d:08:60:f8:09:ac:6c:f8:16:7a:91:c8:14:06:a5: 71:7b:1c:15:86:3c:af:3d:ee:92:f0:99:03:df:d6:ce:56:f6: 57:08:84:b0:b3:8e:1d:83:dd:eb:9e:63:04:ed:0d:35:72:3d: 84:c0:04:9c:48:33:4f:02:04:b5:72:f5:3e:dc:5f:89:65:6d: b5:bb:d8:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U2NTIxMTAvBgNVBAUTKERCMzdDRDI4MkM2QzdEQkMzQTkwQjEwM0I3QTIzOURD RDE1OEZGNjAwHhcNMjUwNjEyMjAxMjQ3WhcNMjUwNjE5MjAxMjQ3WjAYMRYwFAYD VQQDEw02ODRiMzRjMC1lNjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx7cfOAavDz2s9AIckE/1pwqOKNzaaItk7fT8SGkVlG3/jW7mn2Q3VXk5+841 VHT26F0CXfq/DIfSwlEJAzlovAlgrzIYODf/Nlli8Y9lJfX+cRb8DKL53aquDqNJ Jhtsk61gp1rDrviiDFEvGMm+HUKPxbXFZpu7xeVieHMvv2aWcagek0oQJAIG3eS/ mZ69XlWanUg1QPwU9nf3guaGIfDLT/6Lcfy9/ZOuKQtDxnUUvRn9oBEM4Qmdb8Ke D94IBH5b0w6iHEecCadRghwqHAn5FvTVKLX1dfJAE4NjBuNFMMQtpXUr61rrhnyx BE+33WKPUfAjQNHW8iQKOzcrPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN11bGqv MSpT6OHiddeaDsUrMpRNMB8GA1UdIwQYMBaAFNs3zSgsbH28OpCxA7eiOdzRWP9g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTY1Mi82MDBBQjQ2NEIy QjUxMUVBOEFEQzQ0MTVDNEY5QUUwMi8yemZOS0N4c2ZidzZrTEVEdDZJNTNORllf MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ6Zk5LQ3hzZmJ3NmtMRUR0Nkk1M05GWV8yQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTY1Mi82MDBBQjQ2NEIyQjUxMUVBOEFEQzQ0MTVDNEY5QUUwMi8yemZOS0N4c2Zi dzZrTEVEdDZJNTNORllfMkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA69R8ncUNBgleaLydlkBzy/0rpUuZ7+4dcc6BK0uw7aDEFNTKFmEDY LnxfS1ciAly9YCOPSMmsV6qlxzzPuIG+Apa/LxMeHO5tntkS5LdDPwr+oJHz8el+ rKg5XQ/lCCtqQDsXRCq1UI/jzqNBp+Bv8SNvMMs9IQdr9ilVKGWjQurTZuxstY0n Ccjb0d0XWNHWchVljXrkwUTK1L4P5dxIxGqgiq8k0xEYors5SwxjkY0Npk5WMOYN CGD4Caxs+BZ6kcgUBqVxexwVhjyvPe6S8JkD39bOVvZXCISws44dg93rnmME7Q01 cj2EwAScSDNPAgS1cvU+3F+JZW21u9iG -----END CERTIFICATE-----Generated at Sat Jun 14 19:38:38 2025 by rpki-client