$ rpki-client -vvf rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft File: 2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft (raw, json) Hash identifier: iXDSw4+VxEuqFTuAXo54eZ8s2pj8AlHuzpiwKFc51io= Subject key identifier: 7E:6C:AD:D5:9F:6F:98:C5:82:5D:EE:17:13:8B:06:72:4F:1A:7C:59 Authority key identifier: DA:54:7E:D6:92:8A:AD:1E:CF:B6:84:7A:1B:07:43:2B:D8:7B:19:EF Certificate issuer: /CN=A9140E66/serialNumber=DA547ED6928AAD1ECFB6847A1B07432BD87B19EF Certificate serial: 0C6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft Manifest number: 0C66 Signing time: Thu 12 Jun 2025 18:07:18 +0000 Manifest this update: Thu 12 Jun 2025 18:07:17 +0000 Manifest next update: Thu 19 Jun 2025 18:07:17 +0000 Files and hashes: 1: 2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl (hash: FhQigkW3GMpQ0UPFQdB1BsqCI+DO+7Bsq5h15vzgIpw=) 2: 7665CD0AFF7011E99CDC306AC4F9AE02.roa (hash: n/f1uTeEyARI3uLFtA8qgF3ZldlUFB3TY49ssy/Ns3A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 18:07:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3180 (0xc6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140E66, serialNumber=DA547ED6928AAD1ECFB6847A1B07432BD87B19EF Validity Not Before: Jun 12 18:07:17 2025 GMT Not After : Jun 19 18:07:17 2025 GMT Subject: CN=684b1755-0842 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:8f:7c:2f:1c:1f:75:09:d4:68:d8:c1:24:44: 45:42:74:d0:c6:f5:36:ab:93:15:86:67:e9:16:d3: f3:67:6f:2f:ba:61:cf:a2:d0:e0:ae:19:2d:5f:16: 49:cc:8d:d5:2b:3d:83:68:d6:52:ff:49:3a:fd:62: e1:4b:b7:ee:02:53:d9:5e:28:c6:c5:dc:31:56:7a: ff:46:37:d0:01:fc:6a:67:00:30:dd:57:44:47:9d: f7:fe:91:77:a2:0e:86:2e:12:cb:0e:1a:3c:b6:ef: a5:41:fe:a0:c1:94:ad:af:d5:e8:0a:e5:4e:c2:11: de:50:72:c1:dc:23:50:2a:59:27:13:c6:06:c9:a1: 89:31:03:09:b7:1e:27:c2:b0:3d:3e:fa:fd:64:07: 5d:e7:91:f1:70:73:5f:bf:31:b5:26:74:18:a8:e1: 2e:77:80:a5:b6:ae:b8:db:ed:61:43:ad:0c:6e:01: 53:99:24:8e:69:5f:dc:fd:86:2f:fe:90:1f:5a:a4: 10:c5:41:90:c1:b1:64:01:74:a4:dc:00:11:cc:45: c0:64:3d:ca:4d:ec:c7:83:f2:19:af:ed:e0:d2:e6: 40:5e:25:50:a5:c8:d8:72:7f:be:e6:80:9a:eb:c5: 68:be:f4:89:c5:94:fa:5a:d5:4f:56:2d:3e:f4:f5: 1b:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:6C:AD:D5:9F:6F:98:C5:82:5D:EE:17:13:8B:06:72:4F:1A:7C:59 X509v3 Authority Key Identifier: keyid:DA:54:7E:D6:92:8A:AD:1E:CF:B6:84:7A:1B:07:43:2B:D8:7B:19:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:55:58:75:41:f1:48:4a:14:b7:9d:ed:5d:a3:10:74:9b:66: 29:74:a5:a7:6c:9a:8f:ef:cd:56:5e:e5:cf:95:77:dc:2c:7b: f1:e2:e2:fb:7a:c2:2e:f0:20:12:f1:34:d1:05:a5:9b:47:1e: 21:b3:c6:c2:de:a8:3b:b6:d7:2d:9c:a3:23:b1:05:6b:5f:ab: 21:5f:e4:cd:b0:bb:69:ab:4b:fb:cf:a3:41:b4:11:6a:2f:d3: a5:92:ff:eb:36:02:87:b9:2f:6f:aa:6a:11:a1:d1:69:81:b9: f4:21:d1:65:ff:88:1d:e9:a4:18:6d:77:c6:d1:57:06:81:5d: 33:e4:44:44:09:8b:c0:50:60:02:94:85:e4:b8:83:54:27:5a: ee:bd:ea:96:4d:8d:cc:f1:9f:f9:5d:e2:9e:8c:95:cc:60:5d: fd:10:2f:2f:44:74:46:e9:6f:72:a2:da:79:17:c2:1b:79:18: e2:4f:ac:b7:5a:8c:8b:64:7d:e2:02:34:b3:be:e4:0d:a7:6b: 2d:90:2b:ca:b5:e0:fb:96:17:9b:43:ee:50:c6:09:73:28:79: ac:f2:7c:aa:00:b6:bf:24:bd:c9:e9:18:70:11:72:d5:1d:ae: 85:ea:69:e3:d9:8f:ec:a4:27:c7:a7:23:44:1d:c2:14:f0:2d: 6a:84:8c:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFNjYxMTAvBgNVBAUTKERBNTQ3RUQ2OTI4QUFEMUVDRkI2ODQ3QTFCMDc0MzJC RDg3QjE5RUYwHhcNMjUwNjEyMTgwNzE3WhcNMjUwNjE5MTgwNzE3WjAYMRYwFAYD VQQDEw02ODRiMTc1NS0wODQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyo98LxwfdQnUaNjBJERFQnTQxvU2q5MVhmfpFtPzZ28vumHPotDgrhktXxZJ zI3VKz2DaNZS/0k6/WLhS7fuAlPZXijGxdwxVnr/RjfQAfxqZwAw3VdER533/pF3 og6GLhLLDho8tu+lQf6gwZStr9XoCuVOwhHeUHLB3CNQKlknE8YGyaGJMQMJtx4n wrA9Pvr9ZAdd55HxcHNfvzG1JnQYqOEud4Cltq642+1hQ60MbgFTmSSOaV/c/YYv /pAfWqQQxUGQwbFkAXSk3AARzEXAZD3KTezHg/IZr+3g0uZAXiVQpcjYcn++5oCa 68VovvSJxZT6WtVPVi0+9PUbnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH5srdWf b5jFgl3uFxOLBnJPGnxZMB8GA1UdIwQYMBaAFNpUftaSiq0ez7aEehsHQyvYexnv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEU2Ni83MDYzOUVGQ0ZG NkUxMUU5ODVBODhDNjdDNEY5QUUwMi8ybFItMXBLS3JSN1B0b1I2R3dkREs5aDdH ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsUi0xcEtLclI3UHRvUjZHd2RESzloN0dlOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEU2Ni83MDYzOUVGQ0ZGNkUxMUU5ODVBODhDNjdDNEY5QUUwMi8ybFItMXBLS3JS N1B0b1I2R3dkREs5aDdHZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYVVh1QfFIShS3ne1doxB0m2YpdKWnbJqP781WXuXPlXfcLHvx4uL7 esIu8CAS8TTRBaWbRx4hs8bC3qg7ttctnKMjsQVrX6shX+TNsLtpq0v7z6NBtBFq L9Olkv/rNgKHuS9vqmoRodFpgbn0IdFl/4gd6aQYbXfG0VcGgV0z5ERECYvAUGAC lIXkuINUJ1ruveqWTY3M8Z/5XeKejJXMYF39EC8vRHRG6W9yotp5F8IbeRjiT6y3 WoyLZH3iAjSzvuQNp2stkCvKteD7lhebQ+5QxglzKHms8nyqALa/JL3J6RhwEXLV Ha6F6mnj2Y/spCfHpyNEHcIU8C1qhIwy -----END CERTIFICATE-----Generated at Sat Jun 14 19:40:43 2025 by rpki-client