$ rpki-client -vvf rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.mft File: N2EhKhZwpXGatx-iA7kuxobyEXc.mft (raw, json) Hash identifier: PF5Sm0aqWP0g8qRyjWYVHV2WTtn106oag8V9LFrzWe8= Subject key identifier: 4E:2E:D3:C1:22:B8:35:56:1F:3F:A4:56:E4:57:58:AA:CA:51:3C:A6 Authority key identifier: 37:61:21:2A:16:70:A5:71:9A:B7:1F:A2:03:B9:2E:C6:86:F2:11:77 Certificate issuer: /CN=A9142037/serialNumber=3761212A1670A5719AB71FA203B92EC686F21177 Certificate serial: 46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2EhKhZwpXGatx-iA7kuxobyEXc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.mft Manifest number: 44 Signing time: Sun 15 Jun 2025 06:30:51 +0000 Manifest this update: Sun 15 Jun 2025 06:30:50 +0000 Manifest next update: Sun 22 Jun 2025 06:30:50 +0000 Files and hashes: 1: N2EhKhZwpXGatx-iA7kuxobyEXc.crl (hash: lNzZ7f7+TP8wTTKYjpW8PzUKv9JJvMj4yCnhVzOxmH4=) 2: 191B6DA2E41811EF8E3F233AC4F9AE02.roa (hash: vcq+JOCdxjFG1D5wGuVH3+pI9poPc4zyyjKKMXsqhWE=) 3: FAEA8E38E41911EFA96DA35FC4F9AE02.roa (hash: RxRZ1dH5JkRHUJw1N/ksvTcKPSxp60O8KTnJFH3sluU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.crl rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2EhKhZwpXGatx-iA7kuxobyEXc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70 (0x46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142037, serialNumber=3761212A1670A5719AB71FA203B92EC686F21177 Validity Not Before: Jun 15 06:30:50 2025 GMT Not After : Jun 22 06:30:50 2025 GMT Subject: CN=684e689a-ed2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ba:37:81:cc:78:d1:88:2b:0a:4d:7e:7a:a9: 41:ae:de:d2:e4:b0:de:e3:29:f7:a5:7b:3c:25:9b: 82:14:7d:0e:f6:23:4c:19:ab:df:e1:ab:cd:a6:5e: e9:ba:46:1b:ef:b8:77:3b:b0:bc:9e:ec:a5:1d:47: 1b:99:04:bd:9e:28:42:db:97:2b:1f:c1:f0:03:61: 55:c8:d9:1d:42:7f:8e:63:11:c8:1b:85:5a:4a:12: 8f:6f:49:3e:77:22:14:ba:57:96:ca:57:5e:4a:9f: 73:72:ea:e1:31:59:46:ee:a7:88:c8:7d:99:39:dd: 92:19:5b:43:f3:e9:cc:60:1d:58:da:a4:3d:98:55: 8e:11:4f:19:e3:7c:f5:f8:ad:d5:a4:02:70:80:ce: b4:69:66:a3:18:a7:f3:a2:e5:48:42:3a:bf:45:85: 32:bf:c1:fe:55:fc:2e:5d:65:a4:4d:e4:36:1c:d5: 16:b1:e9:36:27:eb:37:4f:6f:a8:40:80:10:30:60: 75:3d:52:e6:7d:4b:7c:27:a2:09:75:d1:13:29:e8: b6:15:2d:71:08:c1:9a:c6:41:ec:5b:32:ac:91:47: 86:5a:d4:68:86:ca:74:21:02:b6:8d:57:8a:d9:af: 3a:0a:10:e3:e5:82:db:84:24:5a:22:dd:20:12:8f: b5:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:2E:D3:C1:22:B8:35:56:1F:3F:A4:56:E4:57:58:AA:CA:51:3C:A6 X509v3 Authority Key Identifier: keyid:37:61:21:2A:16:70:A5:71:9A:B7:1F:A2:03:B9:2E:C6:86:F2:11:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2EhKhZwpXGatx-iA7kuxobyEXc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:b5:e8:3e:a2:bd:c0:8a:a4:e4:a0:2f:1f:8b:c3:a5:68:77: 75:5c:2b:54:7e:59:90:86:1a:9c:48:cf:53:d6:1f:14:a4:16: b9:c9:72:46:c3:62:5f:87:84:f2:ba:1a:d8:43:60:7a:95:ff: 4d:bd:26:35:a2:00:ee:8e:22:86:1a:70:c0:82:3a:a8:fb:a3: 61:24:4f:a8:1a:4d:de:be:c8:08:2f:ff:a0:b1:89:53:0e:b7: 8c:da:0d:3b:87:0f:aa:58:51:9c:42:fb:90:c9:89:1c:fe:ec: b9:c7:bc:c9:02:37:d1:08:5d:07:b1:47:f1:a0:03:06:d2:fd: 71:40:76:30:ee:06:d6:b2:b6:20:3b:80:cc:62:15:f7:4d:cb: 20:68:8c:03:12:d5:05:f3:4f:94:5b:92:a3:4e:ff:ef:e7:d1: 82:70:d6:e8:a2:55:2c:06:dd:5c:d7:ae:96:6c:4d:88:e1:40: f7:b3:af:f9:ff:22:25:8a:81:62:68:aa:8f:05:70:a9:ab:8a: a7:d0:14:0a:13:62:23:32:54:32:0d:a2:eb:ca:7e:52:82:2c: 92:9e:96:93:a1:9e:13:f9:65:27:fe:00:27:b0:d8:a3:46:8a: c4:37:91:2c:48:37:22:f9:c0:b7:47:5f:66:77:f6:40:69:4a: eb:ab:94:9d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MjAzNzExMC8GA1UEBRMoMzc2MTIxMkExNjcwQTU3MTlBQjcxRkEyMDNCOTJFQzY4 NkYyMTE3NzAeFw0yNTA2MTUwNjMwNTBaFw0yNTA2MjIwNjMwNTBaMBgxFjAUBgNV BAMTDTY4NGU2ODlhLWVkMmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLujeBzHjRiCsKTX56qUGu3tLksN7jKfelezwlm4IUfQ72I0wZq9/hq82mXum6 RhvvuHc7sLye7KUdRxuZBL2eKELblysfwfADYVXI2R1Cf45jEcgbhVpKEo9vST53 IhS6V5bKV15Kn3Ny6uExWUbup4jIfZk53ZIZW0Pz6cxgHVjapD2YVY4RTxnjfPX4 rdWkAnCAzrRpZqMYp/Oi5UhCOr9FhTK/wf5V/C5dZaRN5DYc1Rax6TYn6zdPb6hA gBAwYHU9UuZ9S3wnogl10RMp6LYVLXEIwZrGQexbMqyRR4Za1GiGynQhAraNV4rZ rzoKEOPlgtuEJFoi3SASj7ULAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUTi7TwSK4 NVYfP6RW5FdYqspRPKYwHwYDVR0jBBgwFoAUN2EhKhZwpXGatx+iA7kuxobyEXcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyMDM3LzVDMDVDMEM4RTQx NzExRUY5NkUyRkYzOEM0RjlBRTAyL04yRWhLaFp3cFhHYXR4LWlBN2t1eG9ieUVY Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTjJFaEtoWndwWEdhdHgtaUE3a3V4b2J5RVhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy MDM3LzVDMDVDMEM4RTQxNzExRUY5NkUyRkYzOEM0RjlBRTAyL04yRWhLaFp3cFhH YXR4LWlBN2t1eG9ieUVYYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACy16D6ivcCKpOSgLx+Lw6Vod3VcK1R+WZCGGpxIz1PWHxSkFrnJckbD Yl+HhPK6GthDYHqV/029JjWiAO6OIoYacMCCOqj7o2EkT6gaTd6+yAgv/6CxiVMO t4zaDTuHD6pYUZxC+5DJiRz+7LnHvMkCN9EIXQexR/GgAwbS/XFAdjDuBtaytiA7 gMxiFfdNyyBojAMS1QXzT5RbkqNO/+/n0YJw1uiiVSwG3VzXrpZsTYjhQPezr/n/ IiWKgWJoqo8FcKmriqfQFAoTYiMyVDINouvKflKCLJKelpOhnhP5ZSf+ACew2KNG isQ3kSxINyL5wLdHX2Z39kBpSuurlJ0= -----END CERTIFICATE-----Generated at Sun Jun 15 09:47:12 2025 by rpki-client