$ rpki-client -vvf rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft File: 2lA_lyy8k6jIHflfVKLLKjjxPHc.mft (raw, json) Hash identifier: jNhDbFVpthtihpyB8XR65UFJI9ktzIZqPMPhLVu8wGI= Subject key identifier: F6:72:20:4E:32:C0:0C:79:15:00:E8:11:C9:87:C4:1B:04:9B:4E:3F Authority key identifier: DA:50:3F:97:2C:BC:93:A8:C8:1D:F9:5F:54:A2:CB:2A:38:F1:3C:77 Certificate issuer: /CN=A9144717/serialNumber=DA503F972CBC93A8C81DF95F54A2CB2A38F13C77 Certificate serial: 09C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft Manifest number: 09BF Signing time: Thu 12 Jun 2025 19:46:53 +0000 Manifest this update: Thu 12 Jun 2025 19:46:52 +0000 Manifest next update: Thu 19 Jun 2025 19:46:52 +0000 Files and hashes: 1: 2lA_lyy8k6jIHflfVKLLKjjxPHc.crl (hash: zlLM/ZODeOl9M33Od5wBDJCmeleESu+3V45bIqc3fFc=) 2: F38DEBFC83E911EA993D9515C4F9AE02.roa (hash: qAQSazWUf2FePmcHd1Qj+eRlLm7Ky5QuPvw10+7M0lo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.crl rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:46:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2503 (0x9c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144717, serialNumber=DA503F972CBC93A8C81DF95F54A2CB2A38F13C77 Validity Not Before: Jun 12 19:46:52 2025 GMT Not After : Jun 19 19:46:52 2025 GMT Subject: CN=684b2ead-8b08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:cc:3a:3a:6a:69:01:07:5c:ac:4b:87:1a:cd: 3c:96:c0:1c:81:2f:e6:95:5f:ac:da:db:ba:8d:cd: be:12:04:10:b7:4b:9f:30:f6:af:be:d9:10:08:c3: a8:46:c9:4a:1f:19:a0:21:b1:4e:dc:fd:39:60:b9: 4c:aa:50:a0:c5:be:18:68:85:f7:08:d9:a5:a4:65: 62:67:18:da:a4:10:fe:e5:74:19:92:d6:17:d8:7d: af:2a:92:f6:85:33:ce:79:ac:66:b1:79:f6:ca:0e: ee:e3:13:c3:26:f6:56:3a:ae:af:39:64:7e:bd:43: da:eb:c1:2e:af:44:5a:81:34:99:f3:52:5e:9f:b7: 30:ec:8f:92:5b:f5:04:9d:9e:88:dc:20:6a:67:56: 32:63:62:da:4a:79:4a:65:6e:3f:62:b8:57:fb:b4: b9:47:9b:38:2b:e1:01:6e:41:27:7d:6f:9d:3a:19: 46:9f:ad:32:9c:a0:7f:f2:af:a7:ae:7a:49:87:d4: c4:2a:f0:45:fc:eb:d3:60:fa:13:69:c4:53:0b:e4: 99:9c:2d:34:8f:dd:12:ec:ee:0c:c3:1b:a7:2b:7d: 97:45:cb:fa:44:5e:80:21:73:22:27:84:f9:bc:3e: 14:ac:05:b9:7e:2b:6c:04:3b:99:5f:dc:e4:1c:75: b9:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:72:20:4E:32:C0:0C:79:15:00:E8:11:C9:87:C4:1B:04:9B:4E:3F X509v3 Authority Key Identifier: keyid:DA:50:3F:97:2C:BC:93:A8:C8:1D:F9:5F:54:A2:CB:2A:38:F1:3C:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:f9:d4:17:1d:16:b3:95:c1:c3:e0:0a:56:49:61:e3:1b:11: 3e:7b:cc:7b:11:11:38:be:7e:53:e5:0f:85:8f:84:2d:f2:1a: f9:00:ba:cb:75:f4:8f:31:ff:57:d6:95:37:35:54:ca:2a:85: a4:fb:55:6a:95:12:d5:bb:da:9f:8e:6e:09:75:94:d2:13:cd: 0e:4f:5e:ff:90:a4:a2:e6:8b:5d:4d:23:cd:66:c8:87:f8:9c: 9a:c4:02:6c:41:7f:a9:0d:8c:17:ed:95:f9:3a:d8:e4:75:61: f3:d8:a0:24:8b:a1:71:03:46:fe:26:4b:21:54:bd:3b:2f:81: 54:70:5d:b7:d3:ad:03:fd:4d:b7:c9:a7:ad:1b:2f:af:4b:e7: 9a:2c:b6:02:e9:78:6d:1b:be:fb:04:d7:9d:68:08:e5:34:ec: 87:a6:f8:e5:79:72:cc:6e:1d:8a:05:b0:61:44:8c:bf:62:e5: 89:7b:e9:81:4d:c8:13:ea:68:b2:05:62:73:5d:80:dd:4a:c8: 1c:90:bf:63:38:41:67:e5:c4:16:3f:93:98:a9:82:a2:43:6b: 11:cf:b3:82:b4:69:22:e2:ce:19:f5:73:a8:3d:fe:41:14:bc: c4:65:d6:ae:7b:e4:8c:0d:5d:4a:ef:f1:82:48:5c:2f:00:63: 2b:4f:aa:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ3MTcxMTAvBgNVBAUTKERBNTAzRjk3MkNCQzkzQThDODFERjk1RjU0QTJDQjJB MzhGMTNDNzcwHhcNMjUwNjEyMTk0NjUyWhcNMjUwNjE5MTk0NjUyWjAYMRYwFAYD VQQDEw02ODRiMmVhZC04YjA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2sw6OmppAQdcrEuHGs08lsAcgS/mlV+s2tu6jc2+EgQQt0ufMPavvtkQCMOo RslKHxmgIbFO3P05YLlMqlCgxb4YaIX3CNmlpGViZxjapBD+5XQZktYX2H2vKpL2 hTPOeaxmsXn2yg7u4xPDJvZWOq6vOWR+vUPa68Eur0RagTSZ81Jen7cw7I+SW/UE nZ6I3CBqZ1YyY2LaSnlKZW4/YrhX+7S5R5s4K+EBbkEnfW+dOhlGn60ynKB/8q+n rnpJh9TEKvBF/OvTYPoTacRTC+SZnC00j90S7O4MwxunK32XRcv6RF6AIXMiJ4T5 vD4UrAW5fitsBDuZX9zkHHW5RQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPZyIE4y wAx5FQDoEcmHxBsEm04/MB8GA1UdIwQYMBaAFNpQP5csvJOoyB35X1Siyyo48Tx3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDcxNy8zOTg4OTAwMDgz RTgxMUVBQjc3MDA1MTNDNEY5QUUwMi8ybEFfbHl5OGs2aklIZmxmVktMTEtqanhQ SGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsQV9seXk4azZqSUhmbGZWS0xMS2pqeFBIYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDcxNy8zOTg4OTAwMDgzRTgxMUVBQjc3MDA1MTNDNEY5QUUwMi8ybEFfbHl5OGs2 aklIZmxmVktMTEtqanhQSGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBp+dQXHRazlcHD4ApWSWHjGxE+e8x7ERE4vn5T5Q+Fj4Qt8hr5ALrL dfSPMf9X1pU3NVTKKoWk+1VqlRLVu9qfjm4JdZTSE80OT17/kKSi5otdTSPNZsiH +JyaxAJsQX+pDYwX7ZX5OtjkdWHz2KAki6FxA0b+JkshVL07L4FUcF23060D/U23 yaetGy+vS+eaLLYC6XhtG777BNedaAjlNOyHpvjleXLMbh2KBbBhRIy/YuWJe+mB TcgT6miyBWJzXYDdSsgckL9jOEFn5cQWP5OYqYKiQ2sRz7OCtGki4s4Z9XOoPf5B FLzEZdaue+SMDV1K7/GCSFwvAGMrT6o4 -----END CERTIFICATE-----Generated at Sat Jun 14 19:38:34 2025 by rpki-client