$ rpki-client -vvf rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.mft File: 2leiQgcEcAjXOmXWgiSke5oD2qo.mft (raw, json) Hash identifier: HgeKeBTlrlaRf/5B6K+ZZeh9P0RDJTWujfBuLpu8j/Y= Subject key identifier: 56:44:2C:4E:FB:A7:FA:69:D7:04:54:69:9D:CB:45:2A:ED:DC:3F:63 Authority key identifier: DA:57:A2:42:07:04:70:08:D7:3A:65:D6:82:24:A4:7B:9A:03:DA:AA Certificate issuer: /CN=A914573E/serialNumber=DA57A24207047008D73A65D68224A47B9A03DAAA Certificate serial: 061C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2leiQgcEcAjXOmXWgiSke5oD2qo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.mft Manifest number: 0615 Signing time: Mon 16 Jun 2025 22:30:08 +0000 Manifest this update: Mon 16 Jun 2025 22:30:07 +0000 Manifest next update: Mon 23 Jun 2025 22:30:07 +0000 Files and hashes: 1: 2leiQgcEcAjXOmXWgiSke5oD2qo.crl (hash: /u8KBh9D/ZGctXiYtzQN6yKu6frxQAx8hcWSbWmQiEY=) 2: B67E0BB4A5A511EB94C0DE0FC4F9AE02.roa (hash: abFPv422MLo42yfuvK6GPVX4x/zkpsuvBFUhQvjbtGQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.crl rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2leiQgcEcAjXOmXWgiSke5oD2qo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 22:30:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1564 (0x61c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914573E, serialNumber=DA57A24207047008D73A65D68224A47B9A03DAAA Validity Not Before: Jun 16 22:30:07 2025 GMT Not After : Jun 23 22:30:07 2025 GMT Subject: CN=68509af0-ec6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:78:2f:8b:bd:4c:61:3c:6c:2f:86:41:3b:ec: 79:f9:01:02:d5:e3:2a:07:9b:05:7c:75:df:09:45: 00:bf:8e:d5:7a:a4:e8:d5:d2:4a:a7:65:12:14:16: ad:4b:87:51:45:3b:ec:c6:a6:b5:4e:9d:d4:3c:01: 4b:e7:d5:41:2f:6f:6d:42:04:6e:c2:1a:c9:01:98: 3f:50:22:a0:07:f6:0d:8d:e9:64:10:bb:09:dd:f3: 41:4f:ed:e9:2b:65:f8:ce:91:50:6a:38:dc:1f:8e: d0:6b:f5:8a:ff:33:52:8d:16:4b:55:b1:6a:ba:2d: de:08:3d:56:c5:73:07:bb:f8:e1:d6:5c:01:1f:f1: 41:0b:00:8d:f1:87:0e:01:af:90:9f:cd:a3:17:ae: 84:7e:2d:3b:ef:4d:a0:ca:c4:aa:13:31:a5:fa:86: 54:db:0a:45:b8:17:01:3a:f3:c5:bb:fb:84:c2:ea: 96:60:a2:8c:ba:b9:cb:58:fe:fd:4d:3d:44:ee:5d: 6b:f3:2b:ac:4b:52:ae:2c:be:34:8a:12:1d:09:88: e9:74:45:4e:23:84:e4:dc:45:8f:ed:17:d7:dd:23: f2:46:6a:9e:99:f1:35:2e:06:ed:37:84:99:b7:11: 0b:56:da:a9:07:8b:5f:e3:69:80:96:0c:5f:b6:48: ec:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:44:2C:4E:FB:A7:FA:69:D7:04:54:69:9D:CB:45:2A:ED:DC:3F:63 X509v3 Authority Key Identifier: keyid:DA:57:A2:42:07:04:70:08:D7:3A:65:D6:82:24:A4:7B:9A:03:DA:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2leiQgcEcAjXOmXWgiSke5oD2qo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:99:fb:3c:9c:05:ab:6d:bb:77:44:9f:1c:ef:be:95:25:13: 75:db:aa:21:ac:62:ae:46:ff:3e:04:9f:ae:0a:e1:a8:5a:28: 56:d0:f6:d9:8b:e3:83:8e:b7:92:c5:d9:93:fa:12:84:a6:c4: 89:ed:ee:d4:dc:b1:54:c8:64:14:a9:08:26:11:2e:dc:6e:88: ed:ed:fd:43:e9:1c:33:b5:57:3b:10:38:d8:9a:7f:0b:64:e5: 66:43:fb:a7:c0:25:87:65:f9:7f:68:be:b9:82:6f:7a:b2:28: 5f:e0:bb:56:07:6a:c0:20:4a:ed:f7:36:71:f0:93:96:98:14: fe:4e:0f:a3:00:40:66:8f:6e:c0:80:fc:56:b7:25:22:ec:d0: 11:51:30:70:5b:4e:15:7e:6a:b7:67:15:78:6c:cb:18:a2:cb: 48:23:df:7d:18:4b:c7:ea:16:7a:b6:97:39:92:a9:14:a6:7e: 22:c6:7e:4d:ec:a7:4b:a4:80:61:fc:2e:c0:d3:16:da:bd:7d: a2:db:22:8e:46:1c:72:51:c6:49:ef:5c:35:d9:be:1a:d9:4e: bf:73:db:a0:3c:0b:de:f5:2e:81:7e:6c:0a:79:e2:8d:92:2c: 4e:94:3b:e6:37:6d:25:92:a6:5f:1e:2c:a2:2a:0c:b2:e0:c8: c6:00:6d:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU3M0UxMTAvBgNVBAUTKERBNTdBMjQyMDcwNDcwMDhENzNBNjVENjgyMjRBNDdC OUEwM0RBQUEwHhcNMjUwNjE2MjIzMDA3WhcNMjUwNjIzMjIzMDA3WjAYMRYwFAYD VQQDEw02ODUwOWFmMC1lYzZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Hgvi71MYTxsL4ZBO+x5+QEC1eMqB5sFfHXfCUUAv47VeqTo1dJKp2USFBat S4dRRTvsxqa1Tp3UPAFL59VBL29tQgRuwhrJAZg/UCKgB/YNjelkELsJ3fNBT+3p K2X4zpFQajjcH47Qa/WK/zNSjRZLVbFqui3eCD1WxXMHu/jh1lwBH/FBCwCN8YcO Aa+Qn82jF66Efi07702gysSqEzGl+oZU2wpFuBcBOvPFu/uEwuqWYKKMurnLWP79 TT1E7l1r8yusS1KuLL40ihIdCYjpdEVOI4Tk3EWP7RfX3SPyRmqemfE1LgbtN4SZ txELVtqpB4tf42mAlgxftkjstwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFZELE77 p/pp1wRUaZ3LRSrt3D9jMB8GA1UdIwQYMBaAFNpXokIHBHAI1zpl1oIkpHuaA9qq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTczRS82NzY4OTc4RUE1 QTQxMUVCOThDMzI5MEZDNEY5QUUwMi8ybGVpUWdjRWNBalhPbVhXZ2lTa2U1b0Qy cW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsZWlRZ2NFY0FqWE9tWFdnaVNrZTVvRDJxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTczRS82NzY4OTc4RUE1QTQxMUVCOThDMzI5MEZDNEY5QUUwMi8ybGVpUWdjRWNB alhPbVhXZ2lTa2U1b0QycW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnmfs8nAWrbbt3RJ8c776VJRN126ohrGKuRv8+BJ+uCuGoWihW0PbZ i+ODjreSxdmT+hKEpsSJ7e7U3LFUyGQUqQgmES7cbojt7f1D6RwztVc7EDjYmn8L ZOVmQ/unwCWHZfl/aL65gm96sihf4LtWB2rAIErt9zZx8JOWmBT+Tg+jAEBmj27A gPxWtyUi7NARUTBwW04Vfmq3ZxV4bMsYostII999GEvH6hZ6tpc5kqkUpn4ixn5N 7KdLpIBh/C7A0xbavX2i2yKORhxyUcZJ71w12b4a2U6/c9ugPAve9S6BfmwKeeKN kixOlDvmN20lkqZfHiyiKgyy4MjGAG3Z -----END CERTIFICATE-----Generated at Tue Jun 17 07:20:52 2025 by rpki-client