$ rpki-client -vvf rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft File: 2gQijT7rRR_A8iM2aXFwV_irNmk.mft (raw, json) Hash identifier: f1E3pvVK90TX+1T1esvGOIttsYxExeZTyP85MNKwzoE= Subject key identifier: 5A:81:65:54:88:62:53:0A:C4:B8:44:68:76:CB:8B:4C:CF:0D:1F:B3 Authority key identifier: DA:04:22:8D:3E:EB:45:1F:C0:F2:23:36:69:71:70:57:F8:AB:36:69 Certificate issuer: /CN=A914B165/serialNumber=DA04228D3EEB451FC0F2233669717057F8AB3669 Certificate serial: 0881 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft Manifest number: 087B Signing time: Thu 12 Jun 2025 20:23:08 +0000 Manifest this update: Thu 12 Jun 2025 20:23:08 +0000 Manifest next update: Thu 19 Jun 2025 20:23:08 +0000 Files and hashes: 1: 2gQijT7rRR_A8iM2aXFwV_irNmk.crl (hash: XfV069KhDWA6jwUgyvc8LKk4lXBP1TciQt59ToOC1+o=) 2: 26AECD92C2B211EABBD0ED4AC4F9AE02.roa (hash: 8bFMS7lUFa5a04616nMhBCIyPXjI0vGFlv2YHmEk/tM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.crl rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 20:23:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2177 (0x881) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B165, serialNumber=DA04228D3EEB451FC0F2233669717057F8AB3669 Validity Not Before: Jun 12 20:23:08 2025 GMT Not After : Jun 19 20:23:08 2025 GMT Subject: CN=684b372c-905f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ec:91:ab:2a:a5:33:8d:8e:0d:fe:04:e0:6b: ee:9b:9b:0d:ff:2b:04:a1:13:99:2e:c3:18:e7:12: 3b:e8:0e:e5:31:48:0d:65:82:7e:68:a5:f3:b2:66: 81:e0:8a:da:04:e8:9f:eb:69:8f:b7:98:5c:8c:5f: 0f:aa:38:e8:58:5d:3e:4c:2a:4a:79:c5:ad:b3:4e: e5:ec:a4:60:ed:7b:75:42:5b:d7:44:9a:6a:b1:6f: 0b:a4:b2:4f:6e:42:ed:fb:7d:b1:45:9b:32:cf:a3: 03:cb:bb:95:4a:d1:99:36:b6:9e:35:a5:60:42:10: e8:bc:d1:f5:1c:fe:5a:ee:0f:c5:da:05:4f:d6:2b: 82:41:cf:66:54:b1:33:ed:71:03:23:0b:4b:f9:89: 25:ec:94:63:d6:e9:d3:79:66:5a:be:56:51:71:38: 50:0a:ec:bd:e4:ba:1a:18:50:c7:52:3f:11:13:80: 78:0b:4c:46:96:95:d6:7e:da:21:25:11:9d:c7:3e: 4c:72:83:d4:ca:0b:e2:de:2c:1c:f9:a0:3d:c0:59: 6f:b5:d4:e9:7c:ca:26:92:d6:bc:25:11:49:85:b6: 9d:f0:c4:40:0c:b9:38:a6:ae:98:6b:3f:f0:2f:8f: 4a:c8:07:c6:48:e5:fc:cc:0a:b8:da:19:74:1e:e6: 08:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:81:65:54:88:62:53:0A:C4:B8:44:68:76:CB:8B:4C:CF:0D:1F:B3 X509v3 Authority Key Identifier: keyid:DA:04:22:8D:3E:EB:45:1F:C0:F2:23:36:69:71:70:57:F8:AB:36:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:c8:15:93:a6:ae:e1:64:86:fa:b8:4c:83:0e:77:03:8d:e3: 26:80:21:ab:36:f7:c8:fc:50:73:bd:1a:25:82:f4:e1:ea:3c: 29:2a:59:ba:d9:04:dc:06:c4:af:94:38:7f:47:6a:5b:62:0e: b6:aa:91:e5:95:a8:17:91:62:a9:5a:77:ec:92:b3:8b:50:cb: be:91:b7:99:1a:d6:44:75:60:b1:8e:cb:1d:1d:9a:b4:6a:fb: 43:82:6e:c7:60:25:b1:33:c5:32:37:56:84:22:14:3a:34:a0: 00:e4:dd:83:e7:27:91:61:3a:f9:55:88:14:4a:41:4f:45:5f: 28:36:8d:a5:00:03:d7:39:be:14:95:c8:b4:2c:c1:6e:e7:05: 0c:37:20:28:68:0e:eb:94:be:1f:36:e1:6c:9a:0f:cc:d0:d3: e3:0b:83:07:d7:70:02:8c:27:f3:a6:ee:01:7d:7d:65:64:9c: 9e:12:7d:bd:2e:9c:ef:75:61:0a:03:a0:e8:3c:b9:7a:da:38: 5e:e1:76:b9:8d:54:05:11:7a:90:92:0a:1b:4b:5a:58:0a:43: d7:c4:1e:b5:e4:ae:9c:5c:3b:11:d8:60:52:f7:cb:7b:73:53: 0e:77:33:f1:68:f9:83:cf:72:e6:97:02:33:09:16:2a:0f:4d: 37:f8:b3:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIxNjUxMTAvBgNVBAUTKERBMDQyMjhEM0VFQjQ1MUZDMEYyMjMzNjY5NzE3MDU3 RjhBQjM2NjkwHhcNMjUwNjEyMjAyMzA4WhcNMjUwNjE5MjAyMzA4WjAYMRYwFAYD VQQDEw02ODRiMzcyYy05MDVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAweyRqyqlM42ODf4E4Gvum5sN/ysEoROZLsMY5xI76A7lMUgNZYJ+aKXzsmaB 4IraBOif62mPt5hcjF8PqjjoWF0+TCpKecWts07l7KRg7Xt1QlvXRJpqsW8LpLJP bkLt+32xRZsyz6MDy7uVStGZNraeNaVgQhDovNH1HP5a7g/F2gVP1iuCQc9mVLEz 7XEDIwtL+Ykl7JRj1unTeWZavlZRcThQCuy95LoaGFDHUj8RE4B4C0xGlpXWftoh JRGdxz5McoPUygvi3iwc+aA9wFlvtdTpfMomkta8JRFJhbad8MRADLk4pq6Yaz/w L49KyAfGSOX8zAq42hl0HuYIMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFqBZVSI YlMKxLhEaHbLi0zPDR+zMB8GA1UdIwQYMBaAFNoEIo0+60UfwPIjNmlxcFf4qzZp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjE2NS82QTNFQjhCNkMy QjExMUVBOTIwQkI5NEFDNEY5QUUwMi8yZ1FpalQ3clJSX0E4aU0yYVhGd1ZfaXJO bWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnUWlqVDdyUlJfQThpTTJhWEZ3Vl9pck5tay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjE2NS82QTNFQjhCNkMyQjExMUVBOTIwQkI5NEFDNEY5QUUwMi8yZ1FpalQ3clJS X0E4aU0yYVhGd1ZfaXJObWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXyBWTpq7hZIb6uEyDDncDjeMmgCGrNvfI/FBzvRolgvTh6jwpKlm6 2QTcBsSvlDh/R2pbYg62qpHllagXkWKpWnfskrOLUMu+kbeZGtZEdWCxjssdHZq0 avtDgm7HYCWxM8UyN1aEIhQ6NKAA5N2D5yeRYTr5VYgUSkFPRV8oNo2lAAPXOb4U lci0LMFu5wUMNyAoaA7rlL4fNuFsmg/M0NPjC4MH13ACjCfzpu4BfX1lZJyeEn29 LpzvdWEKA6DoPLl62jhe4Xa5jVQFEXqQkgobS1pYCkPXxB615K6cXDsR2GBS98t7 c1MOdzPxaPmDz3LmlwIzCRYqD003+LOD -----END CERTIFICATE-----Generated at Sat Jun 14 18:52:16 2025 by rpki-client