$ rpki-client -vvf rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft File: 2CVmixrBt_OBXwe82lfnSMSWSpo.mft (raw, json) Hash identifier: c3BMw131jVcyjJ2NaQU+jf9vjtvi0vrTnJk+LFM/qXY= Subject key identifier: BF:10:C7:6C:00:47:D9:43:EC:0A:99:BE:98:64:A7:FA:87:DF:A6:DA Authority key identifier: D8:25:66:8B:1A:C1:B7:F3:81:5F:07:BC:DA:57:E7:48:C4:96:4A:9A Certificate issuer: /CN=A91756C3/serialNumber=D825668B1AC1B7F3815F07BCDA57E748C4964A9A Certificate serial: 61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CVmixrBt_OBXwe82lfnSMSWSpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft Manifest number: 60 Signing time: Thu 07 Aug 2025 07:40:21 +0000 Manifest this update: Thu 07 Aug 2025 07:40:20 +0000 Manifest next update: Thu 14 Aug 2025 07:40:20 +0000 Files and hashes: 1: 2CVmixrBt_OBXwe82lfnSMSWSpo.crl (hash: wVIlgN3yF9U8eJMftyg/sXdbqr+Dn2EeBSHA45A0vAo=) 2: 00078764E06811EF8716401DC4F9AE02.roa (hash: xskJHyJy9wOT0np+Xdp4jl5Zejz4/7Uevmd8xiyRBK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.crl rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CVmixrBt_OBXwe82lfnSMSWSpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 97 (0x61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91756C3, serialNumber=D825668B1AC1B7F3815F07BCDA57E748C4964A9A Validity Not Before: Aug 7 07:40:20 2025 GMT Not After : Aug 14 07:40:20 2025 GMT Subject: CN=68945865-c78e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:76:1d:b4:15:ec:75:0f:51:36:b4:ac:6c:84: 53:15:c6:7b:01:d1:ff:b2:f9:61:f8:50:be:d3:11: 44:6f:a3:8a:1d:c0:70:cd:3e:1d:e6:01:af:b9:17: ce:b0:ac:76:31:93:c4:47:bd:ba:e6:50:4d:8d:78: a8:03:81:1a:ca:b5:68:fa:9a:81:12:01:bb:b4:4e: 48:82:b6:a2:7f:2f:35:98:e8:5d:a8:f7:6a:49:cb: f6:da:59:01:23:2c:ee:95:3c:f3:be:da:81:2b:b3: fe:75:f2:50:ac:a0:e0:eb:3f:17:7a:95:47:2b:d2: fa:e1:51:b5:39:77:44:a7:23:75:95:0e:18:3d:0a: b4:55:88:28:5e:50:a3:4c:f4:fe:6c:73:2a:1b:1c: d1:24:d5:be:ff:e9:df:a0:e8:be:6e:6b:b7:2d:6b: 3c:43:bc:f2:86:ef:a9:bc:da:7d:c6:c0:a6:2f:d8: 6c:00:24:7e:f1:7c:52:36:e2:48:8c:3b:47:1e:04: 9f:18:c8:bb:3c:61:0e:ee:3d:c8:56:61:2b:43:58: 4f:08:43:4a:a1:92:37:af:d9:b0:e6:82:35:c5:cc: c8:e9:33:19:75:ad:49:83:5c:7e:60:22:44:ff:b1: 0e:35:01:3b:d5:9a:97:a2:d9:92:ba:a2:aa:d2:97: 2e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:10:C7:6C:00:47:D9:43:EC:0A:99:BE:98:64:A7:FA:87:DF:A6:DA X509v3 Authority Key Identifier: keyid:D8:25:66:8B:1A:C1:B7:F3:81:5F:07:BC:DA:57:E7:48:C4:96:4A:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CVmixrBt_OBXwe82lfnSMSWSpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:45:e4:60:be:10:4e:6b:bc:0f:b0:84:40:fc:1f:03:31:9d: 79:db:31:66:71:e9:6a:0a:f3:44:df:63:02:ec:15:8c:6a:99: 02:b6:ae:b0:a0:76:7d:0b:b7:0c:d5:1e:1d:76:1f:64:b3:0e: 45:46:96:36:38:ca:6c:30:8a:6f:8d:93:6a:ac:04:d2:ad:7d: 39:3e:2e:38:4e:e9:4a:18:f5:08:d8:39:9f:94:16:7e:e6:06: c5:22:5f:7d:01:cb:c4:bd:d3:25:62:ff:39:87:31:c0:a9:96: 98:fb:f8:39:b8:57:92:40:fa:a2:72:32:97:0d:16:c0:81:4a: 0a:69:bb:cc:cb:ef:48:91:4d:6a:a0:1e:d0:7a:f0:97:f1:3c: 23:6d:07:a6:47:44:96:6b:8a:1d:b9:59:74:21:ef:69:03:d9: 48:7b:37:8d:e1:e6:10:77:0b:27:dd:12:a5:ca:55:41:41:8c: 0c:e0:99:55:37:d5:d5:f6:2e:be:8b:1d:1e:4c:92:39:49:d2: d2:9d:12:03:bc:65:b4:d1:f4:b2:3e:b3:67:92:54:44:1c:df: 93:be:ed:19:52:4d:50:87:aa:5e:79:f6:6f:24:8a:a1:66:c2: 00:40:a4:6a:9c:a9:12:14:af:3d:ee:9c:d4:aa:41:00:2f:a3: 48:fc:54:de -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NTZDMzExMC8GA1UEBRMoRDgyNTY2OEIxQUMxQjdGMzgxNUYwN0JDREE1N0U3NDhD NDk2NEE5QTAeFw0yNTA4MDcwNzQwMjBaFw0yNTA4MTQwNzQwMjBaMBgxFjAUBgNV BAMTDTY4OTQ1ODY1LWM3OGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQdh20Fex1D1E2tKxshFMVxnsB0f+y+WH4UL7TEURvo4odwHDNPh3mAa+5F86w rHYxk8RHvbrmUE2NeKgDgRrKtWj6moESAbu0TkiCtqJ/LzWY6F2o92pJy/baWQEj LO6VPPO+2oErs/518lCsoODrPxd6lUcr0vrhUbU5d0SnI3WVDhg9CrRViCheUKNM 9P5scyobHNEk1b7/6d+g6L5ua7ctazxDvPKG76m82n3GwKYv2GwAJH7xfFI24kiM O0ceBJ8YyLs8YQ7uPchWYStDWE8IQ0qhkjev2bDmgjXFzMjpMxl1rUmDXH5gIkT/ sQ41ATvVmpei2ZK6oqrSly5bAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvxDHbABH 2UPsCpm+mGSn+offptowHwYDVR0jBBgwFoAU2CVmixrBt/OBXwe82lfnSMSWSpow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1NkMzLzVCRjUxOTJBRTA2 NzExRUZCQzNEMTcxQkM0RjlBRTAyLzJDVm1peHJCdF9PQlh3ZTgybGZuU01TV1Nw by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMkNWbWl4ckJ0X09CWHdlODJsZm5TTVNXU3BvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1 NkMzLzVCRjUxOTJBRTA2NzExRUZCQzNEMTcxQkM0RjlBRTAyLzJDVm1peHJCdF9P Qlh3ZTgybGZuU01TV1Nwby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACxF5GC+EE5rvA+whED8HwMxnXnbMWZx6WoK80TfYwLsFYxqmQK2rrCg dn0LtwzVHh12H2SzDkVGljY4ymwwim+Nk2qsBNKtfTk+LjhO6UoY9QjYOZ+UFn7m BsUiX30By8S90yVi/zmHMcCplpj7+Dm4V5JA+qJyMpcNFsCBSgppu8zL70iRTWqg HtB68JfxPCNtB6ZHRJZrih25WXQh72kD2Uh7N43h5hB3CyfdEqXKVUFBjAzgmVU3 1dX2Lr6LHR5MkjlJ0tKdEgO8ZbTR9LI+s2eSVEQc35O+7RlSTVCHql559m8kiqFm wgBApGqcqRIUrz3unNSqQQAvo0j8VN4= -----END CERTIFICATE-----Generated at Fri Aug 8 20:56:10 2025 by rpki-client