$ rpki-client -vvf rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft File: 2CVmixrBt_OBXwe82lfnSMSWSpo.mft (raw, json) Hash identifier: az3w3Kg9l1xYZw5m2Ohpn84FO22mkQCCtldX6/O0X3c= Subject key identifier: 18:A8:5E:E6:C8:FC:58:A0:D1:63:C7:35:58:55:38:0B:2E:AC:03:AB Authority key identifier: D8:25:66:8B:1A:C1:B7:F3:81:5F:07:BC:DA:57:E7:48:C4:96:4A:9A Certificate issuer: /CN=A91756C3/serialNumber=D825668B1AC1B7F3815F07BCDA57E748C4964A9A Certificate serial: 45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CVmixrBt_OBXwe82lfnSMSWSpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft Manifest number: 44 Signing time: Fri 13 Jun 2025 06:18:13 +0000 Manifest this update: Fri 13 Jun 2025 06:18:12 +0000 Manifest next update: Fri 20 Jun 2025 06:18:12 +0000 Files and hashes: 1: 2CVmixrBt_OBXwe82lfnSMSWSpo.crl (hash: b6c8ddDoSZgcheeXEq/eI/IhqTsTg5sR930BALyn7Oo=) 2: 00078764E06811EF8716401DC4F9AE02.roa (hash: xskJHyJy9wOT0np+Xdp4jl5Zejz4/7Uevmd8xiyRBK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.crl rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CVmixrBt_OBXwe82lfnSMSWSpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:18:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91756C3, serialNumber=D825668B1AC1B7F3815F07BCDA57E748C4964A9A Validity Not Before: Jun 13 06:18:12 2025 GMT Not After : Jun 20 06:18:12 2025 GMT Subject: CN=684bc2a5-0e99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:9a:44:d5:be:8e:81:ca:17:51:36:81:23:37: 65:05:f1:27:9f:a3:f1:7b:7b:2b:fd:09:b9:8d:e0: 96:ce:00:41:19:16:f9:56:b9:6a:85:2f:b9:5e:bb: 7c:43:a8:75:85:84:4b:e4:a5:4f:f0:93:20:79:9a: 31:5c:0e:81:e7:85:e9:30:85:1d:ef:74:10:55:cc: 44:7e:08:12:31:51:0c:c2:52:6d:14:10:55:5e:fa: 82:30:78:29:37:25:43:9a:6e:46:8e:e8:bf:ed:98: a3:43:8f:d5:5b:d4:2f:e0:92:9f:7d:64:58:24:89: 69:ba:36:05:90:1a:f1:e3:8d:d7:f9:81:58:c0:80: 56:f2:b8:ea:78:2c:44:0f:d1:32:6b:c4:ad:81:77: 8a:63:e6:72:07:70:89:21:14:25:67:c0:63:fe:2d: 24:21:2e:7c:e9:62:31:03:a1:bd:c2:3a:24:25:24: 2d:1d:b9:72:20:f3:15:95:41:f5:9c:29:b1:0f:83: 20:e5:ea:a4:c5:47:9b:8a:25:3c:80:13:21:67:ae: 1e:48:e7:15:6c:ab:09:e9:c4:75:d2:1f:8b:4f:5d: 1d:f5:5e:45:1b:67:9b:ab:9f:97:74:f4:45:c4:fd: 69:56:b8:35:68:14:2e:d4:5a:37:80:89:b2:e3:ea: 83:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:A8:5E:E6:C8:FC:58:A0:D1:63:C7:35:58:55:38:0B:2E:AC:03:AB X509v3 Authority Key Identifier: keyid:D8:25:66:8B:1A:C1:B7:F3:81:5F:07:BC:DA:57:E7:48:C4:96:4A:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CVmixrBt_OBXwe82lfnSMSWSpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:49:60:17:53:3f:93:dc:47:b4:e7:13:95:92:99:38:d6:9e: 1f:73:4d:98:bc:53:c4:61:a4:a1:50:c6:ef:31:de:f1:62:98: 94:0f:b9:97:a0:66:19:28:91:cc:90:59:7e:cb:2c:29:f1:24: a1:7d:8b:32:6b:92:3a:59:33:4e:71:1f:42:78:ef:48:af:09: e8:4c:d5:db:9c:50:96:22:82:da:9e:5b:5b:68:53:31:92:13: fa:a1:ac:73:aa:b1:5f:af:00:55:41:a0:cf:92:57:56:17:ef: d8:13:68:22:f6:40:c3:a8:c4:d6:2c:c7:6d:67:05:f1:71:92: 5d:b6:90:8f:24:51:45:32:cf:08:12:cc:57:7f:02:ba:49:4d: b4:16:12:a0:f3:db:96:0c:46:7b:15:20:02:d8:bb:1c:44:0a: 60:69:91:06:f6:3c:66:82:ad:01:f0:6f:1c:de:86:b8:f7:f7: 18:87:1f:4f:8d:dd:b1:59:65:a4:40:99:98:c9:a8:ac:68:47: 0f:50:6c:c6:6a:04:94:9c:5f:31:74:33:b7:2d:97:9b:b8:c2: e4:ad:a7:ed:12:f9:81:71:75:ae:4d:3c:e0:75:84:db:62:c8: 02:30:ce:f1:c7:80:e3:2f:36:f4:bf:6e:a1:34:03:44:43:ca: 62:d6:13:74 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NTZDMzExMC8GA1UEBRMoRDgyNTY2OEIxQUMxQjdGMzgxNUYwN0JDREE1N0U3NDhD NDk2NEE5QTAeFw0yNTA2MTMwNjE4MTJaFw0yNTA2MjAwNjE4MTJaMBgxFjAUBgNV BAMTDTY4NGJjMmE1LTBlOTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8mkTVvo6ByhdRNoEjN2UF8Sefo/F7eyv9CbmN4JbOAEEZFvlWuWqFL7leu3xD qHWFhEvkpU/wkyB5mjFcDoHnhekwhR3vdBBVzER+CBIxUQzCUm0UEFVe+oIweCk3 JUOabkaO6L/tmKNDj9Vb1C/gkp99ZFgkiWm6NgWQGvHjjdf5gVjAgFbyuOp4LEQP 0TJrxK2Bd4pj5nIHcIkhFCVnwGP+LSQhLnzpYjEDob3COiQlJC0duXIg8xWVQfWc KbEPgyDl6qTFR5uKJTyAEyFnrh5I5xVsqwnpxHXSH4tPXR31XkUbZ5urn5d09EXE /WlWuDVoFC7UWjeAibLj6oMtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUGKhe5sj8 WKDRY8c1WFU4Cy6sA6swHwYDVR0jBBgwFoAU2CVmixrBt/OBXwe82lfnSMSWSpow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1NkMzLzVCRjUxOTJBRTA2 NzExRUZCQzNEMTcxQkM0RjlBRTAyLzJDVm1peHJCdF9PQlh3ZTgybGZuU01TV1Nw by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMkNWbWl4ckJ0X09CWHdlODJsZm5TTVNXU3BvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1 NkMzLzVCRjUxOTJBRTA2NzExRUZCQzNEMTcxQkM0RjlBRTAyLzJDVm1peHJCdF9P Qlh3ZTgybGZuU01TV1Nwby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEdJYBdTP5PcR7TnE5WSmTjWnh9zTZi8U8RhpKFQxu8x3vFimJQPuZeg ZhkokcyQWX7LLCnxJKF9izJrkjpZM05xH0J470ivCehM1ducUJYigtqeW1toUzGS E/qhrHOqsV+vAFVBoM+SV1YX79gTaCL2QMOoxNYsx21nBfFxkl22kI8kUUUyzwgS zFd/ArpJTbQWEqDz25YMRnsVIALYuxxECmBpkQb2PGaCrQHwbxzehrj39xiHH0+N 3bFZZaRAmZjJqKxoRw9QbMZqBJScXzF0M7ctl5u4wuStp+0S+YFxda5NPOB1hNti yAIwzvHHgOMvNvS/bqE0A0RDymLWE3Q= -----END CERTIFICATE-----Generated at Sat Jun 14 18:03:15 2025 by rpki-client