$ rpki-client -vvf rpki.apnic.net/member_repository/A917F224/6E9BA41A205811EAB717721BC4F9AE02/u2XjT0_eqStZoyVHozggimCJHgk.mft File: u2XjT0_eqStZoyVHozggimCJHgk.mft (raw, json) Hash identifier: iVJA0FsHOD/BR2X1BYyYhvMWM2VqECnOqENNuTvALcs= Subject key identifier: 52:F3:1E:4E:38:D6:2E:6A:14:7F:40:7A:2A:EF:E9:E7:1F:AF:F0:FB Authority key identifier: BB:65:E3:4F:4F:DE:A9:2B:59:A3:25:47:A3:38:20:8A:60:89:1E:09 Certificate issuer: /CN=A917F224/serialNumber=BB65E34F4FDEA92B59A32547A338208A60891E09 Certificate serial: 0BC9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u2XjT0_eqStZoyVHozggimCJHgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F224/6E9BA41A205811EAB717721BC4F9AE02/u2XjT0_eqStZoyVHozggimCJHgk.mft Manifest number: 0BC0 Signing time: Thu 12 Jun 2025 18:43:55 +0000 Manifest this update: Thu 12 Jun 2025 18:43:55 +0000 Manifest next update: Thu 19 Jun 2025 18:43:55 +0000 Files and hashes: 1: u2XjT0_eqStZoyVHozggimCJHgk.crl (hash: NXGxqAc3xW0lxruRqK35vwCYQ0yJeSGT6smgJze+MqE=) 2: A46E4EAC205911EAAB6ECF1FC4F9AE02.roa (hash: 6VuhUdY4wX4JtAdDLdZ6VRCxsSJ2dhl5mfVJFdysXwU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F224/6E9BA41A205811EAB717721BC4F9AE02/u2XjT0_eqStZoyVHozggimCJHgk.crl rsync://rpki.apnic.net/member_repository/A917F224/6E9BA41A205811EAB717721BC4F9AE02/u2XjT0_eqStZoyVHozggimCJHgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u2XjT0_eqStZoyVHozggimCJHgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 18:43:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3017 (0xbc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F224, serialNumber=BB65E34F4FDEA92B59A32547A338208A60891E09 Validity Not Before: Jun 12 18:43:55 2025 GMT Not After : Jun 19 18:43:55 2025 GMT Subject: CN=684b1feb-34aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:b4:d4:0f:88:ee:50:e8:c4:96:ef:d0:f3:90: a9:f0:93:31:99:0a:ed:3c:34:f0:31:62:3b:76:1f: 90:01:d1:54:b8:5d:6e:dc:d4:9b:a4:be:97:79:96: 67:1c:94:a5:bd:79:5f:49:80:fd:b9:95:1d:3c:a0: 06:2c:de:e0:f2:ec:6f:10:af:e6:fe:62:b4:28:73: c2:93:d4:b2:b5:54:9b:40:0e:fe:28:15:dd:50:da: 1b:00:a1:37:f4:04:60:a8:16:dc:ed:1d:02:0f:bd: 90:7f:3b:54:18:19:5c:d3:93:3c:9e:0a:82:37:af: 98:7d:cf:0f:c1:4e:c8:ef:f0:c4:77:0b:8f:34:c6: 29:5a:f6:24:98:4b:aa:56:56:79:32:36:2d:f0:aa: 4c:dc:a7:12:1b:e4:c9:f4:93:c7:7c:9c:96:cf:43: c5:9d:72:34:34:15:0f:bd:ff:5c:61:17:73:ed:58: 80:a5:11:e2:a7:72:eb:ea:59:71:0b:42:e1:93:c1: cf:d8:ec:57:1a:ad:58:35:cd:75:54:45:f1:78:fb: a6:7b:17:44:e1:2b:d4:7a:ac:94:45:66:a0:a8:0c: a5:12:45:61:60:75:4e:1f:2e:97:84:84:b2:ca:a8: 39:4e:5b:b1:b2:02:a2:06:36:96:c4:ad:d1:9a:fe: f3:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:F3:1E:4E:38:D6:2E:6A:14:7F:40:7A:2A:EF:E9:E7:1F:AF:F0:FB X509v3 Authority Key Identifier: keyid:BB:65:E3:4F:4F:DE:A9:2B:59:A3:25:47:A3:38:20:8A:60:89:1E:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F224/6E9BA41A205811EAB717721BC4F9AE02/u2XjT0_eqStZoyVHozggimCJHgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u2XjT0_eqStZoyVHozggimCJHgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F224/6E9BA41A205811EAB717721BC4F9AE02/u2XjT0_eqStZoyVHozggimCJHgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:9e:f0:7f:9d:7a:01:1b:31:28:2e:d5:90:49:15:00:7b:12: 6d:c6:17:16:de:63:9d:f9:fd:73:31:66:07:7c:95:12:69:b1: 9c:a3:d8:d0:a9:24:90:b0:17:56:c7:f0:16:f5:6f:f5:76:a2: 50:e1:42:31:78:4b:c8:09:67:96:24:e0:8e:60:31:27:f1:d3: c6:59:58:7a:26:51:cd:46:ab:07:a4:ec:6a:76:8b:a0:9c:53: 5c:2a:6f:25:7e:58:32:62:7b:58:8c:cc:fd:de:97:dc:12:63: b9:d5:1d:9f:56:60:22:ab:ef:6a:9e:b9:b3:d4:29:26:43:9e: 2c:76:51:78:f1:37:15:2c:dd:8b:5f:37:1e:6a:05:35:d0:c2: 3b:ee:aa:f6:19:1a:a9:e6:1f:ea:50:2c:19:1a:00:62:c3:a2: 74:a9:7f:76:94:17:05:ff:cb:33:5f:7d:99:94:b0:47:f4:cb: ec:82:ae:7a:f1:a0:0f:b3:5b:fc:05:67:f6:82:95:ab:ec:be: 27:7f:0a:b6:9b:0e:01:05:fd:5c:67:ed:e8:1e:4e:25:4a:b6: b8:a8:71:75:cb:cc:64:cd:5c:ae:72:24:55:6e:88:07:28:d0: a8:d6:93:c9:10:58:e5:ed:bf:6e:ac:f5:84:08:ad:37:8d:27: 4f:3a:d3:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0YyMjQxMTAvBgNVBAUTKEJCNjVFMzRGNEZERUE5MkI1OUEzMjU0N0EzMzgyMDhB NjA4OTFFMDkwHhcNMjUwNjEyMTg0MzU1WhcNMjUwNjE5MTg0MzU1WjAYMRYwFAYD VQQDEw02ODRiMWZlYi0zNGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqLTUD4juUOjElu/Q85Cp8JMxmQrtPDTwMWI7dh+QAdFUuF1u3NSbpL6XeZZn HJSlvXlfSYD9uZUdPKAGLN7g8uxvEK/m/mK0KHPCk9SytVSbQA7+KBXdUNobAKE3 9ARgqBbc7R0CD72QfztUGBlc05M8ngqCN6+Yfc8PwU7I7/DEdwuPNMYpWvYkmEuq VlZ5MjYt8KpM3KcSG+TJ9JPHfJyWz0PFnXI0NBUPvf9cYRdz7ViApRHip3Lr6llx C0Lhk8HP2OxXGq1YNc11VEXxePumexdE4SvUeqyURWagqAylEkVhYHVOHy6XhISy yqg5TluxsgKiBjaWxK3Rmv7zKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFLzHk44 1i5qFH9Aeirv6ecfr/D7MB8GA1UdIwQYMBaAFLtl409P3qkrWaMlR6M4IIpgiR4J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjIyNC82RTlCQTQxQTIw NTgxMUVBQjcxNzcyMUJDNEY5QUUwMi91MlhqVDBfZXFTdFpveVZIb3pnZ2ltQ0pI Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UyWGpUMF9lcVN0Wm95VkhvemdnaW1DSkhnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjIyNC82RTlCQTQxQTIwNTgxMUVBQjcxNzcyMUJDNEY5QUUwMi91MlhqVDBfZXFT dFpveVZIb3pnZ2ltQ0pIZ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATnvB/nXoBGzEoLtWQSRUAexJtxhcW3mOd+f1zMWYHfJUSabGco9jQ qSSQsBdWx/AW9W/1dqJQ4UIxeEvICWeWJOCOYDEn8dPGWVh6JlHNRqsHpOxqdoug nFNcKm8lflgyYntYjMz93pfcEmO51R2fVmAiq+9qnrmz1CkmQ54sdlF48TcVLN2L XzceagU10MI77qr2GRqp5h/qUCwZGgBiw6J0qX92lBcF/8szX32ZlLBH9Mvsgq56 8aAPs1v8BWf2gpWr7L4nfwq2mw4BBf1cZ+3oHk4lSra4qHF1y8xkzVyuciRVbogH KNCo1pPJEFjl7b9urPWECK03jSdPOtO8 -----END CERTIFICATE-----Generated at Sat Jun 14 19:38:04 2025 by rpki-client