$ rpki-client -vvf rpki.apnic.net/member_repository/A9188EB6/3EBF479A411411EC8EA96D0BC4F9AE02/2kObzwPK_LW-ftCuezKPafiMGys.mft File: 2kObzwPK_LW-ftCuezKPafiMGys.mft (raw, json) Hash identifier: NgEnLtt0bcuuAkdb0oBBOF5W3VASqouY92aer4Jxgag= Subject key identifier: 4F:48:90:6C:00:F7:43:D8:88:A2:6C:A1:37:33:92:42:3C:AB:8F:7E Authority key identifier: DA:43:9B:CF:03:CA:FC:B5:BE:7E:D0:AE:7B:32:8F:69:F8:8C:1B:2B Certificate issuer: /CN=A9188EB6/serialNumber=DA439BCF03CAFCB5BE7ED0AE7B328F69F88C1B2B Certificate serial: 048F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kObzwPK_LW-ftCuezKPafiMGys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188EB6/3EBF479A411411EC8EA96D0BC4F9AE02/2kObzwPK_LW-ftCuezKPafiMGys.mft Manifest number: 048A Signing time: Thu 12 Jun 2025 23:36:39 +0000 Manifest this update: Thu 12 Jun 2025 23:36:39 +0000 Manifest next update: Thu 19 Jun 2025 23:36:39 +0000 Files and hashes: 1: 2kObzwPK_LW-ftCuezKPafiMGys.crl (hash: OVuzXhDkadBf2ZSzR3vnnFuxgpiLBPMvqy6seZxIuK4=) 2: E9E440F2411511ECBC2FB20BC4F9AE02.roa (hash: oCq0GS/e8jzWI+qfCm+Q9EBQNv1mP52MN9gsJPInZfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188EB6/3EBF479A411411EC8EA96D0BC4F9AE02/2kObzwPK_LW-ftCuezKPafiMGys.crl rsync://rpki.apnic.net/member_repository/A9188EB6/3EBF479A411411EC8EA96D0BC4F9AE02/2kObzwPK_LW-ftCuezKPafiMGys.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kObzwPK_LW-ftCuezKPafiMGys.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 23:36:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1167 (0x48f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188EB6, serialNumber=DA439BCF03CAFCB5BE7ED0AE7B328F69F88C1B2B Validity Not Before: Jun 12 23:36:39 2025 GMT Not After : Jun 19 23:36:39 2025 GMT Subject: CN=684b6487-c442 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9f:fc:e2:04:f1:18:d0:48:57:ef:39:56:fc: 6c:46:6d:7f:56:df:7a:da:43:a5:df:7f:f0:44:9f: 7c:97:40:6e:72:a0:60:2e:52:c1:15:92:29:1f:24: d6:0e:e3:6f:0a:a5:02:5e:cd:20:c3:80:15:d9:31: 31:db:7d:97:d1:b2:a4:0f:b6:f8:31:37:9a:99:36: 76:45:09:e7:5b:73:b8:68:20:6b:50:71:b6:33:92: a3:01:18:08:c2:0f:b2:19:61:aa:0f:61:ae:73:f4: 48:0b:75:4f:40:e2:b5:67:2b:9e:3a:70:b8:f0:55: de:0b:f5:c8:37:43:b5:1c:76:bf:58:54:ec:8e:b0: 12:3d:5d:3c:d7:f7:ba:71:8b:35:99:58:63:f7:63: 16:53:2b:aa:b9:fc:46:78:ff:ce:35:3c:3d:89:47: a1:b4:57:55:fd:04:66:37:3f:37:9a:da:00:4b:8b: 6f:f0:62:c8:7b:55:cc:f3:83:78:7f:e7:a6:06:43: c9:1b:69:5a:b4:d1:8f:7b:89:47:96:10:5d:92:f2: 73:7d:b0:69:6c:45:2d:0f:9c:d3:d3:59:79:b8:4d: a5:9f:5f:47:65:be:1e:ed:bd:05:49:c3:9b:e4:3e: 22:dd:f2:4b:80:ac:92:cf:0a:ed:4a:02:16:50:e8: fa:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:48:90:6C:00:F7:43:D8:88:A2:6C:A1:37:33:92:42:3C:AB:8F:7E X509v3 Authority Key Identifier: keyid:DA:43:9B:CF:03:CA:FC:B5:BE:7E:D0:AE:7B:32:8F:69:F8:8C:1B:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188EB6/3EBF479A411411EC8EA96D0BC4F9AE02/2kObzwPK_LW-ftCuezKPafiMGys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kObzwPK_LW-ftCuezKPafiMGys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188EB6/3EBF479A411411EC8EA96D0BC4F9AE02/2kObzwPK_LW-ftCuezKPafiMGys.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:72:3c:34:42:4b:13:f9:a1:39:54:7d:39:af:df:8d:e2:ce: 5d:e8:2c:cb:56:bd:f1:1b:2c:11:4e:63:ae:d4:22:0d:71:e0: d0:35:bf:0e:23:91:6b:e6:9c:5b:a2:4b:e1:71:85:40:b8:ab: 0a:f7:d3:78:88:ec:36:af:c6:a2:8d:17:77:23:5e:05:35:ab: d9:4c:c6:63:d4:c8:5d:5e:57:3b:77:ce:66:bd:75:ad:b4:4d: 58:b4:0c:48:45:5f:ba:f5:88:15:ec:5b:e4:d5:f5:4f:5d:2d: 53:31:db:4b:a2:13:22:82:4c:53:5c:46:e9:40:a5:1b:b9:65: 48:a8:90:92:e1:8a:e0:ce:53:57:05:aa:b7:f1:e2:48:6d:a3: f2:60:da:15:65:b8:71:d1:e5:1a:33:79:e0:4b:08:04:9e:b3: 88:e4:dd:2c:68:e3:7f:eb:f3:bd:b6:c3:7f:70:ad:6b:a1:67: 1b:c4:2e:83:fd:38:f2:17:e2:77:79:61:aa:d3:11:6e:9c:1b: bf:13:f9:cf:b6:8c:43:22:85:f8:6a:15:ec:16:4a:a5:ba:f2: 90:fd:f0:b4:f3:8d:22:e2:1d:fa:5c:32:4b:90:20:bb:95:41: 28:ad:ea:fc:3b:e8:6d:e1:b8:c1:e4:be:6e:29:1b:25:45:f9: 73:6c:99:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODhFQjYxMTAvBgNVBAUTKERBNDM5QkNGMDNDQUZDQjVCRTdFRDBBRTdCMzI4RjY5 Rjg4QzFCMkIwHhcNMjUwNjEyMjMzNjM5WhcNMjUwNjE5MjMzNjM5WjAYMRYwFAYD VQQDEw02ODRiNjQ4Ny1jNDQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuJ/84gTxGNBIV+85VvxsRm1/Vt962kOl33/wRJ98l0BucqBgLlLBFZIpHyTW DuNvCqUCXs0gw4AV2TEx232X0bKkD7b4MTeamTZ2RQnnW3O4aCBrUHG2M5KjARgI wg+yGWGqD2Guc/RIC3VPQOK1ZyueOnC48FXeC/XIN0O1HHa/WFTsjrASPV081/e6 cYs1mVhj92MWUyuqufxGeP/ONTw9iUehtFdV/QRmNz83mtoAS4tv8GLIe1XM84N4 f+emBkPJG2latNGPe4lHlhBdkvJzfbBpbEUtD5zT01l5uE2ln19HZb4e7b0FScOb 5D4i3fJLgKySzwrtSgIWUOj6jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE9IkGwA 90PYiKJsoTczkkI8q49+MB8GA1UdIwQYMBaAFNpDm88Dyvy1vn7Qrnsyj2n4jBsr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OEVCNi8zRUJGNDc5QTQx MTQxMUVDOEVBOTZEMEJDNEY5QUUwMi8ya09iendQS19MVy1mdEN1ZXpLUGFmaU1H eXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrT2J6d1BLX0xXLWZ0Q3VlektQYWZpTUd5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OEVCNi8zRUJGNDc5QTQxMTQxMUVDOEVBOTZEMEJDNEY5QUUwMi8ya09iendQS19M Vy1mdEN1ZXpLUGFmaU1HeXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCcjw0QksT+aE5VH05r9+N4s5d6CzLVr3xGywRTmOu1CINceDQNb8O I5Fr5pxbokvhcYVAuKsK99N4iOw2r8aijRd3I14FNavZTMZj1MhdXlc7d85mvXWt tE1YtAxIRV+69YgV7Fvk1fVPXS1TMdtLohMigkxTXEbpQKUbuWVIqJCS4YrgzlNX Baq38eJIbaPyYNoVZbhx0eUaM3ngSwgEnrOI5N0saON/6/O9tsN/cK1roWcbxC6D /TjyF+J3eWGq0xFunBu/E/nPtoxDIoX4ahXsFkqluvKQ/fC0840i4h36XDJLkCC7 lUEorer8O+ht4bjB5L5uKRslRflzbJnx -----END CERTIFICATE-----Generated at Sat Jun 14 18:52:53 2025 by rpki-client