$ rpki-client -vvf rpki.apnic.net/member_repository/A9199DE2/A3A52106AED011EBBF3FD763C4F9AE02/2CWolzNYl8B-dpODimvyAnZYDwM.mft File: 2CWolzNYl8B-dpODimvyAnZYDwM.mft (raw, json) Hash identifier: 7Ft+zyRNXxPlZyfx4opQSkLlecSY0mi5/8tLEl2D/Wc= Subject key identifier: C3:6E:E9:30:C1:22:25:BA:5B:4C:10:45:A8:64:47:B6:DB:F3:6B:2D Authority key identifier: D8:25:A8:97:33:58:97:C0:7E:76:93:83:8A:6B:F2:02:76:58:0F:03 Certificate issuer: /CN=A9199DE2/serialNumber=D825A897335897C07E7693838A6BF20276580F03 Certificate serial: 060E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CWolzNYl8B-dpODimvyAnZYDwM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199DE2/A3A52106AED011EBBF3FD763C4F9AE02/2CWolzNYl8B-dpODimvyAnZYDwM.mft Manifest number: 0604 Signing time: Wed 18 Jun 2025 22:44:37 +0000 Manifest this update: Wed 18 Jun 2025 22:44:36 +0000 Manifest next update: Wed 25 Jun 2025 22:44:36 +0000 Files and hashes: 1: 2CWolzNYl8B-dpODimvyAnZYDwM.crl (hash: I0leEjK8mkw2Pf129A5f+K/pOFNQ+uubnynKu7I51Ig=) 2: E6ECE6E6104C11EC9074E586C4F9AE02.roa (hash: gAuID1Fe/PtlP9DGBoTnnUFK6n2WVQEEJLwbWlhbFaE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199DE2/A3A52106AED011EBBF3FD763C4F9AE02/2CWolzNYl8B-dpODimvyAnZYDwM.crl rsync://rpki.apnic.net/member_repository/A9199DE2/A3A52106AED011EBBF3FD763C4F9AE02/2CWolzNYl8B-dpODimvyAnZYDwM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CWolzNYl8B-dpODimvyAnZYDwM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 22:44:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1550 (0x60e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199DE2, serialNumber=D825A897335897C07E7693838A6BF20276580F03 Validity Not Before: Jun 18 22:44:36 2025 GMT Not After : Jun 25 22:44:36 2025 GMT Subject: CN=68534155-2705 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:c6:dc:f7:a9:fe:61:8a:7d:cb:a5:68:5e:4a: 12:dc:4c:bb:9b:a4:76:4a:5e:aa:c2:64:8b:2e:32: c7:9e:44:2d:7a:28:82:15:0f:c4:6c:3e:2a:50:eb: 76:96:51:e7:b8:20:f0:21:ca:b0:b2:05:39:85:fd: a8:ae:43:ac:1e:e0:d7:a0:6b:f7:d3:b5:95:62:36: 27:51:e3:30:aa:af:38:6c:94:1c:04:ae:c5:89:7f: 48:88:f2:28:d0:5a:29:9e:75:5d:09:e9:08:ab:99: 05:a1:b2:8e:0f:65:52:d6:61:62:62:c4:7e:df:3b: a9:83:26:98:6a:57:44:c2:f4:3c:74:ac:2c:15:14: 45:6d:76:ca:83:80:83:cb:3a:51:cc:f6:2d:70:a8: 15:25:06:bd:fc:7a:ce:c8:39:1a:d3:d1:14:5d:3b: 29:60:38:7e:e9:70:1f:d3:2e:c2:d0:b9:51:7d:85: 70:30:7f:6c:de:75:a2:47:46:59:e6:ba:bd:26:eb: 1d:b5:1f:06:dd:38:3a:81:25:ed:f4:ab:d1:4c:f3: a1:b8:a8:fd:48:90:ae:93:fe:6f:78:03:81:c8:58: e5:8b:46:3e:0a:24:f9:7f:ce:6d:2c:c1:a8:c2:e9: 8f:9e:7a:f3:a5:39:57:97:08:c2:f5:06:f7:97:cc: 68:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:6E:E9:30:C1:22:25:BA:5B:4C:10:45:A8:64:47:B6:DB:F3:6B:2D X509v3 Authority Key Identifier: keyid:D8:25:A8:97:33:58:97:C0:7E:76:93:83:8A:6B:F2:02:76:58:0F:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199DE2/A3A52106AED011EBBF3FD763C4F9AE02/2CWolzNYl8B-dpODimvyAnZYDwM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CWolzNYl8B-dpODimvyAnZYDwM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199DE2/A3A52106AED011EBBF3FD763C4F9AE02/2CWolzNYl8B-dpODimvyAnZYDwM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:6d:b5:b7:69:63:16:bd:61:18:37:16:b2:57:7c:a8:7d:6a: 71:7f:7a:25:7a:59:9b:11:a5:9e:f6:17:a5:4b:17:45:83:96: b0:b1:33:69:72:e6:6f:06:53:bc:ed:ff:de:44:b8:ca:7d:a4: 7c:2b:2c:d9:68:aa:16:ea:38:ae:15:2c:45:ed:d9:59:1e:cc: 3f:d6:81:aa:a4:69:2a:d1:ef:f5:a2:e0:eb:5c:82:87:a7:d7: 9f:7b:45:e3:dc:ce:25:f2:27:90:d5:d0:6a:0f:39:f4:13:6c: ef:c1:27:5c:74:cc:27:e3:49:d4:ce:a6:21:7b:5c:e3:9c:b8: 9b:56:e0:ee:1f:16:6a:7a:fa:b7:49:db:24:62:48:ce:39:ba: 44:61:e8:e5:a4:bc:11:4b:80:56:78:6c:00:1a:2c:20:48:26: 83:ae:ab:48:3f:13:84:a3:d9:c3:61:95:09:93:93:66:1d:33: e4:a8:c3:03:67:49:fa:dd:39:7e:73:d8:eb:c9:7d:10:27:4a: 5b:38:18:e9:0c:c4:a4:04:48:17:4a:97:f5:26:40:d7:a4:bb: 61:39:50:ad:7a:b0:c8:22:4d:a5:bc:20:8e:78:98:be:33:66: 40:27:a8:0b:df:93:b7:8e:f4:26:72:9e:19:54:43:d8:ca:ff: 4b:38:c3:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBg4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlERTIxMTAvBgNVBAUTKEQ4MjVBODk3MzM1ODk3QzA3RTc2OTM4MzhBNkJGMjAy NzY1ODBGMDMwHhcNMjUwNjE4MjI0NDM2WhcNMjUwNjI1MjI0NDM2WjAYMRYwFAYD VQQDEw02ODUzNDE1NS0yNzA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA38bc96n+YYp9y6VoXkoS3Ey7m6R2Sl6qwmSLLjLHnkQteiiCFQ/EbD4qUOt2 llHnuCDwIcqwsgU5hf2orkOsHuDXoGv307WVYjYnUeMwqq84bJQcBK7FiX9IiPIo 0FopnnVdCekIq5kFobKOD2VS1mFiYsR+3zupgyaYaldEwvQ8dKwsFRRFbXbKg4CD yzpRzPYtcKgVJQa9/HrOyDka09EUXTspYDh+6XAf0y7C0LlRfYVwMH9s3nWiR0ZZ 5rq9JusdtR8G3Tg6gSXt9KvRTPOhuKj9SJCuk/5veAOByFjli0Y+CiT5f85tLMGo wumPnnrzpTlXlwjC9Qb3l8xozwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMNu6TDB IiW6W0wQRahkR7bb82stMB8GA1UdIwQYMBaAFNglqJczWJfAfnaTg4pr8gJ2WA8D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OURFMi9BM0E1MjEwNkFF RDAxMUVCQkYzRkQ3NjNDNEY5QUUwMi8yQ1dvbHpOWWw4Qi1kcE9EaW12eUFuWllE d00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJDV29sek5ZbDhCLWRwT0RpbXZ5QW5aWUR3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OURFMi9BM0E1MjEwNkFFRDAxMUVCQkYzRkQ3NjNDNEY5QUUwMi8yQ1dvbHpOWWw4 Qi1kcE9EaW12eUFuWllEd00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9bbW3aWMWvWEYNxayV3yofWpxf3olelmbEaWe9helSxdFg5awsTNp cuZvBlO87f/eRLjKfaR8KyzZaKoW6jiuFSxF7dlZHsw/1oGqpGkq0e/1ouDrXIKH p9efe0Xj3M4l8ieQ1dBqDzn0E2zvwSdcdMwn40nUzqYhe1zjnLibVuDuHxZqevq3 SdskYkjOObpEYejlpLwRS4BWeGwAGiwgSCaDrqtIPxOEo9nDYZUJk5NmHTPkqMMD Z0n63Tl+c9jryX0QJ0pbOBjpDMSkBEgXSpf1JkDXpLthOVCterDIIk2lvCCOeJi+ M2ZAJ6gL35O3jvQmcp4ZVEPYyv9LOMOG -----END CERTIFICATE-----Generated at Thu Jun 19 11:40:37 2025 by rpki-client