$ rpki-client -vvf rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft File: 2lexkcVbszGevZGC3A1Oau8-Ddg.mft (raw, json) Hash identifier: w12ezSj647xh1tGIiXF32T/+E7BrT7DTNuyMFBlt99k= Subject key identifier: A8:6D:F2:DD:5F:F1:89:36:24:60:8A:1F:17:F0:4B:7E:92:2B:4E:6B Authority key identifier: DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 Certificate issuer: /CN=A912A31E/serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Certificate serial: 01A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft Manifest number: 01A1 Signing time: Sat 19 Jul 2025 03:30:00 +0000 Manifest this update: Sat 19 Jul 2025 03:29:59 +0000 Manifest next update: Sat 26 Jul 2025 03:29:59 +0000 Files and hashes: 1: 2lexkcVbszGevZGC3A1Oau8-Ddg.crl (hash: aZ8daQeetE9Dt7W3IEVP/9BULqPwUd/PmyZ2dOdxtFY=) 2: 5181F33CE8C011EDADA54A23C4F9AE02.roa (hash: 9wRwgsGB8Fy9z1Xq7bw5sLUsMsE1FSTZuA/DyllyXak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:29:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 420 (0x1a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A31E, serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Validity Not Before: Jul 19 03:29:59 2025 GMT Not After : Jul 26 03:29:59 2025 GMT Subject: CN=687b1138-9671 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:db:ca:fa:1f:2e:6e:49:99:1f:af:a6:f2:22: 1a:c5:03:d8:a6:75:b8:b7:14:01:72:e5:a2:38:d4: 04:00:91:d7:be:dc:1d:cd:81:2f:17:e5:9f:82:4e: b8:f2:0f:ba:e2:0b:58:58:4e:52:9a:4c:b9:7d:31: 4c:ca:48:6d:d3:05:a3:c6:85:ea:70:6c:19:0d:a6: 64:55:8c:52:c4:91:c2:81:89:a2:73:ad:2d:cb:cd: 84:17:8f:1d:93:ff:4d:c2:06:9c:ac:e4:1d:b7:8e: c3:f3:4b:0c:fe:52:64:fe:91:66:8a:9a:f9:ca:64: 65:9e:c1:20:8b:6e:8f:87:3b:24:f6:d3:dc:9b:1c: 00:08:43:50:71:7a:fe:f1:4e:0d:0f:eb:66:68:26: f1:16:49:2a:80:d7:5c:db:78:34:5f:b9:a0:85:ad: 1d:d7:12:4b:34:22:a4:95:9b:78:a5:f7:6b:93:00: b0:91:0a:61:da:a9:d6:90:92:9b:59:1f:13:e7:dd: bb:1f:30:98:bd:2a:0b:5b:e2:3b:19:72:de:49:7e: 63:78:74:c6:5a:34:0f:72:2a:7c:46:c4:64:f0:ed: eb:b6:a6:7b:8c:59:26:d0:16:5d:19:e1:3c:61:2b: 2f:39:e5:10:50:b8:74:49:75:84:a2:22:78:ec:dd: 3c:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:6D:F2:DD:5F:F1:89:36:24:60:8A:1F:17:F0:4B:7E:92:2B:4E:6B X509v3 Authority Key Identifier: keyid:DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:90:9e:a9:bf:2a:f7:71:ae:25:15:f5:2f:cb:fa:d6:11:e2: d7:02:6c:0c:ff:62:85:b1:75:fb:f2:27:89:0b:4b:e2:77:1d: aa:3a:84:03:f3:6d:4a:30:52:88:b1:59:39:71:4d:7f:12:e8: be:95:f1:dc:9d:2c:14:ef:d7:5d:08:a1:56:bb:86:f1:23:7d: 85:22:eb:e3:18:96:0a:13:f9:24:2e:e0:03:8f:77:f3:6a:4e: 36:82:ce:25:94:9a:50:02:2e:3d:f1:4b:54:64:2c:a7:e9:1f: 0a:63:a6:23:d7:43:e7:dc:34:b4:62:e0:b5:ea:21:14:92:68: 83:c4:b3:ab:22:30:68:f7:2c:1f:c0:05:a4:8e:a8:18:5f:cd: 4e:38:0b:35:e0:f8:03:8f:21:8c:d5:1c:e1:14:8e:22:fc:17: db:a0:b2:4b:69:f7:10:eb:3f:33:4e:5e:06:ee:bb:5c:84:44: 03:8b:7c:e9:b3:7e:bf:be:f9:48:80:a1:aa:d6:32:b7:83:e4: 24:76:50:cf:61:91:82:6f:21:4b:71:fb:8e:51:b3:2b:89:90: 02:22:31:16:de:69:5c:58:04:1d:e9:37:17:6e:32:c6:20:8f: fb:6d:19:a5:5a:a3:25:3e:58:6e:c1:88:c4:70:c9:3d:ac:cc: 4a:f4:1f:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEzMUUxMTAvBgNVBAUTKERBNTdCMTkxQzU1QkIzMzE5RUJEOTE4MkRDMEQ0RTZB RUYzRTBERDgwHhcNMjUwNzE5MDMyOTU5WhcNMjUwNzI2MDMyOTU5WjAYMRYwFAYD VQQDEw02ODdiMTEzOC05NjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5tvK+h8ubkmZH6+m8iIaxQPYpnW4txQBcuWiONQEAJHXvtwdzYEvF+Wfgk64 8g+64gtYWE5Smky5fTFMykht0wWjxoXqcGwZDaZkVYxSxJHCgYmic60ty82EF48d k/9NwgacrOQdt47D80sM/lJk/pFmipr5ymRlnsEgi26Phzsk9tPcmxwACENQcXr+ 8U4ND+tmaCbxFkkqgNdc23g0X7mgha0d1xJLNCKklZt4pfdrkwCwkQph2qnWkJKb WR8T5927HzCYvSoLW+I7GXLeSX5jeHTGWjQPcip8RsRk8O3rtqZ7jFkm0BZdGeE8 YSsvOeUQULh0SXWEoiJ47N08UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKht8t1f 8Yk2JGCKHxfwS36SK05rMB8GA1UdIwQYMBaAFNpXsZHFW7Mxnr2RgtwNTmrvPg3Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTMxRS9DOEE0QzRFNEU4 QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6R2V2WkdDM0ExT2F1OC1E ZGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsZXhrY1Zic3pHZXZaR0MzQTFPYXU4LURkZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTMxRS9DOEE0QzRFNEU4QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6 R2V2WkdDM0ExT2F1OC1EZGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEkJ6pvyr3ca4lFfUvy/rWEeLXAmwM/2KFsXX78ieJC0vidx2qOoQD 821KMFKIsVk5cU1/Eui+lfHcnSwU79ddCKFWu4bxI32FIuvjGJYKE/kkLuADj3fz ak42gs4llJpQAi498UtUZCyn6R8KY6Yj10Pn3DS0YuC16iEUkmiDxLOrIjBo9ywf wAWkjqgYX81OOAs14PgDjyGM1RzhFI4i/BfboLJLafcQ6z8zTl4G7rtchEQDi3zp s36/vvlIgKGq1jK3g+QkdlDPYZGCbyFLcfuOUbMriZACIjEW3mlcWAQd6TcXbjLG II/7bRmlWqMlPlhuwYjEcMk9rMxK9B/4 -----END CERTIFICATE-----Generated at Sun Jul 20 06:23:17 2025 by rpki-client