$ rpki-client -vvf rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.mft File: N2EhKhZwpXGatx-iA7kuxobyEXc.mft (raw, json) Hash identifier: /eo0/YZK1QWyw3AiJ6oA2OwNhtNkmZOJWC4TpG+LuHk= Subject key identifier: B9:A6:74:53:D4:D2:7B:C7:0A:5A:50:59:6E:AE:3D:0D:A7:95:A3:88 Authority key identifier: 37:61:21:2A:16:70:A5:71:9A:B7:1F:A2:03:B9:2E:C6:86:F2:11:77 Certificate issuer: /CN=A9142037/serialNumber=3761212A1670A5719AB71FA203B92EC686F21177 Certificate serial: 58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2EhKhZwpXGatx-iA7kuxobyEXc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.mft Manifest number: 56 Signing time: Mon 21 Jul 2025 07:23:19 +0000 Manifest this update: Mon 21 Jul 2025 07:23:18 +0000 Manifest next update: Mon 28 Jul 2025 07:23:18 +0000 Files and hashes: 1: N2EhKhZwpXGatx-iA7kuxobyEXc.crl (hash: A9jFIyqjuzDaVMF7EudRvkcgo9mv1J+V7+0h743cm1s=) 2: 191B6DA2E41811EF8E3F233AC4F9AE02.roa (hash: vcq+JOCdxjFG1D5wGuVH3+pI9poPc4zyyjKKMXsqhWE=) 3: FAEA8E38E41911EFA96DA35FC4F9AE02.roa (hash: RxRZ1dH5JkRHUJw1N/ksvTcKPSxp60O8KTnJFH3sluU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.crl rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2EhKhZwpXGatx-iA7kuxobyEXc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 07:23:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88 (0x58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142037, serialNumber=3761212A1670A5719AB71FA203B92EC686F21177 Validity Not Before: Jul 21 07:23:18 2025 GMT Not After : Jul 28 07:23:18 2025 GMT Subject: CN=687deae6-ddd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:d4:2d:2b:26:15:0a:80:d0:31:37:75:d3:b7: 68:bd:a5:63:3a:69:5d:fd:54:38:87:90:80:58:4a: 5e:72:0f:6b:79:8a:e1:a0:fb:be:6d:9d:1a:3b:19: 64:80:45:db:d8:83:29:3d:75:25:8b:d0:d8:19:48: 5a:2a:96:8b:7f:59:49:d2:d3:35:8b:cb:a4:28:cc: 47:38:4d:11:18:ad:77:b0:26:b4:2b:de:40:37:9a: 7f:5a:a1:c5:b8:89:65:26:ba:9a:d5:e0:c8:c0:8a: 88:dd:e4:6d:53:b4:26:a2:8c:10:29:a9:6d:5f:34: ee:3a:11:44:9f:67:7e:6f:c2:a2:16:cd:c0:d6:12: 32:d9:ac:fd:29:30:0b:d2:d1:6c:e4:26:2f:11:8d: dc:99:cc:ad:0d:75:54:94:fb:0f:93:28:f7:24:09: d6:e1:72:8f:92:10:98:e0:0c:4c:2e:cf:bf:96:76: 87:23:34:29:75:29:4d:aa:48:9e:6a:13:7f:04:f1: 8b:83:22:95:61:34:1c:df:26:02:0e:eb:86:69:bb: d6:02:db:1e:ba:9a:71:77:31:c5:1c:47:6a:7f:b8: 3f:f5:10:c2:38:e3:0f:63:59:35:91:07:25:c6:07: d0:2f:28:d9:5b:73:3f:f7:b0:5e:31:b9:74:c3:cf: f4:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:A6:74:53:D4:D2:7B:C7:0A:5A:50:59:6E:AE:3D:0D:A7:95:A3:88 X509v3 Authority Key Identifier: keyid:37:61:21:2A:16:70:A5:71:9A:B7:1F:A2:03:B9:2E:C6:86:F2:11:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2EhKhZwpXGatx-iA7kuxobyEXc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:4a:1d:ab:0e:77:f5:a9:de:11:af:8e:03:1b:2a:6a:51:e1: 66:9e:e1:94:0f:07:f9:94:45:e4:ed:4b:ce:46:83:fb:93:d4: f6:03:62:74:33:10:3b:aa:a9:46:25:65:b4:b9:85:ca:a4:07: 3e:ed:88:d7:5d:6a:6f:9f:de:52:74:eb:80:89:b7:c8:07:64: 55:37:73:cc:05:f0:4e:25:37:51:78:05:f7:8a:91:dd:bf:a7: ee:4b:b1:b9:e7:d3:f4:1a:9d:e5:fe:51:f6:b1:1f:09:d9:d6: 98:84:98:a9:18:6a:37:ee:24:6e:ec:2d:59:2f:c0:af:05:7b: 43:75:03:f1:e7:03:e1:a7:06:86:5d:b8:bc:29:69:4c:69:e1: e0:a7:c3:4d:40:9b:85:e7:73:fd:7b:17:0a:78:64:e0:d7:07: c9:95:23:5e:8c:d8:cf:ac:33:1f:99:7a:8b:d3:58:a2:db:40: e4:8b:47:d8:28:a6:11:ab:6d:b5:4f:9e:0e:c1:c7:5d:a9:c7: 91:e8:f0:ac:0f:24:b3:a5:3f:64:08:a9:4f:3d:0f:63:f6:bc: 02:3b:3f:dc:58:5a:69:af:f0:bc:41:7a:1c:df:21:04:46:da: f2:ca:b5:1c:53:36:73:f5:39:06:33:91:62:9f:5e:52:19:88: 2e:1a:ff:2a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MjAzNzExMC8GA1UEBRMoMzc2MTIxMkExNjcwQTU3MTlBQjcxRkEyMDNCOTJFQzY4 NkYyMTE3NzAeFw0yNTA3MjEwNzIzMThaFw0yNTA3MjgwNzIzMThaMBgxFjAUBgNV BAMTDTY4N2RlYWU2LWRkZDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDU1C0rJhUKgNAxN3XTt2i9pWM6aV39VDiHkIBYSl5yD2t5iuGg+75tnRo7GWSA RdvYgyk9dSWL0NgZSFoqlot/WUnS0zWLy6QozEc4TREYrXewJrQr3kA3mn9aocW4 iWUmuprV4MjAiojd5G1TtCaijBApqW1fNO46EUSfZ35vwqIWzcDWEjLZrP0pMAvS 0WzkJi8RjdyZzK0NdVSU+w+TKPckCdbhco+SEJjgDEwuz7+WdocjNCl1KU2qSJ5q E38E8YuDIpVhNBzfJgIO64Zpu9YC2x66mnF3McUcR2p/uD/1EMI44w9jWTWRByXG B9AvKNlbcz/3sF4xuXTDz/R9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUuaZ0U9TS e8cKWlBZbq49DaeVo4gwHwYDVR0jBBgwFoAUN2EhKhZwpXGatx+iA7kuxobyEXcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyMDM3LzVDMDVDMEM4RTQx NzExRUY5NkUyRkYzOEM0RjlBRTAyL04yRWhLaFp3cFhHYXR4LWlBN2t1eG9ieUVY Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTjJFaEtoWndwWEdhdHgtaUE3a3V4b2J5RVhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy MDM3LzVDMDVDMEM4RTQxNzExRUY5NkUyRkYzOEM0RjlBRTAyL04yRWhLaFp3cFhH YXR4LWlBN2t1eG9ieUVYYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALVKHasOd/Wp3hGvjgMbKmpR4Wae4ZQPB/mUReTtS85Gg/uT1PYDYnQz EDuqqUYlZbS5hcqkBz7tiNddam+f3lJ064CJt8gHZFU3c8wF8E4lN1F4BfeKkd2/ p+5Lsbnn0/QaneX+UfaxHwnZ1piEmKkYajfuJG7sLVkvwK8Fe0N1A/HnA+GnBoZd uLwpaUxp4eCnw01Am4Xnc/17Fwp4ZODXB8mVI16M2M+sMx+ZeovTWKLbQOSLR9go phGrbbVPng7Bx12px5Ho8KwPJLOlP2QIqU89D2P2vAI7P9xYWmmv8LxBehzfIQRG 2vLKtRxTNnP1OQYzkWKfXlIZiC4a/yo= -----END CERTIFICATE-----Generated at Wed Jul 23 04:36:42 2025 by rpki-client