$ rpki-client -vvf rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.mft File: 2leiQgcEcAjXOmXWgiSke5oD2qo.mft (raw, json) Hash identifier: 2APYYJLPBvaEwy3tFEAts9Fw5e4njfa+l6kPhHiTADs= Subject key identifier: 20:D8:CC:00:F6:0A:49:E1:16:59:54:1A:1F:F9:FC:61:FD:AC:68:97 Authority key identifier: DA:57:A2:42:07:04:70:08:D7:3A:65:D6:82:24:A4:7B:9A:03:DA:AA Certificate issuer: /CN=A914573E/serialNumber=DA57A24207047008D73A65D68224A47B9A03DAAA Certificate serial: 062C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2leiQgcEcAjXOmXWgiSke5oD2qo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.mft Manifest number: 0625 Signing time: Fri 18 Jul 2025 23:05:52 +0000 Manifest this update: Fri 18 Jul 2025 23:05:52 +0000 Manifest next update: Fri 25 Jul 2025 23:05:52 +0000 Files and hashes: 1: 2leiQgcEcAjXOmXWgiSke5oD2qo.crl (hash: 0trxtJ9eX465AiqrcZaj2/XpbBQSP5nzZ1ZIBqJoHOU=) 2: B67E0BB4A5A511EB94C0DE0FC4F9AE02.roa (hash: abFPv422MLo42yfuvK6GPVX4x/zkpsuvBFUhQvjbtGQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.crl rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2leiQgcEcAjXOmXWgiSke5oD2qo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 23:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1580 (0x62c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914573E, serialNumber=DA57A24207047008D73A65D68224A47B9A03DAAA Validity Not Before: Jul 18 23:05:52 2025 GMT Not After : Jul 25 23:05:52 2025 GMT Subject: CN=687ad350-7e32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:a4:6b:7e:1e:1b:63:2f:a4:a8:69:ce:ab:e6: 68:5a:ff:e2:1e:a6:58:97:e9:58:65:02:1c:5c:c3: a3:eb:2b:dd:63:3e:98:03:5e:0f:0a:fc:00:15:37: 02:9c:ac:76:51:30:1d:0d:95:5c:23:4a:2f:8b:83: 49:39:41:15:ca:0c:e4:cf:5e:b9:d3:bf:bf:98:f5: 7d:5f:53:9a:62:80:cf:87:16:56:31:65:18:58:63: 0e:0d:c8:09:d9:56:1d:ea:f4:d4:13:60:56:88:2e: e3:86:02:94:2e:44:b4:b4:31:f3:93:6c:a8:74:f4: 3c:e3:b6:02:44:c4:fd:9e:62:9c:94:45:88:77:9d: 5e:b3:27:ae:a9:ab:35:0b:b9:9a:20:b8:97:6c:ba: 7d:ac:43:8f:f9:e7:30:2a:ab:a6:5c:44:d7:59:b7: 2a:63:16:ee:a7:16:5e:40:f4:bf:36:b0:dc:77:8c: 61:eb:66:29:af:40:0c:de:0b:54:f5:1b:09:b1:9e: 39:ff:fb:6c:02:d6:aa:be:12:6c:4e:fa:0f:21:d1: 79:99:7d:da:72:d5:14:5f:0e:7a:a2:f0:6c:e9:a6: 85:e8:2a:01:90:22:e6:9d:53:66:2b:a6:58:0f:5d: 65:d1:cd:0a:58:92:3f:33:95:a4:d8:cb:b0:9f:9d: 95:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:D8:CC:00:F6:0A:49:E1:16:59:54:1A:1F:F9:FC:61:FD:AC:68:97 X509v3 Authority Key Identifier: keyid:DA:57:A2:42:07:04:70:08:D7:3A:65:D6:82:24:A4:7B:9A:03:DA:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2leiQgcEcAjXOmXWgiSke5oD2qo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:59:40:0c:d3:51:5d:fd:ee:2b:72:8c:83:26:09:7b:3f:32: ef:dc:bc:4e:76:85:ea:d7:7c:17:2e:15:6c:fc:49:58:af:de: 30:f2:cf:78:73:ae:9d:e3:85:6d:aa:1b:06:23:e4:9d:f2:0f: ba:cc:b4:d6:f2:40:66:fc:87:c1:11:e1:65:77:0f:07:f8:28: ad:c1:7b:45:ba:7c:21:a7:9a:ae:49:ee:94:bb:fb:18:ce:13: 67:38:a3:f0:bb:e8:a0:cd:3d:39:b9:ee:a0:8e:ff:ac:df:0e: 88:73:b0:51:f3:40:86:34:5b:03:de:e3:ad:19:d8:ab:cc:e7: 6f:d1:12:0a:39:de:ec:da:6a:9e:c1:00:3c:fd:0d:e8:66:c0: b5:a9:57:83:6c:8c:33:0b:55:e7:39:63:a4:40:5f:f7:0e:16: d2:d8:da:a4:fd:9a:96:9b:4b:88:ca:d7:7e:46:f9:85:c8:57: 61:69:6b:c8:b3:32:73:85:56:55:9e:d0:c5:39:9c:5d:83:45: 49:7e:99:36:df:a9:b0:29:f8:d0:08:c8:da:71:14:17:e0:ad: aa:e0:92:b1:a8:0c:80:97:a7:b9:18:60:d9:e2:13:dc:8b:bc: 74:1b:0a:3c:0d:14:5c:86:f8:8a:36:18:e6:ff:01:bc:4c:5e: d1:90:69:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU3M0UxMTAvBgNVBAUTKERBNTdBMjQyMDcwNDcwMDhENzNBNjVENjgyMjRBNDdC OUEwM0RBQUEwHhcNMjUwNzE4MjMwNTUyWhcNMjUwNzI1MjMwNTUyWjAYMRYwFAYD VQQDEw02ODdhZDM1MC03ZTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA36Rrfh4bYy+kqGnOq+ZoWv/iHqZYl+lYZQIcXMOj6yvdYz6YA14PCvwAFTcC nKx2UTAdDZVcI0ovi4NJOUEVygzkz16507+/mPV9X1OaYoDPhxZWMWUYWGMODcgJ 2VYd6vTUE2BWiC7jhgKULkS0tDHzk2yodPQ847YCRMT9nmKclEWId51esyeuqas1 C7maILiXbLp9rEOP+ecwKqumXETXWbcqYxbupxZeQPS/NrDcd4xh62Ypr0AM3gtU 9RsJsZ45//tsAtaqvhJsTvoPIdF5mX3actUUXw56ovBs6aaF6CoBkCLmnVNmK6ZY D11l0c0KWJI/M5Wk2Muwn52VbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCDYzAD2 CknhFllUGh/5/GH9rGiXMB8GA1UdIwQYMBaAFNpXokIHBHAI1zpl1oIkpHuaA9qq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTczRS82NzY4OTc4RUE1 QTQxMUVCOThDMzI5MEZDNEY5QUUwMi8ybGVpUWdjRWNBalhPbVhXZ2lTa2U1b0Qy cW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsZWlRZ2NFY0FqWE9tWFdnaVNrZTVvRDJxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTczRS82NzY4OTc4RUE1QTQxMUVCOThDMzI5MEZDNEY5QUUwMi8ybGVpUWdjRWNB alhPbVhXZ2lTa2U1b0QycW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsWUAM01Fd/e4rcoyDJgl7PzLv3LxOdoXq13wXLhVs/ElYr94w8s94 c66d44VtqhsGI+Sd8g+6zLTW8kBm/IfBEeFldw8H+CitwXtFunwhp5quSe6Uu/sY zhNnOKPwu+igzT05ue6gjv+s3w6Ic7BR80CGNFsD3uOtGdirzOdv0RIKOd7s2mqe wQA8/Q3oZsC1qVeDbIwzC1XnOWOkQF/3DhbS2Nqk/ZqWm0uIytd+RvmFyFdhaWvI szJzhVZVntDFOZxdg0VJfpk236mwKfjQCMjacRQX4K2q4JKxqAyAl6e5GGDZ4hPc i7x0Gwo8DRRchviKNhjm/wG8TF7RkGm/ -----END CERTIFICATE-----Generated at Sun Jul 20 07:31:13 2025 by rpki-client