$ rpki-client -vvf rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft File: X2mHOU7ukmatexkjRBv29RNP-VA.mft (raw, json) Hash identifier: vqd2BTbuCbn8VwogBLtxMUncCio6R8RiSI64SaBXa2Y= Subject key identifier: 56:ED:86:C5:21:4C:E2:DF:B2:93:68:6D:6C:EE:D0:F2:AC:A4:D4:D7 Authority key identifier: 5F:69:87:39:4E:EE:92:66:AD:7B:19:23:44:1B:F6:F5:13:4F:F9:50 Certificate issuer: /CN=A9147241/serialNumber=5F6987394EEE9266AD7B1923441BF6F5134FF950 Certificate serial: 0808 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft Manifest number: 0800 Signing time: Thu 24 Jul 2025 21:07:07 +0000 Manifest this update: Thu 24 Jul 2025 21:07:07 +0000 Manifest next update: Thu 31 Jul 2025 21:07:07 +0000 Files and hashes: 1: X2mHOU7ukmatexkjRBv29RNP-VA.crl (hash: U3+/pASAq8DXQ0cWNg/cwMpupO2V0Ye6PfyzUh0s2Fk=) 2: F69648C2ECF211EABBFDDD24C4F9AE02.roa (hash: iinohx2uez2EL2svxSw8QxTPKTPPk9i54jHLL6kBKQg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.crl rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 21:07:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2056 (0x808) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147241, serialNumber=5F6987394EEE9266AD7B1923441BF6F5134FF950 Validity Not Before: Jul 24 21:07:07 2025 GMT Not After : Jul 31 21:07:07 2025 GMT Subject: CN=6882a07b-a874 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ae:c0:b9:48:a0:1f:4a:d5:f1:e8:56:3a:4e: e4:82:60:2e:1d:44:58:e3:b8:fa:1f:51:1e:9a:73: 8f:ab:c7:22:57:70:21:25:58:ff:f0:c3:be:32:b7: 1d:75:cf:02:bf:fc:b1:70:0f:4f:8b:fa:24:5c:3e: 66:57:b6:8c:6d:04:48:a0:6a:dd:dd:f6:11:c2:65: 1c:b0:24:cf:fc:27:b7:44:3f:58:16:f3:22:db:0b: d1:a8:ed:1c:11:5e:07:65:24:b5:9f:65:74:47:37: cd:1d:e0:bb:78:24:a8:e4:77:5c:2a:73:5a:f5:11: ad:7f:65:28:2e:fb:4e:d0:49:18:0a:a5:c9:79:b5: 57:30:c6:95:79:ca:23:7c:d8:7a:48:aa:93:36:b8: 7f:bc:c7:78:92:f4:d4:89:19:16:8b:f5:11:ad:32: 4f:29:50:5e:e2:b8:75:80:37:1c:87:d5:5c:2e:42: b9:16:77:31:48:b2:b3:e8:ad:43:d7:53:13:52:14: bf:c2:05:ab:5f:35:36:a5:ce:23:ff:ff:4c:35:10: 78:d0:80:4a:3f:99:51:db:cf:d7:7f:76:77:35:93: 7b:90:2e:24:6f:39:4b:e8:7c:4b:33:f4:b8:2e:c9: 16:1d:de:eb:e7:c7:fe:6d:aa:01:0b:a9:cb:af:94: 8e:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:ED:86:C5:21:4C:E2:DF:B2:93:68:6D:6C:EE:D0:F2:AC:A4:D4:D7 X509v3 Authority Key Identifier: keyid:5F:69:87:39:4E:EE:92:66:AD:7B:19:23:44:1B:F6:F5:13:4F:F9:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:8f:9b:bb:ba:19:51:39:a6:c9:6b:13:82:ae:ea:ec:11:d2: 3f:56:87:b1:68:11:6c:d2:3b:b4:c1:c4:1f:a0:4a:41:d8:b0: 0d:9c:81:fa:1f:bf:44:8f:0d:21:ce:76:5e:69:3c:a7:34:df: 42:9d:45:96:59:4d:f4:2a:74:3f:cb:99:89:17:db:7a:59:0e: 75:c3:4e:18:ef:3c:3b:b5:74:e7:80:4d:eb:75:4f:8d:af:26: 58:a3:d3:ae:72:61:6f:51:18:c5:4a:5a:5e:35:cb:e7:1f:25: 3b:fb:3f:d7:d3:a9:52:9f:ae:10:f4:4e:23:e0:14:40:56:25: 8f:fd:8e:ac:f7:db:7a:c6:4b:e7:81:e9:bd:8c:73:c3:b6:0e: ad:3d:e0:f8:a1:fe:7e:06:3b:70:64:59:90:85:40:d5:95:93: 4d:76:03:c2:a0:92:69:4d:23:57:cd:fb:c8:6e:da:95:3f:2c: 2a:8f:20:44:40:36:0f:65:4d:7c:ab:70:dd:87:68:24:e4:89: e7:8a:aa:56:93:94:8b:c5:2f:03:91:71:f0:6d:21:3c:bd:65: d1:5c:fd:98:ec:fd:38:05:eb:a3:33:69:45:7f:22:5e:00:87: bc:5c:4d:d8:a2:d1:83:11:c7:2b:a8:41:79:9d:b4:9e:62:2e: 19:22:b7:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcyNDExMTAvBgNVBAUTKDVGNjk4NzM5NEVFRTkyNjZBRDdCMTkyMzQ0MUJGNkY1 MTM0RkY5NTAwHhcNMjUwNzI0MjEwNzA3WhcNMjUwNzMxMjEwNzA3WjAYMRYwFAYD VQQDEw02ODgyYTA3Yi1hODc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsq7AuUigH0rV8ehWOk7kgmAuHURY47j6H1EemnOPq8ciV3AhJVj/8MO+Mrcd dc8Cv/yxcA9Pi/okXD5mV7aMbQRIoGrd3fYRwmUcsCTP/Ce3RD9YFvMi2wvRqO0c EV4HZSS1n2V0RzfNHeC7eCSo5HdcKnNa9RGtf2UoLvtO0EkYCqXJebVXMMaVecoj fNh6SKqTNrh/vMd4kvTUiRkWi/URrTJPKVBe4rh1gDcch9VcLkK5FncxSLKz6K1D 11MTUhS/wgWrXzU2pc4j//9MNRB40IBKP5lR28/Xf3Z3NZN7kC4kbzlL6HxLM/S4 LskWHd7r58f+baoBC6nLr5SOJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFbthsUh TOLfspNobWzu0PKspNTXMB8GA1UdIwQYMBaAFF9phzlO7pJmrXsZI0Qb9vUTT/lQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzI0MS82MkJCNUM3NEVD RjExMUVBQTM5RDU3MjJDNEY5QUUwMi9YMm1IT1U3dWttYXRleGtqUkJ2MjlSTlAt VkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gybUhPVTd1a21hdGV4a2pSQnYyOVJOUC1WQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzI0MS82MkJCNUM3NEVDRjExMUVBQTM5RDU3MjJDNEY5QUUwMi9YMm1IT1U3dWtt YXRleGtqUkJ2MjlSTlAtVkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByj5u7uhlROabJaxOCrursEdI/VoexaBFs0ju0wcQfoEpB2LANnIH6 H79Ejw0hznZeaTynNN9CnUWWWU30KnQ/y5mJF9t6WQ51w04Y7zw7tXTngE3rdU+N ryZYo9OucmFvURjFSlpeNcvnHyU7+z/X06lSn64Q9E4j4BRAViWP/Y6s99t6xkvn gem9jHPDtg6tPeD4of5+BjtwZFmQhUDVlZNNdgPCoJJpTSNXzfvIbtqVPywqjyBE QDYPZU18q3Ddh2gk5InniqpWk5SLxS8DkXHwbSE8vWXRXP2Y7P04BeujM2lFfyJe AIe8XE3YotGDEccrqEF5nbSeYi4ZIrcl -----END CERTIFICATE-----Generated at Thu Jul 24 23:39:51 2025 by rpki-client