$ rpki-client -vvf rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft File: 2HXmPHNQjdifas3MBgFEoIwIZtw.mft (raw, json) Hash identifier: vMs7b8RqL0ZHr/KttdxD0Kz8fH6sg06cmvbNEuyVTy0= Subject key identifier: 95:0C:82:B1:98:FE:D8:27:9F:3D:52:E9:34:B5:24:65:4E:AA:D5:B3 Authority key identifier: D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC Certificate issuer: /CN=A914E950/serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Certificate serial: 03D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft Manifest number: 03D5 Signing time: Sat 19 Jul 2025 00:59:24 +0000 Manifest this update: Sat 19 Jul 2025 00:59:23 +0000 Manifest next update: Sat 26 Jul 2025 00:59:23 +0000 Files and hashes: 1: 2HXmPHNQjdifas3MBgFEoIwIZtw.crl (hash: suVmyXR2/ujCcurZ2kuwbXq9ilUrImr+46qxfm0ooBI=) 2: 6199B5668DE011ECB9F9C06EC4F9AE02.roa (hash: 2v76irvv8YBootZ9ixmNS7BdVolsdY5VCXkGVLqaKlA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:59:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 985 (0x3d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E950, serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Validity Not Before: Jul 19 00:59:23 2025 GMT Not After : Jul 26 00:59:23 2025 GMT Subject: CN=687aedeb-447a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:3a:33:40:8b:d5:ed:c4:a9:bc:40:e5:38:61: df:76:ab:e6:13:22:4f:1f:c6:9e:f9:14:88:af:ff: 01:17:d4:0c:08:6d:9e:1f:ac:38:56:1c:b8:88:61: 98:1f:f9:91:9d:39:6e:e4:e4:79:67:85:05:5f:a5: 64:d6:d4:4d:40:d0:19:27:62:33:f5:36:b4:f0:9b: 70:47:92:37:69:64:bd:40:41:da:93:cf:63:c7:a5: 7b:5c:06:83:ef:5c:f3:de:66:5b:32:c1:fe:1f:5a: 05:b8:fb:6e:bc:86:ff:e8:aa:48:c1:b6:1d:2c:59: d8:a6:29:50:88:1f:9b:14:eb:72:dd:1a:2d:64:06: b9:d4:34:ce:71:0e:2a:ff:61:93:06:48:6b:79:3b: ac:8d:07:72:e5:5a:a2:5f:41:7a:7b:7f:3e:88:1a: 1e:5d:92:86:31:4b:cf:6f:a5:c8:4d:94:b1:0e:c6: 07:4a:7f:ba:11:92:3f:43:17:c5:30:52:a2:0a:d6: dc:b6:fc:81:bb:fc:24:25:a3:f5:88:bb:64:0b:d7: a9:25:83:96:b7:bc:72:21:40:51:2a:35:5d:9b:0f: 28:c1:e0:c9:69:6e:ff:65:bb:0a:f3:c2:7f:80:9c: 18:0e:27:1a:f7:8a:c3:e1:3b:06:55:53:19:4a:30: 77:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:0C:82:B1:98:FE:D8:27:9F:3D:52:E9:34:B5:24:65:4E:AA:D5:B3 X509v3 Authority Key Identifier: keyid:D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:9c:1d:24:b5:60:28:45:f5:78:1b:12:77:b5:66:d2:5a:70: 73:17:52:22:1a:4f:40:58:48:37:47:50:73:74:10:d1:9d:af: 32:19:b8:1c:9e:e4:69:74:08:8d:0b:0d:29:cc:72:d2:b7:cc: 9c:86:06:09:e8:1b:ba:82:15:b4:0b:93:a2:c7:48:65:3f:e5: 1f:c9:7c:f1:b3:eb:c4:95:9c:6d:b3:0a:d4:10:15:f7:5a:5d: 2c:82:44:21:a4:6b:96:9f:52:a4:66:e7:ae:69:4e:1d:35:81: 70:d2:97:c0:40:fe:93:aa:37:8e:23:db:b1:f0:88:b5:4d:17: c2:36:5f:72:6d:ea:41:44:1e:19:db:ca:82:e2:c9:3d:cd:94: bc:6d:45:b5:e2:90:c2:f8:e3:fe:3a:01:b6:86:e1:a8:65:8c: 98:82:59:75:93:ea:f5:39:61:06:b9:fa:e3:1f:b8:96:47:3a: 08:5d:ba:37:ce:46:45:e4:ff:1c:50:e8:ea:ee:f9:c1:c7:ff: 04:06:ce:f2:22:97:e7:5d:40:7b:a6:e8:f2:7a:c8:1a:99:5a: 71:c5:19:9b:5c:f6:6d:9e:00:1c:6b:63:11:71:6f:bd:c6:86: 09:2f:47:b6:1b:18:c9:47:4c:fe:e0:ea:14:71:0d:a7:3b:46: a0:cb:2c:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5NTAxMTAvBgNVBAUTKEQ4NzVFNjNDNzM1MDhERDg5RjZBQ0RDQzA2MDE0NEEw OEMwODY2REMwHhcNMjUwNzE5MDA1OTIzWhcNMjUwNzI2MDA1OTIzWjAYMRYwFAYD VQQDEw02ODdhZWRlYi00NDdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAszozQIvV7cSpvEDlOGHfdqvmEyJPH8ae+RSIr/8BF9QMCG2eH6w4Vhy4iGGY H/mRnTlu5OR5Z4UFX6Vk1tRNQNAZJ2Iz9Ta08JtwR5I3aWS9QEHak89jx6V7XAaD 71zz3mZbMsH+H1oFuPtuvIb/6KpIwbYdLFnYpilQiB+bFOty3RotZAa51DTOcQ4q /2GTBkhreTusjQdy5VqiX0F6e38+iBoeXZKGMUvPb6XITZSxDsYHSn+6EZI/QxfF MFKiCtbctvyBu/wkJaP1iLtkC9epJYOWt7xyIUBRKjVdmw8oweDJaW7/ZbsK88J/ gJwYDica94rD4TsGVVMZSjB3NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJUMgrGY /tgnnz1S6TS1JGVOqtWzMB8GA1UdIwQYMBaAFNh15jxzUI3Yn2rNzAYBRKCMCGbc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTk1MC9DQkYwNkYzMDhE REMxMUVDQTE0MDBDNjlDNEY5QUUwMi8ySFhtUEhOUWpkaWZhczNNQmdGRW9Jd0la dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJIWG1QSE5RamRpZmFzM01CZ0ZFb0l3SVp0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTk1MC9DQkYwNkYzMDhEREMxMUVDQTE0MDBDNjlDNEY5QUUwMi8ySFhtUEhOUWpk aWZhczNNQmdGRW9Jd0ladHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcnB0ktWAoRfV4GxJ3tWbSWnBzF1IiGk9AWEg3R1BzdBDRna8yGbgc nuRpdAiNCw0pzHLSt8ychgYJ6Bu6ghW0C5Oix0hlP+UfyXzxs+vElZxtswrUEBX3 Wl0sgkQhpGuWn1KkZueuaU4dNYFw0pfAQP6TqjeOI9ux8Ii1TRfCNl9ybepBRB4Z 28qC4sk9zZS8bUW14pDC+OP+OgG2huGoZYyYgll1k+r1OWEGufrjH7iWRzoIXbo3 zkZF5P8cUOjq7vnBx/8EBs7yIpfnXUB7pujyesgamVpxxRmbXPZtngAca2MRcW+9 xoYJL0e2GxjJR0z+4OoUcQ2nO0agyyyf -----END CERTIFICATE-----Generated at Sun Jul 20 07:03:41 2025 by rpki-client