$ rpki-client -vvf rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.mft File: 2dCjxqTde6e0VN6uAa9nryxUxDM.mft (raw, json) Hash identifier: PjRYSgCHjOcVVLH62WGnPuRjZqnDxpzGLh3QMvayTLA= Subject key identifier: AB:8F:62:D8:3D:E5:A1:C2:20:8B:09:3C:BC:09:41:49:1A:A2:BF:81 Authority key identifier: D9:D0:A3:C6:A4:DD:7B:A7:B4:54:DE:AE:01:AF:67:AF:2C:54:C4:33 Certificate issuer: /CN=A915C9B7/serialNumber=D9D0A3C6A4DD7BA7B454DEAE01AF67AF2C54C433 Certificate serial: 0806 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dCjxqTde6e0VN6uAa9nryxUxDM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.mft Manifest number: 07FB Signing time: Sun 20 Jul 2025 21:03:41 +0000 Manifest this update: Sun 20 Jul 2025 21:03:41 +0000 Manifest next update: Sun 27 Jul 2025 21:03:41 +0000 Files and hashes: 1: 2dCjxqTde6e0VN6uAa9nryxUxDM.crl (hash: y9zUK3JX5A75H+X8diVuO9No6jby8OgCfxvUl7yh/r8=) 2: 12A47D4E9CDB11EF857FB626C4F9AE02.roa (hash: DuU/zvCDCUg2TONY7brDsE/++qWvSBYjnL7XCdcyag0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.crl rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dCjxqTde6e0VN6uAa9nryxUxDM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 21:03:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2054 (0x806) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C9B7, serialNumber=D9D0A3C6A4DD7BA7B454DEAE01AF67AF2C54C433 Validity Not Before: Jul 20 21:03:41 2025 GMT Not After : Jul 27 21:03:41 2025 GMT Subject: CN=687d59ad-00cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:5d:e1:e4:35:f0:0a:9b:ae:3b:55:92:10:1d: 68:d5:ef:64:57:b4:af:c3:a3:58:fd:5b:7a:ea:17: 38:a7:d6:42:2f:2a:05:52:e3:6a:b5:c6:92:0f:21: 2f:ef:29:1d:4f:59:e4:fa:9f:77:17:46:4b:59:c2: fd:3a:a0:6e:e3:53:ad:fc:01:96:57:2a:15:bf:3b: 73:e5:03:d4:3d:35:3a:7d:05:76:bf:3d:0f:9f:3f: e4:ef:d3:f1:12:cd:d0:f9:b4:52:3a:c8:71:10:bf: 70:1b:c6:28:e3:6b:db:0d:fc:db:1c:a1:97:08:9c: 33:c9:28:89:0c:1b:37:ed:31:83:89:27:ad:4e:10: 0e:c8:15:44:1a:a0:0d:88:88:6c:19:1e:6c:c9:f9: 54:75:da:81:63:e3:82:cb:e1:e1:97:43:46:cc:dc: f6:34:3d:07:2e:f0:35:75:9c:cc:ce:48:ed:c1:b8: b2:12:9e:21:2b:28:74:14:b1:f8:7d:e3:0c:4f:8f: d0:36:36:5e:d3:b4:4d:7b:8c:80:7e:36:7c:56:26: f0:8d:bc:9c:9c:44:8d:0f:69:cf:4f:61:2b:02:6d: d8:d0:12:d9:17:1e:9d:fb:bb:52:12:5d:26:80:1b: fd:a9:aa:2d:be:92:ef:2f:70:7d:c5:72:53:a2:13: ff:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:8F:62:D8:3D:E5:A1:C2:20:8B:09:3C:BC:09:41:49:1A:A2:BF:81 X509v3 Authority Key Identifier: keyid:D9:D0:A3:C6:A4:DD:7B:A7:B4:54:DE:AE:01:AF:67:AF:2C:54:C4:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dCjxqTde6e0VN6uAa9nryxUxDM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:61:a9:94:64:ea:e6:ac:ea:69:c0:0a:c2:0a:1f:53:f5:54: 47:6a:90:e3:a8:07:99:7f:23:e2:3c:86:0c:bb:66:a7:c3:4c: 7d:c3:c8:29:3b:b2:5f:f7:5d:44:6d:72:61:82:49:e9:ae:f7: 55:c3:0f:ef:1c:54:ba:37:49:9d:ce:79:5e:b7:f6:db:d8:6a: 5a:9c:0d:43:fa:f2:ae:c4:31:7d:40:1d:77:a1:72:39:a8:8a: c1:9c:67:7a:29:4a:cb:70:ff:16:0a:61:ce:41:a4:3f:64:4c: b0:1b:c9:a3:e8:68:51:82:74:54:22:e9:2a:e4:9e:98:be:05: df:61:93:8a:6c:24:a5:1b:cf:fd:d4:f2:5d:fd:35:09:e0:af: 8f:4a:89:36:82:5c:4c:9b:00:5a:0f:75:51:f8:4c:76:7b:f0: e7:87:98:8d:31:e5:dd:7a:c3:04:f6:4c:74:05:e7:a5:a2:db: e2:b4:2d:d0:9e:12:69:07:5f:a3:6f:84:ab:a5:f4:57:bd:0f: 61:53:8c:68:ec:31:bd:ec:6a:11:3f:51:b2:2a:ec:7c:d0:e9: 8a:26:1c:b7:d0:e5:23:16:f5:05:54:7c:5b:d4:74:34:8d:01: f1:f3:39:1b:90:5f:86:7b:4f:95:33:46:73:24:cf:85:8b:2c: b1:1a:8f:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM5QjcxMTAvBgNVBAUTKEQ5RDBBM0M2QTRERDdCQTdCNDU0REVBRTAxQUY2N0FG MkM1NEM0MzMwHhcNMjUwNzIwMjEwMzQxWhcNMjUwNzI3MjEwMzQxWjAYMRYwFAYD VQQDEw02ODdkNTlhZC0wMGNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA513h5DXwCpuuO1WSEB1o1e9kV7Svw6NY/Vt66hc4p9ZCLyoFUuNqtcaSDyEv 7ykdT1nk+p93F0ZLWcL9OqBu41Ot/AGWVyoVvztz5QPUPTU6fQV2vz0Pnz/k79Px Es3Q+bRSOshxEL9wG8Yo42vbDfzbHKGXCJwzySiJDBs37TGDiSetThAOyBVEGqAN iIhsGR5syflUddqBY+OCy+Hhl0NGzNz2ND0HLvA1dZzMzkjtwbiyEp4hKyh0FLH4 feMMT4/QNjZe07RNe4yAfjZ8VibwjbycnESND2nPT2ErAm3Y0BLZFx6d+7tSEl0m gBv9qaotvpLvL3B9xXJTohP/FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKuPYtg9 5aHCIIsJPLwJQUkaor+BMB8GA1UdIwQYMBaAFNnQo8ak3XuntFTergGvZ68sVMQz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzlCNy84QzI2NEZEMkVF NUExMUVBQUQ3NjkwMzNDNEY5QUUwMi8yZENqeHFUZGU2ZTBWTjZ1QWE5bnJ5eFV4 RE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJkQ2p4cVRkZTZlMFZONnVBYTlucnl4VXhETS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzlCNy84QzI2NEZEMkVFNUExMUVBQUQ3NjkwMzNDNEY5QUUwMi8yZENqeHFUZGU2 ZTBWTjZ1QWE5bnJ5eFV4RE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQYamUZOrmrOppwArCCh9T9VRHapDjqAeZfyPiPIYMu2anw0x9w8gp O7Jf911EbXJhgknprvdVww/vHFS6N0mdznlet/bb2GpanA1D+vKuxDF9QB13oXI5 qIrBnGd6KUrLcP8WCmHOQaQ/ZEywG8mj6GhRgnRUIukq5J6YvgXfYZOKbCSlG8/9 1PJd/TUJ4K+PSok2glxMmwBaD3VR+Ex2e/Dnh5iNMeXdesME9kx0BeelotvitC3Q nhJpB1+jb4SrpfRXvQ9hU4xo7DG97GoRP1GyKux80OmKJhy30OUjFvUFVHxb1HQ0 jQHx8zkbkF+Ge0+VM0ZzJM+FiyyxGo9u -----END CERTIFICATE-----Generated at Mon Jul 21 02:41:58 2025 by rpki-client