$ rpki-client -vvf rpki.apnic.net/member_repository/A91C31A2/DE033336357211EDAE977839C4F9AE02/2vWZnAdAuMks1UA3tpsETNValVg.mft File: 2vWZnAdAuMks1UA3tpsETNValVg.mft (raw, json) Hash identifier: INB6+KvQXt72jN746eBw8v2H2izkk8wOsoXkkb6n/ms= Subject key identifier: 77:73:FA:8B:2C:BA:F0:41:60:8E:AE:89:B4:9B:4F:3E:84:6D:7D:D1 Authority key identifier: DA:F5:99:9C:07:40:B8:C9:2C:D5:40:37:B6:9B:04:4C:D5:5A:95:58 Certificate issuer: /CN=A91C31A2/serialNumber=DAF5999C0740B8C92CD54037B69B044CD55A9558 Certificate serial: 0229 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2vWZnAdAuMks1UA3tpsETNValVg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C31A2/DE033336357211EDAE977839C4F9AE02/2vWZnAdAuMks1UA3tpsETNValVg.mft Manifest number: 0229 Signing time: Mon 21 Jul 2025 02:13:39 +0000 Manifest this update: Mon 21 Jul 2025 02:13:38 +0000 Manifest next update: Mon 28 Jul 2025 02:13:38 +0000 Files and hashes: 1: 2vWZnAdAuMks1UA3tpsETNValVg.crl (hash: RbjJPpLkDlHsIm0KfrItT372z4Rve6Zonk6roMnoQ/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C31A2/DE033336357211EDAE977839C4F9AE02/2vWZnAdAuMks1UA3tpsETNValVg.crl rsync://rpki.apnic.net/member_repository/A91C31A2/DE033336357211EDAE977839C4F9AE02/2vWZnAdAuMks1UA3tpsETNValVg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2vWZnAdAuMks1UA3tpsETNValVg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 02:13:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 553 (0x229) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C31A2, serialNumber=DAF5999C0740B8C92CD54037B69B044CD55A9558 Validity Not Before: Jul 21 02:13:38 2025 GMT Not After : Jul 28 02:13:38 2025 GMT Subject: CN=687da252-2ce0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:34:7d:76:0e:4f:fb:62:bc:bf:df:25:95:b0: ba:77:6e:ec:e4:dd:74:5e:21:17:c7:a7:49:9b:ed: 65:b8:76:74:f2:fd:c5:6a:37:97:79:17:64:06:16: 9a:a6:4e:a1:81:8b:86:bd:36:04:f2:44:a5:99:64: 50:ad:db:5e:d7:97:f8:a8:d8:05:63:c7:c8:99:b1: 33:48:56:13:80:c5:6b:2b:c2:2e:4b:96:81:47:be: 5c:32:37:9f:36:ee:5e:9f:2e:e6:29:34:e7:16:3b: 5f:29:02:7d:42:f6:61:2d:15:4a:a2:98:1c:88:02: c0:fc:e0:b2:9f:35:c8:43:7b:d1:40:e5:18:e9:6f: 6a:47:46:36:6f:b9:f9:09:1d:6a:55:4b:97:8a:54: 6f:1d:32:ef:85:69:00:fa:52:02:43:16:90:12:eb: b7:af:bc:40:c8:4f:15:d8:66:0f:c1:3c:0b:63:49: b1:eb:fe:6d:59:6f:90:d3:49:89:12:89:b5:75:18: cb:f1:30:d7:69:b7:47:f7:26:bd:76:9d:c4:ff:98: e5:56:df:14:d4:68:d0:79:2a:c9:b6:d8:9f:60:69: 5a:08:aa:a2:6e:be:a5:cc:13:49:c1:ab:84:44:72: f9:76:fe:db:a8:72:56:f7:46:b7:b9:b7:21:2b:8b: 14:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:73:FA:8B:2C:BA:F0:41:60:8E:AE:89:B4:9B:4F:3E:84:6D:7D:D1 X509v3 Authority Key Identifier: keyid:DA:F5:99:9C:07:40:B8:C9:2C:D5:40:37:B6:9B:04:4C:D5:5A:95:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C31A2/DE033336357211EDAE977839C4F9AE02/2vWZnAdAuMks1UA3tpsETNValVg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2vWZnAdAuMks1UA3tpsETNValVg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C31A2/DE033336357211EDAE977839C4F9AE02/2vWZnAdAuMks1UA3tpsETNValVg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:d8:41:e7:01:59:18:5c:8a:bb:49:50:1b:8c:99:52:50:46: c5:aa:fb:0a:26:64:61:5b:24:4d:10:06:dc:3f:cb:4e:40:aa: 91:e5:6b:f0:53:48:23:b9:1c:ef:83:8f:75:42:54:15:78:41: 25:80:a2:5f:db:57:57:88:94:ed:24:3b:9d:8f:af:24:97:2c: d4:69:8e:f3:e0:0d:77:23:6c:ca:2c:eb:ab:6c:c7:d3:12:53: ae:29:01:ca:10:2d:be:1d:0f:13:6b:e8:0a:1b:8c:88:9b:7f: 29:e9:39:2d:88:b0:25:cc:74:c9:ad:01:47:9c:da:29:58:41: 48:91:e2:68:8a:65:8c:0b:ba:cc:51:0d:f5:82:7c:d7:86:48: 73:ad:c6:55:65:cf:7e:ef:42:68:5d:14:9c:84:f9:aa:d3:0b: dd:e1:f0:3d:91:78:0c:29:15:37:6f:ac:fd:f8:f8:f1:b2:58: 81:3f:99:d0:2c:25:b4:16:09:22:8b:ff:aa:04:41:f0:1e:7b: 20:d2:e2:a9:c3:ec:97:fd:a3:64:21:9d:6c:6c:d5:18:da:5e: 2c:6e:7c:fc:26:08:70:f2:09:33:4b:c5:e9:c1:81:06:7e:35: c5:59:48:ae:d9:86:29:c4:06:09:e7:f2:e0:1e:b0:2f:50:51: 9d:8c:5f:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAikwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMxQTIxMTAvBgNVBAUTKERBRjU5OTlDMDc0MEI4QzkyQ0Q1NDAzN0I2OUIwNDRD RDU1QTk1NTgwHhcNMjUwNzIxMDIxMzM4WhcNMjUwNzI4MDIxMzM4WjAYMRYwFAYD VQQDEw02ODdkYTI1Mi0yY2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3jR9dg5P+2K8v98llbC6d27s5N10XiEXx6dJm+1luHZ08v3FajeXeRdkBhaa pk6hgYuGvTYE8kSlmWRQrdte15f4qNgFY8fImbEzSFYTgMVrK8IuS5aBR75cMjef Nu5eny7mKTTnFjtfKQJ9QvZhLRVKopgciALA/OCynzXIQ3vRQOUY6W9qR0Y2b7n5 CR1qVUuXilRvHTLvhWkA+lICQxaQEuu3r7xAyE8V2GYPwTwLY0mx6/5tWW+Q00mJ Eom1dRjL8TDXabdH9ya9dp3E/5jlVt8U1GjQeSrJttifYGlaCKqibr6lzBNJwauE RHL5dv7bqHJW90a3ubchK4sUkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHdz+oss uvBBYI6uibSbTz6EbX3RMB8GA1UdIwQYMBaAFNr1mZwHQLjJLNVAN7abBEzVWpVY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzFBMi9ERTAzMzMzNjM1 NzIxMUVEQUU5Nzc4MzlDNEY5QUUwMi8ydldabkFkQXVNa3MxVUEzdHBzRVROVmFs VmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ2V1puQWRBdU1rczFVQTN0cHNFVE5WYWxWZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MzFBMi9ERTAzMzMzNjM1NzIxMUVEQUU5Nzc4MzlDNEY5QUUwMi8ydldabkFkQXVN a3MxVUEzdHBzRVROVmFsVmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBP2EHnAVkYXIq7SVAbjJlSUEbFqvsKJmRhWyRNEAbcP8tOQKqR5Wvw U0gjuRzvg491QlQVeEElgKJf21dXiJTtJDudj68klyzUaY7z4A13I2zKLOurbMfT ElOuKQHKEC2+HQ8Ta+gKG4yIm38p6TktiLAlzHTJrQFHnNopWEFIkeJoimWMC7rM UQ31gnzXhkhzrcZVZc9+70JoXRSchPmq0wvd4fA9kXgMKRU3b6z9+PjxsliBP5nQ LCW0Fgkii/+qBEHwHnsg0uKpw+yX/aNkIZ1sbNUY2l4sbnz8Jghw8gkzS8XpwYEG fjXFWUiu2YYpxAYJ5/LgHrAvUFGdjF/q -----END CERTIFICATE-----Generated at Mon Jul 21 07:19:35 2025 by rpki-client