$ rpki-client -vvf rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft File: 2CIvXKRzliJE_BNBFXEOvtXjlWA.mft (raw, json) Hash identifier: IEEviif1stOiMe/LvuY5zyCMB/1di2xs+RAiOIbMcL0= Subject key identifier: 7C:75:DA:FF:94:12:2A:94:F4:EA:EF:94:35:94:67:BD:B2:A8:86:56 Authority key identifier: D8:22:2F:5C:A4:73:96:22:44:FC:13:41:15:71:0E:BE:D5:E3:95:60 Certificate issuer: /CN=A9119624/serialNumber=D8222F5CA473962244FC134115710EBED5E39560 Certificate serial: 0C0C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft Manifest number: 0C06 Signing time: Mon 02 Jun 2025 18:09:37 +0000 Manifest this update: Mon 02 Jun 2025 18:09:37 +0000 Manifest next update: Mon 09 Jun 2025 18:09:37 +0000 Files and hashes: 1: 2CIvXKRzliJE_BNBFXEOvtXjlWA.crl (hash: 73QLVOJrEUkaIa1WtCOJynTvEZT5YPedXAQXPzGfiVU=) 2: A4049C06213E11EAAA89A95DC4F9AE02.roa (hash: fJj5V7B0tj2U/amxOYn7MfT1h8cR0RvRgHTxKdHbOM4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.crl rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 18:09:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3084 (0xc0c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119624, serialNumber=D8222F5CA473962244FC134115710EBED5E39560 Validity Not Before: Jun 2 18:09:37 2025 GMT Not After : Jun 9 18:09:37 2025 GMT Subject: CN=683de8e1-49bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:62:98:37:45:56:77:c9:60:54:16:18:dd:37: 88:f3:23:83:cf:b4:8b:68:ee:f0:0a:d0:ee:a6:77: 4c:ec:92:9c:6b:f6:66:44:19:8b:d7:9b:05:40:24: f2:ba:5f:bb:b5:70:6c:75:db:7c:e9:27:34:a0:3a: 5c:cb:3d:69:72:df:3f:c5:5a:59:cb:c9:2f:6d:d8: 2d:37:2f:14:47:bd:eb:ca:21:a1:69:2d:81:25:0a: 75:ce:bd:1c:df:43:af:6b:74:84:5d:d4:52:93:6e: 33:88:f7:fa:46:7e:70:19:87:a7:4f:75:b7:cb:f0: 21:3a:ec:24:e8:f9:02:9b:9a:ad:a7:47:c7:ef:b9: 6c:27:b0:cf:f0:ba:69:6a:22:aa:da:cf:06:a1:f0: 75:bf:46:2f:30:c5:33:f4:11:48:4c:8f:db:d3:12: ed:ca:4f:e5:cb:e5:50:90:c9:67:4b:f4:81:88:f2: 87:f1:4a:c1:50:d8:73:4b:8e:e3:8d:79:d7:86:25: 3c:f4:7d:0f:b6:70:86:00:1a:e5:74:e5:7b:8e:b1: 2b:20:25:f6:eb:ef:0f:56:2e:f3:c3:c6:46:b5:d8: f2:18:53:9e:ac:dd:ba:35:1b:72:67:b3:0c:15:40: 39:a5:19:4c:a7:e2:7d:09:ec:5b:c3:bc:91:65:0c: 4d:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:75:DA:FF:94:12:2A:94:F4:EA:EF:94:35:94:67:BD:B2:A8:86:56 X509v3 Authority Key Identifier: keyid:D8:22:2F:5C:A4:73:96:22:44:FC:13:41:15:71:0E:BE:D5:E3:95:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:85:ca:38:f5:bd:5e:90:db:36:ac:21:85:67:a5:49:2a:3d: fe:08:f1:86:98:cc:23:4a:b8:9d:0a:50:c3:e8:b1:f4:5b:ae: 41:bf:c3:c7:b2:7b:4c:68:c7:2e:40:9f:a2:94:17:10:7e:3a: e8:0e:c6:b0:3b:f7:6b:26:2a:f7:94:b9:30:fa:ac:d5:b1:b1: 47:60:69:23:60:37:a2:ec:ab:af:55:2f:17:c2:d0:b1:d2:32: f4:49:09:b6:d5:38:58:95:9d:e0:37:36:7b:bf:90:f9:15:b9: 37:00:4f:3d:f4:40:8f:72:f4:1f:8d:56:37:c4:bd:75:79:a1: 89:88:d1:d5:66:ce:05:0a:52:f2:79:e9:5b:6f:f8:54:27:60: 92:fa:66:82:1b:66:7f:00:cc:92:74:96:b4:20:bd:10:2d:9f: 5c:59:ca:69:02:26:bb:fb:cc:98:98:d6:d8:e3:11:71:75:2c: 5e:70:9b:15:c0:d3:cf:36:63:be:2b:bb:89:24:e5:b6:25:19: 18:12:5b:b7:73:e2:17:ed:08:6e:25:f3:0d:ac:b9:19:0b:36: 76:20:61:c8:b7:8a:0d:49:26:cb:3e:3c:09:dd:91:ad:8d:21: fd:61:e6:3b:76:9d:18:96:51:66:f1:dd:0a:10:bb:d7:00:22: 91:73:f3:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk2MjQxMTAvBgNVBAUTKEQ4MjIyRjVDQTQ3Mzk2MjI0NEZDMTM0MTE1NzEwRUJF RDVFMzk1NjAwHhcNMjUwNjAyMTgwOTM3WhcNMjUwNjA5MTgwOTM3WjAYMRYwFAYD VQQDEw02ODNkZThlMS00OWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwmKYN0VWd8lgVBYY3TeI8yODz7SLaO7wCtDupndM7JKca/ZmRBmL15sFQCTy ul+7tXBsddt86Sc0oDpcyz1pct8/xVpZy8kvbdgtNy8UR73ryiGhaS2BJQp1zr0c 30Ova3SEXdRSk24ziPf6Rn5wGYenT3W3y/AhOuwk6PkCm5qtp0fH77lsJ7DP8Lpp aiKq2s8GofB1v0YvMMUz9BFITI/b0xLtyk/ly+VQkMlnS/SBiPKH8UrBUNhzS47j jXnXhiU89H0PtnCGABrldOV7jrErICX26+8PVi7zw8ZGtdjyGFOerN26NRtyZ7MM FUA5pRlMp+J9Cexbw7yRZQxNwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHx12v+U EiqU9OrvlDWUZ72yqIZWMB8GA1UdIwQYMBaAFNgiL1ykc5YiRPwTQRVxDr7V45Vg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTYyNC9DNjk0ODIzNjEw RTAxMUVBOUJEMUE1NURDNEY5QUUwMi8yQ0l2WEtSemxpSkVfQk5CRlhFT3Z0WGps V0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJDSXZYS1J6bGlKRV9CTkJGWEVPdnRYamxXQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTYyNC9DNjk0ODIzNjEwRTAxMUVBOUJEMUE1NURDNEY5QUUwMi8yQ0l2WEtSemxp SkVfQk5CRlhFT3Z0WGpsV0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLhco49b1ekNs2rCGFZ6VJKj3+CPGGmMwjSridClDD6LH0W65Bv8PH sntMaMcuQJ+ilBcQfjroDsawO/drJir3lLkw+qzVsbFHYGkjYDei7KuvVS8XwtCx 0jL0SQm21ThYlZ3gNzZ7v5D5Fbk3AE899ECPcvQfjVY3xL11eaGJiNHVZs4FClLy eelbb/hUJ2CS+maCG2Z/AMySdJa0IL0QLZ9cWcppAia7+8yYmNbY4xFxdSxecJsV wNPPNmO+K7uJJOW2JRkYElu3c+IX7QhuJfMNrLkZCzZ2IGHIt4oNSSbLPjwJ3ZGt jSH9YeY7dp0YllFm8d0KELvXACKRc/Mx -----END CERTIFICATE-----Generated at Wed Jun 4 00:02:10 2025 by rpki-client