$ rpki-client -vvf rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/2VYp3mJDm7AepHisFcom6ZWpeGQ.mft File: 2VYp3mJDm7AepHisFcom6ZWpeGQ.mft (raw, json) Hash identifier: HtuYLy99g45JRB7pk43zK2TwAFVdm8teXIVpdM/4858= Subject key identifier: CF:44:00:CB:9B:2C:63:95:D3:2B:49:38:17:82:27:C9:27:DB:02:2B Authority key identifier: D9:56:29:DE:62:43:9B:B0:1E:A4:78:AC:15:CA:26:E9:95:A9:78:64 Certificate issuer: /CN=A913854D/serialNumber=D95629DE62439BB01EA478AC15CA26E995A97864 Certificate serial: 52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2VYp3mJDm7AepHisFcom6ZWpeGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/2VYp3mJDm7AepHisFcom6ZWpeGQ.mft Manifest number: 51 Signing time: Sat 31 May 2025 06:49:26 +0000 Manifest this update: Sat 31 May 2025 06:49:25 +0000 Manifest next update: Sat 07 Jun 2025 06:49:25 +0000 Files and hashes: 1: 2VYp3mJDm7AepHisFcom6ZWpeGQ.crl (hash: w5JVzSm9oHvVGTw7a1GvM9VJbnSQQC9ov0kIoKSCOMI=) 2: A999E39EC36C11EFAF838D35C4F9AE02.roa (hash: ExkZaSQcYVbQZnYq0oQI5lNxhmBmn7aNpw0QWZM9X5U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/2VYp3mJDm7AepHisFcom6ZWpeGQ.crl rsync://rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/2VYp3mJDm7AepHisFcom6ZWpeGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2VYp3mJDm7AepHisFcom6ZWpeGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:49:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 82 (0x52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913854D, serialNumber=D95629DE62439BB01EA478AC15CA26E995A97864 Validity Not Before: May 31 06:49:25 2025 GMT Not After : Jun 7 06:49:25 2025 GMT Subject: CN=683aa676-9ebe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:1b:d2:55:3f:84:e4:32:a0:cb:19:29:22:16: d7:30:ac:99:f8:5d:10:0a:a4:b7:3e:9e:cc:c6:41: 41:48:e4:0c:75:ee:e6:30:0a:7a:16:b5:33:86:5e: 60:f1:4b:e3:b6:dd:70:e4:ff:f3:76:43:91:5d:dc: cc:06:39:a3:8b:bd:e5:48:e0:b6:f8:53:08:7c:7f: ce:e6:a9:09:61:5a:32:35:78:04:3c:79:6f:99:a5: c4:e9:d4:82:15:77:43:f1:a1:cf:bb:f3:43:3b:c4: 4a:fc:69:ca:56:0c:83:c9:f5:ad:af:dc:26:92:97: 78:75:32:ce:6f:1f:6d:98:42:4e:43:52:20:1f:2a: c7:e7:7c:24:f1:69:ff:0d:93:a5:0e:2d:a8:93:f4: dd:97:f7:bf:7c:4e:56:2f:4d:93:c1:a2:7f:ae:a1: d9:25:04:99:b1:0e:0c:30:6f:5c:a8:4a:cd:50:fa: 86:fc:bc:84:25:9c:da:f8:bb:2f:7e:43:b5:98:73: 0c:aa:ef:cd:e7:15:c4:7c:07:5a:a0:61:8e:29:93: 63:25:2f:01:4f:e3:59:65:9e:b0:5b:ee:95:92:d9: 5f:1b:d3:fe:4a:19:26:09:cc:8b:1e:6c:52:e5:ab: d5:28:cb:52:97:f4:39:0e:f0:93:3c:4c:14:dc:4a: 66:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:44:00:CB:9B:2C:63:95:D3:2B:49:38:17:82:27:C9:27:DB:02:2B X509v3 Authority Key Identifier: keyid:D9:56:29:DE:62:43:9B:B0:1E:A4:78:AC:15:CA:26:E9:95:A9:78:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/2VYp3mJDm7AepHisFcom6ZWpeGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2VYp3mJDm7AepHisFcom6ZWpeGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/2VYp3mJDm7AepHisFcom6ZWpeGQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:55:db:ff:42:ff:43:3a:2a:61:20:17:d0:42:f7:ec:62:8b: 94:cd:26:f9:cb:7f:4c:b2:be:43:ca:91:0f:06:c9:c3:54:99: 6f:f0:32:3a:61:4f:e7:41:b8:e2:35:e1:18:05:2e:5d:a1:d8: 01:2b:16:24:2f:d6:32:b4:e2:8a:c9:bf:0a:ad:50:f6:23:84: 8a:8b:3d:02:31:ee:08:90:ed:87:85:e5:41:4b:46:be:ba:e9: a5:b4:67:f9:f9:52:2b:a3:e7:40:a8:f1:59:e6:60:04:c4:14: f9:cf:5a:38:f2:fa:41:fd:dc:8d:95:5a:b7:f7:ea:98:1b:6f: c8:b0:c8:55:ae:7e:80:34:fe:d3:fb:ca:b8:0c:32:8a:af:48: 84:40:30:95:93:80:64:ca:a7:3b:88:63:bb:2c:68:ed:b4:e4: c2:f1:f3:c0:07:36:1b:b6:ab:f7:5e:43:82:dc:c5:25:b5:3d: 49:99:aa:ea:b5:19:cd:41:4c:4d:67:39:03:81:7c:3a:55:c2: ac:91:52:10:fc:8d:bd:43:58:41:a7:9d:47:ad:60:92:85:d4: 27:c2:50:52:67:08:bf:d6:34:79:6c:8e:21:08:c5:fa:a9:1d: 85:fa:46:cf:40:78:e1:15:af:de:d1:4c:db:41:f3:22:72:49: de:17:83:75 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz ODU0RDExMC8GA1UEBRMoRDk1NjI5REU2MjQzOUJCMDFFQTQ3OEFDMTVDQTI2RTk5 NUE5Nzg2NDAeFw0yNTA1MzEwNjQ5MjVaFw0yNTA2MDcwNjQ5MjVaMBgxFjAUBgNV BAMTDTY4M2FhNjc2LTllYmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSG9JVP4TkMqDLGSkiFtcwrJn4XRAKpLc+nszGQUFI5Ax17uYwCnoWtTOGXmDx S+O23XDk//N2Q5Fd3MwGOaOLveVI4Lb4Uwh8f87mqQlhWjI1eAQ8eW+ZpcTp1IIV d0Pxoc+780M7xEr8acpWDIPJ9a2v3CaSl3h1Ms5vH22YQk5DUiAfKsfnfCTxaf8N k6UOLaiT9N2X9798TlYvTZPBon+uodklBJmxDgwwb1yoSs1Q+ob8vIQlnNr4uy9+ Q7WYcwyq783nFcR8B1qgYY4pk2MlLwFP41llnrBb7pWS2V8b0/5KGSYJzIsebFLl q9Uoy1KX9DkO8JM8TBTcSmbXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUz0QAy5ss Y5XTK0k4F4InySfbAiswHwYDVR0jBBgwFoAU2VYp3mJDm7AepHisFcom6ZWpeGQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4NTREL0U3QzhERDJFQzM2 QjExRUZCQ0JDNUIxNkM0RjlBRTAyLzJWWXAzbUpEbTdBZXBIaXNGY29tNlpXcGVH US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMlZZcDNtSkRtN0FlcEhpc0Zjb202WldwZUdRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4 NTREL0U3QzhERDJFQzM2QjExRUZCQ0JDNUIxNkM0RjlBRTAyLzJWWXAzbUpEbTdB ZXBIaXNGY29tNlpXcGVHUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABBV2/9C/0M6KmEgF9BC9+xii5TNJvnLf0yyvkPKkQ8GycNUmW/wMjph T+dBuOI14RgFLl2h2AErFiQv1jK04orJvwqtUPYjhIqLPQIx7giQ7YeF5UFLRr66 6aW0Z/n5Uiuj50Co8VnmYATEFPnPWjjy+kH93I2VWrf36pgbb8iwyFWufoA0/tP7 yrgMMoqvSIRAMJWTgGTKpzuIY7ssaO205MLx88AHNhu2q/deQ4LcxSW1PUmZquq1 Gc1BTE1nOQOBfDpVwqyRUhD8jb1DWEGnnUetYJKF1CfCUFJnCL/WNHlsjiEIxfqp HYX6Rs9AeOEVr97RTNtB8yJySd4Xg3U= -----END CERTIFICATE-----Generated at Sat May 31 17:11:20 2025 by rpki-client