$ rpki-client -vvf rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft File: 2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft (raw, json) Hash identifier: ILACQssJeZPXEzvR27lHTO47htqjRarp4cjYDVBmxXE= Subject key identifier: 83:D5:6E:5A:B1:6F:36:5E:FF:1D:2D:93:39:99:96:54:93:E2:1E:34 Authority key identifier: DA:BB:16:9D:9E:9D:77:E6:57:6C:01:81:01:25:2C:B0:B4:85:7F:62 Certificate issuer: /CN=A916D687/serialNumber=DABB169D9E9D77E6576C018101252CB0B4857F62 Certificate serial: 093D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rsWnZ6dd-ZXbAGBASUssLSFf2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft Manifest number: 0935 Signing time: Sun 08 Jun 2025 19:58:46 +0000 Manifest this update: Sun 08 Jun 2025 19:58:46 +0000 Manifest next update: Sun 15 Jun 2025 19:58:46 +0000 Files and hashes: 1: 2rsWnZ6dd-ZXbAGBASUssLSFf2I.crl (hash: v+cO7XsttYEtz2x5jtOIh1uhTiCcgElqD507KLjPcvg=) 2: 33CDE41E5A4711EFA5ED8487C4F9AE02.roa (hash: E+f0SdnPuYjXdcqeEk9/03VnnRNadS7Ituz6hla4mX0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.crl rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rsWnZ6dd-ZXbAGBASUssLSFf2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 19:58:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2365 (0x93d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D687, serialNumber=DABB169D9E9D77E6576C018101252CB0B4857F62 Validity Not Before: Jun 8 19:58:46 2025 GMT Not After : Jun 15 19:58:46 2025 GMT Subject: CN=6845eb76-6428 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:5b:dc:5b:b4:ef:e4:f2:35:02:00:ea:7c:cc: 1e:a0:92:c7:b6:14:c2:19:11:1a:41:5c:02:38:d9: 5d:8b:78:ec:a9:5f:44:e6:d8:ac:e1:de:c8:f2:b4: 9b:d9:df:d5:9a:9a:8d:6a:51:5d:b9:95:c3:72:74: fc:71:61:cd:b3:83:37:50:0c:d5:a4:0d:29:62:4a: 72:c3:39:b7:ae:65:26:b8:ae:44:dc:2d:f4:12:23: 48:d7:e7:56:92:79:75:e2:63:f4:a9:b8:4d:6a:de: ed:7f:85:af:5f:56:e4:1d:77:c4:19:d0:1c:7c:c8: 6d:0f:a9:5e:01:db:55:6e:fe:cf:16:84:6d:db:ab: a7:59:a8:80:b2:c6:f1:c8:c1:88:ac:27:3f:c9:af: 74:6d:7f:d7:02:c1:cb:35:56:52:29:6a:ad:31:b7: 3d:92:44:53:73:17:63:59:f2:de:ff:9c:b3:44:11: 88:42:9c:ec:14:17:49:28:c7:1e:f3:0d:1c:87:b6: 59:3b:7a:38:69:57:29:82:a9:bb:99:7e:21:92:1d: 3f:f5:cc:27:98:86:28:77:30:51:e4:a0:d8:f1:18: 4e:90:d3:5d:91:5e:96:05:08:da:46:ad:a4:93:47: e8:2f:eb:d5:b1:25:dc:42:de:fe:65:ba:a2:7e:a3: 53:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:D5:6E:5A:B1:6F:36:5E:FF:1D:2D:93:39:99:96:54:93:E2:1E:34 X509v3 Authority Key Identifier: keyid:DA:BB:16:9D:9E:9D:77:E6:57:6C:01:81:01:25:2C:B0:B4:85:7F:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rsWnZ6dd-ZXbAGBASUssLSFf2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:cf:f9:6c:c5:4c:0a:3a:1e:c4:4f:5f:7c:c6:0b:51:82:5d: d8:f8:b7:27:a3:ac:3e:62:58:2b:c2:55:f1:66:06:7c:d3:77: 53:91:86:92:c4:50:24:3a:46:45:72:26:9a:ed:c4:12:5b:e3: ce:89:e9:7c:25:25:80:27:fb:5c:6a:82:f6:7e:07:0b:59:44: 99:f9:25:2c:fd:15:d7:5d:84:89:45:e7:94:20:c1:f8:a0:8a: fd:6d:26:17:a5:fb:72:ab:53:22:b1:4a:4e:9f:dd:ac:f5:c5: 57:aa:02:61:db:28:dc:f9:c2:1d:ac:c3:27:4c:4c:c2:e4:ac: c0:09:1b:5c:18:38:8c:a2:2e:f4:4d:40:1f:55:c9:9d:44:65: 6b:e1:9a:f0:89:d3:fc:10:62:7d:f4:c7:ef:ab:d1:39:88:99: 10:62:f6:fa:46:d3:e9:e4:af:bc:fe:b8:78:1b:ef:0c:c7:8c: e3:10:e8:99:9f:73:db:10:4b:3f:a4:07:78:83:72:58:33:0c: df:98:51:62:0c:74:d7:63:f9:e9:9b:48:4c:1f:8b:b5:6b:53: f6:64:c4:76:48:10:a2:9d:e1:dd:7b:41:88:b2:9c:c2:1e:c1: 8a:c6:57:3b:2d:af:e1:c9:2c:24:c6:da:3d:e8:a1:75:16:4c: 3b:07:83:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQ2ODcxMTAvBgNVBAUTKERBQkIxNjlEOUU5RDc3RTY1NzZDMDE4MTAxMjUyQ0Iw QjQ4NTdGNjIwHhcNMjUwNjA4MTk1ODQ2WhcNMjUwNjE1MTk1ODQ2WjAYMRYwFAYD VQQDEw02ODQ1ZWI3Ni02NDI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA91vcW7Tv5PI1AgDqfMweoJLHthTCGREaQVwCONldi3jsqV9E5tis4d7I8rSb 2d/VmpqNalFduZXDcnT8cWHNs4M3UAzVpA0pYkpywzm3rmUmuK5E3C30EiNI1+dW knl14mP0qbhNat7tf4WvX1bkHXfEGdAcfMhtD6leAdtVbv7PFoRt26unWaiAssbx yMGIrCc/ya90bX/XAsHLNVZSKWqtMbc9kkRTcxdjWfLe/5yzRBGIQpzsFBdJKMce 8w0ch7ZZO3o4aVcpgqm7mX4hkh0/9cwnmIYodzBR5KDY8RhOkNNdkV6WBQjaRq2k k0foL+vVsSXcQt7+ZbqifqNT0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIPVblqx bzZe/x0tkzmZllST4h40MB8GA1UdIwQYMBaAFNq7Fp2enXfmV2wBgQElLLC0hX9i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDY4Ny83NkI0M0I2NDlG NDUxMUVBOUU1MjM1NjNDNEY5QUUwMi8ycnNXblo2ZGQtWlhiQUdCQVNVc3NMU0Zm MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJyc1duWjZkZC1aWGJBR0JBU1Vzc0xTRmYySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDY4Ny83NkI0M0I2NDlGNDUxMUVBOUU1MjM1NjNDNEY5QUUwMi8ycnNXblo2ZGQt WlhiQUdCQVNVc3NMU0ZmMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTz/lsxUwKOh7ET198xgtRgl3Y+Lcno6w+YlgrwlXxZgZ803dTkYaS xFAkOkZFciaa7cQSW+POiel8JSWAJ/tcaoL2fgcLWUSZ+SUs/RXXXYSJReeUIMH4 oIr9bSYXpftyq1MisUpOn92s9cVXqgJh2yjc+cIdrMMnTEzC5KzACRtcGDiMoi70 TUAfVcmdRGVr4ZrwidP8EGJ99Mfvq9E5iJkQYvb6RtPp5K+8/rh4G+8Mx4zjEOiZ n3PbEEs/pAd4g3JYMwzfmFFiDHTXY/npm0hMH4u1a1P2ZMR2SBCineHde0GIspzC HsGKxlc7La/hySwkxto96KF1Fkw7B4Ni -----END CERTIFICATE-----Generated at Mon Jun 9 07:22:51 2025 by rpki-client