$ rpki-client -vvf rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft File: 2DkrDZFbmsH00jv5hBlxQG-2GsY.mft (raw, json) Hash identifier: 4x7ZYzL0JkBm9zCcu3joqQ9UzIcDv5hA/+OE5mftgkI= Subject key identifier: FD:A8:7D:FD:38:44:2C:88:4F:1D:63:97:9D:68:84:7B:31:CD:6C:BA Authority key identifier: D8:39:2B:0D:91:5B:9A:C1:F4:D2:3B:F9:84:19:71:40:6F:B6:1A:C6 Certificate issuer: /CN=A9196DE5/serialNumber=D8392B0D915B9AC1F4D23BF9841971406FB61AC6 Certificate serial: 0984 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft Manifest number: 0976 Signing time: Tue 10 Jun 2025 20:04:16 +0000 Manifest this update: Tue 10 Jun 2025 20:04:15 +0000 Manifest next update: Tue 17 Jun 2025 20:04:15 +0000 Files and hashes: 1: 2DkrDZFbmsH00jv5hBlxQG-2GsY.crl (hash: jtRxcz3gxELaWM2DQRiDJCF7ROgRRG0eY3hj5xJUqMk=) 2: 9738F1BAD46611ECA1A27035C4F9AE02.roa (hash: WTrtE83EIPIFAQBP1Rd+6bCGyCXh3/D0h/wvCesMWrU=) 3: 6CEF4F06697C11EEBAF2E544C4F9AE02.roa (hash: Zf62lP/wVBucTVDv//7CsthHyoB46FPVyR5yKdn9a8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.crl rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 20:04:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2436 (0x984) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196DE5, serialNumber=D8392B0D915B9AC1F4D23BF9841971406FB61AC6 Validity Not Before: Jun 10 20:04:15 2025 GMT Not After : Jun 17 20:04:15 2025 GMT Subject: CN=68488fbf-a8a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:84:f2:2e:9e:91:3b:b4:5c:07:c3:36:42:b9: 8f:2d:ee:89:e6:b3:6a:f8:e5:13:e4:10:0a:53:6d: 4d:b4:7a:ae:0c:4f:b9:da:2e:16:b7:5c:46:45:89: 08:13:b5:25:64:f2:af:78:cd:de:75:96:8d:d6:f8: 56:4a:b7:47:97:1d:fd:65:16:44:40:4a:75:62:0e: 47:b3:c3:9b:da:7d:09:73:ba:ba:da:94:27:b0:76: 1f:e5:59:6f:0e:04:f7:b0:b1:8f:9b:9f:eb:ce:72: df:92:84:44:dd:07:cc:af:4d:4a:10:c9:9d:f0:2e: f3:3b:f3:f7:4b:22:5f:0b:c5:8e:bc:f9:a4:9e:29: 8b:cc:bb:15:33:27:b2:59:d8:0c:fc:60:3f:3b:a2: a8:87:98:7f:26:95:28:80:bc:06:a0:89:81:88:ff: 91:4c:05:4b:ae:7f:7a:7f:54:a7:91:60:0a:ea:14: 74:b2:c0:a6:40:ac:3e:8f:84:d1:ed:07:11:14:5e: ae:ff:4f:3d:90:f2:83:47:c6:e8:25:5b:95:d9:ad: 44:f8:6b:31:3d:8c:dc:a7:e7:e3:58:57:82:b3:5a: ab:68:43:6d:c5:ae:23:c5:ec:30:d7:8d:88:7c:3e: 2a:0c:b8:4f:39:3c:04:d9:34:9b:0c:8b:4f:0d:f8: 35:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:A8:7D:FD:38:44:2C:88:4F:1D:63:97:9D:68:84:7B:31:CD:6C:BA X509v3 Authority Key Identifier: keyid:D8:39:2B:0D:91:5B:9A:C1:F4:D2:3B:F9:84:19:71:40:6F:B6:1A:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:a7:5c:b6:67:55:ac:69:91:3b:16:53:3c:4f:d3:ee:b4:87: d1:97:99:d5:09:73:1a:60:15:b8:cf:c2:b3:cf:d0:75:25:04: cd:d4:7c:ff:3c:f5:7c:80:be:5e:3f:f5:28:18:5e:d3:a0:0e: 34:cc:da:41:2f:05:96:5b:e2:3c:fe:5b:e4:76:1e:7c:e3:01: f5:71:80:52:34:f1:c0:fc:9a:95:08:f5:9d:1a:c6:c1:58:8c: 43:f9:d3:fa:fc:7d:48:68:1b:49:cc:41:09:6e:3a:5b:65:7f: 9b:7a:78:e8:0f:ee:a7:a8:a9:df:2f:39:7e:8b:d4:e6:ae:f6: 98:31:cf:08:ae:ae:57:e7:eb:3c:9b:7e:4c:aa:bc:bb:e5:ee: 30:68:94:28:1e:5e:f9:65:14:d1:a6:14:f2:b7:57:dd:05:68: 14:ee:0c:da:60:d5:82:1b:1e:d7:b5:92:fd:4c:b8:69:4f:01: 10:61:3b:a5:60:ac:16:f2:80:30:de:a9:bd:05:ff:54:7c:e0: b5:4a:c8:93:84:d9:a3:2f:ff:59:69:f9:03:18:52:88:83:c6: a9:22:d2:8c:1d:7e:18:62:a1:1b:4b:46:43:e0:90:c8:06:7e: 00:39:ec:2b:fa:3a:00:d4:e0:32:57:dc:0f:2d:f8:2f:50:4b: 52:c4:eb:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZERTUxMTAvBgNVBAUTKEQ4MzkyQjBEOTE1QjlBQzFGNEQyM0JGOTg0MTk3MTQw NkZCNjFBQzYwHhcNMjUwNjEwMjAwNDE1WhcNMjUwNjE3MjAwNDE1WjAYMRYwFAYD VQQDEw02ODQ4OGZiZi1hOGE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsITyLp6RO7RcB8M2QrmPLe6J5rNq+OUT5BAKU21NtHquDE+52i4Wt1xGRYkI E7UlZPKveM3edZaN1vhWSrdHlx39ZRZEQEp1Yg5Hs8Ob2n0Jc7q62pQnsHYf5Vlv DgT3sLGPm5/rznLfkoRE3QfMr01KEMmd8C7zO/P3SyJfC8WOvPmknimLzLsVMyey WdgM/GA/O6Koh5h/JpUogLwGoImBiP+RTAVLrn96f1SnkWAK6hR0ssCmQKw+j4TR 7QcRFF6u/089kPKDR8boJVuV2a1E+GsxPYzcp+fjWFeCs1qraENtxa4jxeww142I fD4qDLhPOTwE2TSbDItPDfg1rwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP2off04 RCyITx1jl51ohHsxzWy6MB8GA1UdIwQYMBaAFNg5Kw2RW5rB9NI7+YQZcUBvthrG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkRFNS83MkM1QTlDQzk0 MzAxMUVBQkQ3NUY5ODNDNEY5QUUwMi8yRGtyRFpGYm1zSDAwanY1aEJseFFHLTJH c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJEa3JEWkZibXNIMDBqdjVoQmx4UUctMkdzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkRFNS83MkM1QTlDQzk0MzAxMUVBQkQ3NUY5ODNDNEY5QUUwMi8yRGtyRFpGYm1z SDAwanY1aEJseFFHLTJHc1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4p1y2Z1WsaZE7FlM8T9PutIfRl5nVCXMaYBW4z8Kzz9B1JQTN1Hz/ PPV8gL5eP/UoGF7ToA40zNpBLwWWW+I8/lvkdh584wH1cYBSNPHA/JqVCPWdGsbB WIxD+dP6/H1IaBtJzEEJbjpbZX+benjoD+6nqKnfLzl+i9TmrvaYMc8Irq5X5+s8 m35Mqry75e4waJQoHl75ZRTRphTyt1fdBWgU7gzaYNWCGx7XtZL9TLhpTwEQYTul YKwW8oAw3qm9Bf9UfOC1SsiThNmjL/9ZafkDGFKIg8apItKMHX4YYqEbS0ZD4JDI Bn4AOewr+joA1OAyV9wPLfgvUEtSxOuy -----END CERTIFICATE-----Generated at Thu Jun 12 09:00:10 2025 by rpki-client