$ rpki-client -vvf rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft File: 2DkrDZFbmsH00jv5hBlxQG-2GsY.mft (raw, json) Hash identifier: w822OiPEsAegZMpT02v+W5ezG3kCm3LcyTTRo0V+FhA= Subject key identifier: 63:66:DF:76:78:5B:BC:58:D4:E6:38:05:AF:F2:B8:70:91:55:A2:FB Authority key identifier: D8:39:2B:0D:91:5B:9A:C1:F4:D2:3B:F9:84:19:71:40:6F:B6:1A:C6 Certificate issuer: /CN=A9196DE5/serialNumber=D8392B0D915B9AC1F4D23BF9841971406FB61AC6 Certificate serial: 0985 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft Manifest number: 0977 Signing time: Thu 12 Jun 2025 19:56:33 +0000 Manifest this update: Thu 12 Jun 2025 19:56:32 +0000 Manifest next update: Thu 19 Jun 2025 19:56:32 +0000 Files and hashes: 1: 2DkrDZFbmsH00jv5hBlxQG-2GsY.crl (hash: TMELniDiJG5oB1K4YadqkDDH3WsdVLQIeC/O/W4ePcI=) 2: 9738F1BAD46611ECA1A27035C4F9AE02.roa (hash: WTrtE83EIPIFAQBP1Rd+6bCGyCXh3/D0h/wvCesMWrU=) 3: 6CEF4F06697C11EEBAF2E544C4F9AE02.roa (hash: Zf62lP/wVBucTVDv//7CsthHyoB46FPVyR5yKdn9a8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.crl rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:56:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2437 (0x985) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196DE5, serialNumber=D8392B0D915B9AC1F4D23BF9841971406FB61AC6 Validity Not Before: Jun 12 19:56:32 2025 GMT Not After : Jun 19 19:56:32 2025 GMT Subject: CN=684b30f0-e4f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:54:5b:f1:c2:b8:17:57:b3:55:0a:be:21:67: 9c:80:3a:f0:5a:c1:04:68:eb:ad:9b:00:7a:1d:db: d9:77:24:76:c0:88:34:bc:d3:05:88:19:5c:2b:ab: dd:dd:98:76:48:b5:9c:61:a8:1b:d5:bb:d4:70:01: 24:08:92:2b:57:78:72:b4:0f:d5:de:6f:bb:0c:61: 87:2e:bb:d1:45:c6:de:f3:a6:7d:71:8a:41:3c:13: ea:9b:0f:5c:c4:92:aa:c0:59:75:68:d7:f9:d9:da: 8c:70:a3:25:ce:99:07:6c:f5:62:e6:56:82:40:4d: d9:4f:43:bd:32:c4:0e:83:4a:bb:e7:45:7d:37:04: 1b:53:8d:a6:0e:9c:4e:88:3e:3a:48:10:6d:0b:42: 80:4d:77:ef:04:ab:6c:ae:e5:9d:76:ad:a9:38:20: 15:f5:29:fd:5e:4c:81:f8:ed:2e:bc:a4:b9:01:ba: 37:73:d5:6f:5a:aa:96:e2:ca:fd:0d:59:e3:32:dd: e2:f9:4f:3d:75:d8:90:9b:1d:8a:f1:8f:42:62:f5: 38:2e:58:7b:d5:f7:fe:0d:c3:9f:e3:1b:37:0e:91: e3:98:39:95:cb:ea:d8:bc:cf:b3:e3:01:04:6f:cd: 74:95:80:d9:0a:d9:57:18:ad:c0:da:a2:f7:29:10: 11:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:66:DF:76:78:5B:BC:58:D4:E6:38:05:AF:F2:B8:70:91:55:A2:FB X509v3 Authority Key Identifier: keyid:D8:39:2B:0D:91:5B:9A:C1:F4:D2:3B:F9:84:19:71:40:6F:B6:1A:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:39:e0:4c:fa:9b:72:4a:3e:eb:58:ec:b4:67:88:78:b9:0c: 8e:44:7d:0a:9d:ed:de:fc:91:c6:53:af:08:56:be:5d:6f:26: d1:43:eb:6d:a0:ee:ec:3d:18:b3:48:9c:c7:e6:bd:12:63:09: b2:00:59:81:db:2e:87:ca:ba:11:71:42:e1:f9:e8:00:11:6b: 11:40:55:e0:fa:51:f2:9a:be:a6:c7:ab:80:7d:c6:92:1b:40: ae:8a:dc:0b:ee:3a:d4:90:ce:5e:1f:ca:49:73:05:dd:b8:c4: 3d:06:d2:d5:b3:c4:5d:4f:e1:3c:b4:f6:5b:31:e8:20:57:ae: 4b:ae:90:08:40:8b:51:de:6c:75:fb:de:ea:c7:0e:63:68:1b: 95:48:02:b0:49:31:d8:65:19:64:ff:b1:29:01:08:a5:f7:91: be:95:ef:7f:9a:8a:ec:9c:85:40:3e:bb:ea:2d:38:5d:92:99: a9:1f:8c:96:01:ee:e0:95:3d:5d:df:9e:2a:ab:eb:02:81:b0: 8b:49:21:09:b8:eb:8c:4c:ed:43:02:54:df:e2:4c:bd:82:cb: 28:91:43:4b:c6:4d:e5:09:c0:77:92:dc:68:f9:3f:c0:3d:d3: 50:17:a9:67:8a:f6:73:b9:dd:87:17:2c:24:5d:19:1e:22:0b: 46:07:e4:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZERTUxMTAvBgNVBAUTKEQ4MzkyQjBEOTE1QjlBQzFGNEQyM0JGOTg0MTk3MTQw NkZCNjFBQzYwHhcNMjUwNjEyMTk1NjMyWhcNMjUwNjE5MTk1NjMyWjAYMRYwFAYD VQQDEw02ODRiMzBmMC1lNGY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsFRb8cK4F1ezVQq+IWecgDrwWsEEaOutmwB6HdvZdyR2wIg0vNMFiBlcK6vd 3Zh2SLWcYagb1bvUcAEkCJIrV3hytA/V3m+7DGGHLrvRRcbe86Z9cYpBPBPqmw9c xJKqwFl1aNf52dqMcKMlzpkHbPVi5laCQE3ZT0O9MsQOg0q750V9NwQbU42mDpxO iD46SBBtC0KATXfvBKtsruWddq2pOCAV9Sn9XkyB+O0uvKS5Abo3c9VvWqqW4sr9 DVnjMt3i+U89ddiQmx2K8Y9CYvU4Llh71ff+DcOf4xs3DpHjmDmVy+rYvM+z4wEE b810lYDZCtlXGK3A2qL3KRARSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGNm33Z4 W7xY1OY4Ba/yuHCRVaL7MB8GA1UdIwQYMBaAFNg5Kw2RW5rB9NI7+YQZcUBvthrG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkRFNS83MkM1QTlDQzk0 MzAxMUVBQkQ3NUY5ODNDNEY5QUUwMi8yRGtyRFpGYm1zSDAwanY1aEJseFFHLTJH c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJEa3JEWkZibXNIMDBqdjVoQmx4UUctMkdzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkRFNS83MkM1QTlDQzk0MzAxMUVBQkQ3NUY5ODNDNEY5QUUwMi8yRGtyRFpGYm1z SDAwanY1aEJseFFHLTJHc1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOOeBM+ptySj7rWOy0Z4h4uQyORH0Kne3e/JHGU68IVr5dbybRQ+tt oO7sPRizSJzH5r0SYwmyAFmB2y6HyroRcULh+egAEWsRQFXg+lHymr6mx6uAfcaS G0CuitwL7jrUkM5eH8pJcwXduMQ9BtLVs8RdT+E8tPZbMeggV65LrpAIQItR3mx1 +97qxw5jaBuVSAKwSTHYZRlk/7EpAQil95G+le9/morsnIVAPrvqLThdkpmpH4yW Ae7glT1d354qq+sCgbCLSSEJuOuMTO1DAlTf4ky9gssokUNLxk3lCcB3ktxo+T/A PdNQF6lnivZzud2HFywkXRkeIgtGB+Q1 -----END CERTIFICATE-----Generated at Fri Jun 13 11:57:00 2025 by rpki-client