$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.mft File: 2cZrDkILkTQXPVU9FqoLFGt3R3M.mft (raw, json) Hash identifier: kiXWFWTwceVsSy0kT8YH4b0UlPmqktAfs/UurIShBHs= Subject key identifier: 01:EF:2D:54:E3:9C:1F:4A:31:3A:B1:96:B1:B8:E6:DC:41:5F:54:94 Authority key identifier: D9:C6:6B:0E:42:0B:91:34:17:3D:55:3D:16:AA:0B:14:6B:77:47:73 Certificate issuer: /CN=A91B9B0D/serialNumber=D9C66B0E420B9134173D553D16AA0B146B774773 Certificate serial: 066D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cZrDkILkTQXPVU9FqoLFGt3R3M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.mft Manifest number: 0667 Signing time: Fri 18 Jul 2025 22:46:39 +0000 Manifest this update: Fri 18 Jul 2025 22:46:39 +0000 Manifest next update: Fri 25 Jul 2025 22:46:39 +0000 Files and hashes: 1: 2cZrDkILkTQXPVU9FqoLFGt3R3M.crl (hash: 7+dihduN5g5mpiAhEg4+8HGRPjtP16UQ16ao61O1qvk=) 2: E0147FC48AB811EB92252D18C4F9AE02.roa (hash: FMGsjw+zb4BAxOok7Eo9lBYnKlRt1Jj6P6TD4xPnTaw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.crl rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cZrDkILkTQXPVU9FqoLFGt3R3M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 22:46:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1645 (0x66d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9B0D, serialNumber=D9C66B0E420B9134173D553D16AA0B146B774773 Validity Not Before: Jul 18 22:46:39 2025 GMT Not After : Jul 25 22:46:39 2025 GMT Subject: CN=687acecf-9e0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:2a:3b:84:f6:2d:52:79:21:27:32:94:ec:70: 97:ce:a9:a8:74:e0:90:b7:56:5e:03:9c:75:ca:68: e0:57:40:70:c2:f1:a6:62:d1:3c:3a:ce:32:db:01: a4:eb:88:13:91:f4:f9:e3:b8:ad:7a:c4:1b:33:44: e3:73:bd:42:d0:cf:c7:16:e4:e4:28:82:d3:78:70: 53:74:fb:60:59:71:63:7a:64:fc:cf:e9:7d:87:a9: bf:8e:a9:a1:63:31:79:0d:3a:e5:f2:e9:5d:47:31: b9:e0:a7:44:8c:d3:f8:39:0b:e0:03:f3:7b:6c:a1: aa:aa:f4:7e:fa:79:bd:2a:42:90:2d:dc:a6:7b:11: 3f:e6:6a:ef:3e:ce:25:ec:e0:8e:78:38:36:34:a6: c6:75:60:95:5e:73:bd:47:1f:6d:9b:41:3e:ae:0b: 64:16:99:4f:f9:ff:e1:4d:8d:d8:8a:2e:91:49:a3: 7c:4c:06:d1:d3:48:53:e3:66:15:52:c3:c8:7a:01: 87:b8:5a:d4:35:9d:ed:ff:03:2e:e2:8d:54:81:83: f6:ca:40:4a:69:d9:83:67:fb:73:fb:f9:8d:aa:2c: 09:cc:53:51:ba:65:f4:04:1e:06:8b:86:e9:18:58: 7d:82:ea:f2:d6:25:56:85:4c:86:71:5e:80:0f:0e: 69:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:EF:2D:54:E3:9C:1F:4A:31:3A:B1:96:B1:B8:E6:DC:41:5F:54:94 X509v3 Authority Key Identifier: keyid:D9:C6:6B:0E:42:0B:91:34:17:3D:55:3D:16:AA:0B:14:6B:77:47:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cZrDkILkTQXPVU9FqoLFGt3R3M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:0c:ea:33:f0:24:ce:11:25:78:2a:14:67:ed:aa:6c:1a:62: b8:6e:47:8f:ba:9d:5a:64:22:66:6a:db:b3:7c:fe:66:e8:c1: 81:3b:8a:46:83:c3:a3:e0:07:ec:81:e4:1b:43:f6:ce:31:95: 19:e8:b4:3b:ed:5e:68:67:24:38:54:21:e3:61:8b:fe:a8:18: 63:b2:99:90:d8:2c:f2:1b:75:a9:66:5c:64:3d:29:16:58:2a: 8e:49:e5:4a:f3:c2:2c:52:c9:5a:4f:5c:82:01:7f:8d:2e:de: 4b:8c:27:80:61:60:b0:fb:2d:66:69:5c:c1:5e:a1:4a:6c:ea: 80:0a:16:47:8c:31:51:1c:ed:d9:c5:86:d2:8e:db:ef:2e:b2: c3:f4:14:33:a2:e1:b4:98:77:c7:3d:15:19:53:80:ae:28:97: be:95:78:f2:e7:df:c3:90:1f:63:72:37:7e:7a:79:73:4b:3a: 34:05:d9:48:25:40:24:d3:c7:ba:53:1d:53:e9:56:fb:db:7c: 90:5d:8a:e8:82:d6:0c:a5:e0:05:ff:03:65:c4:40:87:6c:5e: da:24:de:c1:a1:9c:a3:70:af:81:39:15:f8:c1:02:9e:6a:60: 12:e5:69:b7:4e:89:a0:8f:8a:ba:02:24:a9:bb:02:59:be:b2: 5c:47:56:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlCMEQxMTAvBgNVBAUTKEQ5QzY2QjBFNDIwQjkxMzQxNzNENTUzRDE2QUEwQjE0 NkI3NzQ3NzMwHhcNMjUwNzE4MjI0NjM5WhcNMjUwNzI1MjI0NjM5WjAYMRYwFAYD VQQDEw02ODdhY2VjZi05ZTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtSo7hPYtUnkhJzKU7HCXzqmodOCQt1ZeA5x1ymjgV0BwwvGmYtE8Os4y2wGk 64gTkfT547itesQbM0Tjc71C0M/HFuTkKILTeHBTdPtgWXFjemT8z+l9h6m/jqmh YzF5DTrl8uldRzG54KdEjNP4OQvgA/N7bKGqqvR++nm9KkKQLdymexE/5mrvPs4l 7OCOeDg2NKbGdWCVXnO9Rx9tm0E+rgtkFplP+f/hTY3Yii6RSaN8TAbR00hT42YV UsPIegGHuFrUNZ3t/wMu4o1UgYP2ykBKadmDZ/tz+/mNqiwJzFNRumX0BB4Gi4bp GFh9gury1iVWhUyGcV6ADw5pKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAHvLVTj nB9KMTqxlrG45txBX1SUMB8GA1UdIwQYMBaAFNnGaw5CC5E0Fz1VPRaqCxRrd0dz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUIwRC85OEI3MjgwRThB QjYxMUVCODIzN0Q0MTRDNEY5QUUwMi8yY1pyRGtJTGtUUVhQVlU5RnFvTEZHdDNS M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJjWnJEa0lMa1RRWFBWVTlGcW9MRkd0M1IzTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUIwRC85OEI3MjgwRThBQjYxMUVCODIzN0Q0MTRDNEY5QUUwMi8yY1pyRGtJTGtU UVhQVlU5RnFvTEZHdDNSM00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeDOoz8CTOESV4KhRn7apsGmK4bkePup1aZCJmatuzfP5m6MGBO4pG g8Oj4AfsgeQbQ/bOMZUZ6LQ77V5oZyQ4VCHjYYv+qBhjspmQ2CzyG3WpZlxkPSkW WCqOSeVK88IsUslaT1yCAX+NLt5LjCeAYWCw+y1maVzBXqFKbOqAChZHjDFRHO3Z xYbSjtvvLrLD9BQzouG0mHfHPRUZU4CuKJe+lXjy59/DkB9jcjd+enlzSzo0BdlI JUAk08e6Ux1T6Vb723yQXYrogtYMpeAF/wNlxECHbF7aJN7BoZyjcK+BORX4wQKe amAS5Wm3Tomgj4q6AiSpuwJZvrJcR1Yc -----END CERTIFICATE-----Generated at Sun Jul 20 18:38:42 2025 by rpki-client