$ rpki-client -vvf rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft File: 2MZzCV6Cqbfn381GWA94MajRiso.mft (raw, json) Hash identifier: JsUIgj8e5Du6esWnFGt2K9BkKMzXiaxwK98qPf+pdpw= Subject key identifier: 4A:B5:C0:04:BA:92:46:39:62:2E:15:91:FC:79:32:7E:64:4F:E4:89 Authority key identifier: D8:C6:73:09:5E:82:A9:B7:E7:DF:CD:46:58:0F:78:31:A8:D1:8A:CA Certificate issuer: /CN=A911862D/serialNumber=D8C673095E82A9B7E7DFCD46580F7831A8D18ACA Certificate serial: 175E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft Manifest number: 1743 Signing time: Tue 12 Aug 2025 16:43:23 +0000 Manifest this update: Tue 12 Aug 2025 16:43:23 +0000 Manifest next update: Tue 19 Aug 2025 16:43:23 +0000 Files and hashes: 1: 2MZzCV6Cqbfn381GWA94MajRiso.crl (hash: kLVHa7hucv03vlPWnUKwTwZYYKkL2eigGhs2AHMstFI=) 2: D4A7497E6E6B11EF9FC61C6AC4F9AE02.roa (hash: JBsRHnJPdnzdINV0pvwEs0IpHO7Li2A9KaO/T3DyLM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.crl rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 16:43:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5982 (0x175e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911862D, serialNumber=D8C673095E82A9B7E7DFCD46580F7831A8D18ACA Validity Not Before: Aug 12 16:43:23 2025 GMT Not After : Aug 19 16:43:23 2025 GMT Subject: CN=689b6f2b-bc55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:20:cf:d6:8e:66:80:74:18:cb:9b:f4:f1:0e: 16:2a:ff:ad:ad:cf:8a:9d:c2:3d:bf:79:00:90:55: 0e:71:44:04:f7:d1:c7:64:49:29:59:45:b5:12:1a: eb:9d:7c:e7:35:d2:a0:41:6c:c9:43:8f:4a:e9:92: 2f:8e:8a:15:2c:b0:78:44:34:6a:f0:c5:8b:ac:81: 56:c5:0f:12:b9:d4:48:79:1e:22:cd:d9:02:fb:97: a8:57:26:cd:e6:06:91:fa:e5:ff:de:e5:43:7d:f7: 0f:3a:fc:ff:95:9f:e4:5f:dd:54:b5:bf:06:dc:1c: c8:96:f4:7b:46:5e:0c:3e:d6:15:ca:3b:e9:2b:16: 82:8f:bd:e6:5c:66:bd:f1:83:13:6c:a9:d7:b3:ac: 5e:f9:4a:8d:d9:b1:34:7f:49:9b:ef:b2:a7:0b:a2: 9c:de:fe:a7:9b:3c:53:bb:0d:92:4a:ae:dc:56:3b: c8:04:65:d0:e7:6e:3e:ab:e0:44:df:16:08:29:6d: 9d:31:32:49:a4:a6:b1:90:1d:0c:22:36:5c:87:d1: ed:85:4d:8a:c0:2a:7c:39:c2:35:a3:9b:e9:9e:1c: 6c:10:2f:10:a8:a3:c9:9d:b5:12:55:ee:1a:a7:c6: df:3f:10:ca:ac:b3:4d:22:80:a8:f9:39:c6:47:d4: bf:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:B5:C0:04:BA:92:46:39:62:2E:15:91:FC:79:32:7E:64:4F:E4:89 X509v3 Authority Key Identifier: keyid:D8:C6:73:09:5E:82:A9:B7:E7:DF:CD:46:58:0F:78:31:A8:D1:8A:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:33:3f:3a:7e:b4:39:92:5f:6e:b1:8f:0f:72:46:66:e9:8e: fb:a6:e7:78:b3:86:46:ca:bb:4e:3d:26:46:9f:6a:eb:5f:f8: e3:45:44:6f:29:e6:d5:e3:5a:e9:e4:76:46:a6:12:0c:01:11: 78:6e:a6:28:dc:9e:79:61:8e:a3:2d:34:6e:d3:d7:3c:e5:bd: 78:8e:57:4f:d5:5e:9d:d0:db:b7:e9:0b:fa:4d:30:4d:e1:da: 0b:c8:5b:ec:e3:ae:e3:b4:33:e3:62:03:53:a2:4b:33:93:17: aa:86:7e:e7:f1:02:35:6a:07:fd:32:6d:de:38:b6:9f:fb:92: 6a:af:13:ed:27:f9:0e:b9:d7:52:bf:9c:66:d8:86:73:5a:78: 0d:66:3d:13:8a:28:f9:dc:ff:ed:0b:3b:f9:df:4c:1d:ad:41: ac:16:ea:d6:81:b2:c8:ab:e9:ca:7f:b9:26:60:a2:8b:e3:2b: c5:da:d1:31:b9:b7:6e:d9:d8:9a:c0:6c:5e:f4:84:5f:0a:a9: d8:f8:18:96:16:65:4a:6f:41:65:dd:cb:95:31:54:ba:16:6e: e9:5c:99:ec:e0:28:4e:a2:7f:b4:05:aa:b7:07:29:88:3b:6e: 3f:65:b8:5f:ec:ed:61:44:19:e2:2b:7d:13:b9:7d:78:fd:ff: 2e:22:e1:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF14wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg2MkQxMTAvBgNVBAUTKEQ4QzY3MzA5NUU4MkE5QjdFN0RGQ0Q0NjU4MEY3ODMx QThEMThBQ0EwHhcNMjUwODEyMTY0MzIzWhcNMjUwODE5MTY0MzIzWjAYMRYwFAYD VQQDEw02ODliNmYyYi1iYzU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAziDP1o5mgHQYy5v08Q4WKv+trc+KncI9v3kAkFUOcUQE99HHZEkpWUW1Ehrr nXznNdKgQWzJQ49K6ZIvjooVLLB4RDRq8MWLrIFWxQ8SudRIeR4izdkC+5eoVybN 5gaR+uX/3uVDffcPOvz/lZ/kX91Utb8G3BzIlvR7Rl4MPtYVyjvpKxaCj73mXGa9 8YMTbKnXs6xe+UqN2bE0f0mb77KnC6Kc3v6nmzxTuw2SSq7cVjvIBGXQ524+q+BE 3xYIKW2dMTJJpKaxkB0MIjZch9HthU2KwCp8OcI1o5vpnhxsEC8QqKPJnbUSVe4a p8bfPxDKrLNNIoCo+TnGR9S/aQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEq1wAS6 kkY5Yi4Vkfx5Mn5kT+SJMB8GA1UdIwQYMBaAFNjGcwlegqm359/NRlgPeDGo0YrK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODYyRC8zMjg3OUQzQUU4 QkExMUU3OEE2QTcwNDJDNEY5QUUwMi8yTVp6Q1Y2Q3FiZm4zODFHV0E5NE1halJp c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJNWnpDVjZDcWJmbjM4MUdXQTk0TWFqUmlzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODYyRC8zMjg3OUQzQUU4QkExMUU3OEE2QTcwNDJDNEY5QUUwMi8yTVp6Q1Y2Q3Fi Zm4zODFHV0E5NE1halJpc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcMz86frQ5kl9usY8PckZm6Y77pud4s4ZGyrtOPSZGn2rrX/jjRURv KebV41rp5HZGphIMARF4bqYo3J55YY6jLTRu09c85b14jldP1V6d0Nu36Qv6TTBN 4doLyFvs467jtDPjYgNTokszkxeqhn7n8QI1agf9Mm3eOLaf+5JqrxPtJ/kOuddS v5xm2IZzWngNZj0Tiij53P/tCzv530wdrUGsFurWgbLIq+nKf7kmYKKL4yvF2tEx ubdu2diawGxe9IRfCqnY+BiWFmVKb0Fl3cuVMVS6Fm7pXJns4ChOon+0Baq3BymI O24/Zbhf7O1hRBniK30TuX14/f8uIuF7 -----END CERTIFICATE-----Generated at Wed Aug 13 00:29:40 2025 by rpki-client