$ rpki-client -vvf rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft File: 2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft (raw, json) Hash identifier: uW40skCttbSUUfkg/R8NyJvNrXN0EvmaURWzdY0RIzk= Subject key identifier: 3B:4C:7E:10:AE:01:4F:12:9D:57:E7:6D:D1:89:95:0B:22:ED:4E:3A Authority key identifier: D9:90:2C:4E:94:72:C7:AD:50:82:81:2F:A7:D0:77:14:6A:B7:CB:9C Certificate issuer: /CN=A913664F/serialNumber=D9902C4E9472C7AD5082812FA7D077146AB7CB9C Certificate serial: 01C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ZAsTpRyx61QgoEvp9B3FGq3y5w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft Manifest number: 01B7 Signing time: Sat 09 Aug 2025 03:30:21 +0000 Manifest this update: Sat 09 Aug 2025 03:30:21 +0000 Manifest next update: Sat 16 Aug 2025 03:30:21 +0000 Files and hashes: 1: 2ZAsTpRyx61QgoEvp9B3FGq3y5w.crl (hash: ITc9POGqQyw22rqFW21UOaqhbNavGb+1TjDC6C4eg0A=) 2: D2677928DD9811EDB2BBBA09C4F9AE02.roa (hash: pVr+bUV7osuNpKcdEe2SU8B4kCWvORQSGGyqBngWkWY=) 3: D1DDFDECDD9811EDB2BBBA09C4F9AE02.roa (hash: ou5M00utddUa9B9T2ZjIX4AhXtQUSSATyN+Uf1fiHwE=) 4: B1E75D08DD7F11ED815F9B4DC4F9AE02.roa (hash: m0+29/xOQkLY0SUQkzyArE5bZt0Gpa6rpxJzQEzTpmY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.crl rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ZAsTpRyx61QgoEvp9B3FGq3y5w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 455 (0x1c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913664F, serialNumber=D9902C4E9472C7AD5082812FA7D077146AB7CB9C Validity Not Before: Aug 9 03:30:21 2025 GMT Not After : Aug 16 03:30:21 2025 GMT Subject: CN=6896c0cd-0b71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:d4:93:cb:48:50:92:72:7d:10:f8:e8:ba:c9: 40:c7:82:4e:55:9c:a0:f2:42:c6:75:0a:f5:80:c7: 17:ce:1e:c0:59:bd:b1:f9:82:fc:60:f8:18:93:74: 3c:5a:a7:c3:d5:b1:91:9f:81:53:0a:2e:d2:9b:a9: 68:da:7e:4d:ba:1a:59:85:33:60:f0:41:22:4c:92: 17:38:1a:53:56:33:31:a1:0c:61:f0:47:12:cc:cc: 12:29:25:51:34:02:07:30:a1:19:da:be:6a:27:86: fb:d4:74:83:d1:d1:44:78:fa:87:e4:e8:35:c4:b8: 22:47:37:d4:d1:79:82:14:3a:7a:a1:b4:6d:3c:6c: 1b:b7:e6:d4:c2:d9:7a:0a:5b:ec:7f:94:8a:a3:17: 9f:e9:45:0b:73:7b:5f:a1:cc:fa:ef:a4:42:48:ad: a5:c0:e2:e5:8b:11:7a:50:d4:26:92:2c:e8:e9:c5: bb:63:a1:5e:62:e6:09:3e:b7:e1:8e:ee:f3:9e:28: ff:3d:10:0f:12:3e:1b:c3:78:5c:8b:a6:eb:cf:f1: 49:c5:56:37:3d:8c:17:43:90:58:df:e6:33:e6:1a: 59:34:63:c5:70:2e:14:62:57:e3:bc:26:4c:ca:29: 47:89:b6:d1:36:6c:9e:82:26:6f:20:f4:19:d7:b8: 37:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:4C:7E:10:AE:01:4F:12:9D:57:E7:6D:D1:89:95:0B:22:ED:4E:3A X509v3 Authority Key Identifier: keyid:D9:90:2C:4E:94:72:C7:AD:50:82:81:2F:A7:D0:77:14:6A:B7:CB:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ZAsTpRyx61QgoEvp9B3FGq3y5w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:85:0d:84:ba:d2:c1:e4:d9:c6:73:a0:08:f4:67:cf:fd:a1: 8f:37:3e:7f:aa:22:02:66:81:4c:3d:97:2a:91:53:fa:6d:70: bd:ae:22:cb:00:3e:73:3a:a0:27:16:47:fa:26:cf:1d:2d:b1: 13:ee:63:b0:3e:67:ad:4b:f9:b6:aa:b5:69:1a:9b:c9:b3:4a: 40:d8:33:4f:2c:ac:e7:91:00:f5:0d:81:f4:af:fa:94:65:57: 1b:33:67:21:2e:47:95:29:df:4c:78:a3:87:59:1f:74:ba:54: 70:f9:60:a1:36:26:b2:77:86:0e:a6:18:22:d7:58:33:3a:c7: 31:4c:f1:91:f1:3c:b7:4c:72:26:46:74:ad:ac:5c:d7:76:82: 51:bd:b5:29:65:02:ef:4b:7f:f7:3f:16:42:e8:e8:0b:cb:4a: 9b:01:b4:1f:c0:b7:d8:2e:be:ac:db:d6:b4:2e:47:8b:bb:ae: fe:9c:84:13:76:0b:6d:09:78:37:ae:ba:8a:bc:86:81:83:f9: 14:9e:89:9c:9f:f4:e2:98:1d:c1:21:8c:4b:60:79:f9:d0:c3: 71:08:8e:8f:08:9b:87:0e:c6:9b:c8:aa:09:a7:b4:6c:5d:f2: 1a:5e:79:74:04:a7:04:0a:71:e7:bd:ae:0c:2b:65:25:a6:b7: 8c:dd:6b:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzY2NEYxMTAvBgNVBAUTKEQ5OTAyQzRFOTQ3MkM3QUQ1MDgyODEyRkE3RDA3NzE0 NkFCN0NCOUMwHhcNMjUwODA5MDMzMDIxWhcNMjUwODE2MDMzMDIxWjAYMRYwFAYD VQQDEw02ODk2YzBjZC0wYjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAodSTy0hQknJ9EPjouslAx4JOVZyg8kLGdQr1gMcXzh7AWb2x+YL8YPgYk3Q8 WqfD1bGRn4FTCi7Sm6lo2n5NuhpZhTNg8EEiTJIXOBpTVjMxoQxh8EcSzMwSKSVR NAIHMKEZ2r5qJ4b71HSD0dFEePqH5Og1xLgiRzfU0XmCFDp6obRtPGwbt+bUwtl6 Clvsf5SKoxef6UULc3tfocz676RCSK2lwOLlixF6UNQmkizo6cW7Y6FeYuYJPrfh ju7znij/PRAPEj4bw3hci6brz/FJxVY3PYwXQ5BY3+Yz5hpZNGPFcC4UYlfjvCZM yilHibbRNmyegiZvIPQZ17g3zwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDtMfhCu AU8SnVfnbdGJlQsi7U46MB8GA1UdIwQYMBaAFNmQLE6UcsetUIKBL6fQdxRqt8uc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjY0Ri8xRTA4NTRBRURE N0QxMUVEOTFBMDQ2NERDNEY5QUUwMi8yWkFzVHBSeXg2MVFnb0V2cDlCM0ZHcTN5 NXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJaQXNUcFJ5eDYxUWdvRXZwOUIzRkdxM3k1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjY0Ri8xRTA4NTRBRUREN0QxMUVEOTFBMDQ2NERDNEY5QUUwMi8yWkFzVHBSeXg2 MVFnb0V2cDlCM0ZHcTN5NXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuhQ2EutLB5NnGc6AI9GfP/aGPNz5/qiICZoFMPZcqkVP6bXC9riLL AD5zOqAnFkf6Js8dLbET7mOwPmetS/m2qrVpGpvJs0pA2DNPLKznkQD1DYH0r/qU ZVcbM2chLkeVKd9MeKOHWR90ulRw+WChNiayd4YOphgi11gzOscxTPGR8Ty3THIm RnStrFzXdoJRvbUpZQLvS3/3PxZC6OgLy0qbAbQfwLfYLr6s29a0LkeLu67+nIQT dgttCXg3rrqKvIaBg/kUnomcn/TimB3BIYxLYHn50MNxCI6PCJuHDsabyKoJp7Rs XfIaXnl0BKcECnHnva4MK2UlpreM3Wu6 -----END CERTIFICATE-----Generated at Sun Aug 10 19:01:00 2025 by rpki-client