$ rpki-client -vvf rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.mft File: 2zfNKCxsfbw6kLEDt6I53NFY_2A.mft (raw, json) Hash identifier: yQQvOCLQAcUV1bYdT/Nd61CaFwSg5foNrFK6KqFXDNo= Subject key identifier: 98:63:42:95:82:FF:82:38:21:B7:72:E7:0B:C1:AC:33:BE:7F:77:D4 Authority key identifier: DB:37:CD:28:2C:6C:7D:BC:3A:90:B1:03:B7:A2:39:DC:D1:58:FF:60 Certificate issuer: /CN=A913E652/serialNumber=DB37CD282C6C7DBC3A90B103B7A239DCD158FF60 Certificate serial: 08F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zfNKCxsfbw6kLEDt6I53NFY_2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.mft Manifest number: 08EF Signing time: Tue 12 Aug 2025 20:40:08 +0000 Manifest this update: Tue 12 Aug 2025 20:40:07 +0000 Manifest next update: Tue 19 Aug 2025 20:40:07 +0000 Files and hashes: 1: 2zfNKCxsfbw6kLEDt6I53NFY_2A.crl (hash: s3G/hF0XcZBRRqIuOK9e45DrCd3AD/p4MvN7MzEd1mc=) 2: 6154A3B0B2B611EAA5884016C4F9AE02.roa (hash: m3vZJbIZBtxTaQynxqIVLeVn+IvoTb+bYR9Z6G9kdLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.crl rsync://rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zfNKCxsfbw6kLEDt6I53NFY_2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 20:40:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2294 (0x8f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E652, serialNumber=DB37CD282C6C7DBC3A90B103B7A239DCD158FF60 Validity Not Before: Aug 12 20:40:07 2025 GMT Not After : Aug 19 20:40:07 2025 GMT Subject: CN=689ba6a8-b91b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a8:71:c7:54:0d:7b:f4:de:46:61:a8:f0:dd: 05:78:4b:cb:53:01:56:35:1b:e4:1d:ff:4b:4e:cd: e4:b4:84:c9:19:90:0f:7b:39:d9:1d:dc:ed:a9:53: 2f:1d:a3:c2:98:a3:d3:2d:b5:89:6b:cb:ce:1d:7b: ae:ee:fa:46:f0:5b:1e:bf:6d:87:a9:ac:89:14:66: 2b:d4:2a:cc:30:53:80:d4:44:10:c8:f7:81:cd:93: 33:4a:29:5c:9a:2e:dc:1e:51:1b:7e:49:11:95:85: 5f:2f:24:15:ad:6f:f1:d1:ad:77:bc:34:fd:2a:4e: 41:b4:54:fb:fb:3e:e6:55:5d:2d:05:9e:68:82:a0: ee:df:f6:36:c6:78:c7:2e:4c:da:3f:f5:69:95:81: 47:4b:0c:96:f4:aa:c3:44:a5:11:fc:94:57:4a:08: 3c:dc:0d:5f:d6:69:a2:57:fb:49:e7:c6:27:02:ce: 0d:e8:e1:b2:8e:d3:c8:b9:45:1d:f8:fb:53:5d:5f: 03:a0:91:a5:77:f6:ec:9d:57:d5:68:69:96:fb:c2: 45:17:17:fc:98:6d:73:02:54:49:de:da:e2:df:a4: 0a:53:5f:df:60:04:57:25:53:9d:88:e2:f2:d9:a3: 07:29:08:ef:c9:73:ec:86:d7:10:46:b0:60:76:7f: 15:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:63:42:95:82:FF:82:38:21:B7:72:E7:0B:C1:AC:33:BE:7F:77:D4 X509v3 Authority Key Identifier: keyid:DB:37:CD:28:2C:6C:7D:BC:3A:90:B1:03:B7:A2:39:DC:D1:58:FF:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zfNKCxsfbw6kLEDt6I53NFY_2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:24:c5:8e:86:e8:d1:94:3a:4a:f6:f2:b1:f0:71:04:77:32: 96:c5:96:97:f3:51:31:35:19:cc:48:c0:b4:46:be:dc:3a:4d: 6a:ca:90:cb:9a:81:72:8c:d7:b2:23:af:d9:ef:8e:79:11:7d: d0:5d:70:31:1a:ab:d5:e5:bc:d1:a7:5f:27:0d:31:f0:be:9c: 42:8a:dc:e9:79:03:8b:18:58:4f:5e:a1:c6:55:87:0f:09:ba: 12:14:23:69:be:ac:52:2d:73:4f:d9:c8:be:f7:82:b4:af:b4: 17:eb:de:b1:e3:05:69:37:3d:ef:3b:4f:95:3e:de:a0:e6:9b: 3b:96:e3:60:82:96:20:09:71:ff:ae:14:ee:f3:d5:8b:2e:1e: 48:19:ab:f6:6a:f0:6c:99:9d:e7:a5:24:8a:8b:f8:68:02:8d: 8e:73:30:71:27:e9:0b:7d:38:69:96:cc:f9:35:73:f8:93:b8: 60:dd:1e:c7:27:19:2f:80:f0:89:ff:f6:2d:1b:37:55:7b:52: 3b:ed:5f:b0:5c:74:89:b4:f2:da:c6:06:77:81:ea:cc:bc:ff: ae:07:2b:97:cc:65:cb:0d:67:a3:11:35:19:05:23:c7:e6:b2: 00:ca:c1:09:d1:0f:a8:34:cd:a6:c7:bf:ef:fb:33:07:ed:69: 68:3c:d5:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U2NTIxMTAvBgNVBAUTKERCMzdDRDI4MkM2QzdEQkMzQTkwQjEwM0I3QTIzOURD RDE1OEZGNjAwHhcNMjUwODEyMjA0MDA3WhcNMjUwODE5MjA0MDA3WjAYMRYwFAYD VQQDEw02ODliYTZhOC1iOTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqahxx1QNe/TeRmGo8N0FeEvLUwFWNRvkHf9LTs3ktITJGZAPeznZHdztqVMv HaPCmKPTLbWJa8vOHXuu7vpG8Fsev22HqayJFGYr1CrMMFOA1EQQyPeBzZMzSilc mi7cHlEbfkkRlYVfLyQVrW/x0a13vDT9Kk5BtFT7+z7mVV0tBZ5ogqDu3/Y2xnjH LkzaP/VplYFHSwyW9KrDRKUR/JRXSgg83A1f1mmiV/tJ58YnAs4N6OGyjtPIuUUd +PtTXV8DoJGld/bsnVfVaGmW+8JFFxf8mG1zAlRJ3tri36QKU1/fYARXJVOdiOLy 2aMHKQjvyXPshtcQRrBgdn8ViQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJhjQpWC /4I4Ibdy5wvBrDO+f3fUMB8GA1UdIwQYMBaAFNs3zSgsbH28OpCxA7eiOdzRWP9g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTY1Mi82MDBBQjQ2NEIy QjUxMUVBOEFEQzQ0MTVDNEY5QUUwMi8yemZOS0N4c2ZidzZrTEVEdDZJNTNORllf MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ6Zk5LQ3hzZmJ3NmtMRUR0Nkk1M05GWV8yQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTY1Mi82MDBBQjQ2NEIyQjUxMUVBOEFEQzQ0MTVDNEY5QUUwMi8yemZOS0N4c2Zi dzZrTEVEdDZJNTNORllfMkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMJMWOhujRlDpK9vKx8HEEdzKWxZaX81ExNRnMSMC0Rr7cOk1qypDL moFyjNeyI6/Z7455EX3QXXAxGqvV5bzRp18nDTHwvpxCitzpeQOLGFhPXqHGVYcP CboSFCNpvqxSLXNP2ci+94K0r7QX696x4wVpNz3vO0+VPt6g5ps7luNggpYgCXH/ rhTu89WLLh5IGav2avBsmZ3npSSKi/hoAo2OczBxJ+kLfThplsz5NXP4k7hg3R7H JxkvgPCJ//YtGzdVe1I77V+wXHSJtPLaxgZ3gerMvP+uByuXzGXLDWejETUZBSPH 5rIAysEJ0Q+oNM2mx7/v+zMH7WloPNW0 -----END CERTIFICATE-----Generated at Wed Aug 13 04:29:48 2025 by rpki-client