$ rpki-client -vvf rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft File: 2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft (raw, json) Hash identifier: yjlgAm0Kuh64A8QVRt+HQbcOghrryj+c5uZFB/8quLs= Subject key identifier: C0:85:A3:DD:9E:09:EE:F4:47:26:E2:A4:21:EC:4B:6F:B8:93:F8:87 Authority key identifier: DA:54:7E:D6:92:8A:AD:1E:CF:B6:84:7A:1B:07:43:2B:D8:7B:19:EF Certificate issuer: /CN=A9140E66/serialNumber=DA547ED6928AAD1ECFB6847A1B07432BD87B19EF Certificate serial: 0C95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft Manifest number: 0C8B Signing time: Sun 10 Aug 2025 18:14:48 +0000 Manifest this update: Sun 10 Aug 2025 18:14:47 +0000 Manifest next update: Sun 17 Aug 2025 18:14:47 +0000 Files and hashes: 1: 2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl (hash: W2/iLbEoj/J1/U2gy0Sso5EV0y/yn5LsbGeXusN1ceY=) 2: 44FEC394589711F0B981A181C4F9AE02.roa (hash: czF1g9Ex6VYm+KxfQ/94CmFck1ccrgeMZN09KqEwv5g=) 3: C21D3A065B7E11F0A8B76B2EC4F9AE02.roa (hash: 84DuWQA+97cDdeAiob2yXUJKVlhHSu21Cq4u1ZPXmWs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3221 (0xc95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140E66, serialNumber=DA547ED6928AAD1ECFB6847A1B07432BD87B19EF Validity Not Before: Aug 10 18:14:47 2025 GMT Not After : Aug 17 18:14:47 2025 GMT Subject: CN=6898e198-49ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:8f:ef:13:85:7a:44:64:4d:26:5e:90:21:30: 65:a3:9c:20:13:4a:e0:fe:c7:e2:3f:7b:34:3b:05: 42:1f:09:a1:5d:7d:5f:59:9b:2a:41:b3:7a:4e:ab: 60:18:fb:0f:13:bf:69:98:5f:f2:1e:9d:80:3a:f2: 3c:d4:b1:bc:16:8b:62:1a:eb:3a:df:a9:50:bd:27: 05:4a:6e:fe:8e:24:c4:5b:88:e9:73:6f:7a:68:95: 3a:79:a9:d6:50:c2:11:bd:9f:d2:9c:2d:2d:00:fd: 77:cd:78:a2:49:13:6b:78:d0:5e:5d:43:ce:8e:fa: ab:d4:9e:56:45:e9:a9:93:3b:45:4e:ab:ee:6b:32: 5d:ec:d2:4e:8d:91:5a:b2:5b:f2:55:8a:6f:33:a2: f8:6f:b7:27:3e:cc:ab:27:65:60:1a:f5:1f:6d:7c: 0d:65:98:72:36:ef:eb:46:ba:35:59:19:64:7e:82: 2d:9d:42:4d:2a:ed:6a:40:86:d1:bc:52:36:e5:09: f5:22:f4:a4:51:19:2c:f4:ce:92:66:24:31:65:44: e2:dc:ff:47:7c:25:1e:e7:dd:b0:7f:86:6a:80:b0: 8b:e5:3f:18:90:9d:2e:d6:6e:75:09:0b:16:04:de: a1:8c:58:56:a6:97:53:b6:d3:a1:94:57:e2:3d:01: 49:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:85:A3:DD:9E:09:EE:F4:47:26:E2:A4:21:EC:4B:6F:B8:93:F8:87 X509v3 Authority Key Identifier: keyid:DA:54:7E:D6:92:8A:AD:1E:CF:B6:84:7A:1B:07:43:2B:D8:7B:19:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:4f:39:46:82:7c:6b:42:18:42:2d:d3:f8:8c:76:a7:ed:71: 27:97:92:7f:a7:be:11:20:3d:2e:9a:47:f6:7d:92:55:a2:a0: 16:6d:23:91:74:b2:de:96:25:b3:77:ed:e7:7c:25:f8:ba:03: 63:6f:63:d4:e8:3f:a4:85:00:08:c1:99:00:11:c3:8b:0e:66: b2:6a:e7:80:9b:cb:3e:03:01:03:e0:94:ee:9b:bc:e1:30:b5: f8:77:d3:0d:ab:13:23:09:d5:42:2a:3d:91:a6:bb:e5:75:ad: 31:82:57:68:5a:fc:8c:f0:24:17:a7:e7:44:6a:4e:ca:00:e2: 77:f3:28:be:94:97:00:04:76:23:a3:f9:3d:22:3c:33:7c:5a: c8:d6:4f:df:ab:5f:26:4e:59:e6:ed:69:02:7e:04:ca:5b:dc: b0:dd:a7:b1:4f:15:73:be:14:fb:32:bf:83:bf:2b:ff:43:3a: d1:d2:1f:c7:f7:b7:64:9a:7c:3a:0e:ad:fc:3f:a2:16:ab:a1: d0:63:c1:fd:bd:22:c0:d0:65:8c:00:21:33:08:46:f1:89:7f: 47:d5:ed:0a:e1:15:00:24:17:3d:d3:89:80:8d:90:96:6a:0b: f3:0b:6d:55:57:6b:50:15:cf:8f:41:61:ba:52:16:21:fa:91: 64:d5:c1:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFNjYxMTAvBgNVBAUTKERBNTQ3RUQ2OTI4QUFEMUVDRkI2ODQ3QTFCMDc0MzJC RDg3QjE5RUYwHhcNMjUwODEwMTgxNDQ3WhcNMjUwODE3MTgxNDQ3WjAYMRYwFAYD VQQDEw02ODk4ZTE5OC00OWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4I/vE4V6RGRNJl6QITBlo5wgE0rg/sfiP3s0OwVCHwmhXX1fWZsqQbN6Tqtg GPsPE79pmF/yHp2AOvI81LG8FotiGus636lQvScFSm7+jiTEW4jpc296aJU6eanW UMIRvZ/SnC0tAP13zXiiSRNreNBeXUPOjvqr1J5WRempkztFTqvuazJd7NJOjZFa slvyVYpvM6L4b7cnPsyrJ2VgGvUfbXwNZZhyNu/rRro1WRlkfoItnUJNKu1qQIbR vFI25Qn1IvSkURks9M6SZiQxZUTi3P9HfCUe592wf4ZqgLCL5T8YkJ0u1m51CQsW BN6hjFhWppdTttOhlFfiPQFJGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMCFo92e Ce70RybipCHsS2+4k/iHMB8GA1UdIwQYMBaAFNpUftaSiq0ez7aEehsHQyvYexnv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEU2Ni83MDYzOUVGQ0ZG NkUxMUU5ODVBODhDNjdDNEY5QUUwMi8ybFItMXBLS3JSN1B0b1I2R3dkREs5aDdH ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsUi0xcEtLclI3UHRvUjZHd2RESzloN0dlOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEU2Ni83MDYzOUVGQ0ZGNkUxMUU5ODVBODhDNjdDNEY5QUUwMi8ybFItMXBLS3JS N1B0b1I2R3dkREs5aDdHZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRTzlGgnxrQhhCLdP4jHan7XEnl5J/p74RID0umkf2fZJVoqAWbSOR dLLeliWzd+3nfCX4ugNjb2PU6D+khQAIwZkAEcOLDmayaueAm8s+AwED4JTum7zh MLX4d9MNqxMjCdVCKj2Rprvlda0xgldoWvyM8CQXp+dEak7KAOJ38yi+lJcABHYj o/k9IjwzfFrI1k/fq18mTlnm7WkCfgTKW9yw3aexTxVzvhT7Mr+Dvyv/QzrR0h/H 97dkmnw6Dq38P6IWq6HQY8H9vSLA0GWMACEzCEbxiX9H1e0K4RUAJBc904mAjZCW agvzC21VV2tQFc+PQWG6UhYh+pFk1cFT -----END CERTIFICATE-----Generated at Mon Aug 11 07:38:42 2025 by rpki-client