$ rpki-client -vvf rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.mft File: N2EhKhZwpXGatx-iA7kuxobyEXc.mft (raw, json) Hash identifier: c/q0Ut5npoieU8049v1nIoC4yaJPDApe+NP1AkxY68M= Subject key identifier: 58:F8:18:C4:40:A6:E3:D5:A9:59:C7:FA:5B:B0:48:C2:D6:6A:D3:78 Authority key identifier: 37:61:21:2A:16:70:A5:71:9A:B7:1F:A2:03:B9:2E:C6:86:F2:11:77 Certificate issuer: /CN=A9142037/serialNumber=3761212A1670A5719AB71FA203B92EC686F21177 Certificate serial: 62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2EhKhZwpXGatx-iA7kuxobyEXc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.mft Manifest number: 60 Signing time: Sat 09 Aug 2025 07:34:07 +0000 Manifest this update: Sat 09 Aug 2025 07:34:07 +0000 Manifest next update: Sat 16 Aug 2025 07:34:07 +0000 Files and hashes: 1: N2EhKhZwpXGatx-iA7kuxobyEXc.crl (hash: kj0ObIVdvBhGz9FOnxW8hSzpWp3TB4oqFG/8m8rZvVM=) 2: 191B6DA2E41811EF8E3F233AC4F9AE02.roa (hash: vcq+JOCdxjFG1D5wGuVH3+pI9poPc4zyyjKKMXsqhWE=) 3: FAEA8E38E41911EFA96DA35FC4F9AE02.roa (hash: RxRZ1dH5JkRHUJw1N/ksvTcKPSxp60O8KTnJFH3sluU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.crl rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2EhKhZwpXGatx-iA7kuxobyEXc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 98 (0x62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142037, serialNumber=3761212A1670A5719AB71FA203B92EC686F21177 Validity Not Before: Aug 9 07:34:07 2025 GMT Not After : Aug 16 07:34:07 2025 GMT Subject: CN=6896f9ef-2cc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d9:e2:6f:69:10:3a:ca:41:22:48:02:f9:ea: af:75:83:6b:cf:6b:4f:48:3d:fa:b1:a0:06:3f:70: d4:6f:68:91:c0:78:8e:b0:a9:61:83:65:37:6a:9f: 0d:c4:de:10:b8:c6:f8:47:b6:75:83:50:7a:a1:a7: f1:ab:d2:06:1d:5b:06:6f:26:c3:4f:a4:79:86:a9: 31:0b:e5:42:e5:22:78:f4:c4:1e:d3:1c:9b:37:1c: 0a:44:38:fe:65:07:af:d4:d0:84:9a:cb:ca:17:cf: 49:e5:a2:9a:68:04:b1:4e:cc:ca:cc:86:aa:fc:ec: 2d:ec:e4:99:27:db:9f:66:4d:32:a7:db:c1:1a:e7: 3e:0e:8e:98:bb:5e:33:3e:d6:e8:d6:40:7f:d7:20: 73:9f:79:f8:d7:d5:6a:d7:a6:10:90:4c:28:57:d7: 8e:81:43:86:1a:a7:e4:69:6b:98:49:6b:70:98:20: 46:f6:f2:c9:c4:c6:d5:e4:d8:95:d5:13:a8:77:97: 12:d9:2d:a8:4e:29:95:49:97:b3:55:c3:6b:6f:f2: 43:e9:8b:9c:fa:de:3b:1a:0e:63:55:51:39:db:f9: b5:e7:f5:ec:37:ab:bb:8e:d5:78:3d:95:a1:b4:57: e3:11:13:d2:9e:e5:ac:b2:d6:fe:ba:f9:d2:a3:a0: b0:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:F8:18:C4:40:A6:E3:D5:A9:59:C7:FA:5B:B0:48:C2:D6:6A:D3:78 X509v3 Authority Key Identifier: keyid:37:61:21:2A:16:70:A5:71:9A:B7:1F:A2:03:B9:2E:C6:86:F2:11:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2EhKhZwpXGatx-iA7kuxobyEXc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:f4:ba:ef:67:f8:f7:3f:c7:14:b0:5d:53:da:68:0b:6a:93: f6:a6:b2:c5:05:e2:3c:da:6f:96:ba:02:91:1b:e0:d0:63:4f: df:33:49:b7:e9:91:03:c9:6f:b3:90:70:26:d0:f9:96:5d:38: 0f:ad:81:f1:3c:21:09:1b:37:51:3c:62:a9:e8:d2:dc:8a:33: b4:92:91:37:44:cb:45:ed:87:34:5a:a3:d1:03:47:a1:09:d3: 9e:ac:3a:49:14:74:6f:80:23:fa:e0:2c:2d:98:33:83:fe:35: c8:6c:d1:90:8b:34:f1:25:28:fd:a4:f1:b9:e6:63:8a:11:8f: 47:68:c6:2d:90:49:ca:ff:ca:ee:8c:82:b8:07:70:19:44:ba: 71:37:84:0e:ea:89:c0:90:fd:dd:c3:63:d7:b1:db:81:8a:c2: 9f:fd:cd:ff:5e:59:8e:f0:77:c4:96:69:b4:03:ee:49:0f:64: 28:b6:e4:ff:fb:46:4a:3b:b2:08:36:b4:dd:f7:23:9b:a8:63: 55:a3:ff:be:14:25:88:aa:28:69:cb:4e:e2:72:a2:44:be:38: 58:24:71:40:32:f9:47:c4:da:6a:36:68:a9:5e:cb:37:61:8e: 2d:bb:55:65:d0:b1:fa:46:2e:80:14:4d:87:d3:ae:a8:cb:8f: 19:5b:46:00 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MjAzNzExMC8GA1UEBRMoMzc2MTIxMkExNjcwQTU3MTlBQjcxRkEyMDNCOTJFQzY4 NkYyMTE3NzAeFw0yNTA4MDkwNzM0MDdaFw0yNTA4MTYwNzM0MDdaMBgxFjAUBgNV BAMTDTY4OTZmOWVmLTJjYzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCm2eJvaRA6ykEiSAL56q91g2vPa09IPfqxoAY/cNRvaJHAeI6wqWGDZTdqnw3E 3hC4xvhHtnWDUHqhp/Gr0gYdWwZvJsNPpHmGqTEL5ULlInj0xB7THJs3HApEOP5l B6/U0ISay8oXz0nloppoBLFOzMrMhqr87C3s5Jkn259mTTKn28Ea5z4Ojpi7XjM+ 1ujWQH/XIHOfefjX1WrXphCQTChX146BQ4Yap+Rpa5hJa3CYIEb28snExtXk2JXV E6h3lxLZLahOKZVJl7NVw2tv8kPpi5z63jsaDmNVUTnb+bXn9ew3q7uO1Xg9laG0 V+MRE9Ke5ayy1v66+dKjoLDLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWPgYxECm 49WpWcf6W7BIwtZq03gwHwYDVR0jBBgwFoAUN2EhKhZwpXGatx+iA7kuxobyEXcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyMDM3LzVDMDVDMEM4RTQx NzExRUY5NkUyRkYzOEM0RjlBRTAyL04yRWhLaFp3cFhHYXR4LWlBN2t1eG9ieUVY Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTjJFaEtoWndwWEdhdHgtaUE3a3V4b2J5RVhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy MDM3LzVDMDVDMEM4RTQxNzExRUY5NkUyRkYzOEM0RjlBRTAyL04yRWhLaFp3cFhH YXR4LWlBN2t1eG9ieUVYYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMb0uu9n+Pc/xxSwXVPaaAtqk/amssUF4jzab5a6ApEb4NBjT98zSbfp kQPJb7OQcCbQ+ZZdOA+tgfE8IQkbN1E8Yqno0tyKM7SSkTdEy0XthzRao9EDR6EJ 056sOkkUdG+AI/rgLC2YM4P+Nchs0ZCLNPElKP2k8bnmY4oRj0doxi2QScr/yu6M grgHcBlEunE3hA7qicCQ/d3DY9ex24GKwp/9zf9eWY7wd8SWabQD7kkPZCi25P/7 Rko7sgg2tN33I5uoY1Wj/74UJYiqKGnLTuJyokS+OFgkcUAy+UfE2mo2aKleyzdh ji27VWXQsfpGLoAUTYfTrqjLjxlbRgA= -----END CERTIFICATE-----Generated at Sun Aug 10 05:00:32 2025 by rpki-client