$ rpki-client -vvf rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft File: 2gQijT7rRR_A8iM2aXFwV_irNmk.mft (raw, json) Hash identifier: RBM0MO/n54c2278jCl+9uWUmXpL3Jig6qad1iOemwe4= Subject key identifier: B6:B8:5A:98:53:49:C6:B0:35:7F:3D:CE:4F:0C:50:86:5B:50:69:4C Authority key identifier: DA:04:22:8D:3E:EB:45:1F:C0:F2:23:36:69:71:70:57:F8:AB:36:69 Certificate issuer: /CN=A914B165/serialNumber=DA04228D3EEB451FC0F2233669717057F8AB3669 Certificate serial: 089D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft Manifest number: 0897 Signing time: Wed 06 Aug 2025 20:52:42 +0000 Manifest this update: Wed 06 Aug 2025 20:52:41 +0000 Manifest next update: Wed 13 Aug 2025 20:52:41 +0000 Files and hashes: 1: 2gQijT7rRR_A8iM2aXFwV_irNmk.crl (hash: 90BILE+K6fEr2oYtnPKbCF2X5ELUJQ5YsRjEJtav2eY=) 2: 26AECD92C2B211EABBD0ED4AC4F9AE02.roa (hash: 8bFMS7lUFa5a04616nMhBCIyPXjI0vGFlv2YHmEk/tM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.crl rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 20:52:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2205 (0x89d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B165, serialNumber=DA04228D3EEB451FC0F2233669717057F8AB3669 Validity Not Before: Aug 6 20:52:41 2025 GMT Not After : Aug 13 20:52:41 2025 GMT Subject: CN=6893c099-b89c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:3f:98:76:b1:91:20:5b:73:b6:11:c3:c7:45: 36:db:62:c4:03:14:14:94:3a:26:1e:4e:41:9f:4f: ce:3d:86:f1:1a:71:77:f6:45:1d:bd:0e:d0:2e:21: b2:e4:c8:d4:51:64:41:5d:02:be:e0:fa:d0:fa:24: 17:19:a6:94:ea:39:e0:bc:e1:8c:52:43:30:6a:fb: c6:1a:0d:ce:a1:de:4c:4c:9c:f9:90:44:5d:02:40: 97:5d:ae:59:07:fc:a8:13:b1:22:5a:f8:8f:fb:20: b9:5a:a2:fd:6a:43:0e:f2:ae:79:77:79:cc:9a:2b: c1:fa:71:f2:c7:cd:84:a2:08:8b:11:3c:70:d2:48: a7:0c:20:0a:fb:bc:b0:84:31:3f:64:61:51:dc:30: 25:71:80:40:9a:37:32:aa:62:a4:75:6a:ea:f9:1d: 09:fc:6a:0d:b2:e1:23:e7:08:17:9a:e7:d8:96:a2: b8:2e:90:b0:48:03:87:b2:ad:26:b8:06:fd:29:9f: f0:72:ad:db:7d:81:6f:20:41:58:d2:0c:e9:93:b1: 2c:c8:a2:27:ad:8c:73:b4:76:8a:9c:a1:e3:d7:5f: 8b:4c:c8:35:ba:40:14:f8:aa:a4:49:2b:c3:c3:17: 1c:18:dd:d1:9b:f7:16:bf:38:e7:73:84:26:3b:18: 17:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:B8:5A:98:53:49:C6:B0:35:7F:3D:CE:4F:0C:50:86:5B:50:69:4C X509v3 Authority Key Identifier: keyid:DA:04:22:8D:3E:EB:45:1F:C0:F2:23:36:69:71:70:57:F8:AB:36:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:cf:ba:e0:68:c0:e4:41:e5:39:3c:38:7f:ba:b4:b7:49:65: a3:2a:9c:71:99:50:5b:de:62:31:4f:c9:f6:00:f7:0a:c5:e1: 33:8b:81:c7:a5:2d:4a:22:e8:eb:62:3a:78:a2:2b:0e:40:5c: ba:af:a8:8c:4f:4b:48:46:5a:14:e7:83:97:10:eb:0d:5d:cc: 7e:65:22:12:84:30:46:cb:6c:cc:b2:db:d2:c3:12:8d:e9:6e: 81:69:c8:6a:d6:5f:a9:b8:b0:b9:60:24:f5:8c:85:1f:87:3a: 1d:ef:d9:b6:d3:4e:36:50:56:95:18:65:f5:02:5f:fa:2b:05: de:82:f7:1e:54:68:9b:9a:e5:fa:a0:bb:30:72:07:b1:7b:60: 80:37:4e:d0:da:42:09:bf:c2:5a:f4:b8:35:db:59:44:84:09: 54:09:61:c1:ce:92:91:a0:33:c1:2f:c5:ce:70:98:cf:cc:8d: 19:60:34:c2:78:49:79:43:db:6e:f8:d3:9e:0d:86:db:38:cb: 3a:12:b2:1d:fa:5c:30:3a:70:c6:30:45:c5:b9:05:93:13:e4: 87:fd:34:b7:77:72:94:b7:ee:5c:a2:82:90:28:88:99:00:6f: b0:ea:2f:92:e0:6f:ee:1c:ae:48:47:f3:fa:ed:da:9e:99:71: bc:fb:ea:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIxNjUxMTAvBgNVBAUTKERBMDQyMjhEM0VFQjQ1MUZDMEYyMjMzNjY5NzE3MDU3 RjhBQjM2NjkwHhcNMjUwODA2MjA1MjQxWhcNMjUwODEzMjA1MjQxWjAYMRYwFAYD VQQDEw02ODkzYzA5OS1iODljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxD+YdrGRIFtzthHDx0U222LEAxQUlDomHk5Bn0/OPYbxGnF39kUdvQ7QLiGy 5MjUUWRBXQK+4PrQ+iQXGaaU6jngvOGMUkMwavvGGg3Ood5MTJz5kERdAkCXXa5Z B/yoE7EiWviP+yC5WqL9akMO8q55d3nMmivB+nHyx82EogiLETxw0kinDCAK+7yw hDE/ZGFR3DAlcYBAmjcyqmKkdWrq+R0J/GoNsuEj5wgXmufYlqK4LpCwSAOHsq0m uAb9KZ/wcq3bfYFvIEFY0gzpk7EsyKInrYxztHaKnKHj11+LTMg1ukAU+KqkSSvD wxccGN3Rm/cWvzjnc4QmOxgXywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLa4WphT ScawNX89zk8MUIZbUGlMMB8GA1UdIwQYMBaAFNoEIo0+60UfwPIjNmlxcFf4qzZp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjE2NS82QTNFQjhCNkMy QjExMUVBOTIwQkI5NEFDNEY5QUUwMi8yZ1FpalQ3clJSX0E4aU0yYVhGd1ZfaXJO bWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnUWlqVDdyUlJfQThpTTJhWEZ3Vl9pck5tay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjE2NS82QTNFQjhCNkMyQjExMUVBOTIwQkI5NEFDNEY5QUUwMi8yZ1FpalQ3clJS X0E4aU0yYVhGd1ZfaXJObWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcz7rgaMDkQeU5PDh/urS3SWWjKpxxmVBb3mIxT8n2APcKxeEzi4HH pS1KIujrYjp4oisOQFy6r6iMT0tIRloU54OXEOsNXcx+ZSIShDBGy2zMstvSwxKN 6W6Bachq1l+puLC5YCT1jIUfhzod79m20042UFaVGGX1Al/6KwXegvceVGibmuX6 oLswcgexe2CAN07Q2kIJv8Ja9Lg121lEhAlUCWHBzpKRoDPBL8XOcJjPzI0ZYDTC eEl5Q9tu+NOeDYbbOMs6ErId+lwwOnDGMEXFuQWTE+SH/TS3d3KUt+5cooKQKIiZ AG+w6i+S4G/uHK5IR/P67dqemXG8++pF -----END CERTIFICATE-----Generated at Fri Aug 8 00:33:42 2025 by rpki-client