$ rpki-client -vvf rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft File: 2QhrDfk0LcKwkbrobLd5_GJZvXs.mft (raw, json) Hash identifier: zQx9Tq4lVVE8JmCGw5bJtjVaP9sYedwVQXtlRA+0Aj0= Subject key identifier: 7B:75:D7:47:3B:36:04:7F:09:C5:A5:FC:54:C1:CE:32:21:72:51:84 Authority key identifier: D9:08:6B:0D:F9:34:2D:C2:B0:91:BA:E8:6C:B7:79:FC:62:59:BD:7B Certificate issuer: /CN=A914F2EC/serialNumber=D9086B0DF9342DC2B091BAE86CB779FC6259BD7B Certificate serial: 34BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft Manifest number: 34B1 Signing time: Fri 08 Aug 2025 15:02:08 +0000 Manifest this update: Fri 08 Aug 2025 15:02:08 +0000 Manifest next update: Fri 15 Aug 2025 15:02:08 +0000 Files and hashes: 1: 2QhrDfk0LcKwkbrobLd5_GJZvXs.crl (hash: r2CxfHLXKKCjnbBPYoYq4BeJXDdMFiQwpoMj4n8uqtk=) 2: 588BD7269A1211E8B97A623AC4F9AE02.roa (hash: KKbAooYir9kiM+kQeIhamjhStk+gbSQk/A73xTUucXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.crl rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13498 (0x34ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F2EC, serialNumber=D9086B0DF9342DC2B091BAE86CB779FC6259BD7B Validity Not Before: Aug 8 15:02:08 2025 GMT Not After : Aug 15 15:02:08 2025 GMT Subject: CN=68961170-d41b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:cb:75:37:08:d0:c0:cd:18:c1:ef:38:3e:d1: 56:d8:86:ea:6f:a2:10:3e:7f:85:3c:ad:81:60:5e: 82:8d:79:4c:7c:97:39:b6:44:ba:ea:5f:73:88:43: 07:74:b0:c8:aa:d2:e2:d2:7b:ae:74:e3:1d:89:d2: bf:4e:21:21:a0:bb:a3:8b:d6:35:57:0f:0b:0d:bc: 18:6e:2a:44:b9:73:3a:1d:11:ac:f2:46:1c:a3:65: cb:df:5c:48:85:a4:09:34:d2:07:b7:f4:a0:64:f9: 98:0b:a6:7e:87:32:d1:57:a6:22:37:f6:3a:a1:06: ee:7e:fa:db:cf:ed:98:93:17:e4:a1:ba:95:fb:3a: 2f:ea:aa:21:66:1f:5d:c5:50:df:de:32:49:b1:97: fb:e0:e7:7b:97:f3:91:76:de:84:a8:9f:95:c8:07: 1f:ac:e7:33:1b:dc:98:eb:ec:a6:02:12:4b:12:5c: 56:a1:89:c9:aa:4d:20:a6:5f:e0:6b:98:01:27:5f: 37:ae:09:2d:78:72:85:21:ad:20:55:4c:a3:4c:38: 42:7b:ca:46:21:ad:cd:ee:55:63:ca:47:8b:0b:f6: a8:f6:8b:c8:da:35:2a:92:dd:ab:ec:95:d0:e0:84: 4e:c9:63:0f:80:96:3b:d1:2c:0e:34:d1:cf:df:8f: ab:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:75:D7:47:3B:36:04:7F:09:C5:A5:FC:54:C1:CE:32:21:72:51:84 X509v3 Authority Key Identifier: keyid:D9:08:6B:0D:F9:34:2D:C2:B0:91:BA:E8:6C:B7:79:FC:62:59:BD:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:d0:9b:77:39:88:a7:39:1b:b0:0f:0a:1b:56:b2:7c:da:ea: 24:5e:af:37:26:d7:c5:7f:8e:24:de:86:ec:7b:8d:29:fb:31: 6f:fc:15:36:75:cb:58:7e:83:1b:98:21:01:42:4e:3e:1f:4a: 42:7d:69:ed:f9:55:3b:94:06:75:ca:4e:05:c3:00:78:7e:ae: 00:64:36:3e:98:ac:79:82:85:9c:09:c7:f2:18:6d:d7:68:76: 07:5c:cd:f1:1c:54:99:ac:0a:02:fa:b1:8b:ec:39:5a:c6:3c: 27:81:67:1c:e3:ba:4f:97:49:14:70:54:6e:c1:3f:c4:03:74: a1:34:03:de:76:ce:0d:b8:d4:3d:de:81:f5:88:b8:37:f6:2e: 23:94:a9:07:9e:3a:80:dc:14:00:5c:31:82:c8:f3:e9:41:d0: 7d:3e:9b:71:bb:09:82:34:34:c0:af:69:41:26:0a:2d:84:2d: da:43:ce:21:6d:19:99:06:d7:47:05:43:18:45:63:96:bb:f9: cd:fb:e5:b3:f0:cb:ee:ed:30:05:a5:69:a5:70:8e:79:3a:54: 93:a0:93:f3:ac:19:92:6d:91:67:c6:d7:91:49:d4:69:87:d8: 0a:52:39:c2:0e:f7:39:69:3a:31:9b:fa:b2:e1:6a:b1:f4:51: 0c:7a:d8:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYyRUMxMTAvBgNVBAUTKEQ5MDg2QjBERjkzNDJEQzJCMDkxQkFFODZDQjc3OUZD NjI1OUJEN0IwHhcNMjUwODA4MTUwMjA4WhcNMjUwODE1MTUwMjA4WjAYMRYwFAYD VQQDEw02ODk2MTE3MC1kNDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4st1NwjQwM0Ywe84PtFW2Ibqb6IQPn+FPK2BYF6CjXlMfJc5tkS66l9ziEMH dLDIqtLi0nuudOMdidK/TiEhoLuji9Y1Vw8LDbwYbipEuXM6HRGs8kYco2XL31xI haQJNNIHt/SgZPmYC6Z+hzLRV6YiN/Y6oQbufvrbz+2YkxfkobqV+zov6qohZh9d xVDf3jJJsZf74Od7l/ORdt6EqJ+VyAcfrOczG9yY6+ymAhJLElxWoYnJqk0gpl/g a5gBJ183rgkteHKFIa0gVUyjTDhCe8pGIa3N7lVjykeLC/ao9ovI2jUqkt2r7JXQ 4IROyWMPgJY70SwONNHP34+rZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHt110c7 NgR/CcWl/FTBzjIhclGEMB8GA1UdIwQYMBaAFNkIaw35NC3CsJG66Gy3efxiWb17 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjJFQy9ENThBMjI2QzFE OUMxMUUyOUJDM0IyOEIwOEIwMkNEMi8yUWhyRGZrMExjS3drYnJvYkxkNV9HSlp2 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRaHJEZmswTGNLd2ticm9iTGQ1X0dKWnZYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjJFQy9ENThBMjI2QzFEOUMxMUUyOUJDM0IyOEIwOEIwMkNEMi8yUWhyRGZrMExj S3drYnJvYkxkNV9HSlp2WHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBH0Jt3OYinORuwDwobVrJ82uokXq83JtfFf44k3obse40p+zFv/BU2 dctYfoMbmCEBQk4+H0pCfWnt+VU7lAZ1yk4FwwB4fq4AZDY+mKx5goWcCcfyGG3X aHYHXM3xHFSZrAoC+rGL7DlaxjwngWcc47pPl0kUcFRuwT/EA3ShNAPeds4NuNQ9 3oH1iLg39i4jlKkHnjqA3BQAXDGCyPPpQdB9PptxuwmCNDTAr2lBJgothC3aQ84h bRmZBtdHBUMYRWOWu/nN++Wz8Mvu7TAFpWmlcI55OlSToJPzrBmSbZFnxteRSdRp h9gKUjnCDvc5aToxm/qy4Wqx9FEMethK -----END CERTIFICATE-----Generated at Sun Aug 10 13:55:54 2025 by rpki-client