$ rpki-client -vvf rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.mft File: 2DvcT6zNnbegvEa0JE6jEHBgS5c.mft (raw, json) Hash identifier: siNXhoCotmAUzP6IgjJPEuFAAjPyt6t5iMg9ZRQ2lMo= Subject key identifier: FD:3E:9B:AC:9C:84:CB:1D:89:8C:8A:60:39:E1:6C:B4:23:E5:08:62 Authority key identifier: D8:3B:DC:4F:AC:CD:9D:B7:A0:BC:46:B4:24:4E:A3:10:70:60:4B:97 Certificate issuer: /CN=A914F870/serialNumber=D83BDC4FACCD9DB7A0BC46B4244EA31070604B97 Certificate serial: 66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DvcT6zNnbegvEa0JE6jEHBgS5c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.mft Manifest number: 66 Signing time: Thu 07 Aug 2025 07:37:12 +0000 Manifest this update: Thu 07 Aug 2025 07:37:11 +0000 Manifest next update: Thu 14 Aug 2025 07:37:11 +0000 Files and hashes: 1: 2DvcT6zNnbegvEa0JE6jEHBgS5c.crl (hash: ciOOVrXIplLWqvX40qElD90O/FQfBnIUkU9aeGWU59I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.crl rsync://rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DvcT6zNnbegvEa0JE6jEHBgS5c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 102 (0x66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F870, serialNumber=D83BDC4FACCD9DB7A0BC46B4244EA31070604B97 Validity Not Before: Aug 7 07:37:11 2025 GMT Not After : Aug 14 07:37:11 2025 GMT Subject: CN=689457a8-5006 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ff:fa:53:5b:06:b8:f2:88:47:0a:38:59:48: 2b:76:79:ab:52:40:c1:36:81:1b:9f:1b:7d:67:64: a2:2d:ba:ad:2b:9e:64:c9:86:61:d7:cb:29:ba:5a: 55:b4:ba:f5:d8:95:91:53:a4:60:d1:6c:00:6b:c5: 7b:b8:5c:17:06:85:55:24:f7:ad:0f:a6:96:8a:fc: 52:c2:94:20:38:2a:f4:8a:fb:19:cb:0d:5c:bc:1a: b6:20:53:56:91:1e:ed:b3:85:08:c6:b4:e8:94:3e: dc:6a:42:09:21:46:3e:24:12:9a:33:b9:9e:a7:dc: 51:5f:04:d6:5d:ea:72:a6:e6:55:fe:3f:d0:97:e4: f5:6b:00:44:79:4e:28:2d:b1:eb:2f:5e:85:13:e8: 65:49:1a:99:47:f8:2c:28:68:53:18:47:12:a1:e4: 5b:e9:ba:0a:2b:50:bd:35:ac:55:93:de:c9:77:59: 77:30:0d:ff:41:1b:f8:d8:e4:72:8d:21:64:71:4a: 9a:9e:f8:9e:2e:c7:68:90:b0:5f:5b:4e:05:e9:6e: f5:37:e0:a7:e3:70:f3:52:97:7b:fe:a3:b7:8e:cd: b5:dc:49:99:ee:dc:96:d3:a8:ac:78:da:60:54:81: 41:4e:1d:45:34:ea:b8:39:84:bd:d6:16:c5:54:71: c9:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:3E:9B:AC:9C:84:CB:1D:89:8C:8A:60:39:E1:6C:B4:23:E5:08:62 X509v3 Authority Key Identifier: keyid:D8:3B:DC:4F:AC:CD:9D:B7:A0:BC:46:B4:24:4E:A3:10:70:60:4B:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DvcT6zNnbegvEa0JE6jEHBgS5c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:f8:3e:12:19:26:e7:df:7f:43:f0:7a:76:80:85:4d:93:b8: ff:58:97:a9:16:a5:a4:1c:60:27:0f:09:9b:c8:c3:fe:a6:2f: 1e:dc:d9:4c:49:47:82:da:c3:aa:9b:32:b8:36:f3:81:5a:fb: 1a:1c:72:68:1e:e8:c2:88:a2:16:fc:0b:ee:93:b2:85:a6:32: f7:32:b9:fc:f0:86:9d:40:5e:9d:dd:77:a1:ef:8e:be:f2:64: 11:28:f3:25:eb:8f:a8:51:4f:de:5a:29:39:9e:e3:e1:b1:5a: 18:ff:9e:0a:cc:7a:34:d0:b6:98:8e:27:37:7b:63:be:55:8c: ba:f0:62:0e:cc:7e:12:87:32:2e:cc:c1:64:74:9b:c0:2b:e8: 7f:cb:04:df:08:d6:1c:67:45:4b:bd:cc:bb:5a:9d:1f:9c:b5: 5c:dc:85:57:37:d2:49:ef:c3:99:ea:27:35:e8:b5:b5:5a:6a: d3:b3:af:e5:3d:f1:07:86:3c:c3:72:2f:53:36:66:fc:23:48: 92:cc:11:dd:e3:3f:59:1a:b8:9d:4d:75:40:6a:05:b1:31:cb: e4:1b:34:53:ca:cc:eb:a0:1e:6c:78:31:2b:55:06:b7:30:9f: 51:55:87:d4:42:9d:a9:9b:09:d0:44:1d:57:32:df:7f:09:2f: 93:b2:d2:6c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 Rjg3MDExMC8GA1UEBRMoRDgzQkRDNEZBQ0NEOURCN0EwQkM0NkI0MjQ0RUEzMTA3 MDYwNEI5NzAeFw0yNTA4MDcwNzM3MTFaFw0yNTA4MTQwNzM3MTFaMBgxFjAUBgNV BAMTDTY4OTQ1N2E4LTUwMDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDL//pTWwa48ohHCjhZSCt2eatSQME2gRufG31nZKItuq0rnmTJhmHXyym6WlW0 uvXYlZFTpGDRbABrxXu4XBcGhVUk960PppaK/FLClCA4KvSK+xnLDVy8GrYgU1aR Hu2zhQjGtOiUPtxqQgkhRj4kEpozuZ6n3FFfBNZd6nKm5lX+P9CX5PVrAER5Tigt sesvXoUT6GVJGplH+CwoaFMYRxKh5FvpugorUL01rFWT3sl3WXcwDf9BG/jY5HKN IWRxSpqe+J4ux2iQsF9bTgXpbvU34KfjcPNSl3v+o7eOzbXcSZnu3JbTqKx42mBU gUFOHUU06rg5hL3WFsVUccnBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/T6brJyE yx2JjIpgOeFstCPlCGIwHwYDVR0jBBgwFoAU2DvcT6zNnbegvEa0JE6jEHBgS5cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRGODcwL0QyRTI0Qzk4RDdF MjExRUZBRjBCM0I3REM0RjlBRTAyLzJEdmNUNnpObmJlZ3ZFYTBKRTZqRUhCZ1M1 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMkR2Y1Q2ek5uYmVndkVhMEpFNmpFSEJnUzVjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRG ODcwL0QyRTI0Qzk4RDdFMjExRUZBRjBCM0I3REM0RjlBRTAyLzJEdmNUNnpObmJl Z3ZFYTBKRTZqRUhCZ1M1Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGT4PhIZJufff0PwenaAhU2TuP9Yl6kWpaQcYCcPCZvIw/6mLx7c2UxJ R4Law6qbMrg284Fa+xoccmge6MKIohb8C+6TsoWmMvcyufzwhp1AXp3dd6Hvjr7y ZBEo8yXrj6hRT95aKTme4+GxWhj/ngrMejTQtpiOJzd7Y75VjLrwYg7MfhKHMi7M wWR0m8Ar6H/LBN8I1hxnRUu9zLtanR+ctVzchVc30knvw5nqJzXotbVaatOzr+U9 8QeGPMNyL1M2ZvwjSJLMEd3jP1kauJ1NdUBqBbExy+QbNFPKzOugHmx4MStVBrcw n1FVh9RCnambCdBEHVcy338JL5Oy0mw= -----END CERTIFICATE-----Generated at Sat Aug 9 02:49:28 2025 by rpki-client