$ rpki-client -vvf rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft File: 2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft (raw, json) Hash identifier: P7WwNv+hi8jm39kNGZGcYJGKP+zl57anpplu85E0WxM= Subject key identifier: 6E:0F:1D:6F:5D:36:B1:2E:9F:7A:88:D0:F2:FD:12:DD:F6:10:24:F1 Authority key identifier: D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24 Certificate issuer: /CN=A9159ECD/serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124 Certificate serial: D1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft Manifest number: CF Signing time: Fri 08 Aug 2025 23:55:48 +0000 Manifest this update: Fri 08 Aug 2025 23:55:47 +0000 Manifest next update: Fri 15 Aug 2025 23:55:47 +0000 Files and hashes: 1: 2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl (hash: Qp29AvvYHy2fkGtpf9bYVswgaF6X5wJmsmweNXsfwq0=) 2: 5A4723DA6F3C11EF8FD45F13C4F9AE02.roa (hash: kyChUBrK7l3YN4vwLMgx+ZZf43nxmdSV9d2PzrRyBN4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 209 (0xd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159ECD, serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124 Validity Not Before: Aug 8 23:55:47 2025 GMT Not After : Aug 15 23:55:47 2025 GMT Subject: CN=68968e83-35d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:20:12:cd:0e:63:f1:cb:26:e6:d3:d9:31:74: a1:b2:e6:f7:51:c4:d2:0f:47:17:f1:ca:9b:89:f0: 23:11:f1:c3:39:aa:72:1b:23:45:b4:f8:4d:b0:f0: 18:5d:c1:c4:f8:90:ca:f9:44:bc:c0:35:11:d7:af: 58:c3:be:01:90:47:99:8e:2f:fc:ef:99:db:3a:8b: 8d:50:83:a2:50:e5:05:b5:13:2f:2a:7f:19:5e:23: e0:d6:53:fb:8a:d5:3c:78:78:ac:3e:df:32:cd:e5: 5e:47:ee:b3:09:1f:23:70:eb:76:79:6c:b0:2c:00: d8:4b:f6:94:8d:a1:ba:22:64:26:94:82:3d:15:a6: 12:45:02:13:f7:c9:36:cd:77:6f:f9:5c:66:5b:3d: 2c:58:44:63:c2:a9:5b:b2:cd:4b:e4:80:bd:25:ad: 20:0d:f9:7f:ee:a5:4f:9c:0e:6b:86:41:f0:7b:98: 4a:97:80:01:5e:91:5f:17:f2:1a:e9:73:51:71:fb: e6:d8:3d:f8:db:8b:b1:a6:c9:66:9a:0f:f3:ab:7e: 7c:ff:54:b7:1f:b0:83:74:3e:4c:f4:0e:e5:c4:0e: 7d:02:a4:bb:4d:12:02:c0:4c:50:f5:c2:cb:0f:f1: 92:49:54:e6:cf:3b:2d:df:c1:6a:ec:f8:16:ef:ed: ea:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:0F:1D:6F:5D:36:B1:2E:9F:7A:88:D0:F2:FD:12:DD:F6:10:24:F1 X509v3 Authority Key Identifier: keyid:D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:7e:cc:21:03:66:cd:1c:ea:a8:8f:80:8a:d4:42:d9:10:c2: 6a:73:ca:f3:79:ae:2f:d5:f3:52:dc:73:cf:5f:ca:63:2e:ff: ef:d2:1d:65:23:95:e5:de:bd:30:20:d5:75:6b:4d:98:99:71: 46:92:a0:78:c7:c2:73:30:b0:84:20:57:07:42:b9:d5:c2:23: 0c:53:fd:5e:50:8a:91:51:fe:a0:e3:1e:f3:7a:8e:91:96:e4: b4:9a:e2:34:70:0e:b7:be:ba:f8:bb:55:ee:75:20:3f:db:6b: 35:70:b1:61:88:83:44:7a:6f:c6:1d:61:fb:8d:42:d7:36:ac: ee:b3:1c:e9:78:55:fb:fb:6f:2d:48:69:db:70:3b:b7:49:98: ab:a4:81:b8:44:d0:61:8c:23:35:0d:02:52:26:d4:98:ea:e4: 09:70:02:1d:70:99:5a:8b:ae:85:0e:25:45:4f:07:23:10:d7: 0b:0a:9b:0e:20:0d:de:25:15:f0:49:de:d4:6b:59:39:13:bd: f8:81:db:f3:26:b6:df:f1:46:45:5c:4d:9f:57:5a:03:14:1d: 96:03:6c:2a:1d:ad:ae:42:4a:33:ee:da:59:65:88:85:50:38: d1:af:24:a2:e0:48:8c:3a:04:db:2b:2f:d7:14:52:a6:88:1f: 0f:3b:ed:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTlFQ0QxMTAvBgNVBAUTKEQ5NURBMTE3MTQxMjMwMEFCNTNCM0U0ODcwRjJGNDQx RjA2QzgxMjQwHhcNMjUwODA4MjM1NTQ3WhcNMjUwODE1MjM1NTQ3WjAYMRYwFAYD VQQDEw02ODk2OGU4My0zNWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAriASzQ5j8csm5tPZMXShsub3UcTSD0cX8cqbifAjEfHDOapyGyNFtPhNsPAY XcHE+JDK+US8wDUR169Yw74BkEeZji/875nbOouNUIOiUOUFtRMvKn8ZXiPg1lP7 itU8eHisPt8yzeVeR+6zCR8jcOt2eWywLADYS/aUjaG6ImQmlII9FaYSRQIT98k2 zXdv+VxmWz0sWERjwqlbss1L5IC9Ja0gDfl/7qVPnA5rhkHwe5hKl4ABXpFfF/Ia 6XNRcfvm2D3424uxpslmmg/zq358/1S3H7CDdD5M9A7lxA59AqS7TRICwExQ9cLL D/GSSVTmzzst38Fq7PgW7+3qewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG4PHW9d NrEun3qI0PL9Et32ECTxMB8GA1UdIwQYMBaAFNldoRcUEjAKtTs+SHDy9EHwbIEk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OUVDRC9FRjYzODNFMjNE OUYxMUVGOTkwMzM3NjhDNEY5QUUwMi8yVjJoRnhRU01BcTFPejVJY1BMMFFmQnNn U1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJWMmhGeFFTTUFxMU96NUljUEwwUWZCc2dTUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OUVDRC9FRjYzODNFMjNEOUYxMUVGOTkwMzM3NjhDNEY5QUUwMi8yVjJoRnhRU01B cTFPejVJY1BMMFFmQnNnU1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEfswhA2bNHOqoj4CK1ELZEMJqc8rzea4v1fNS3HPPX8pjLv/v0h1l I5Xl3r0wINV1a02YmXFGkqB4x8JzMLCEIFcHQrnVwiMMU/1eUIqRUf6g4x7zeo6R luS0muI0cA63vrr4u1XudSA/22s1cLFhiINEem/GHWH7jULXNqzusxzpeFX7+28t SGnbcDu3SZirpIG4RNBhjCM1DQJSJtSY6uQJcAIdcJlai66FDiVFTwcjENcLCpsO IA3eJRXwSd7Ua1k5E734gdvzJrbf8UZFXE2fV1oDFB2WA2wqHa2uQkoz7tpZZYiF UDjRrySi4EiMOgTbKy/XFFKmiB8PO+2O -----END CERTIFICATE-----Generated at Sun Aug 10 18:56:40 2025 by rpki-client