$ rpki-client -vvf rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/2Qg5PFuoA1r2i37ACVWOgS7QleA.mft File: 2Qg5PFuoA1r2i37ACVWOgS7QleA.mft (raw, json) Hash identifier: xRPl2NHHoATq5lkpqgJOd5w5F40AL8/lkeCBBnR1GYE= Subject key identifier: 68:E7:59:74:4A:EE:F2:83:BD:8E:9E:38:32:26:06:D3:29:18:59:1A Authority key identifier: D9:08:39:3C:5B:A8:03:5A:F6:8B:7E:C0:09:55:8E:81:2E:D0:95:E0 Certificate issuer: /CN=A916069A/serialNumber=D908393C5BA8035AF68B7EC009558E812ED095E0 Certificate serial: 9D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Qg5PFuoA1r2i37ACVWOgS7QleA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/2Qg5PFuoA1r2i37ACVWOgS7QleA.mft Manifest number: 97 Signing time: Sat 09 Aug 2025 06:56:22 +0000 Manifest this update: Sat 09 Aug 2025 06:56:22 +0000 Manifest next update: Sat 16 Aug 2025 06:56:22 +0000 Files and hashes: 1: 2Qg5PFuoA1r2i37ACVWOgS7QleA.crl (hash: 2429bgxh56OrSweK31oP0ZOw5Gx5W68vEJDbALGrd2Q=) 2: 59FE5CAE624811F0BB5AEE59C4F9AE02.roa (hash: /BO7MOv6a+eIAb796aVsjc+9xJ9r/nsjgcF5LLCvMTU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/2Qg5PFuoA1r2i37ACVWOgS7QleA.crl rsync://rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/2Qg5PFuoA1r2i37ACVWOgS7QleA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Qg5PFuoA1r2i37ACVWOgS7QleA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916069A, serialNumber=D908393C5BA8035AF68B7EC009558E812ED095E0 Validity Not Before: Aug 9 06:56:22 2025 GMT Not After : Aug 16 06:56:22 2025 GMT Subject: CN=6896f116-f870 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:48:ec:16:e1:87:7c:ca:a1:5a:b2:2a:30:aa: 60:6a:43:49:06:35:1f:25:c2:3a:a1:e9:bd:c5:98: 2a:f3:f9:68:37:14:19:da:d7:a2:f8:38:8d:a1:fb: 30:34:54:17:de:f9:40:ef:82:a3:68:ef:e6:5e:18: 7c:e9:dc:d1:cd:21:8e:66:0b:e2:a8:f3:4d:43:a4: aa:91:dc:6d:66:39:cc:8d:05:d1:0f:ca:62:3e:ba: 35:54:44:ac:cd:aa:1b:0f:03:1c:65:a6:78:bd:bf: 00:64:cc:bb:05:7d:56:05:54:55:cf:31:a5:3f:76: 1f:ad:68:4d:9e:f0:9b:8d:ee:c6:e4:ce:ee:11:11: 4b:62:28:15:ad:aa:15:65:b2:ea:a4:d4:ed:2c:46: e4:5c:49:f5:82:e9:98:f4:8c:2d:93:3f:a9:4d:dd: 59:bf:5a:40:99:73:fe:38:1f:d0:0c:4f:5f:aa:33: 90:67:80:c1:81:ae:32:5e:f8:4f:7f:14:4f:1a:46: 0c:71:86:21:54:d2:c1:13:64:b9:31:c5:ac:a7:a0: 96:b4:08:28:19:d6:87:37:c2:39:9d:d5:02:fa:cd: a5:02:3a:05:13:55:d5:85:da:6c:95:93:8b:f8:07: f1:dd:92:cd:27:1b:5f:4c:ae:68:e4:97:84:2f:93: 8c:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:E7:59:74:4A:EE:F2:83:BD:8E:9E:38:32:26:06:D3:29:18:59:1A X509v3 Authority Key Identifier: keyid:D9:08:39:3C:5B:A8:03:5A:F6:8B:7E:C0:09:55:8E:81:2E:D0:95:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/2Qg5PFuoA1r2i37ACVWOgS7QleA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Qg5PFuoA1r2i37ACVWOgS7QleA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/2Qg5PFuoA1r2i37ACVWOgS7QleA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:7a:13:07:c6:31:dd:b3:0e:94:7c:2e:8a:f1:a4:34:6e:3f: 75:cb:06:82:d7:a5:cd:f2:69:2d:ec:9b:70:1f:50:fe:38:40: 2d:8b:3f:0e:d5:40:14:07:9d:f7:a2:a2:5f:7c:6d:11:74:c2: 54:b7:de:fc:0b:23:19:d1:ac:ff:6a:a8:6e:66:cc:90:56:ae: a5:80:b7:11:01:4c:b9:16:63:88:3d:76:9b:e8:27:b6:24:02: 14:04:0f:a5:d8:5c:68:ca:13:18:bd:f3:4c:b5:de:79:95:ad: d8:c7:d1:ac:53:28:cd:a3:d1:a7:eb:20:db:6e:3a:52:f7:06: 15:17:92:f0:4a:8f:b2:50:c3:2f:93:3c:8f:1d:74:60:be:77: 6e:e6:5c:4f:c8:70:32:bb:9a:8c:80:cf:69:e8:00:c1:81:b5: da:a8:56:6b:6c:30:16:5f:97:28:8f:04:5e:a5:dc:40:d8:a7: 54:04:44:9e:a7:ae:a5:2c:18:d8:8e:5d:50:dd:a4:c6:92:11: bf:ea:a6:19:cf:4b:67:16:0a:ae:1b:04:41:61:c8:32:51:7f: 41:5d:c3:27:de:c2:c6:60:33:6e:65:2e:73:75:ba:c8:c5:29: 7d:6e:37:96:c6:33:5d:f3:dc:34:65:d1:07:a5:fe:04:ef:13: 5a:da:a0:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA2OUExMTAvBgNVBAUTKEQ5MDgzOTNDNUJBODAzNUFGNjhCN0VDMDA5NTU4RTgx MkVEMDk1RTAwHhcNMjUwODA5MDY1NjIyWhcNMjUwODE2MDY1NjIyWjAYMRYwFAYD VQQDEw02ODk2ZjExNi1mODcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtUjsFuGHfMqhWrIqMKpgakNJBjUfJcI6oem9xZgq8/loNxQZ2tei+DiNofsw NFQX3vlA74KjaO/mXhh86dzRzSGOZgviqPNNQ6SqkdxtZjnMjQXRD8piPro1VESs zaobDwMcZaZ4vb8AZMy7BX1WBVRVzzGlP3YfrWhNnvCbje7G5M7uERFLYigVraoV ZbLqpNTtLEbkXEn1gumY9Iwtkz+pTd1Zv1pAmXP+OB/QDE9fqjOQZ4DBga4yXvhP fxRPGkYMcYYhVNLBE2S5McWsp6CWtAgoGdaHN8I5ndUC+s2lAjoFE1XVhdpslZOL +Afx3ZLNJxtfTK5o5JeEL5OMIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGjnWXRK 7vKDvY6eODImBtMpGFkaMB8GA1UdIwQYMBaAFNkIOTxbqANa9ot+wAlVjoEu0JXg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDY5QS8yRUI2MDc5NjlC RjAxMUVGODFDOTAyNjdDNEY5QUUwMi8yUWc1UEZ1b0ExcjJpMzdBQ1ZXT2dTN1Fs ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJRZzVQRnVvQTFyMmkzN0FDVldPZ1M3UWxlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDY5QS8yRUI2MDc5NjlCRjAxMUVGODFDOTAyNjdDNEY5QUUwMi8yUWc1UEZ1b0Ex cjJpMzdBQ1ZXT2dTN1FsZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8ehMHxjHdsw6UfC6K8aQ0bj91ywaC16XN8mkt7JtwH1D+OEAtiz8O 1UAUB533oqJffG0RdMJUt978CyMZ0az/aqhuZsyQVq6lgLcRAUy5FmOIPXab6Ce2 JAIUBA+l2FxoyhMYvfNMtd55la3Yx9GsUyjNo9Gn6yDbbjpS9wYVF5LwSo+yUMMv kzyPHXRgvndu5lxPyHAyu5qMgM9p6ADBgbXaqFZrbDAWX5cojwRepdxA2KdUBESe p66lLBjYjl1Q3aTGkhG/6qYZz0tnFgquGwRBYcgyUX9BXcMn3sLGYDNuZS5zdbrI xSl9bjeWxjNd89w0ZdEHpf4E7xNa2qBN -----END CERTIFICATE-----Generated at Sun Aug 10 04:54:07 2025 by rpki-client