$ rpki-client -vvf rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft File: r2oY2zoHHvGMylvos1Qz31RPD7I.mft (raw, json) Hash identifier: /fiKyZWVjxD5LCepBxAmgub71egBAFrXsueHEamVW18= Subject key identifier: 46:A5:6C:FF:9E:90:76:90:2F:58:FC:DA:EA:CC:5F:11:E3:6F:3F:6F Authority key identifier: AF:6A:18:DB:3A:07:1E:F1:8C:CA:5B:E8:B3:54:33:DF:54:4F:0F:B2 Certificate issuer: /CN=A918E20E/serialNumber=AF6A18DB3A071EF18CCA5BE8B35433DF544F0FB2 Certificate serial: 0BE3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft Manifest number: 0BDC Signing time: Fri 08 Aug 2025 19:06:15 +0000 Manifest this update: Fri 08 Aug 2025 19:06:14 +0000 Manifest next update: Fri 15 Aug 2025 19:06:14 +0000 Files and hashes: 1: r2oY2zoHHvGMylvos1Qz31RPD7I.crl (hash: W1TOI7d+nMOXG91RGJSmzijuPy82erJZUrh+Kr9l3C4=) 2: BFA3B5F81FC911EA8CF04E61C4F9AE02.roa (hash: GOn5I83uJZSyXlxS2nqYANbi3ziYR8hFxpWIpKnwdbc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.crl rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3043 (0xbe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E20E, serialNumber=AF6A18DB3A071EF18CCA5BE8B35433DF544F0FB2 Validity Not Before: Aug 8 19:06:14 2025 GMT Not After : Aug 15 19:06:14 2025 GMT Subject: CN=68964aa6-6eb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:0f:51:78:29:fd:cc:78:b6:8c:e3:08:5d:5b: 22:1e:11:e7:2d:30:74:d2:56:5b:86:36:7e:c6:73: bf:da:47:34:76:ea:c4:92:ee:c8:30:e6:6b:a3:88: 90:00:26:ac:6b:e6:5b:b2:9c:c1:a5:3a:40:07:1f: e7:8d:e0:92:64:7c:02:40:c5:47:77:aa:b8:5c:25: a1:54:ab:ce:c8:1f:80:5d:3b:15:67:f0:e3:6c:6a: 7b:70:56:60:a6:87:88:de:66:8e:b7:23:3d:57:2a: 0c:35:66:cf:2b:02:7a:8f:b4:54:9e:21:d9:03:53: 3e:8a:6f:e1:0f:1f:67:2e:01:4e:72:e7:cc:e3:6c: 52:37:93:c9:1d:57:e4:cc:ef:d6:49:04:07:21:42: 44:32:72:52:14:ac:98:0a:4e:60:17:7b:2b:68:a1: fe:9b:bc:b9:11:71:0b:5f:40:1c:bf:4d:88:c6:53: 3d:f3:83:bb:f1:26:57:06:74:e8:77:61:5a:fc:7d: d8:72:f2:3b:3f:02:ff:dc:76:56:0d:00:eb:29:13: 5d:ed:c2:7c:3a:d5:3d:01:45:f2:d6:6c:1f:26:cc: 72:27:00:85:b1:ec:95:44:2d:04:3f:8e:83:38:02: 67:c9:ee:05:56:16:08:fd:77:c7:25:43:be:87:f2: be:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:A5:6C:FF:9E:90:76:90:2F:58:FC:DA:EA:CC:5F:11:E3:6F:3F:6F X509v3 Authority Key Identifier: keyid:AF:6A:18:DB:3A:07:1E:F1:8C:CA:5B:E8:B3:54:33:DF:54:4F:0F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:0b:9a:8f:44:31:07:f0:9d:5b:0c:98:6b:f3:0b:24:38:5c: ce:43:de:0e:eb:2d:e9:44:28:96:76:3c:a5:18:88:15:1d:ae: c5:68:ac:ff:17:f7:0c:ec:4c:e0:c8:00:c1:79:26:ff:99:26: e6:9a:96:4f:50:98:79:3f:75:e9:cd:6e:28:ac:14:48:ad:ce: d5:51:31:ca:0b:91:b0:7c:8a:72:05:c8:bb:35:c9:c7:a0:cc: 87:4c:49:00:61:88:36:18:37:77:59:a2:89:8c:42:0d:5e:e9: 56:d6:ab:cc:0f:b7:64:4c:28:ec:ae:52:4d:79:f6:ac:9b:c2: 3d:06:26:2d:82:78:3c:04:f7:82:f8:f4:50:84:14:c0:46:fd: f8:04:5c:8a:a4:59:f5:5f:4f:e5:5e:62:c0:75:1b:b7:76:16: 74:af:5b:09:95:8c:ec:aa:72:89:61:01:43:f0:1a:6c:ad:ed: be:ea:f1:6f:68:23:cc:7e:29:1e:53:a2:51:6e:f6:e7:60:d7: 97:71:f9:0e:2b:0a:e5:e1:26:3e:4f:53:e5:7e:cd:d9:11:cb: 36:50:6a:b5:0f:34:9d:09:ab:5b:8c:90:5e:3f:68:75:60:40: 32:2b:05:51:33:ae:ac:41:69:e7:4e:60:b6:4b:4b:64:65:23: e8:29:d7:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUyMEUxMTAvBgNVBAUTKEFGNkExOERCM0EwNzFFRjE4Q0NBNUJFOEIzNTQzM0RG NTQ0RjBGQjIwHhcNMjUwODA4MTkwNjE0WhcNMjUwODE1MTkwNjE0WjAYMRYwFAYD VQQDEw02ODk2NGFhNi02ZWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Q9ReCn9zHi2jOMIXVsiHhHnLTB00lZbhjZ+xnO/2kc0durEku7IMOZro4iQ ACasa+ZbspzBpTpABx/njeCSZHwCQMVHd6q4XCWhVKvOyB+AXTsVZ/DjbGp7cFZg poeI3maOtyM9VyoMNWbPKwJ6j7RUniHZA1M+im/hDx9nLgFOcufM42xSN5PJHVfk zO/WSQQHIUJEMnJSFKyYCk5gF3sraKH+m7y5EXELX0Acv02IxlM984O78SZXBnTo d2Fa/H3YcvI7PwL/3HZWDQDrKRNd7cJ8OtU9AUXy1mwfJsxyJwCFseyVRC0EP46D OAJnye4FVhYI/XfHJUO+h/K+WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEalbP+e kHaQL1j82urMXxHjbz9vMB8GA1UdIwQYMBaAFK9qGNs6Bx7xjMpb6LNUM99UTw+y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTIwRS8yM0FBRDk4RTFG QzgxMUVBODQ1OTRGNUVDNEY5QUUwMi9yMm9ZMnpvSEh2R015bHZvczFRejMxUlBE N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Iyb1kyem9ISHZHTXlsdm9zMVF6MzFSUEQ3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTIwRS8yM0FBRDk4RTFGQzgxMUVBODQ1OTRGNUVDNEY5QUUwMi9yMm9ZMnpvSEh2 R015bHZvczFRejMxUlBEN0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeC5qPRDEH8J1bDJhr8wskOFzOQ94O6y3pRCiWdjylGIgVHa7FaKz/ F/cM7EzgyADBeSb/mSbmmpZPUJh5P3XpzW4orBRIrc7VUTHKC5GwfIpyBci7NcnH oMyHTEkAYYg2GDd3WaKJjEINXulW1qvMD7dkTCjsrlJNefasm8I9BiYtgng8BPeC +PRQhBTARv34BFyKpFn1X0/lXmLAdRu3dhZ0r1sJlYzsqnKJYQFD8Bpsre2+6vFv aCPMfikeU6JRbvbnYNeXcfkOKwrl4SY+T1Plfs3ZEcs2UGq1DzSdCatbjJBeP2h1 YEAyKwVRM66sQWnnTmC2S0tkZSPoKdeP -----END CERTIFICATE-----Generated at Sun Aug 10 18:31:46 2025 by rpki-client