$ rpki-client -vvf rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft File: 2xy4SFQGnkPKG3JdQuprqbU5gVs.mft (raw, json) Hash identifier: /rK3qGAKqjO5h5Fo8/XIfztXoRXsqqwkde88CMB/0A4= Subject key identifier: 04:95:4E:50:A7:D4:12:EE:8F:F2:6B:2C:CF:BA:BC:9B:0B:CE:5C:DA Authority key identifier: DB:1C:B8:48:54:06:9E:43:CA:1B:72:5D:42:EA:6B:A9:B5:39:81:5B Certificate issuer: /CN=A918F88D/serialNumber=DB1CB84854069E43CA1B725D42EA6BA9B539815B Certificate serial: 0CB9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xy4SFQGnkPKG3JdQuprqbU5gVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft Manifest number: 0CA4 Signing time: Sun 10 Aug 2025 18:16:39 +0000 Manifest this update: Sun 10 Aug 2025 18:16:38 +0000 Manifest next update: Sun 17 Aug 2025 18:16:38 +0000 Files and hashes: 1: 2xy4SFQGnkPKG3JdQuprqbU5gVs.crl (hash: Wm0r1Arv6y9U91l6yoigAqX1BZdrIUT7+hXhSg6OPRs=) 2: 4BA5EC4293D911EE86212B1DC4F9AE02.roa (hash: ntAPfFwqMwW/14nODr1Kka3t3flJTGPxOyia+rG6hsc=) 3: 18F7410671F311ECBA5DA710C4F9AE02.roa (hash: tIg3kB0f/wtqp+Q6ik7/n7dKrrQEFLMxhaaJzHV4nr8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.crl rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xy4SFQGnkPKG3JdQuprqbU5gVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3257 (0xcb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F88D, serialNumber=DB1CB84854069E43CA1B725D42EA6BA9B539815B Validity Not Before: Aug 10 18:16:38 2025 GMT Not After : Aug 17 18:16:38 2025 GMT Subject: CN=6898e207-e71e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:fa:b7:04:8f:37:e1:44:83:97:7f:d2:f9:a5: c7:41:b2:e6:a1:52:ad:25:fa:ce:e3:78:2c:6d:6b: bf:b0:e4:c1:4f:99:39:3f:de:aa:3c:67:cd:f8:8c: db:78:dc:10:ba:93:42:6c:2f:3d:4e:a8:32:26:58: 8c:d2:9c:0a:c3:27:67:a6:de:ca:d2:f9:ff:d3:7e: 61:a3:41:96:2e:1b:85:e7:1a:b0:76:ac:54:14:7a: 6f:bc:f8:14:04:9a:8d:72:33:bc:03:0a:7c:ec:70: a1:67:16:f8:a7:e6:b5:ab:f5:0c:f1:11:45:62:a2: eb:43:73:90:6b:31:82:dd:0e:02:57:33:92:66:c5: e9:44:d8:31:b8:3f:45:23:0c:a2:c1:05:f2:2f:b9: 0f:ff:5b:9a:66:6b:61:bf:43:42:d6:4a:72:55:80: 21:17:b3:de:46:32:ff:7a:b2:59:f9:74:69:20:eb: 02:1f:25:bd:f9:50:de:9c:2b:d2:f0:3f:3c:a7:e3: c9:5f:a7:f1:67:1d:2a:0e:28:d2:ae:78:78:58:cf: 8e:9f:23:7c:20:12:f4:cd:eb:55:0f:70:92:ea:ca: 03:4f:07:02:8a:7c:27:71:66:71:38:b1:ed:0e:b6: 07:d8:de:51:03:f5:3f:56:5c:59:cd:cb:b8:fe:33: 24:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:95:4E:50:A7:D4:12:EE:8F:F2:6B:2C:CF:BA:BC:9B:0B:CE:5C:DA X509v3 Authority Key Identifier: keyid:DB:1C:B8:48:54:06:9E:43:CA:1B:72:5D:42:EA:6B:A9:B5:39:81:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xy4SFQGnkPKG3JdQuprqbU5gVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:14:19:e2:0b:04:cf:42:00:90:ae:1b:c2:eb:cf:99:44:de: 70:df:57:78:69:f4:96:22:99:da:48:e9:34:97:3f:bb:cd:03: 51:5b:fe:2d:9f:3d:85:66:c6:9b:ea:53:05:4d:d9:fe:43:b7: 73:26:14:2a:5c:cf:d5:46:ff:bd:89:5f:58:9c:e3:a2:b5:31: 49:e8:47:a3:d4:26:3e:89:09:40:98:6a:4b:a5:ef:cd:28:df: 93:be:4e:fe:57:e3:0a:d7:e6:c9:63:c2:95:25:c5:c5:5e:d9: 35:05:20:ba:86:4c:87:85:20:b0:c6:31:3f:8c:60:f2:d4:38: 07:d8:4e:d9:41:99:24:e1:51:77:03:41:39:d0:96:d3:82:b9: 56:31:af:bc:84:cc:d1:47:f7:44:ec:77:ce:7c:77:08:66:e3: dd:95:15:5c:3c:e7:dc:56:33:dd:8d:73:5b:17:40:b8:bf:57: 0a:30:13:b3:b0:90:d1:92:d5:ff:d5:69:78:61:cf:2b:48:85: cf:28:27:5d:9f:ef:85:b5:18:72:bc:b4:11:f4:63:56:06:e3: 1e:ca:6e:27:d1:7d:e3:20:d0:f8:64:9e:6d:f0:a9:73:e9:94: 2e:88:e0:76:f5:78:98:4a:79:9d:61:74:31:1c:a5:4a:3b:30: 0d:33:15:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY4OEQxMTAvBgNVBAUTKERCMUNCODQ4NTQwNjlFNDNDQTFCNzI1RDQyRUE2QkE5 QjUzOTgxNUIwHhcNMjUwODEwMTgxNjM4WhcNMjUwODE3MTgxNjM4WjAYMRYwFAYD VQQDEw02ODk4ZTIwNy1lNzFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwvq3BI834USDl3/S+aXHQbLmoVKtJfrO43gsbWu/sOTBT5k5P96qPGfN+Izb eNwQupNCbC89TqgyJliM0pwKwydnpt7K0vn/035ho0GWLhuF5xqwdqxUFHpvvPgU BJqNcjO8Awp87HChZxb4p+a1q/UM8RFFYqLrQ3OQazGC3Q4CVzOSZsXpRNgxuD9F IwyiwQXyL7kP/1uaZmthv0NC1kpyVYAhF7PeRjL/erJZ+XRpIOsCHyW9+VDenCvS 8D88p+PJX6fxZx0qDijSrnh4WM+OnyN8IBL0zetVD3CS6soDTwcCinwncWZxOLHt DrYH2N5RA/U/VlxZzcu4/jMk+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFASVTlCn 1BLuj/JrLM+6vJsLzlzaMB8GA1UdIwQYMBaAFNscuEhUBp5DyhtyXULqa6m1OYFb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Rjg4RC8yQTE0QkUwODAw NUExMUVBOEZEQ0ExMzBDNEY5QUUwMi8yeHk0U0ZRR25rUEtHM0pkUXVwcnFiVTVn VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ4eTRTRlFHbmtQS0czSmRRdXBycWJVNWdWcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Rjg4RC8yQTE0QkUwODAwNUExMUVBOEZEQ0ExMzBDNEY5QUUwMi8yeHk0U0ZRR25r UEtHM0pkUXVwcnFiVTVnVnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQFBniCwTPQgCQrhvC68+ZRN5w31d4afSWIpnaSOk0lz+7zQNRW/4t nz2FZsab6lMFTdn+Q7dzJhQqXM/VRv+9iV9YnOOitTFJ6Eej1CY+iQlAmGpLpe/N KN+Tvk7+V+MK1+bJY8KVJcXFXtk1BSC6hkyHhSCwxjE/jGDy1DgH2E7ZQZkk4VF3 A0E50JbTgrlWMa+8hMzRR/dE7HfOfHcIZuPdlRVcPOfcVjPdjXNbF0C4v1cKMBOz sJDRktX/1Wl4Yc8rSIXPKCddn++FtRhyvLQR9GNWBuMeym4n0X3jIND4ZJ5t8Klz 6ZQuiOB29XiYSnmdYXQxHKVKOzANMxWB -----END CERTIFICATE-----Generated at Mon Aug 11 01:54:07 2025 by rpki-client