$ rpki-client -vvf rpki.apnic.net/member_repository/A9199DE2/A3A52106AED011EBBF3FD763C4F9AE02/2CWolzNYl8B-dpODimvyAnZYDwM.mft File: 2CWolzNYl8B-dpODimvyAnZYDwM.mft (raw, json) Hash identifier: ZdM2B0AQpzEAEyXWsUkpzv/lwibQX6DSSlb/yZexi+c= Subject key identifier: 9D:32:6D:86:3C:0D:E6:03:54:63:A1:1A:8E:B5:CB:CC:CD:BD:FA:1B Authority key identifier: D8:25:A8:97:33:58:97:C0:7E:76:93:83:8A:6B:F2:02:76:58:0F:03 Certificate issuer: /CN=A9199DE2/serialNumber=D825A897335897C07E7693838A6BF20276580F03 Certificate serial: 0628 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CWolzNYl8B-dpODimvyAnZYDwM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199DE2/A3A52106AED011EBBF3FD763C4F9AE02/2CWolzNYl8B-dpODimvyAnZYDwM.mft Manifest number: 061E Signing time: Fri 08 Aug 2025 23:14:24 +0000 Manifest this update: Fri 08 Aug 2025 23:14:24 +0000 Manifest next update: Fri 15 Aug 2025 23:14:24 +0000 Files and hashes: 1: 2CWolzNYl8B-dpODimvyAnZYDwM.crl (hash: qE+p93fPFtjfkaRo9QyvDFpSe3OQ3eEggOAArsCFdgQ=) 2: E6ECE6E6104C11EC9074E586C4F9AE02.roa (hash: gAuID1Fe/PtlP9DGBoTnnUFK6n2WVQEEJLwbWlhbFaE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199DE2/A3A52106AED011EBBF3FD763C4F9AE02/2CWolzNYl8B-dpODimvyAnZYDwM.crl rsync://rpki.apnic.net/member_repository/A9199DE2/A3A52106AED011EBBF3FD763C4F9AE02/2CWolzNYl8B-dpODimvyAnZYDwM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CWolzNYl8B-dpODimvyAnZYDwM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1576 (0x628) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199DE2, serialNumber=D825A897335897C07E7693838A6BF20276580F03 Validity Not Before: Aug 8 23:14:24 2025 GMT Not After : Aug 15 23:14:24 2025 GMT Subject: CN=689684d0-ed64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:a5:a7:1f:f3:06:6c:e9:9d:4a:69:10:c6:7e: d0:60:b0:32:6f:48:62:2f:77:00:36:a1:f1:80:7a: 53:10:ed:4f:88:a9:87:2f:85:d2:5f:aa:20:e9:3c: aa:eb:1e:ec:4e:04:cd:5e:cf:d4:eb:e7:78:19:bd: 52:ff:15:61:b9:81:53:a5:7c:37:73:fd:a3:b9:17: 96:32:14:f5:b5:e7:8e:76:57:71:71:46:3e:3d:76: 80:c0:9a:4b:31:de:4b:0b:bd:64:a4:12:d4:ac:d3: 61:80:51:19:d5:2e:94:16:6b:18:8e:a8:df:37:26: 2a:0f:59:c3:73:b1:7d:a0:12:11:61:1d:dc:4e:16: f5:57:d7:20:7d:94:fb:a6:54:0b:18:28:6a:7b:93: 09:cc:1c:77:7f:d0:69:0b:c7:eb:c0:bc:b0:89:f6: 5b:7a:f2:7a:cb:da:52:4f:d6:91:66:0c:e5:cd:21: ff:af:4e:e0:59:68:a7:d3:97:23:86:bb:10:97:ab: 27:06:1c:fd:76:d9:3d:fa:ee:e4:83:3b:eb:d2:5d: 29:dd:55:60:3e:9f:34:00:c7:07:dc:5b:00:48:30: fc:a7:84:bd:97:5b:5b:73:a2:b9:f8:34:57:a8:57: 40:04:0a:cc:b1:82:f6:c1:e2:d1:10:3b:75:e1:6d: 42:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:32:6D:86:3C:0D:E6:03:54:63:A1:1A:8E:B5:CB:CC:CD:BD:FA:1B X509v3 Authority Key Identifier: keyid:D8:25:A8:97:33:58:97:C0:7E:76:93:83:8A:6B:F2:02:76:58:0F:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199DE2/A3A52106AED011EBBF3FD763C4F9AE02/2CWolzNYl8B-dpODimvyAnZYDwM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CWolzNYl8B-dpODimvyAnZYDwM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199DE2/A3A52106AED011EBBF3FD763C4F9AE02/2CWolzNYl8B-dpODimvyAnZYDwM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:9a:88:b2:99:13:79:42:88:8f:f7:5f:ef:19:6c:e6:92:14: bd:52:a1:9c:6a:8f:67:13:54:d4:da:27:de:76:41:fe:aa:93: b5:84:9a:72:0f:e0:f0:92:8c:64:2b:59:81:99:db:0c:81:14: 60:6a:66:1e:4d:d0:00:c1:f1:ab:06:c0:97:b6:00:b0:cc:cb: 77:f7:b5:93:a9:54:b4:38:84:37:63:a6:20:79:f4:27:30:25: 9f:d7:bf:a2:b2:5d:48:38:d5:b8:ab:a7:85:38:1e:d1:a0:35: b3:c4:ff:49:46:4b:7c:35:59:53:8c:58:74:8f:7d:c2:05:81: c2:db:22:74:5c:79:3d:48:e1:c6:7a:9e:13:cc:4c:90:87:51: f3:70:5e:af:01:92:14:af:e5:ca:ee:45:30:14:67:36:c3:9b: 76:b8:48:a3:e0:a3:f6:8e:e7:1c:db:67:8f:40:40:2b:65:09: 05:8a:8f:a0:77:3e:8c:3c:f4:ba:a4:85:27:3e:24:b0:70:aa: 8f:86:13:5f:79:60:d3:49:ab:d8:5a:fe:81:d5:54:49:90:d7: 8c:7b:96:04:9c:f0:ba:a1:c6:2a:5c:cb:58:c1:09:6d:6d:f6: aa:c8:ce:72:bc:a1:de:b7:1c:2f:9f:ae:5d:c4:b1:8d:0c:f6: 88:dc:b7:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlERTIxMTAvBgNVBAUTKEQ4MjVBODk3MzM1ODk3QzA3RTc2OTM4MzhBNkJGMjAy NzY1ODBGMDMwHhcNMjUwODA4MjMxNDI0WhcNMjUwODE1MjMxNDI0WjAYMRYwFAYD VQQDEw02ODk2ODRkMC1lZDY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3KWnH/MGbOmdSmkQxn7QYLAyb0hiL3cANqHxgHpTEO1PiKmHL4XSX6og6Tyq 6x7sTgTNXs/U6+d4Gb1S/xVhuYFTpXw3c/2juReWMhT1teeOdldxcUY+PXaAwJpL Md5LC71kpBLUrNNhgFEZ1S6UFmsYjqjfNyYqD1nDc7F9oBIRYR3cThb1V9cgfZT7 plQLGChqe5MJzBx3f9BpC8frwLywifZbevJ6y9pST9aRZgzlzSH/r07gWWin05cj hrsQl6snBhz9dtk9+u7kgzvr0l0p3VVgPp80AMcH3FsASDD8p4S9l1tbc6K5+DRX qFdABArMsYL2weLREDt14W1CZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ0ybYY8 DeYDVGOhGo61y8zNvfobMB8GA1UdIwQYMBaAFNglqJczWJfAfnaTg4pr8gJ2WA8D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OURFMi9BM0E1MjEwNkFF RDAxMUVCQkYzRkQ3NjNDNEY5QUUwMi8yQ1dvbHpOWWw4Qi1kcE9EaW12eUFuWllE d00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJDV29sek5ZbDhCLWRwT0RpbXZ5QW5aWUR3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OURFMi9BM0E1MjEwNkFFRDAxMUVCQkYzRkQ3NjNDNEY5QUUwMi8yQ1dvbHpOWWw4 Qi1kcE9EaW12eUFuWllEd00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxmoiymRN5QoiP91/vGWzmkhS9UqGcao9nE1TU2ifedkH+qpO1hJpy D+DwkoxkK1mBmdsMgRRgamYeTdAAwfGrBsCXtgCwzMt397WTqVS0OIQ3Y6YgefQn MCWf17+isl1IONW4q6eFOB7RoDWzxP9JRkt8NVlTjFh0j33CBYHC2yJ0XHk9SOHG ep4TzEyQh1HzcF6vAZIUr+XK7kUwFGc2w5t2uEij4KP2jucc22ePQEArZQkFio+g dz6MPPS6pIUnPiSwcKqPhhNfeWDTSavYWv6B1VRJkNeMe5YEnPC6ocYqXMtYwQlt bfaqyM5yvKHetxwvn65dxLGNDPaI3Lf0 -----END CERTIFICATE-----Generated at Sun Aug 10 03:50:19 2025 by rpki-client