$ rpki-client -vvf rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft File: 2h2yzTH0VPaVYdhmXck--BLzl7A.mft (raw, json) Hash identifier: cwMc6mrbgbibxdFucSglLVBsG098KxHq09+aza4VbYc= Subject key identifier: 15:7E:8C:B4:29:50:6A:B9:A4:F6:9A:25:D8:6E:21:2C:AB:6C:AE:C6 Authority key identifier: DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 Certificate issuer: /CN=A919A7CA/serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Certificate serial: 0155 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft Manifest number: 014B Signing time: Sat 09 Aug 2025 04:39:50 +0000 Manifest this update: Sat 09 Aug 2025 04:39:49 +0000 Manifest next update: Sat 16 Aug 2025 04:39:49 +0000 Files and hashes: 1: 2h2yzTH0VPaVYdhmXck--BLzl7A.crl (hash: 2GelEi1SKs6S9kSWa1e78byFSRilLeYuNxlo9GNm8Fw=) 2: 730B201A81E911EEAEFE7735C4F9AE02.roa (hash: s0CFqQaJE4zfLQbz4CeHwWhJkg8L6CDsaxGgDdisTeI=) 3: 4317395081E611EE9EFE132BC4F9AE02.roa (hash: tQp/nzqfCovKInVuREO99dY4qu3efR3x/X9HpDvqlY0=) 4: E71AB92A7F7D11EE8C183162C4F9AE02.roa (hash: Dsh7pIT1SQfv6ivkNmsm2ZCHRytBDFAmEgjeRNzC7do=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 341 (0x155) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A7CA, serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Validity Not Before: Aug 9 04:39:49 2025 GMT Not After : Aug 16 04:39:49 2025 GMT Subject: CN=6896d116-5c99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:44:3d:de:0c:a6:f7:2e:79:a6:60:b1:ae:b2: 15:b7:f8:f5:ba:8d:ae:0c:74:b5:ae:a6:e5:54:08: a6:a6:4d:80:ea:6f:3e:6f:ae:fb:1e:24:94:dc:ac: d7:09:d0:ae:45:36:26:ff:31:8e:3e:0e:71:9e:23: b0:3a:82:a2:f3:b5:54:d7:ee:67:7c:1e:04:98:d0: fa:5e:b5:e5:83:9f:1e:29:57:97:93:f0:3e:18:04: 12:65:45:e1:63:cb:40:52:93:c0:01:40:7c:99:88: c1:45:27:cf:00:07:a3:1b:21:0a:b5:4c:b9:25:6b: d4:ab:6c:63:37:b3:bb:45:a5:32:e1:11:30:e9:b4: a4:8b:2a:e1:21:24:db:39:76:d5:1b:ba:cd:b2:fa: 0b:7a:be:6f:8d:1c:9a:de:23:2e:d9:8e:1b:89:0b: 49:7b:ba:b3:6d:d2:b8:16:b2:97:a0:15:78:cd:ca: 7d:64:fa:0b:96:44:33:c7:a2:64:20:1a:48:4a:10: 83:a4:f9:80:55:37:df:7a:fe:8a:7d:58:98:d4:45: 00:e8:bd:29:a4:b8:e9:d0:05:38:94:ed:0a:53:3e: 99:39:de:ae:20:ac:ed:ee:6f:28:90:3a:07:4e:ec: e1:e4:c2:d7:bf:2e:71:b2:ef:52:c3:36:5c:41:0f: 56:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:7E:8C:B4:29:50:6A:B9:A4:F6:9A:25:D8:6E:21:2C:AB:6C:AE:C6 X509v3 Authority Key Identifier: keyid:DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:82:92:bf:57:d1:3f:e7:2f:37:3c:66:7c:ca:20:fa:d6:5b: 0c:3f:64:34:32:0d:3c:19:b6:31:0a:40:b3:a5:c7:38:ca:e3: 20:75:2e:42:f8:d3:c2:32:73:e3:18:11:10:1c:88:1a:6b:b1: 2b:c7:12:6b:35:75:60:79:3d:32:2b:8f:b1:53:82:db:60:e5: 21:72:da:96:eb:71:a7:e8:59:a9:b1:60:16:f2:95:4e:6a:86: 77:13:d7:81:f8:c4:ee:69:6c:a0:c4:87:4c:f5:17:76:8b:3a: 0b:8d:5f:a1:12:3e:10:21:69:4b:33:c2:17:d6:eb:b2:69:c7: 2d:58:8f:b7:a1:b6:1c:ac:73:b1:89:36:4e:e8:05:d6:79:22: d5:23:cd:c2:f3:8a:a1:a8:41:0e:d8:55:18:88:8f:54:a5:90: a0:e1:e1:ee:2a:6c:06:45:4d:4e:c5:ac:1d:35:ad:e2:4e:52: 50:92:35:9e:4e:f7:73:40:8f:38:73:9a:b2:4e:5f:97:7d:9b: 3f:f2:e6:a5:19:62:0c:a8:a9:ac:4d:c6:e0:d4:7a:97:a2:0a: 1c:bb:8d:fd:46:db:71:81:ca:1b:82:63:27:08:c8:e9:ba:b3: d0:e5:91:78:12:2b:61:c7:88:b6:b9:f4:48:59:84:23:cb:2a: 44:30:9e:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE3Q0ExMTAvBgNVBAUTKERBMURCMkNEMzFGNDU0RjY5NTYxRDg2NjVEQzkzRUY4 MTJGMzk3QjAwHhcNMjUwODA5MDQzOTQ5WhcNMjUwODE2MDQzOTQ5WjAYMRYwFAYD VQQDEw02ODk2ZDExNi01Yzk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1UQ93gym9y55pmCxrrIVt/j1uo2uDHS1rqblVAimpk2A6m8+b677HiSU3KzX CdCuRTYm/zGOPg5xniOwOoKi87VU1+5nfB4EmND6XrXlg58eKVeXk/A+GAQSZUXh Y8tAUpPAAUB8mYjBRSfPAAejGyEKtUy5JWvUq2xjN7O7RaUy4REw6bSkiyrhISTb OXbVG7rNsvoLer5vjRya3iMu2Y4biQtJe7qzbdK4FrKXoBV4zcp9ZPoLlkQzx6Jk IBpIShCDpPmAVTffev6KfViY1EUA6L0ppLjp0AU4lO0KUz6ZOd6uIKzt7m8okDoH Tuzh5MLXvy5xsu9SwzZcQQ9WuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBV+jLQp UGq5pPaaJdhuISyrbK7GMB8GA1UdIwQYMBaAFNodss0x9FT2lWHYZl3JPvgS85ew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTdDQS80Q0Y3RjE1ODdF QjcxMUVFOTYyM0U5MUFDNEY5QUUwMi8yaDJ5elRIMFZQYVZZZGhtWGNrLS1CTHps N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJoMnl6VEgwVlBhVllkaG1YY2stLUJMemw3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTdDQS80Q0Y3RjE1ODdFQjcxMUVFOTYyM0U5MUFDNEY5QUUwMi8yaDJ5elRIMFZQ YVZZZGhtWGNrLS1CTHpsN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXgpK/V9E/5y83PGZ8yiD61lsMP2Q0Mg08GbYxCkCzpcc4yuMgdS5C +NPCMnPjGBEQHIgaa7ErxxJrNXVgeT0yK4+xU4LbYOUhctqW63Gn6FmpsWAW8pVO aoZ3E9eB+MTuaWygxIdM9Rd2izoLjV+hEj4QIWlLM8IX1uuyacctWI+3obYcrHOx iTZO6AXWeSLVI83C84qhqEEO2FUYiI9UpZCg4eHuKmwGRU1OxawdNa3iTlJQkjWe TvdzQI84c5qyTl+XfZs/8ualGWIMqKmsTcbg1HqXogocu439RttxgcobgmMnCMjp urPQ5ZF4Eithx4i2ufRIWYQjyypEMJ6m -----END CERTIFICATE-----Generated at Mon Aug 11 01:53:40 2025 by rpki-client