$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft File: 2QaTkaPngEpuvd-dQfLeTZG9UbM.mft (raw, json) Hash identifier: anY8mdKYJFkg2g5QbNxQtJ8lG7MnHH4+hfTv4SO6NrI= Subject key identifier: A8:A0:C0:40:ED:ED:7C:8C:A0:94:0E:BD:CE:53:33:6D:A2:6D:67:0B Authority key identifier: D9:06:93:91:A3:E7:80:4A:6E:BD:DF:9D:41:F2:DE:4D:91:BD:51:B3 Certificate issuer: /CN=A9125C22/serialNumber=D9069391A3E7804A6EBDDF9D41F2DE4D91BD51B3 Certificate serial: 0690 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QaTkaPngEpuvd-dQfLeTZG9UbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft Manifest number: 0686 Signing time: Fri 18 Jul 2025 22:36:54 +0000 Manifest this update: Fri 18 Jul 2025 22:36:54 +0000 Manifest next update: Fri 25 Jul 2025 22:36:54 +0000 Files and hashes: 1: 2QaTkaPngEpuvd-dQfLeTZG9UbM.crl (hash: MTHhtwN6vvlwlFlKuIC5tlNTgz0x4L4IIbNdcqQquDQ=) 2: 202A51EA52D611EFA0333E23C4F9AE02.roa (hash: jy45pLpGUEHdAvcc7aV1J1N0BlCts0GUmsU/8qKGZrI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.crl rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QaTkaPngEpuvd-dQfLeTZG9UbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 22:36:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1680 (0x690) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C22, serialNumber=D9069391A3E7804A6EBDDF9D41F2DE4D91BD51B3 Validity Not Before: Jul 18 22:36:54 2025 GMT Not After : Jul 25 22:36:54 2025 GMT Subject: CN=687acc86-6408 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f6:4d:86:1f:82:e6:00:91:c0:30:c1:99:97: 9f:b5:0a:d7:d4:ea:02:4f:ca:03:fa:b4:8f:7f:d0: b0:c0:e7:32:e0:54:d8:43:96:22:8b:42:0d:cf:89: c0:cd:c5:96:71:0e:02:cb:8c:3f:36:07:2b:3d:73: 61:ae:68:fb:be:0e:60:8f:72:59:23:77:29:57:9e: 78:ba:fa:12:0e:c0:9c:cd:b8:80:ce:ed:08:59:92: 6c:c0:d7:f1:c0:12:59:20:27:90:4e:73:3b:6c:b0: 0e:be:00:22:63:df:26:cb:51:be:1b:fa:b4:d0:22: ef:4f:53:4b:ab:31:d8:b6:f6:8c:56:df:8b:21:e8: 91:c1:fe:34:fa:78:f2:6c:1f:59:7a:8a:e8:8f:4d: de:7f:76:e6:94:04:e6:5d:ff:35:38:67:9f:bf:54: 00:43:b6:dd:d7:81:03:ba:31:0d:68:84:bf:e2:c7: 7f:c4:87:dd:ae:28:89:23:10:df:d4:be:5f:a3:ba: 49:98:81:86:a5:66:ff:d1:63:fb:e4:37:8f:d8:20: ba:b0:bb:01:b1:5b:86:1f:d9:4d:3c:8b:c2:cb:c9: f4:c9:59:41:e7:b1:e7:b3:1d:6b:fd:22:7a:75:82: 8c:9b:76:79:ff:6e:2b:95:ed:45:8d:5f:07:54:45: 9e:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:A0:C0:40:ED:ED:7C:8C:A0:94:0E:BD:CE:53:33:6D:A2:6D:67:0B X509v3 Authority Key Identifier: keyid:D9:06:93:91:A3:E7:80:4A:6E:BD:DF:9D:41:F2:DE:4D:91:BD:51:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QaTkaPngEpuvd-dQfLeTZG9UbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:61:da:86:0c:52:15:82:df:70:3f:34:cb:9f:37:de:a6:94: 2f:16:43:6a:09:8e:af:25:f6:4a:1e:34:a8:a0:a3:cc:ce:cc: 5f:0a:b3:6d:34:83:e1:12:43:09:dd:54:84:9a:c7:12:30:1b: 3a:2f:a4:ae:da:d9:0f:0a:37:f5:0a:56:55:d1:60:1c:5b:da: 85:df:8e:45:95:e4:6d:0a:23:36:a0:d8:bd:90:22:52:34:2b: 5d:22:26:91:a6:c4:81:53:76:56:91:2d:01:77:e1:37:32:0b: 04:57:3b:20:c9:45:3d:80:76:0f:71:9b:63:63:35:5d:17:f7: 8a:0d:42:76:17:0b:bd:ea:4f:6d:e9:c4:20:00:74:17:f2:6c: 63:c9:e6:32:99:ba:f5:f4:ec:e0:21:31:79:9b:20:79:cf:af: 69:53:34:ff:89:66:95:33:ba:54:10:01:fc:a8:8c:0a:63:4a: 35:49:fd:03:c2:8e:ef:76:4f:24:2d:95:9e:1d:c5:4b:26:d4: e9:4f:c4:aa:73:8f:ad:af:4a:8b:ae:38:cd:b8:94:b6:f8:af: dc:61:72:02:22:c2:b7:99:c4:96:44:38:d6:78:33:4b:df:c3: a1:c5:49:43:c7:72:2e:a8:c8:15:d3:96:e8:c0:43:3c:4a:3e: c0:c2:35:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMjIxMTAvBgNVBAUTKEQ5MDY5MzkxQTNFNzgwNEE2RUJEREY5RDQxRjJERTRE OTFCRDUxQjMwHhcNMjUwNzE4MjIzNjU0WhcNMjUwNzI1MjIzNjU0WjAYMRYwFAYD VQQDEw02ODdhY2M4Ni02NDA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuvZNhh+C5gCRwDDBmZeftQrX1OoCT8oD+rSPf9CwwOcy4FTYQ5Yii0INz4nA zcWWcQ4Cy4w/NgcrPXNhrmj7vg5gj3JZI3cpV554uvoSDsCczbiAzu0IWZJswNfx wBJZICeQTnM7bLAOvgAiY98my1G+G/q00CLvT1NLqzHYtvaMVt+LIeiRwf40+njy bB9Zeoroj03ef3bmlATmXf81OGefv1QAQ7bd14EDujENaIS/4sd/xIfdriiJIxDf 1L5fo7pJmIGGpWb/0WP75DeP2CC6sLsBsVuGH9lNPIvCy8n0yVlB57Hnsx1r/SJ6 dYKMm3Z5/24rle1FjV8HVEWeRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKigwEDt 7XyMoJQOvc5TM22ibWcLMB8GA1UdIwQYMBaAFNkGk5Gj54BKbr3fnUHy3k2RvVGz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMyMi8wNDU2OTVCODdG QUUxMUVCOTc3QjUzMzVDNEY5QUUwMi8yUWFUa2FQbmdFcHV2ZC1kUWZMZVRaRzlV Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRYVRrYVBuZ0VwdXZkLWRRZkxlVFpHOVViTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMyMi8wNDU2OTVCODdGQUUxMUVCOTc3QjUzMzVDNEY5QUUwMi8yUWFUa2FQbmdF cHV2ZC1kUWZMZVRaRzlVYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKYdqGDFIVgt9wPzTLnzfeppQvFkNqCY6vJfZKHjSooKPMzsxfCrNt NIPhEkMJ3VSEmscSMBs6L6Su2tkPCjf1ClZV0WAcW9qF345FleRtCiM2oNi9kCJS NCtdIiaRpsSBU3ZWkS0Bd+E3MgsEVzsgyUU9gHYPcZtjYzVdF/eKDUJ2Fwu96k9t 6cQgAHQX8mxjyeYymbr19OzgITF5myB5z69pUzT/iWaVM7pUEAH8qIwKY0o1Sf0D wo7vdk8kLZWeHcVLJtTpT8Sqc4+tr0qLrjjNuJS2+K/cYXICIsK3mcSWRDjWeDNL 38OhxUlDx3IuqMgV05bowEM8Sj7AwjUX -----END CERTIFICATE-----Generated at Sun Jul 20 18:56:36 2025 by rpki-client