$ rpki-client -vvf rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft File: 2QhrDfk0LcKwkbrobLd5_GJZvXs.mft (raw, json) Hash identifier: c5uM5vQUse9u0uYXLY6gFxFs1+cAxND55RzF7o9ZT74= Subject key identifier: 5C:2A:8A:F5:46:CD:A2:A4:57:26:24:4F:CB:C8:65:C2:00:0D:DD:B7 Authority key identifier: D9:08:6B:0D:F9:34:2D:C2:B0:91:BA:E8:6C:B7:79:FC:62:59:BD:7B Certificate issuer: /CN=A914F2EC/serialNumber=D9086B0DF9342DC2B091BAE86CB779FC6259BD7B Certificate serial: 34AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft Manifest number: 34A6 Signing time: Fri 18 Jul 2025 15:01:08 +0000 Manifest this update: Fri 18 Jul 2025 15:01:07 +0000 Manifest next update: Fri 25 Jul 2025 15:01:07 +0000 Files and hashes: 1: 2QhrDfk0LcKwkbrobLd5_GJZvXs.crl (hash: U1+v/oZ3+isRBWPt0uD18Gf45AcRO2mDKS2pLESKhBQ=) 2: 588BD7269A1211E8B97A623AC4F9AE02.roa (hash: KKbAooYir9kiM+kQeIhamjhStk+gbSQk/A73xTUucXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.crl rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 15:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13487 (0x34af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F2EC, serialNumber=D9086B0DF9342DC2B091BAE86CB779FC6259BD7B Validity Not Before: Jul 18 15:01:07 2025 GMT Not After : Jul 25 15:01:07 2025 GMT Subject: CN=687a61b4-627a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:04:d6:51:56:89:da:5c:2d:64:db:0e:5e:49: 79:f6:55:03:01:a7:66:6c:9c:f4:56:c3:44:09:77: e0:f4:2b:a0:b9:b3:de:10:cd:de:55:11:25:e4:b3: fc:47:9c:d1:af:f2:4b:b3:6d:59:b0:a7:a9:71:00: 29:e0:f9:22:7d:13:00:d2:12:77:ca:3f:4a:fe:57: 1f:e6:19:52:7b:d8:1a:28:a6:22:0d:31:14:6e:35: 70:36:f0:ed:f3:7d:4f:dc:26:2c:36:40:c0:65:1c: 12:66:81:33:1b:ad:81:75:d8:15:4b:93:bd:ce:0a: ce:32:53:ac:ad:ce:17:65:57:63:12:5f:3e:a5:07: 5b:ab:e4:0a:e1:d5:8a:fd:b6:e0:4a:5d:13:4e:07: 05:29:f6:bd:cb:c8:15:11:7f:c6:28:15:8f:d8:42: e9:bf:05:e6:11:0f:55:09:5b:d8:ae:35:45:ef:23: 12:f5:16:0c:78:7f:bf:38:19:a9:db:56:d2:0b:92: a0:c4:b3:0e:07:25:d5:69:fe:f1:55:46:40:9a:3a: 8e:5d:4f:c3:c1:fa:36:14:30:66:b0:67:3f:f2:61: d5:b9:9e:c7:a5:2d:64:40:a0:c5:f8:fb:6e:67:2e: 97:dc:e9:11:be:42:8e:67:63:89:f2:a5:8b:1e:cf: b6:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:2A:8A:F5:46:CD:A2:A4:57:26:24:4F:CB:C8:65:C2:00:0D:DD:B7 X509v3 Authority Key Identifier: keyid:D9:08:6B:0D:F9:34:2D:C2:B0:91:BA:E8:6C:B7:79:FC:62:59:BD:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:99:a6:78:84:e1:61:6e:ee:5e:67:af:f9:17:b3:97:2f:a6: a3:33:fc:6d:95:26:c3:e0:b5:81:b2:67:da:a9:63:9e:90:44: 8f:98:5b:ed:da:1c:27:5a:d2:2d:fd:ec:87:20:9b:19:15:c0: 3a:3c:3f:bc:f2:b3:a6:4e:db:88:26:08:46:7f:3d:c6:aa:69: 27:7f:b1:3a:5f:8a:c7:a1:12:8c:71:09:54:55:a0:f9:9f:8d: ef:5d:80:4b:e3:b9:0d:65:9b:d4:60:65:29:c7:c2:73:3d:be: 75:4c:b6:88:f2:be:18:63:8f:a9:1b:0d:93:33:c0:ba:00:80: d5:f1:4d:67:99:3a:18:21:6e:6c:a6:20:10:de:cd:99:ba:ee: b9:77:5b:2e:17:80:b2:59:79:1b:94:ab:71:ed:ad:08:3c:90: 86:10:8a:a6:12:d7:c5:62:2a:45:dc:df:80:c5:12:ce:09:99: cf:7e:2e:41:72:51:0a:b6:15:fc:20:19:be:f3:a1:d2:84:48: 37:39:b4:c5:dc:d4:53:42:d4:c8:2b:0f:d2:4c:9e:07:1d:f5: 7c:19:a1:3d:4c:2c:54:74:2a:35:dc:6c:66:9e:cf:73:78:ca: b8:59:13:50:7e:d6:54:ec:10:9f:6f:5c:8e:50:aa:c4:a2:0f: 59:a8:8f:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYyRUMxMTAvBgNVBAUTKEQ5MDg2QjBERjkzNDJEQzJCMDkxQkFFODZDQjc3OUZD NjI1OUJEN0IwHhcNMjUwNzE4MTUwMTA3WhcNMjUwNzI1MTUwMTA3WjAYMRYwFAYD VQQDEw02ODdhNjFiNC02MjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnATWUVaJ2lwtZNsOXkl59lUDAadmbJz0VsNECXfg9CugubPeEM3eVREl5LP8 R5zRr/JLs21ZsKepcQAp4PkifRMA0hJ3yj9K/lcf5hlSe9gaKKYiDTEUbjVwNvDt 831P3CYsNkDAZRwSZoEzG62BddgVS5O9zgrOMlOsrc4XZVdjEl8+pQdbq+QK4dWK /bbgSl0TTgcFKfa9y8gVEX/GKBWP2ELpvwXmEQ9VCVvYrjVF7yMS9RYMeH+/OBmp 21bSC5KgxLMOByXVaf7xVUZAmjqOXU/Dwfo2FDBmsGc/8mHVuZ7HpS1kQKDF+Ptu Zy6X3OkRvkKOZ2OJ8qWLHs+2WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFwqivVG zaKkVyYkT8vIZcIADd23MB8GA1UdIwQYMBaAFNkIaw35NC3CsJG66Gy3efxiWb17 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjJFQy9ENThBMjI2QzFE OUMxMUUyOUJDM0IyOEIwOEIwMkNEMi8yUWhyRGZrMExjS3drYnJvYkxkNV9HSlp2 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRaHJEZmswTGNLd2ticm9iTGQ1X0dKWnZYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjJFQy9ENThBMjI2QzFEOUMxMUUyOUJDM0IyOEIwOEIwMkNEMi8yUWhyRGZrMExj S3drYnJvYkxkNV9HSlp2WHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnmaZ4hOFhbu5eZ6/5F7OXL6ajM/xtlSbD4LWBsmfaqWOekESPmFvt 2hwnWtIt/eyHIJsZFcA6PD+88rOmTtuIJghGfz3Gqmknf7E6X4rHoRKMcQlUVaD5 n43vXYBL47kNZZvUYGUpx8JzPb51TLaI8r4YY4+pGw2TM8C6AIDV8U1nmToYIW5s piAQ3s2Zuu65d1suF4CyWXkblKtx7a0IPJCGEIqmEtfFYipF3N+AxRLOCZnPfi5B clEKthX8IBm+86HShEg3ObTF3NRTQtTIKw/STJ4HHfV8GaE9TCxUdCo13Gxmns9z eMq4WRNQftZU7BCfb1yOUKrEog9ZqI+x -----END CERTIFICATE-----Generated at Sun Jul 20 07:41:43 2025 by rpki-client