$ rpki-client -vvf rpki.apnic.net/member_repository/A918E74A/B0682EE4C23B11ED91687921C4F9AE02/s2MvNI2Zt8k-43IQ13M9KC8UWko.mft File: s2MvNI2Zt8k-43IQ13M9KC8UWko.mft (raw, json) Hash identifier: /l8iBbq/EFWDCe6YvtVUs3u8BcgpD+SagwRXRLkGoeg= Subject key identifier: 37:34:C2:B6:1C:50:FC:09:60:4F:20:B3:B8:A8:99:8E:31:95:AE:44 Authority key identifier: B3:63:2F:34:8D:99:B7:C9:3E:E3:72:10:D7:73:3D:28:2F:14:5A:4A Certificate issuer: /CN=A918E74A/serialNumber=B3632F348D99B7C93EE37210D7733D282F145A4A Certificate serial: 01BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s2MvNI2Zt8k-43IQ13M9KC8UWko.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E74A/B0682EE4C23B11ED91687921C4F9AE02/s2MvNI2Zt8k-43IQ13M9KC8UWko.mft Manifest number: 01B9 Signing time: Mon 21 Jul 2025 03:07:44 +0000 Manifest this update: Mon 21 Jul 2025 03:07:43 +0000 Manifest next update: Mon 28 Jul 2025 03:07:43 +0000 Files and hashes: 1: s2MvNI2Zt8k-43IQ13M9KC8UWko.crl (hash: 3NogHwuIis4DJwa8W58RK8XJPExCG5YYvv3JFY14R8Q=) 2: A0B1EDDCC24011ED80139928C4F9AE02.roa (hash: iHBYWe6ERJgNXTSiQBDXZCN/lwk7Ia+HfQGsPjr80VQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E74A/B0682EE4C23B11ED91687921C4F9AE02/s2MvNI2Zt8k-43IQ13M9KC8UWko.crl rsync://rpki.apnic.net/member_repository/A918E74A/B0682EE4C23B11ED91687921C4F9AE02/s2MvNI2Zt8k-43IQ13M9KC8UWko.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s2MvNI2Zt8k-43IQ13M9KC8UWko.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 03:07:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 444 (0x1bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E74A, serialNumber=B3632F348D99B7C93EE37210D7733D282F145A4A Validity Not Before: Jul 21 03:07:43 2025 GMT Not After : Jul 28 03:07:43 2025 GMT Subject: CN=687daeff-d3ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9c:95:ed:a3:cd:ef:93:c5:04:3b:54:58:f8: 00:fb:10:60:88:d5:b1:14:d9:68:32:87:5c:01:30: fe:a0:7a:09:fd:72:d8:29:0c:aa:be:23:b3:9f:51: af:f2:b4:fe:c1:0e:df:f0:ea:a2:b7:d9:e3:90:df: da:19:1f:ad:14:cb:f1:f6:2f:25:72:b2:ba:6e:ff: 29:24:df:14:fd:53:c5:b1:e6:02:14:85:8a:ea:52: fd:89:99:8a:3c:32:a7:20:a3:fb:c6:cb:6d:30:7a: 72:82:9e:1f:48:3c:9b:d9:9b:64:84:39:8a:58:93: bb:d9:fb:ce:cb:30:00:ae:d4:7e:f2:fd:3f:b9:a9: f9:16:51:c9:51:2b:cc:22:9c:b2:0b:8b:fc:7e:51: 0a:7c:c7:f5:e1:bc:8d:87:a4:9b:82:57:ff:3d:24: 28:9e:76:1f:ba:64:19:60:59:96:48:5c:6c:65:5c: 50:92:20:00:e9:77:d9:16:d2:62:2c:88:ee:59:41: 26:89:ea:b2:bd:ae:8f:b6:55:c1:8b:88:d6:d8:74: ed:0d:5a:d2:d3:70:07:16:75:b4:eb:e2:e2:3a:27: 0e:84:fb:e7:b6:78:58:f1:8a:f3:29:74:e0:2c:96: a9:00:b8:7c:29:67:61:90:5e:59:32:ad:e8:e3:01: 59:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:34:C2:B6:1C:50:FC:09:60:4F:20:B3:B8:A8:99:8E:31:95:AE:44 X509v3 Authority Key Identifier: keyid:B3:63:2F:34:8D:99:B7:C9:3E:E3:72:10:D7:73:3D:28:2F:14:5A:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E74A/B0682EE4C23B11ED91687921C4F9AE02/s2MvNI2Zt8k-43IQ13M9KC8UWko.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s2MvNI2Zt8k-43IQ13M9KC8UWko.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E74A/B0682EE4C23B11ED91687921C4F9AE02/s2MvNI2Zt8k-43IQ13M9KC8UWko.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:1d:fe:90:c7:2c:76:ad:82:69:8f:cd:f7:92:e8:f4:2b:f0: e8:28:00:8a:d1:fd:b3:ac:df:d0:b9:35:70:0a:18:37:c3:45: 2a:ae:c2:23:2c:ad:6e:a0:63:df:14:eb:56:37:75:ed:03:e4: 3d:b7:f8:76:28:78:bf:0c:c6:fe:37:49:b4:4b:8d:6d:be:2d: f8:82:40:a1:4e:65:d9:31:28:27:05:36:36:d4:d5:68:67:9e: 21:02:8d:4a:b7:15:4e:ca:57:6b:9b:4a:59:cf:7c:07:47:31: 8c:f0:ec:c5:49:ac:4a:83:a0:92:34:81:6b:e4:e1:eb:0f:1d: 75:20:2d:66:b3:ce:62:7f:ea:79:84:00:49:09:37:fb:af:41: a4:de:85:9a:c0:80:84:fc:1e:2f:97:8f:4b:4a:52:27:2a:4e: aa:10:88:47:6c:1f:77:88:ae:2a:a6:b7:4d:15:c5:a9:f5:f8: 1f:5e:08:3b:59:03:5e:c9:3d:c8:e4:dc:d2:97:2b:6b:e0:34: 01:14:2e:1c:9c:99:ed:d4:a9:f3:75:0e:be:e8:b8:a4:4e:ca: 8b:43:61:75:1d:d9:56:34:90:c5:83:6a:ea:ea:fc:0b:6e:e8: 2a:7b:65:74:25:67:78:58:0e:0d:6f:89:64:d3:c3:22:7d:dc: 64:1e:4c:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU3NEExMTAvBgNVBAUTKEIzNjMyRjM0OEQ5OUI3QzkzRUUzNzIxMEQ3NzMzRDI4 MkYxNDVBNEEwHhcNMjUwNzIxMDMwNzQzWhcNMjUwNzI4MDMwNzQzWjAYMRYwFAYD VQQDEw02ODdkYWVmZi1kM2JhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuJyV7aPN75PFBDtUWPgA+xBgiNWxFNloModcATD+oHoJ/XLYKQyqviOzn1Gv 8rT+wQ7f8Oqit9njkN/aGR+tFMvx9i8lcrK6bv8pJN8U/VPFseYCFIWK6lL9iZmK PDKnIKP7xsttMHpygp4fSDyb2ZtkhDmKWJO72fvOyzAArtR+8v0/uan5FlHJUSvM IpyyC4v8flEKfMf14byNh6Sbglf/PSQonnYfumQZYFmWSFxsZVxQkiAA6XfZFtJi LIjuWUEmieqyva6PtlXBi4jW2HTtDVrS03AHFnW06+LiOicOhPvntnhY8YrzKXTg LJapALh8KWdhkF5ZMq3o4wFZywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDc0wrYc UPwJYE8gs7iomY4xla5EMB8GA1UdIwQYMBaAFLNjLzSNmbfJPuNyENdzPSgvFFpK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTc0QS9CMDY4MkVFNEMy M0IxMUVEOTE2ODc5MjFDNEY5QUUwMi9zMk12TkkyWnQ4ay00M0lRMTNNOUtDOFVX a28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3MyTXZOSTJadDhrLTQzSVExM005S0M4VVdrby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTc0QS9CMDY4MkVFNEMyM0IxMUVEOTE2ODc5MjFDNEY5QUUwMi9zMk12TkkyWnQ4 ay00M0lRMTNNOUtDOFVXa28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClHf6Qxyx2rYJpj833kuj0K/DoKACK0f2zrN/QuTVwChg3w0UqrsIj LK1uoGPfFOtWN3XtA+Q9t/h2KHi/DMb+N0m0S41tvi34gkChTmXZMSgnBTY21NVo Z54hAo1KtxVOyldrm0pZz3wHRzGM8OzFSaxKg6CSNIFr5OHrDx11IC1ms85if+p5 hABJCTf7r0Gk3oWawICE/B4vl49LSlInKk6qEIhHbB93iK4qprdNFcWp9fgfXgg7 WQNeyT3I5NzSlytr4DQBFC4cnJnt1KnzdQ6+6LikTsqLQ2F1HdlWNJDFg2rq6vwL bugqe2V0JWd4WA4Nb4lk08MifdxkHkzR -----END CERTIFICATE-----Generated at Mon Jul 21 12:47:06 2025 by rpki-client