$ rpki-client -vvf rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft File: 2xy4SFQGnkPKG3JdQuprqbU5gVs.mft (raw, json) Hash identifier: +RxyH88OcY9TdTfLXOOd6sgnCZHU2xu9wBRkmcdHRoo= Subject key identifier: 52:7C:C1:46:25:87:5C:21:E7:A3:F3:FA:9E:C1:02:61:B4:F1:60:EC Authority key identifier: DB:1C:B8:48:54:06:9E:43:CA:1B:72:5D:42:EA:6B:A9:B5:39:81:5B Certificate issuer: /CN=A918F88D/serialNumber=DB1CB84854069E43CA1B725D42EA6BA9B539815B Certificate serial: 0CAA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xy4SFQGnkPKG3JdQuprqbU5gVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft Manifest number: 0C96 Signing time: Tue 22 Jul 2025 18:28:19 +0000 Manifest this update: Tue 22 Jul 2025 18:28:18 +0000 Manifest next update: Tue 29 Jul 2025 18:28:18 +0000 Files and hashes: 1: 2xy4SFQGnkPKG3JdQuprqbU5gVs.crl (hash: fJhGFBl8wcgaCks5Wwa5ScfjxDtN4bESTz+KiN3kVhg=) 2: 4BA5EC4293D911EE86212B1DC4F9AE02.roa (hash: KJiTJQnlya7yc1gVeGhk9f8wqpXCXgsDbpb8Ndl9Q5Q=) 3: 18F7410671F311ECBA5DA710C4F9AE02.roa (hash: tIg3kB0f/wtqp+Q6ik7/n7dKrrQEFLMxhaaJzHV4nr8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.crl rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xy4SFQGnkPKG3JdQuprqbU5gVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 18:28:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3242 (0xcaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F88D, serialNumber=DB1CB84854069E43CA1B725D42EA6BA9B539815B Validity Not Before: Jul 22 18:28:18 2025 GMT Not After : Jul 29 18:28:18 2025 GMT Subject: CN=687fd843-dfa7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:21:2d:3b:ba:b9:51:a5:48:c1:af:0c:a8:ca: 89:bf:88:b2:45:50:43:f2:e6:ef:86:1a:9f:fb:8f: a0:fe:a8:52:e5:9f:77:40:ed:e3:04:72:9a:8b:6a: 78:bb:2b:ae:50:68:0c:9b:b3:9f:12:21:c4:05:ce: 69:bf:5e:81:b7:d9:08:cb:e5:18:aa:cc:dc:a1:00: 6a:7b:62:4d:48:81:06:8b:5c:ca:a9:64:82:37:23: 0a:b0:75:12:3a:3d:21:fc:21:60:21:08:f0:eb:50: 51:bb:ef:6e:1c:6c:15:0b:f3:b6:a3:a4:46:fa:f4: 12:75:e7:07:34:10:25:3f:88:87:3c:a2:da:61:8c: 1c:e7:a7:89:59:4e:9b:69:9d:97:80:d7:20:6a:24: 76:e1:3f:43:1c:f3:3c:ea:67:e1:11:bc:df:64:6f: 04:8f:dc:8c:a8:8f:ee:0e:8e:bf:80:87:c8:2a:dc: 0e:48:95:8e:da:86:46:f1:73:4d:bb:e9:1b:bf:02: d4:3b:ce:b8:28:dd:51:42:68:08:8f:48:85:fc:44: 20:61:bd:2f:be:48:de:ea:07:8a:b0:b4:45:e2:ad: 4f:d6:ec:3c:f3:ee:dd:0e:3d:3f:c6:45:30:32:ab: 65:c3:b8:e4:1b:26:bd:68:78:32:4b:d0:52:c1:c3: 98:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:7C:C1:46:25:87:5C:21:E7:A3:F3:FA:9E:C1:02:61:B4:F1:60:EC X509v3 Authority Key Identifier: keyid:DB:1C:B8:48:54:06:9E:43:CA:1B:72:5D:42:EA:6B:A9:B5:39:81:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xy4SFQGnkPKG3JdQuprqbU5gVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:ce:02:9a:9b:a6:90:91:66:b3:cc:51:1d:ad:64:2c:51:be: 57:69:f7:81:d1:ba:57:e9:83:ee:69:af:e7:90:b1:98:ca:c4: 9e:e0:68:bf:6b:a9:a9:04:bf:b3:56:cb:9e:6a:c3:37:24:b0: 41:a1:17:71:b5:26:3d:01:3d:5e:b0:26:b2:d0:06:8e:c8:3a: ad:ff:e5:ac:89:07:bc:37:3f:bd:40:5a:61:39:c2:18:a0:1d: 0b:42:b7:84:fa:41:cc:3b:a2:36:b1:c1:8a:61:94:c9:5d:6f: dd:22:12:91:29:34:50:e1:77:04:16:00:9f:cc:26:a4:50:b9: 90:c6:27:7b:c9:4b:10:c2:26:83:34:d6:80:99:68:d4:43:ce: b1:5e:10:40:1b:f8:51:3e:58:0d:be:d2:61:00:25:7e:c5:60: 69:9b:f6:67:41:0a:3c:16:b5:b4:6a:41:ac:f3:c3:4c:21:6f: 60:a3:04:ef:44:d1:13:40:31:1d:49:90:d5:86:67:fc:a9:ea: fc:98:56:7e:97:83:57:8e:4f:4f:ec:27:54:6a:8b:fb:d1:4f: 4c:cc:92:06:0c:01:74:1a:eb:f5:f5:78:aa:f5:83:b5:82:dc: dc:1e:ca:56:46:5d:2a:96:f8:7b:db:66:65:33:e5:28:6b:3c: 9e:a7:80:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY4OEQxMTAvBgNVBAUTKERCMUNCODQ4NTQwNjlFNDNDQTFCNzI1RDQyRUE2QkE5 QjUzOTgxNUIwHhcNMjUwNzIyMTgyODE4WhcNMjUwNzI5MTgyODE4WjAYMRYwFAYD VQQDEw02ODdmZDg0My1kZmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmCEtO7q5UaVIwa8MqMqJv4iyRVBD8ubvhhqf+4+g/qhS5Z93QO3jBHKai2p4 uyuuUGgMm7OfEiHEBc5pv16Bt9kIy+UYqszcoQBqe2JNSIEGi1zKqWSCNyMKsHUS Oj0h/CFgIQjw61BRu+9uHGwVC/O2o6RG+vQSdecHNBAlP4iHPKLaYYwc56eJWU6b aZ2XgNcgaiR24T9DHPM86mfhEbzfZG8Ej9yMqI/uDo6/gIfIKtwOSJWO2oZG8XNN u+kbvwLUO864KN1RQmgIj0iF/EQgYb0vvkje6geKsLRF4q1P1uw88+7dDj0/xkUw Mqtlw7jkGya9aHgyS9BSwcOYswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFJ8wUYl h1wh56Pz+p7BAmG08WDsMB8GA1UdIwQYMBaAFNscuEhUBp5DyhtyXULqa6m1OYFb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Rjg4RC8yQTE0QkUwODAw NUExMUVBOEZEQ0ExMzBDNEY5QUUwMi8yeHk0U0ZRR25rUEtHM0pkUXVwcnFiVTVn VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ4eTRTRlFHbmtQS0czSmRRdXBycWJVNWdWcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Rjg4RC8yQTE0QkUwODAwNUExMUVBOEZEQ0ExMzBDNEY5QUUwMi8yeHk0U0ZRR25r UEtHM0pkUXVwcnFiVTVnVnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTzgKam6aQkWazzFEdrWQsUb5XafeB0bpX6YPuaa/nkLGYysSe4Gi/ a6mpBL+zVsueasM3JLBBoRdxtSY9AT1esCay0AaOyDqt/+WsiQe8Nz+9QFphOcIY oB0LQreE+kHMO6I2scGKYZTJXW/dIhKRKTRQ4XcEFgCfzCakULmQxid7yUsQwiaD NNaAmWjUQ86xXhBAG/hRPlgNvtJhACV+xWBpm/ZnQQo8FrW0akGs88NMIW9gowTv RNETQDEdSZDVhmf8qer8mFZ+l4NXjk9P7CdUaov70U9MzJIGDAF0Guv19Xiq9YO1 gtzcHspWRl0qlvh722ZlM+Uoazyep4B6 -----END CERTIFICATE-----Generated at Wed Jul 23 12:54:11 2025 by rpki-client