$ rpki-client -vvf rpki.apnic.net/member_repository/A919D3F9/122236E618C711F08054177EC4F9AE02/M2KsWO2xic8leDwn2Qp9L6Mpd8U.mft File: M2KsWO2xic8leDwn2Qp9L6Mpd8U.mft (raw, json) Hash identifier: tdviPOgxU6VqhPw2wJzsIwAYg2tvwzGGHJ4ldh47FJg= Subject key identifier: 9B:90:A6:A5:3B:9B:CA:98:65:D6:77:A0:13:8F:51:D2:34:02:AE:C8 Authority key identifier: 33:62:AC:58:ED:B1:89:CF:25:78:3C:27:D9:0A:7D:2F:A3:29:77:C5 Certificate issuer: /CN=A919D3F9/serialNumber=3362AC58EDB189CF25783C27D90A7D2FA32977C5 Certificate serial: 35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M2KsWO2xic8leDwn2Qp9L6Mpd8U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D3F9/122236E618C711F08054177EC4F9AE02/M2KsWO2xic8leDwn2Qp9L6Mpd8U.mft Manifest number: 33 Signing time: Sat 19 Jul 2025 08:14:36 +0000 Manifest this update: Sat 19 Jul 2025 08:14:35 +0000 Manifest next update: Sat 26 Jul 2025 08:14:35 +0000 Files and hashes: 1: M2KsWO2xic8leDwn2Qp9L6Mpd8U.crl (hash: eGDJPYC9TUFK+aZDTTDPBlF7BiQ2ah9eRiLIc3HStto=) 2: 35C008E818C811F0BF9E881FC4F9AE02.roa (hash: bwDdjXPrVZtmIClbo9xqwN/iM/s96nIFHCKB+Vl9Hlk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D3F9/122236E618C711F08054177EC4F9AE02/M2KsWO2xic8leDwn2Qp9L6Mpd8U.crl rsync://rpki.apnic.net/member_repository/A919D3F9/122236E618C711F08054177EC4F9AE02/M2KsWO2xic8leDwn2Qp9L6Mpd8U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M2KsWO2xic8leDwn2Qp9L6Mpd8U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 08:14:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D3F9, serialNumber=3362AC58EDB189CF25783C27D90A7D2FA32977C5 Validity Not Before: Jul 19 08:14:35 2025 GMT Not After : Jul 26 08:14:35 2025 GMT Subject: CN=687b53ec-413f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:30:c1:80:c3:e1:27:30:8b:52:df:71:94:85: c5:1c:73:af:81:29:94:12:de:80:6a:c6:9d:0e:a5: 09:f4:db:24:da:67:33:c2:67:b0:cb:8a:1f:bf:6f: 27:1b:8b:e0:82:23:b4:36:dd:a4:70:96:40:88:c6: c0:f7:37:b7:53:28:bd:fb:f8:40:14:10:a6:37:3a: 33:f0:1c:5f:60:9e:ca:7d:d9:23:14:27:b6:7c:9a: 0e:ee:ac:5c:77:83:64:48:fa:b3:90:12:e1:4d:25: b4:2c:e2:b8:be:d4:c0:6e:61:50:8e:26:38:be:01: db:00:f4:fb:b3:c7:32:04:a0:c3:37:ef:e3:d3:1e: 53:af:aa:3c:27:e4:18:cb:8e:fa:1e:a9:87:04:33: 0d:b0:1c:4e:85:84:ef:ff:ba:37:ab:00:cd:51:16: 1c:b5:28:db:a9:68:1b:25:3e:d8:b6:e2:ce:c5:7e: b9:6e:06:6c:4b:a3:14:ac:ef:b5:e6:c5:72:e7:72: a3:78:48:8b:9f:17:34:e3:4c:d8:77:2d:dd:93:15: e6:7a:6c:7b:9a:6c:e1:16:d1:b1:02:10:63:c9:6c: a9:6f:01:24:cb:8e:63:aa:f9:f2:d1:7c:e6:9f:18: de:02:4f:b1:b6:ad:01:a5:ff:16:67:b0:32:97:d6: 9f:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:90:A6:A5:3B:9B:CA:98:65:D6:77:A0:13:8F:51:D2:34:02:AE:C8 X509v3 Authority Key Identifier: keyid:33:62:AC:58:ED:B1:89:CF:25:78:3C:27:D9:0A:7D:2F:A3:29:77:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D3F9/122236E618C711F08054177EC4F9AE02/M2KsWO2xic8leDwn2Qp9L6Mpd8U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M2KsWO2xic8leDwn2Qp9L6Mpd8U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D3F9/122236E618C711F08054177EC4F9AE02/M2KsWO2xic8leDwn2Qp9L6Mpd8U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:99:b2:83:eb:70:46:cf:af:e1:59:aa:68:8e:65:e9:72:07: c0:bb:80:9d:7b:24:fb:b7:1e:6b:89:2a:03:fe:43:57:17:6e: da:56:65:95:46:b5:f0:5a:16:a5:3e:6a:7b:c0:8d:af:ba:01: af:ef:c2:9d:8d:e5:a2:ab:d7:f9:33:90:3b:52:d0:b3:17:ca: 0b:1f:c0:a1:1f:5c:7d:fa:b9:c9:aa:a1:1e:d3:1e:b2:2e:2b: 36:6c:5f:72:00:6c:4d:b2:b5:87:bb:96:58:db:25:c3:5c:5e: cc:ca:d9:6a:75:26:8e:08:cd:e3:0f:86:65:69:5b:8f:bf:e8: c6:32:ea:5a:b4:ca:09:be:fe:d0:cf:70:45:b7:18:92:c9:af: 19:51:c5:8a:03:44:95:a9:7f:5e:17:6e:72:b3:7e:37:b0:cd: f9:89:79:c5:8a:f0:4a:1d:8d:a4:bb:19:8a:e2:ae:0e:80:4c: 00:83:51:a7:1b:66:b6:77:88:c4:84:9b:91:d8:42:8c:0b:a2: 35:2c:d9:a4:3c:f4:ea:fa:ec:8d:c7:a9:3c:0d:3d:86:64:fc: ec:13:79:74:1f:35:3e:53:2b:b5:ec:6b:99:23:0e:57:10:2d: f4:60:d4:39:cb:a9:2f:2a:28:9e:ce:08:0c:7d:25:dc:b7:7b: 74:9c:bd:43 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RDNGOTExMC8GA1UEBRMoMzM2MkFDNThFREIxODlDRjI1NzgzQzI3RDkwQTdEMkZB MzI5NzdDNTAeFw0yNTA3MTkwODE0MzVaFw0yNTA3MjYwODE0MzVaMBgxFjAUBgNV BAMTDTY4N2I1M2VjLTQxM2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIMMGAw+EnMItS33GUhcUcc6+BKZQS3oBqxp0OpQn02yTaZzPCZ7DLih+/bycb i+CCI7Q23aRwlkCIxsD3N7dTKL37+EAUEKY3OjPwHF9gnsp92SMUJ7Z8mg7urFx3 g2RI+rOQEuFNJbQs4ri+1MBuYVCOJji+AdsA9PuzxzIEoMM37+PTHlOvqjwn5BjL jvoeqYcEMw2wHE6FhO//ujerAM1RFhy1KNupaBslPti24s7FfrluBmxLoxSs77Xm xXLncqN4SIufFzTjTNh3Ld2TFeZ6bHuabOEW0bECEGPJbKlvASTLjmOq+fLRfOaf GN4CT7G2rQGl/xZnsDKX1p+vAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUm5CmpTub yphl1negE49R0jQCrsgwHwYDVR0jBBgwFoAUM2KsWO2xic8leDwn2Qp9L6Mpd8Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlEM0Y5LzEyMjIzNkU2MThD NzExRjA4MDU0MTc3RUM0RjlBRTAyL00yS3NXTzJ4aWM4bGVEd24yUXA5TDZNcGQ4 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTTJLc1dPMnhpYzhsZUR3bjJRcDlMNk1wZDhVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlE M0Y5LzEyMjIzNkU2MThDNzExRjA4MDU0MTc3RUM0RjlBRTAyL00yS3NXTzJ4aWM4 bGVEd24yUXA5TDZNcGQ4VS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJeZsoPrcEbPr+FZqmiOZelyB8C7gJ17JPu3HmuJKgP+Q1cXbtpWZZVG tfBaFqU+anvAja+6Aa/vwp2N5aKr1/kzkDtS0LMXygsfwKEfXH36ucmqoR7THrIu KzZsX3IAbE2ytYe7lljbJcNcXszK2Wp1Jo4IzeMPhmVpW4+/6MYy6lq0ygm+/tDP cEW3GJLJrxlRxYoDRJWpf14XbnKzfjewzfmJecWK8EodjaS7GYrirg6ATACDUacb ZrZ3iMSEm5HYQowLojUs2aQ89Or67I3HqTwNPYZk/OwTeXQfNT5TK7Xsa5kjDlcQ LfRg1DnLqS8qKJ7OCAx9Jdy3e3ScvUM= -----END CERTIFICATE-----Generated at Sun Jul 20 07:01:52 2025 by rpki-client