$ rpki-client -vvf rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft File: 2MZzCV6Cqbfn381GWA94MajRiso.mft (raw, json) Hash identifier: Nu6vKk+qhrOlcixixh59GmJF6xDWz2kiTRfk+BA7jn4= Subject key identifier: 1D:7D:29:F0:96:3A:60:30:39:A6:6A:CF:2B:72:55:7A:8A:4B:17:E5 Authority key identifier: D8:C6:73:09:5E:82:A9:B7:E7:DF:CD:46:58:0F:78:31:A8:D1:8A:CA Certificate issuer: /CN=A911862D/serialNumber=D8C673095E82A9B7E7DFCD46580F7831A8D18ACA Certificate serial: 1762 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft Manifest number: 1747 Signing time: Wed 20 Aug 2025 16:42:43 +0000 Manifest this update: Wed 20 Aug 2025 16:42:42 +0000 Manifest next update: Wed 27 Aug 2025 16:42:42 +0000 Files and hashes: 1: 2MZzCV6Cqbfn381GWA94MajRiso.crl (hash: pjOebkRoEJckD3LBRp/j7fRbIZxVbTCQ3QTSw8JCibU=) 2: D4A7497E6E6B11EF9FC61C6AC4F9AE02.roa (hash: JBsRHnJPdnzdINV0pvwEs0IpHO7Li2A9KaO/T3DyLM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.crl rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 16:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5986 (0x1762) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911862D, serialNumber=D8C673095E82A9B7E7DFCD46580F7831A8D18ACA Validity Not Before: Aug 20 16:42:42 2025 GMT Not After : Aug 27 16:42:42 2025 GMT Subject: CN=68a5fb02-451b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f5:6f:f5:f3:08:2f:96:88:18:75:1b:2b:6f: 96:1b:8e:e3:f9:ae:d6:43:ef:2e:0e:7e:59:94:35: 91:cf:ad:05:aa:4a:84:8d:46:bc:4b:c0:d5:51:25: 72:9b:d0:08:bf:31:3f:e4:4c:d6:d2:ea:a9:74:c8: 98:13:1d:8b:98:b4:6f:6c:99:c3:d4:cc:67:11:b7: 21:63:ae:ad:3c:96:8b:48:af:97:bc:9a:16:84:d2: c7:88:19:9f:c6:45:ce:cc:68:b6:f7:65:fb:73:f2: f9:8f:32:68:e5:0b:81:24:bc:5c:09:2e:90:9e:ab: d4:d8:d4:8a:c2:c5:2d:30:5f:7b:f5:2c:0c:52:2a: 5f:2d:9b:3b:0a:e4:03:fa:1d:e1:b9:6c:35:f1:c8: c7:ba:6a:05:c8:03:df:51:a0:f9:c9:b8:98:92:4f: 26:be:0c:07:32:a4:58:ec:a2:d4:c6:32:73:e4:89: 31:e1:a8:42:41:e7:11:84:8a:84:64:5e:9b:2e:9d: 2c:c6:d8:82:4d:57:13:af:06:e4:b0:55:a4:09:45: ed:f1:e2:03:48:c5:e3:6a:17:86:33:1f:9a:e3:82: c1:39:8e:fe:0c:09:44:e2:57:a4:4c:6e:b0:7b:02: 9a:da:85:85:b2:69:63:dc:4f:7d:1f:eb:ab:df:f6: 32:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:7D:29:F0:96:3A:60:30:39:A6:6A:CF:2B:72:55:7A:8A:4B:17:E5 X509v3 Authority Key Identifier: keyid:D8:C6:73:09:5E:82:A9:B7:E7:DF:CD:46:58:0F:78:31:A8:D1:8A:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:d7:24:34:43:86:00:58:a3:ee:83:89:41:88:81:9c:78:49: b8:a9:6e:40:d4:25:d5:28:82:93:62:a2:4a:20:86:f0:68:4f: a4:7c:91:f3:32:8f:2f:a7:d5:82:ed:9a:ee:fc:bd:9f:ca:bf: d9:44:ee:f2:97:85:68:3d:a7:19:e2:2f:28:25:64:84:90:ec: e1:b7:be:d2:94:ff:0c:12:d9:22:a0:99:b7:0a:09:67:1f:57: f0:c1:ad:24:08:38:17:af:ae:e0:9c:08:ea:11:32:ec:d3:6d: 85:2e:d6:0c:46:80:60:42:14:60:d7:26:af:d2:46:4d:7b:4c: 68:8f:db:f3:85:3f:b0:bc:ae:35:de:54:3e:5b:d8:88:1e:61: fc:08:a0:92:37:ee:b3:b5:04:ee:16:b3:f4:e7:4e:ed:d8:48: d9:92:ce:5d:87:2a:4a:89:cb:6e:80:0b:e1:38:8c:11:bb:ee: 01:6d:35:a6:f8:20:fc:a7:ba:b2:81:3c:af:e8:4e:00:c9:9f: 07:bb:de:59:03:ec:fc:f8:ed:7f:9b:4f:4f:ee:23:4e:4c:b4: 4f:13:40:4a:b5:5d:ad:2b:67:7f:8c:4a:59:46:72:c9:ec:4e: 66:77:c7:09:46:77:60:9f:db:93:b8:0c:3a:c8:1d:7a:48:ba: ee:a3:98:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF2IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg2MkQxMTAvBgNVBAUTKEQ4QzY3MzA5NUU4MkE5QjdFN0RGQ0Q0NjU4MEY3ODMx QThEMThBQ0EwHhcNMjUwODIwMTY0MjQyWhcNMjUwODI3MTY0MjQyWjAYMRYwFAYD VQQDEw02OGE1ZmIwMi00NTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxfVv9fMIL5aIGHUbK2+WG47j+a7WQ+8uDn5ZlDWRz60FqkqEjUa8S8DVUSVy m9AIvzE/5EzW0uqpdMiYEx2LmLRvbJnD1MxnEbchY66tPJaLSK+XvJoWhNLHiBmf xkXOzGi292X7c/L5jzJo5QuBJLxcCS6QnqvU2NSKwsUtMF979SwMUipfLZs7CuQD +h3huWw18cjHumoFyAPfUaD5ybiYkk8mvgwHMqRY7KLUxjJz5Ikx4ahCQecRhIqE ZF6bLp0sxtiCTVcTrwbksFWkCUXt8eIDSMXjaheGMx+a44LBOY7+DAlE4lekTG6w ewKa2oWFsmlj3E99H+ur3/YyXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB19KfCW OmAwOaZqzytyVXqKSxflMB8GA1UdIwQYMBaAFNjGcwlegqm359/NRlgPeDGo0YrK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODYyRC8zMjg3OUQzQUU4 QkExMUU3OEE2QTcwNDJDNEY5QUUwMi8yTVp6Q1Y2Q3FiZm4zODFHV0E5NE1halJp c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJNWnpDVjZDcWJmbjM4MUdXQTk0TWFqUmlzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODYyRC8zMjg3OUQzQUU4QkExMUU3OEE2QTcwNDJDNEY5QUUwMi8yTVp6Q1Y2Q3Fi Zm4zODFHV0E5NE1halJpc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAn1yQ0Q4YAWKPug4lBiIGceEm4qW5A1CXVKIKTYqJKIIbwaE+kfJHz Mo8vp9WC7Zru/L2fyr/ZRO7yl4VoPacZ4i8oJWSEkOzht77SlP8MEtkioJm3Cgln H1fwwa0kCDgXr67gnAjqETLs022FLtYMRoBgQhRg1yav0kZNe0xoj9vzhT+wvK41 3lQ+W9iIHmH8CKCSN+6ztQTuFrP0507t2EjZks5dhypKictugAvhOIwRu+4BbTWm +CD8p7qygTyv6E4AyZ8Hu95ZA+z8+O1/m09P7iNOTLRPE0BKtV2tK2d/jEpZRnLJ 7E5md8cJRndgn9uTuAw6yB16SLruo5id -----END CERTIFICATE-----Generated at Fri Aug 22 16:32:15 2025 by rpki-client