$ rpki-client -vvf rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft File: 2WQZRdW0z31j_JExr89yeuNtkCA.mft (raw, json) Hash identifier: kZ0hAmb+NjtPMp5z3HSHzRctJGf+k8vQr6gCYx5RlUM= Subject key identifier: 1E:6F:A3:7C:A7:2E:88:F7:8F:F1:BD:C6:83:F1:B6:C1:AC:9B:58:19 Authority key identifier: D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 Certificate issuer: /CN=A911F316/serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Certificate serial: 01F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft Manifest number: 01ED Signing time: Wed 23 Jul 2025 02:49:54 +0000 Manifest this update: Wed 23 Jul 2025 02:49:53 +0000 Manifest next update: Wed 30 Jul 2025 02:49:53 +0000 Files and hashes: 1: 2WQZRdW0z31j_JExr89yeuNtkCA.crl (hash: vuxAAIp3F1FmAl/faIqVV4X3P0Fk+aXGSTsQg2fGLdI=) 2: 15714ED2776A11ED98AF7341C4F9AE02.roa (hash: WBxu67wj7qK+1XHnF6Gm/tpT83HjDxcRJ+5R7dbCf7I=) 3: 77490C9A792F11EEBF849942C4F9AE02.roa (hash: +qSb4R4TGVMwO8UibifLnyUfy5g07BZr/1fOfOFiaKg=) 4: 590A6A9A792E11EEA5AAB840C4F9AE02.roa (hash: TjgZvd8NTyfnTIYx+SMzczM6IMYvFc5scP1aWMMbHyE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 02:49:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 503 (0x1f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F316, serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Validity Not Before: Jul 23 02:49:53 2025 GMT Not After : Jul 30 02:49:53 2025 GMT Subject: CN=68804dd1-3172 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:98:57:1e:cc:6b:e0:17:f4:12:17:13:f5:aa: 4e:1d:6e:b2:84:ff:8a:8f:83:f1:c8:34:a2:57:98: 59:e7:51:ae:71:d2:ee:75:34:9c:40:db:c5:a5:68: e6:df:d5:ea:20:8d:24:0b:d1:57:d7:f5:62:87:b1: ad:41:10:cf:94:58:3b:97:1b:17:57:16:1f:5e:c5: 4c:2d:97:58:cd:f3:98:fd:a8:f1:0f:ef:59:4b:1f: db:70:d5:8d:88:b1:26:44:d4:63:0b:c0:99:a8:7c: 67:f6:af:be:9f:25:26:9d:eb:58:05:73:6b:38:a1: 1d:4d:9f:f3:2c:78:95:08:44:5a:9f:a6:00:09:b2: 4c:2f:3a:88:3a:ed:14:76:93:40:c0:bb:ef:94:d7: 8a:72:bc:dd:f8:10:9b:d3:a0:21:ee:fa:e2:d5:2e: ce:b6:1a:16:c4:09:34:0b:2a:09:65:af:00:3b:4b: 7e:b6:22:92:48:f3:02:57:97:46:a0:bc:b1:6a:bf: d7:e1:e2:8f:8e:91:b4:03:48:d8:75:d9:0f:51:33: 20:0a:86:ec:25:6c:10:06:0e:ec:c9:d7:67:04:d4: 2b:50:79:39:d7:2b:a1:a8:84:30:f4:f7:cc:3a:61: 6b:67:74:34:20:34:c8:27:98:53:fc:f2:b0:41:4b: 10:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:6F:A3:7C:A7:2E:88:F7:8F:F1:BD:C6:83:F1:B6:C1:AC:9B:58:19 X509v3 Authority Key Identifier: keyid:D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:0d:52:96:8e:30:58:4c:4b:4a:b2:c3:0c:57:af:12:d5:a5: bf:35:6a:e7:77:ed:81:5a:7e:f2:29:65:2d:5a:3f:63:7d:e6: bc:1b:a9:cd:20:5f:2f:1f:a7:d8:00:09:c4:e1:62:48:0a:28: d0:a4:f8:e1:d5:f9:17:59:30:c4:5a:3e:c8:11:d8:92:58:3c: 5f:a2:71:67:5d:10:96:e3:00:f7:06:a5:17:bb:32:06:25:77: ea:90:d9:ce:85:25:13:9f:bc:c9:95:a7:f8:ec:19:c6:02:82: 3b:99:a8:68:43:6d:6c:fb:bd:d7:1f:aa:c7:ee:8e:f0:23:eb: ed:3a:83:8d:e1:d5:29:0d:69:be:df:77:55:a1:b4:76:7a:1e: 1a:e7:00:2d:cc:60:ba:d0:db:a5:ce:82:41:8a:5a:16:ef:59: 57:20:2a:5e:9e:c9:69:b7:28:fa:83:05:e2:cc:8a:48:83:60: e0:59:ee:22:29:be:14:3a:d7:ea:0b:74:8c:37:e1:2e:1c:7a: d6:a5:57:bf:7d:94:e9:71:41:69:79:9c:aa:1b:78:00:a4:5f: b7:ed:9e:25:9d:51:e9:a6:50:b2:40:3d:fb:57:bd:62:b5:01: c8:ef:76:1c:86:75:cc:6b:47:e5:92:ee:64:10:c5:5d:e8:c9: d8:a4:01:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYzMTYxMTAvBgNVBAUTKEQ5NjQxOTQ1RDVCNENGN0Q2M0ZDOTEzMUFGQ0Y3MjdB RTM2RDkwMjAwHhcNMjUwNzIzMDI0OTUzWhcNMjUwNzMwMDI0OTUzWjAYMRYwFAYD VQQDEw02ODgwNGRkMS0zMTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5JhXHsxr4Bf0EhcT9apOHW6yhP+Kj4PxyDSiV5hZ51GucdLudTScQNvFpWjm 39XqII0kC9FX1/Vih7GtQRDPlFg7lxsXVxYfXsVMLZdYzfOY/ajxD+9ZSx/bcNWN iLEmRNRjC8CZqHxn9q++nyUmnetYBXNrOKEdTZ/zLHiVCERan6YACbJMLzqIOu0U dpNAwLvvlNeKcrzd+BCb06Ah7vri1S7OthoWxAk0CyoJZa8AO0t+tiKSSPMCV5dG oLyxar/X4eKPjpG0A0jYddkPUTMgCobsJWwQBg7syddnBNQrUHk51yuhqIQw9PfM OmFrZ3Q0IDTIJ5hT/PKwQUsQLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB5vo3yn Loj3j/G9xoPxtsGsm1gZMB8GA1UdIwQYMBaAFNlkGUXVtM99Y/yRMa/PcnrjbZAg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjMxNi9BMURGMTUyMDc3 NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHozMWpfSkV4cjg5eWV1TnRr Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJXUVpSZFcwejMxal9KRXhyODl5ZXVOdGtDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjMxNi9BMURGMTUyMDc3NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHoz MWpfSkV4cjg5eWV1TnRrQ0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVDVKWjjBYTEtKssMMV68S1aW/NWrnd+2BWn7yKWUtWj9jfea8G6nN IF8vH6fYAAnE4WJICijQpPjh1fkXWTDEWj7IEdiSWDxfonFnXRCW4wD3BqUXuzIG JXfqkNnOhSUTn7zJlaf47BnGAoI7mahoQ21s+73XH6rH7o7wI+vtOoON4dUpDWm+ 33dVobR2eh4a5wAtzGC60NulzoJBiloW71lXICpenslptyj6gwXizIpIg2DgWe4i Kb4UOtfqC3SMN+EuHHrWpVe/fZTpcUFpeZyqG3gApF+37Z4lnVHpplCyQD37V71i tQHI73YchnXMa0flku5kEMVd6MnYpAGc -----END CERTIFICATE-----Generated at Wed Jul 23 12:21:04 2025 by rpki-client