$ rpki-client -vvf rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft File: 2WQZRdW0z31j_JExr89yeuNtkCA.mft (raw, json) Hash identifier: WXkn7pcV0/xalHAGdLormmaQDP0FXcNnpVvd6oH0gEU= Subject key identifier: B4:85:18:8D:4E:59:53:DF:38:E0:01:C8:26:94:5E:B9:D1:FD:A7:88 Authority key identifier: D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 Certificate issuer: /CN=A911F316/serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Certificate serial: 0210 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft Manifest number: 0206 Signing time: Tue 09 Sep 2025 02:22:52 +0000 Manifest this update: Tue 09 Sep 2025 02:22:51 +0000 Manifest next update: Tue 16 Sep 2025 02:22:51 +0000 Files and hashes: 1: 2WQZRdW0z31j_JExr89yeuNtkCA.crl (hash: BUoUifvpi45mHb3uUzmPeJ1K3wMD6S3pEHinHRpVWN0=) 2: 15714ED2776A11ED98AF7341C4F9AE02.roa (hash: WBxu67wj7qK+1XHnF6Gm/tpT83HjDxcRJ+5R7dbCf7I=) 3: 77490C9A792F11EEBF849942C4F9AE02.roa (hash: +qSb4R4TGVMwO8UibifLnyUfy5g07BZr/1fOfOFiaKg=) 4: 590A6A9A792E11EEA5AAB840C4F9AE02.roa (hash: TjgZvd8NTyfnTIYx+SMzczM6IMYvFc5scP1aWMMbHyE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 02:22:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 528 (0x210) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F316, serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Validity Not Before: Sep 9 02:22:51 2025 GMT Not After : Sep 16 02:22:51 2025 GMT Subject: CN=68bf8f7b-8f37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:4a:52:4a:96:8a:82:ab:00:66:13:d4:7d:8f: 5a:95:8c:4e:c1:d6:a1:df:66:21:2d:57:d9:28:d0: df:66:eb:10:33:62:af:7b:09:62:12:2f:2d:86:90: 08:f0:f8:73:d3:cc:bd:26:f8:17:d0:1d:ab:83:30: da:d0:ea:9f:03:29:3e:e6:2a:63:83:44:62:a5:c2: 42:3e:b0:be:5f:82:81:b2:04:57:df:5d:e9:bd:61: 32:e5:14:9f:b1:55:cb:76:ee:c7:ed:a0:2b:ea:8c: 5f:d2:f6:44:7b:4d:97:83:6a:9e:02:c9:d3:8f:f4: 5d:b9:66:d6:7f:e9:6f:9a:78:9e:9a:ef:fc:2f:00: 54:21:ad:b4:25:d7:cf:d2:5b:5d:87:d2:ff:18:ac: 04:8e:32:0a:87:92:ae:c1:ca:24:e5:94:05:05:2a: fa:7f:3a:f9:f7:88:09:33:70:9e:9d:59:18:9e:82: 9e:22:e5:f8:9f:ea:a9:2c:96:8f:5e:75:a0:1c:24: ad:70:84:71:84:3f:ee:44:65:e1:dc:9e:9e:01:24: e6:5f:6b:32:e3:a8:92:ac:82:54:41:4a:4b:69:6f: 9e:42:ba:d0:30:81:38:39:e8:19:bc:b0:dd:c4:1c: 61:26:80:12:44:e9:1e:0b:c0:8f:bc:2e:f1:3c:94: 72:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:85:18:8D:4E:59:53:DF:38:E0:01:C8:26:94:5E:B9:D1:FD:A7:88 X509v3 Authority Key Identifier: keyid:D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:19:b0:9f:58:3c:8f:3b:81:4b:20:02:8f:bf:d3:a3:0b:73: 63:04:ce:61:11:ce:fc:a3:e8:66:43:79:e2:f3:7b:1e:f0:fd: 83:d0:59:5e:4b:de:fd:7d:b2:a0:42:62:93:5c:5f:88:34:14: 8d:14:c7:6f:e7:04:1d:3f:81:39:72:05:e3:4a:84:2b:6f:f7: b6:88:0e:c1:2a:07:d9:5b:b1:80:76:76:8d:42:3e:2f:0a:f6: d7:61:e7:75:f2:a0:a6:fb:9d:09:99:74:74:b5:6b:63:e0:cd: 9a:8b:e1:b6:b4:6a:85:61:9a:b3:cb:9a:e9:55:53:23:c8:3b: 15:b0:c7:b2:3c:e9:55:97:5f:78:27:bd:e2:67:76:4d:dc:66: 34:ed:a7:9c:6e:ab:ad:3d:ea:12:22:e9:a1:8b:32:7d:02:f5: 87:e4:fd:c5:5b:94:9e:50:6a:d8:8b:82:ce:18:82:5b:dd:c5: ad:36:58:4f:4e:a8:53:2b:69:80:b1:6c:e7:4b:19:e0:83:9e: c2:e0:4b:f9:84:b4:67:bf:88:e2:6b:86:f9:5d:dc:3b:a0:69: de:ec:4c:96:b2:d6:40:13:a6:d4:03:42:20:a8:a0:8a:e7:47: a2:e3:95:a1:de:2b:0a:36:ac:a5:1e:88:61:e3:83:6e:10:29: e7:2a:f3:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYzMTYxMTAvBgNVBAUTKEQ5NjQxOTQ1RDVCNENGN0Q2M0ZDOTEzMUFGQ0Y3MjdB RTM2RDkwMjAwHhcNMjUwOTA5MDIyMjUxWhcNMjUwOTE2MDIyMjUxWjAYMRYwFAYD VQQDEw02OGJmOGY3Yi04ZjM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx0pSSpaKgqsAZhPUfY9alYxOwdah32YhLVfZKNDfZusQM2KvewliEi8thpAI 8Phz08y9JvgX0B2rgzDa0OqfAyk+5ipjg0RipcJCPrC+X4KBsgRX313pvWEy5RSf sVXLdu7H7aAr6oxf0vZEe02Xg2qeAsnTj/RduWbWf+lvmniemu/8LwBUIa20JdfP 0ltdh9L/GKwEjjIKh5Kuwcok5ZQFBSr6fzr594gJM3CenVkYnoKeIuX4n+qpLJaP XnWgHCStcIRxhD/uRGXh3J6eASTmX2sy46iSrIJUQUpLaW+eQrrQMIE4OegZvLDd xBxhJoASROkeC8CPvC7xPJRyjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLSFGI1O WVPfOOAByCaUXrnR/aeIMB8GA1UdIwQYMBaAFNlkGUXVtM99Y/yRMa/PcnrjbZAg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjMxNi9BMURGMTUyMDc3 NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHozMWpfSkV4cjg5eWV1TnRr Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJXUVpSZFcwejMxal9KRXhyODl5ZXVOdGtDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjMxNi9BMURGMTUyMDc3NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHoz MWpfSkV4cjg5eWV1TnRrQ0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAGbCfWDyPO4FLIAKPv9OjC3NjBM5hEc78o+hmQ3ni83se8P2D0Fle S979fbKgQmKTXF+INBSNFMdv5wQdP4E5cgXjSoQrb/e2iA7BKgfZW7GAdnaNQj4v CvbXYed18qCm+50JmXR0tWtj4M2ai+G2tGqFYZqzy5rpVVMjyDsVsMeyPOlVl194 J73iZ3ZN3GY07aecbqutPeoSIumhizJ9AvWH5P3FW5SeUGrYi4LOGIJb3cWtNlhP TqhTK2mAsWznSxngg57C4Ev5hLRnv4jia4b5Xdw7oGne7EyWstZAE6bUA0IgqKCK 50ei45Wh3isKNqylHohh44NuECnnKvNk -----END CERTIFICATE-----Generated at Tue Sep 9 09:33:29 2025 by rpki-client