$ rpki-client -vvf rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft File: 2lexkcVbszGevZGC3A1Oau8-Ddg.mft (raw, json) Hash identifier: Tho6AJzBG1Ci/0o6CvdpRg2aubU5nXRqjwqwAHp7TKA= Subject key identifier: 9A:02:D5:DE:2A:C7:E7:3A:9A:E3:C3:20:92:CD:EC:92:EC:76:3A:7A Authority key identifier: DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 Certificate issuer: /CN=A912A31E/serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Certificate serial: 01C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft Manifest number: 01C2 Signing time: Fri 19 Sep 2025 03:26:25 +0000 Manifest this update: Fri 19 Sep 2025 03:26:24 +0000 Manifest next update: Fri 26 Sep 2025 03:26:24 +0000 Files and hashes: 1: 2lexkcVbszGevZGC3A1Oau8-Ddg.crl (hash: vHbjjWyTLqFJ98kT3X7nC/0n2/1JYzWTvXWF7n98mes=) 2: 5181F33CE8C011EDADA54A23C4F9AE02.roa (hash: 9wRwgsGB8Fy9z1Xq7bw5sLUsMsE1FSTZuA/DyllyXak=) 3: 7DA38A8E727011F08682A20EC4F9AE02.roa (hash: 5M/0FRLT6dVdFlhFwevO8pC082IglmsJ5K/2QwF0Lz0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 03:26:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 454 (0x1c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A31E, serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Validity Not Before: Sep 19 03:26:24 2025 GMT Not After : Sep 26 03:26:24 2025 GMT Subject: CN=68cccd61-aa5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:9d:0d:eb:03:dc:57:fc:30:4c:48:c5:8c:4d: cf:8e:92:97:e7:6f:f5:f9:44:2a:a5:4b:08:30:0b: 0a:3e:ca:0d:2b:19:40:2c:9e:3a:80:54:ec:34:1b: af:e8:a1:ac:74:e2:b9:0b:a2:66:8a:e7:e2:51:c0: 37:5b:21:8f:93:f0:f2:3d:8c:95:78:0a:93:26:3f: 96:73:36:04:3e:84:57:f5:e5:2c:ad:73:f6:8b:84: 33:7a:51:0d:3c:34:20:61:56:fb:07:8f:9d:0a:0a: cc:76:ab:8b:a6:22:4f:bd:9c:a8:35:21:39:98:ec: e8:ce:9a:1c:5e:9f:c0:a7:11:c0:46:b9:09:7d:2b: 43:1d:e6:2e:85:19:c8:2d:b9:06:f2:bf:dd:cd:2c: 1f:93:8c:9b:f1:64:66:92:76:8f:3b:a0:9f:3b:0c: c5:4a:3a:24:ee:1c:93:b9:b6:91:37:9f:38:e9:53: 8d:81:9b:c1:ef:2d:1f:59:fe:70:37:66:f9:81:04: 31:ae:5f:19:af:07:90:1c:3d:dc:6c:c9:93:21:8c: 02:51:0e:f5:5d:ed:58:f8:29:88:da:6e:14:3a:a8: fd:45:a6:a3:e6:2d:40:b5:5e:bd:b4:e2:13:7b:01: c3:fd:67:3b:50:f2:e4:ff:d6:b5:31:81:14:d6:36: 84:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:02:D5:DE:2A:C7:E7:3A:9A:E3:C3:20:92:CD:EC:92:EC:76:3A:7A X509v3 Authority Key Identifier: keyid:DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:ac:f5:8f:de:87:95:b1:d2:48:13:49:22:95:b5:8f:fb:5f: cc:26:b7:23:20:d4:5a:73:73:72:c9:13:e4:fb:99:78:18:4a: 97:ff:af:59:c7:1b:fc:13:7a:8f:7a:76:0f:e6:69:e7:09:d6: 67:7b:f3:2d:44:f4:01:0f:2b:90:c7:04:a2:db:55:16:9b:23: 4e:8f:0f:43:b9:17:f9:3b:10:cd:7f:50:f1:10:87:a6:8f:49: 4a:35:a5:a9:d7:17:2e:81:a3:91:af:86:4c:73:3f:1c:64:ad: 12:ba:b4:67:75:2d:6f:03:20:b1:4c:fd:fd:c9:d3:e1:b8:d0: e9:b1:ef:7c:fb:77:9d:87:f0:de:01:97:10:ba:3d:d7:09:4b: ba:92:99:52:45:27:4b:c1:03:82:23:67:dc:91:02:7f:b0:01: 85:67:b8:87:f5:ed:2d:af:f1:93:74:bb:e7:73:1f:91:76:45: 4c:4c:a7:02:39:ed:86:53:29:8e:bf:89:3e:92:4b:4e:99:b1: f3:fe:67:66:cb:9f:a0:ca:e3:7b:db:e2:58:2e:b4:bd:2a:f8: 15:42:e5:2f:1d:3f:ea:02:81:34:f9:87:69:a0:2a:f8:31:4b: 92:aa:c5:49:40:2b:35:05:93:09:5f:76:ca:a0:5e:7c:ac:c0: 15:87:93:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEzMUUxMTAvBgNVBAUTKERBNTdCMTkxQzU1QkIzMzE5RUJEOTE4MkRDMEQ0RTZB RUYzRTBERDgwHhcNMjUwOTE5MDMyNjI0WhcNMjUwOTI2MDMyNjI0WjAYMRYwFAYD VQQDEw02OGNjY2Q2MS1hYTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmZ0N6wPcV/wwTEjFjE3PjpKX52/1+UQqpUsIMAsKPsoNKxlALJ46gFTsNBuv 6KGsdOK5C6JmiufiUcA3WyGPk/DyPYyVeAqTJj+WczYEPoRX9eUsrXP2i4QzelEN PDQgYVb7B4+dCgrMdquLpiJPvZyoNSE5mOzozpocXp/ApxHARrkJfStDHeYuhRnI LbkG8r/dzSwfk4yb8WRmknaPO6CfOwzFSjok7hyTubaRN5846VONgZvB7y0fWf5w N2b5gQQxrl8ZrweQHD3cbMmTIYwCUQ71Xe1Y+CmI2m4UOqj9Raaj5i1AtV69tOIT ewHD/Wc7UPLk/9a1MYEU1jaEvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJoC1d4q x+c6muPDIJLN7JLsdjp6MB8GA1UdIwQYMBaAFNpXsZHFW7Mxnr2RgtwNTmrvPg3Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTMxRS9DOEE0QzRFNEU4 QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6R2V2WkdDM0ExT2F1OC1E ZGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsZXhrY1Zic3pHZXZaR0MzQTFPYXU4LURkZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTMxRS9DOEE0QzRFNEU4QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6 R2V2WkdDM0ExT2F1OC1EZGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3rPWP3oeVsdJIE0kilbWP+1/MJrcjINRac3NyyRPk+5l4GEqX/69Z xxv8E3qPenYP5mnnCdZne/MtRPQBDyuQxwSi21UWmyNOjw9DuRf5OxDNf1DxEIem j0lKNaWp1xcugaORr4ZMcz8cZK0SurRndS1vAyCxTP39ydPhuNDpse98+3edh/De AZcQuj3XCUu6kplSRSdLwQOCI2fckQJ/sAGFZ7iH9e0tr/GTdLvncx+RdkVMTKcC Oe2GUymOv4k+kktOmbHz/mdmy5+gyuN72+JYLrS9KvgVQuUvHT/qAoE0+YdpoCr4 MUuSqsVJQCs1BZMJX3bKoF58rMAVh5PS -----END CERTIFICATE-----Generated at Fri Sep 19 08:50:10 2025 by rpki-client