$ rpki-client -vvf rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/2VYp3mJDm7AepHisFcom6ZWpeGQ.mft File: 2VYp3mJDm7AepHisFcom6ZWpeGQ.mft (raw, json) Hash identifier: 4CT1ZSQoDr9bfhsoqcBxe0L5bZsR2GvtPe9mfLK9gRI= Subject key identifier: A6:F7:13:1B:3B:9F:63:1A:65:AF:C5:E7:2F:0B:71:95:0E:21:22:DB Authority key identifier: D9:56:29:DE:62:43:9B:B0:1E:A4:78:AC:15:CA:26:E9:95:A9:78:64 Certificate issuer: /CN=A913854D/serialNumber=D95629DE62439BB01EA478AC15CA26E995A97864 Certificate serial: 8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2VYp3mJDm7AepHisFcom6ZWpeGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/2VYp3mJDm7AepHisFcom6ZWpeGQ.mft Manifest number: 8B Signing time: Wed 17 Sep 2025 07:16:24 +0000 Manifest this update: Wed 17 Sep 2025 07:16:23 +0000 Manifest next update: Wed 24 Sep 2025 07:16:23 +0000 Files and hashes: 1: 2VYp3mJDm7AepHisFcom6ZWpeGQ.crl (hash: xrlm1oAEfJb7FwN+5wIS3ol5Txmpct+5dGydFchIVfY=) 2: A999E39EC36C11EFAF838D35C4F9AE02.roa (hash: 1KvDgGWuLyFCN6s+q1kiM6VlBFYXCDfUfEerU6uXVoQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/2VYp3mJDm7AepHisFcom6ZWpeGQ.crl rsync://rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/2VYp3mJDm7AepHisFcom6ZWpeGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2VYp3mJDm7AepHisFcom6ZWpeGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 07:16:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913854D, serialNumber=D95629DE62439BB01EA478AC15CA26E995A97864 Validity Not Before: Sep 17 07:16:23 2025 GMT Not After : Sep 24 07:16:23 2025 GMT Subject: CN=68ca6048-15c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:fc:de:07:06:8d:1b:9e:34:77:5e:6a:e6:71: 21:53:8b:e6:9c:8c:c9:c5:36:1c:2f:d9:6d:61:e3: 84:6e:0d:80:a5:66:99:a4:53:6f:5c:39:45:88:67: 29:9c:41:e6:7c:19:63:f3:10:c4:90:91:90:91:ad: 6c:bb:c9:ae:3b:83:54:1d:44:05:ba:9a:fa:8c:56: 9a:43:07:2e:db:a4:10:ea:7d:1d:60:68:02:3c:c5: de:3e:b3:0d:db:c4:1a:d4:fc:65:b5:09:cd:85:c5: 8f:2a:a0:46:88:a1:c2:4a:a5:7f:04:cf:71:64:3e: 10:79:2e:6a:5f:74:19:7a:fb:20:63:66:12:76:0e: 9a:fb:4e:6a:9d:b5:19:b3:67:e7:11:ae:d7:d7:c4: 98:20:c8:66:94:00:ba:c6:a7:1f:33:8b:ab:6c:8d: 9b:f4:15:85:5f:02:a6:1e:20:30:20:c6:ca:42:da: 7e:7a:f3:eb:ba:ed:cc:ea:69:07:63:4b:ac:6d:bb: 64:30:fa:49:05:64:83:e3:e7:23:ac:9d:b0:a0:e8: 26:85:be:a2:1e:93:77:b8:cf:b9:6e:69:5a:33:aa: c0:92:63:53:73:0b:0b:d9:22:ab:09:5b:e9:d7:d5: 8d:59:6d:01:c2:c6:2b:59:9c:f7:1f:93:ac:64:8a: 6d:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:F7:13:1B:3B:9F:63:1A:65:AF:C5:E7:2F:0B:71:95:0E:21:22:DB X509v3 Authority Key Identifier: keyid:D9:56:29:DE:62:43:9B:B0:1E:A4:78:AC:15:CA:26:E9:95:A9:78:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/2VYp3mJDm7AepHisFcom6ZWpeGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2VYp3mJDm7AepHisFcom6ZWpeGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/2VYp3mJDm7AepHisFcom6ZWpeGQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:3c:ca:8d:55:d1:80:4e:c6:f6:4d:19:22:f3:68:90:d0:31: 34:72:13:f1:d3:d1:e0:7d:2e:8d:d9:e2:10:15:e2:4c:89:e0: 78:b8:81:98:f1:bd:03:d0:40:6e:1b:fa:6d:88:74:ff:15:de: fa:84:da:96:52:b9:78:16:58:31:24:43:a5:f6:e3:49:17:8e: 37:8c:fd:99:af:f6:21:55:55:44:00:4d:08:2e:66:69:82:96: f8:14:46:58:b5:e8:b4:5a:a5:2a:0b:a6:72:ea:b1:77:3a:66: 0c:2b:ad:33:e6:11:45:d0:05:02:54:97:a8:12:3a:2a:11:09: 29:71:cd:5d:76:6c:0e:f5:a6:94:b2:7f:2c:24:60:93:16:b1: c0:e4:fd:17:fe:bd:00:2e:64:3e:97:10:35:6e:ad:43:db:c0: 3b:92:f6:97:25:8d:87:9c:27:c6:2a:71:cb:90:75:a3:c6:89: ec:eb:2a:b1:7d:ef:da:c5:eb:be:a7:92:3c:56:f5:9b:a1:29: 4b:f8:61:f4:98:ca:ab:ee:79:a6:aa:d1:12:9a:f1:09:90:59: d9:9b:33:81:c4:92:60:9d:07:6d:54:34:a2:35:2a:bb:7f:bf: 7e:04:76:d7:63:e6:bf:bf:7e:f2:65:04:a9:01:9b:88:55:fd: f0:27:8d:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg1NEQxMTAvBgNVBAUTKEQ5NTYyOURFNjI0MzlCQjAxRUE0NzhBQzE1Q0EyNkU5 OTVBOTc4NjQwHhcNMjUwOTE3MDcxNjIzWhcNMjUwOTI0MDcxNjIzWjAYMRYwFAYD VQQDEw02OGNhNjA0OC0xNWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8fzeBwaNG540d15q5nEhU4vmnIzJxTYcL9ltYeOEbg2ApWaZpFNvXDlFiGcp nEHmfBlj8xDEkJGQka1su8muO4NUHUQFupr6jFaaQwcu26QQ6n0dYGgCPMXePrMN 28Qa1PxltQnNhcWPKqBGiKHCSqV/BM9xZD4QeS5qX3QZevsgY2YSdg6a+05qnbUZ s2fnEa7X18SYIMhmlAC6xqcfM4urbI2b9BWFXwKmHiAwIMbKQtp+evPruu3M6mkH Y0usbbtkMPpJBWSD4+cjrJ2woOgmhb6iHpN3uM+5bmlaM6rAkmNTcwsL2SKrCVvp 19WNWW0BwsYrWZz3H5OsZIptSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKb3Exs7 n2MaZa/F5y8LcZUOISLbMB8GA1UdIwQYMBaAFNlWKd5iQ5uwHqR4rBXKJumVqXhk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODU0RC9FN0M4REQyRUMz NkIxMUVGQkNCQzVCMTZDNEY5QUUwMi8yVllwM21KRG03QWVwSGlzRmNvbTZaV3Bl R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJWWXAzbUpEbTdBZXBIaXNGY29tNlpXcGVHUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODU0RC9FN0M4REQyRUMzNkIxMUVGQkNCQzVCMTZDNEY5QUUwMi8yVllwM21KRG03 QWVwSGlzRmNvbTZaV3BlR1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNPMqNVdGATsb2TRki82iQ0DE0chPx09HgfS6N2eIQFeJMieB4uIGY 8b0D0EBuG/ptiHT/Fd76hNqWUrl4FlgxJEOl9uNJF443jP2Zr/YhVVVEAE0ILmZp gpb4FEZYtei0WqUqC6Zy6rF3OmYMK60z5hFF0AUCVJeoEjoqEQkpcc1ddmwO9aaU sn8sJGCTFrHA5P0X/r0ALmQ+lxA1bq1D28A7kvaXJY2HnCfGKnHLkHWjxons6yqx fe/axeu+p5I8VvWboSlL+GH0mMqr7nmmqtESmvEJkFnZmzOBxJJgnQdtVDSiNSq7 f79+BHbXY+a/v37yZQSpAZuIVf3wJ43t -----END CERTIFICATE-----Generated at Thu Sep 18 21:55:17 2025 by rpki-client