$ rpki-client -vvf rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft File: 2lA_lyy8k6jIHflfVKLLKjjxPHc.mft (raw, json) Hash identifier: ZYUeg/UOJUp/anyYYBSuK7Gfoa0K0TjngjR85xeCokU= Subject key identifier: 16:A5:D9:51:1A:C2:D0:A1:C2:AB:D0:BF:58:8B:20:A6:D7:53:B1:72 Authority key identifier: DA:50:3F:97:2C:BC:93:A8:C8:1D:F9:5F:54:A2:CB:2A:38:F1:3C:77 Certificate issuer: /CN=A9144717/serialNumber=DA503F972CBC93A8C81DF95F54A2CB2A38F13C77 Certificate serial: 09EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft Manifest number: 09E2 Signing time: Wed 20 Aug 2025 19:59:37 +0000 Manifest this update: Wed 20 Aug 2025 19:59:37 +0000 Manifest next update: Wed 27 Aug 2025 19:59:37 +0000 Files and hashes: 1: 2lA_lyy8k6jIHflfVKLLKjjxPHc.crl (hash: /cOOkC1rEuJpkVRV78mIjX2il4whq0TpADewGeAXjpc=) 2: F38DEBFC83E911EA993D9515C4F9AE02.roa (hash: qAQSazWUf2FePmcHd1Qj+eRlLm7Ky5QuPvw10+7M0lo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.crl rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 19:59:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2538 (0x9ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144717, serialNumber=DA503F972CBC93A8C81DF95F54A2CB2A38F13C77 Validity Not Before: Aug 20 19:59:37 2025 GMT Not After : Aug 27 19:59:37 2025 GMT Subject: CN=68a62929-03c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:66:66:02:48:7a:63:c3:97:7a:d8:37:04:f6: 86:dc:57:d6:8a:91:9e:5c:98:f4:92:d4:a7:e6:53: 92:23:14:9a:57:0e:56:b4:74:3e:ee:e4:d1:16:59: 21:10:00:3a:a3:e2:2e:d9:35:e8:c8:2a:fd:79:d2: 16:09:3f:d0:08:da:93:42:2e:b6:f4:4e:77:20:80: 3d:dd:9e:be:04:ed:83:2f:80:c2:f6:a4:26:f0:c9: 08:b1:06:8e:95:c0:f2:1d:a6:04:9e:9c:fa:03:2c: 92:a0:7e:ba:7d:4e:47:a6:c2:9d:20:ac:8d:0f:b7: 10:19:4b:dc:b1:fd:ee:bc:84:0a:14:0e:37:42:5f: 38:d9:41:82:b1:33:f1:75:81:26:70:76:f6:56:a4: 20:08:b4:d1:b6:44:bc:6b:f9:9b:30:8c:cd:13:75: bd:28:3f:6c:18:e9:91:74:c1:46:8b:9b:31:b9:d5: 0b:12:bc:fc:aa:35:f8:48:61:95:ac:55:cf:cd:c5: e7:41:6f:a2:01:4c:1b:e0:f2:37:1c:d4:ea:c3:20: fe:c3:ed:14:87:74:30:b6:cf:47:85:82:d4:01:30: 73:68:fd:69:70:dd:9a:9f:28:4b:c5:80:79:4b:9e: a7:c2:29:9b:e3:70:45:4f:ce:15:4a:93:4b:24:77: 25:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:A5:D9:51:1A:C2:D0:A1:C2:AB:D0:BF:58:8B:20:A6:D7:53:B1:72 X509v3 Authority Key Identifier: keyid:DA:50:3F:97:2C:BC:93:A8:C8:1D:F9:5F:54:A2:CB:2A:38:F1:3C:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:4a:ee:c2:40:aa:1c:23:f7:11:fb:7d:d5:30:9f:17:20:32: 4a:c8:66:26:08:94:cc:26:bd:97:d2:09:2a:fe:90:5e:28:2f: 9f:bd:9c:fa:b8:ad:be:c5:fb:c2:3a:e8:33:55:ef:f8:4c:3a: ec:8d:6e:05:b4:c3:28:b7:84:ea:90:ad:3d:7c:4f:5a:74:fa: 1a:ee:4a:be:51:40:25:f5:82:b8:44:30:bd:d7:da:0f:39:60: f9:27:5e:5f:ca:0c:3c:8e:25:45:3e:c8:3b:ca:84:3d:7d:bf: c8:89:f3:0b:35:95:96:86:f5:df:b4:2c:84:8d:66:a0:79:93: 2b:a4:6b:ff:01:16:dd:65:55:bd:80:f9:ce:fd:7b:9b:a0:dd: 6e:06:39:64:78:d0:a5:33:6e:7f:1a:51:5a:35:54:7d:40:c1: 93:9a:99:5b:a5:a9:02:70:c0:a9:5f:ba:4b:cd:72:cb:0e:01: fa:89:48:4f:fa:8b:61:2b:4a:2a:19:15:09:6c:0e:44:a5:b8: ec:37:db:4b:6b:d0:eb:61:e4:83:a0:ce:3d:e2:92:d6:65:d2: 35:22:57:c7:96:36:50:60:ae:a2:aa:9f:3b:ab:db:f7:e7:cb: 08:08:5b:d3:dd:69:f4:fa:1b:3c:79:64:5f:05:02:99:78:4e: 80:eb:e3:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ3MTcxMTAvBgNVBAUTKERBNTAzRjk3MkNCQzkzQThDODFERjk1RjU0QTJDQjJB MzhGMTNDNzcwHhcNMjUwODIwMTk1OTM3WhcNMjUwODI3MTk1OTM3WjAYMRYwFAYD VQQDEw02OGE2MjkyOS0wM2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+GZmAkh6Y8OXetg3BPaG3FfWipGeXJj0ktSn5lOSIxSaVw5WtHQ+7uTRFlkh EAA6o+Iu2TXoyCr9edIWCT/QCNqTQi629E53IIA93Z6+BO2DL4DC9qQm8MkIsQaO lcDyHaYEnpz6AyySoH66fU5HpsKdIKyND7cQGUvcsf3uvIQKFA43Ql842UGCsTPx dYEmcHb2VqQgCLTRtkS8a/mbMIzNE3W9KD9sGOmRdMFGi5sxudULErz8qjX4SGGV rFXPzcXnQW+iAUwb4PI3HNTqwyD+w+0Uh3Qwts9HhYLUATBzaP1pcN2anyhLxYB5 S56nwimb43BFT84VSpNLJHclFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBal2VEa wtChwqvQv1iLIKbXU7FyMB8GA1UdIwQYMBaAFNpQP5csvJOoyB35X1Siyyo48Tx3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDcxNy8zOTg4OTAwMDgz RTgxMUVBQjc3MDA1MTNDNEY5QUUwMi8ybEFfbHl5OGs2aklIZmxmVktMTEtqanhQ SGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsQV9seXk4azZqSUhmbGZWS0xMS2pqeFBIYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDcxNy8zOTg4OTAwMDgzRTgxMUVBQjc3MDA1MTNDNEY5QUUwMi8ybEFfbHl5OGs2 aklIZmxmVktMTEtqanhQSGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxSu7CQKocI/cR+33VMJ8XIDJKyGYmCJTMJr2X0gkq/pBeKC+fvZz6 uK2+xfvCOugzVe/4TDrsjW4FtMMot4TqkK09fE9adPoa7kq+UUAl9YK4RDC919oP OWD5J15fygw8jiVFPsg7yoQ9fb/IifMLNZWWhvXftCyEjWageZMrpGv/ARbdZVW9 gPnO/XuboN1uBjlkeNClM25/GlFaNVR9QMGTmplbpakCcMCpX7pLzXLLDgH6iUhP +othK0oqGRUJbA5EpbjsN9tLa9DrYeSDoM494pLWZdI1IlfHljZQYK6iqp87q9v3 58sICFvT3Wn0+hs8eWRfBQKZeE6A6+ON -----END CERTIFICATE-----Generated at Fri Aug 22 16:38:26 2025 by rpki-client