$ rpki-client -vvf rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.mft File: 2leiQgcEcAjXOmXWgiSke5oD2qo.mft (raw, json) Hash identifier: t9aoFK9QXvt7rsVhoW8yZa/D5x1XPKus9nQo8QDD6w0= Subject key identifier: 82:20:A9:F9:78:8B:19:14:CB:73:3C:7E:C4:47:44:97:BE:20:FC:D0 Authority key identifier: DA:57:A2:42:07:04:70:08:D7:3A:65:D6:82:24:A4:7B:9A:03:DA:AA Certificate issuer: /CN=A914573E/serialNumber=DA57A24207047008D73A65D68224A47B9A03DAAA Certificate serial: 064B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2leiQgcEcAjXOmXWgiSke5oD2qo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.mft Manifest number: 0644 Signing time: Tue 16 Sep 2025 23:00:53 +0000 Manifest this update: Tue 16 Sep 2025 23:00:53 +0000 Manifest next update: Tue 23 Sep 2025 23:00:53 +0000 Files and hashes: 1: 2leiQgcEcAjXOmXWgiSke5oD2qo.crl (hash: WIAba+pSaxukMCdKKndVRSQIkw5Jh2kuCo7EAdD0CqI=) 2: B67E0BB4A5A511EB94C0DE0FC4F9AE02.roa (hash: abFPv422MLo42yfuvK6GPVX4x/zkpsuvBFUhQvjbtGQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.crl rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2leiQgcEcAjXOmXWgiSke5oD2qo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Sep 2025 23:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1611 (0x64b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914573E, serialNumber=DA57A24207047008D73A65D68224A47B9A03DAAA Validity Not Before: Sep 16 23:00:53 2025 GMT Not After : Sep 23 23:00:53 2025 GMT Subject: CN=68c9ec25-e263 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:ae:4d:2b:af:96:c1:d8:bf:26:68:54:4c:81: 4b:e1:6f:04:63:57:90:ca:99:20:7e:10:70:ad:41: a6:47:fa:ca:d6:ec:b7:1f:3e:49:b9:42:5a:bc:8a: 77:4b:27:98:82:d9:87:37:89:ed:7c:11:7f:4b:64: d9:a0:39:90:d2:8e:8c:2b:ef:1c:4f:4b:66:7f:fa: 9e:b1:c2:38:30:d0:fd:21:75:b9:dd:ce:4c:b3:e0: d1:4e:c9:eb:6f:fb:54:ca:95:76:02:bf:fb:b1:c1: 0d:56:9c:8b:92:c7:d2:4c:52:7d:a7:32:52:eb:81: 20:3d:b9:c9:6b:ed:09:c9:ca:48:b7:70:c6:0d:71: 7e:fa:9d:0a:b5:9c:12:18:9e:24:a8:0b:56:be:f2: 81:75:08:6a:ce:01:60:33:58:1f:39:2e:db:48:1b: 1a:11:73:14:96:3b:88:18:7a:3b:81:e3:96:92:2e: 4e:aa:80:d8:c3:60:28:74:d1:6d:83:4b:ad:9b:9d: bd:0f:09:4d:ee:12:b5:19:d7:38:8a:6b:8a:e0:fe: 18:cb:90:61:49:74:5a:7c:4b:52:b1:80:da:9b:d7: d5:da:c8:64:c2:a3:89:d2:2f:6a:5d:5d:ef:70:9d: ed:e7:79:50:10:4f:d1:22:0b:24:af:28:fe:f5:43: 0f:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:20:A9:F9:78:8B:19:14:CB:73:3C:7E:C4:47:44:97:BE:20:FC:D0 X509v3 Authority Key Identifier: keyid:DA:57:A2:42:07:04:70:08:D7:3A:65:D6:82:24:A4:7B:9A:03:DA:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2leiQgcEcAjXOmXWgiSke5oD2qo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:07:09:e4:3b:6c:1e:ab:7d:cd:ca:a9:9b:74:af:22:b7:75: 3b:45:9f:55:bc:9d:b0:6f:79:a5:99:ac:04:04:d6:ce:3a:ae: c4:cf:77:1b:89:ab:c6:72:b3:1d:89:c3:a0:8c:52:23:62:27: c4:64:74:db:d6:d3:e1:3c:a6:6f:77:a2:ba:e5:e3:2a:42:ab: 44:e1:ea:34:a2:de:a3:6b:5a:8e:28:89:c3:14:20:f8:6a:cb: 22:4e:b2:27:4a:d4:f7:85:b6:56:93:46:e3:01:98:32:ea:2f: fe:52:bd:94:e8:64:f7:27:01:23:f6:02:95:89:bf:3e:4d:36: 97:d0:8a:d0:a3:e2:26:ca:9d:c5:59:7c:0b:0b:b8:72:cb:6f: e8:c5:97:e8:89:a3:f9:e1:32:22:54:41:6f:8d:d3:2c:16:25: c4:6b:1f:4a:0f:2a:26:8d:1d:44:2c:9b:e5:5e:09:eb:d7:43: 64:9e:00:ab:7e:68:93:9f:f2:6a:7a:fe:95:03:87:81:8f:ff: 38:2d:9a:dd:1b:94:21:4f:3f:d8:1f:ea:26:61:6e:ce:85:16: f7:7a:04:dc:43:ec:48:3e:3f:c8:ea:81:e2:0f:12:68:5e:53: 6d:54:8f:58:bf:0e:c7:7c:a7:d1:7c:12:1e:34:a1:49:99:0c: 83:38:a2:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU3M0UxMTAvBgNVBAUTKERBNTdBMjQyMDcwNDcwMDhENzNBNjVENjgyMjRBNDdC OUEwM0RBQUEwHhcNMjUwOTE2MjMwMDUzWhcNMjUwOTIzMjMwMDUzWjAYMRYwFAYD VQQDEw02OGM5ZWMyNS1lMjYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8K5NK6+Wwdi/JmhUTIFL4W8EY1eQypkgfhBwrUGmR/rK1uy3Hz5JuUJavIp3 SyeYgtmHN4ntfBF/S2TZoDmQ0o6MK+8cT0tmf/qescI4MND9IXW53c5Ms+DRTsnr b/tUypV2Ar/7scENVpyLksfSTFJ9pzJS64EgPbnJa+0JycpIt3DGDXF++p0KtZwS GJ4kqAtWvvKBdQhqzgFgM1gfOS7bSBsaEXMUljuIGHo7geOWki5OqoDYw2AodNFt g0utm529DwlN7hK1Gdc4imuK4P4Yy5BhSXRafEtSsYDam9fV2shkwqOJ0i9qXV3v cJ3t53lQEE/RIgskryj+9UMPTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIIgqfl4 ixkUy3M8fsRHRJe+IPzQMB8GA1UdIwQYMBaAFNpXokIHBHAI1zpl1oIkpHuaA9qq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTczRS82NzY4OTc4RUE1 QTQxMUVCOThDMzI5MEZDNEY5QUUwMi8ybGVpUWdjRWNBalhPbVhXZ2lTa2U1b0Qy cW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsZWlRZ2NFY0FqWE9tWFdnaVNrZTVvRDJxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTczRS82NzY4OTc4RUE1QTQxMUVCOThDMzI5MEZDNEY5QUUwMi8ybGVpUWdjRWNB alhPbVhXZ2lTa2U1b0QycW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2BwnkO2weq33NyqmbdK8it3U7RZ9VvJ2wb3mlmawEBNbOOq7Ez3cb iavGcrMdicOgjFIjYifEZHTb1tPhPKZvd6K65eMqQqtE4eo0ot6ja1qOKInDFCD4 assiTrInStT3hbZWk0bjAZgy6i/+Ur2U6GT3JwEj9gKVib8+TTaX0IrQo+Imyp3F WXwLC7hyy2/oxZfoiaP54TIiVEFvjdMsFiXEax9KDyomjR1ELJvlXgnr10NkngCr fmiTn/Jqev6VA4eBj/84LZrdG5QhTz/YH+omYW7OhRb3egTcQ+xIPj/I6oHiDxJo XlNtVI9Yvw7HfKfRfBIeNKFJmQyDOKLk -----END CERTIFICATE-----Generated at Thu Sep 18 20:31:07 2025 by rpki-client