$ rpki-client -vvf rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft File: 2UW2DwCc3xVcQp1Aha62z-BrzgA.mft (raw, json) Hash identifier: wseX//HhqqI1WIsSsTSde1atHO9dwnTtVNKziEdxet0= Subject key identifier: 9D:D5:C3:70:8D:69:79:A7:05:C7:E3:CB:80:D3:81:2D:E9:4F:7F:0D Authority key identifier: D9:45:B6:0F:00:9C:DF:15:5C:42:9D:40:85:AE:B6:CF:E0:6B:CE:00 Certificate issuer: /CN=A9149CEF/serialNumber=D945B60F009CDF155C429D4085AEB6CFE06BCE00 Certificate serial: 04DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft Manifest number: 04D6 Signing time: Fri 01 Aug 2025 00:54:59 +0000 Manifest this update: Fri 01 Aug 2025 00:54:59 +0000 Manifest next update: Fri 08 Aug 2025 00:54:59 +0000 Files and hashes: 1: 2UW2DwCc3xVcQp1Aha62z-BrzgA.crl (hash: j+3jnvs31DfjMwAcR9uThCbbrN4NZqjG25InumSmblM=) 2: AFAC764C2C1711EC817C5912C4F9AE02.roa (hash: Pxv8dePi1EpNPNL4ZdJ0nYxVU1Z8dZuP+ncTQy+eHOw=) 3: AF22E83C2C1711EC817C5912C4F9AE02.roa (hash: Qsapn7T7BSoVN2a752N9muKYuA54q3bOkNtfwyaphBI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.crl rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 00:54:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1246 (0x4de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149CEF, serialNumber=D945B60F009CDF155C429D4085AEB6CFE06BCE00 Validity Not Before: Aug 1 00:54:59 2025 GMT Not After : Aug 8 00:54:59 2025 GMT Subject: CN=688c1063-d5de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:79:26:b1:b6:68:23:50:f0:17:9b:5c:bb:11: d7:6b:2b:6b:06:08:bf:0e:a1:78:3f:b9:b6:96:12: bd:ce:66:c1:30:28:57:ec:26:09:b3:fd:8e:08:6e: 03:b1:10:d4:ac:be:5b:e2:6b:46:30:9d:fe:91:43: 6f:ad:f5:15:be:a2:58:50:16:88:00:44:a5:a1:91: 86:67:b0:f2:1a:d5:d0:d2:5d:2d:ec:05:cf:e7:5d: 59:fd:5b:e3:62:7f:a0:9e:24:0f:40:8e:7c:1c:e9: 1d:5a:ad:f8:cb:e0:ea:b0:f8:27:de:eb:7f:24:ea: a0:ef:0e:c4:2e:bb:3c:5b:c8:50:ba:5b:8a:fb:7f: a2:b3:fe:e8:68:c0:7f:f8:38:24:a1:71:8c:c0:30: a6:b4:e4:d8:17:74:e5:4c:ae:76:ad:df:56:a3:d1: 53:52:a9:9f:c7:76:6e:e1:d2:72:e5:49:8d:00:ca: 40:34:d3:a4:80:35:d7:00:b1:99:61:dc:d5:a0:39: af:bc:62:27:15:65:d3:4d:78:17:2f:4d:70:aa:d2: 54:ba:01:5c:f3:cf:a2:79:8a:87:73:fc:0f:cb:2e: 38:4f:b8:4c:0b:a7:89:39:77:39:41:8c:eb:9f:39: d9:20:45:8f:d4:8c:8a:c7:90:1b:b9:ec:3e:22:12: ac:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:D5:C3:70:8D:69:79:A7:05:C7:E3:CB:80:D3:81:2D:E9:4F:7F:0D X509v3 Authority Key Identifier: keyid:D9:45:B6:0F:00:9C:DF:15:5C:42:9D:40:85:AE:B6:CF:E0:6B:CE:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:1d:a3:00:ff:1e:06:d5:1c:3a:a5:a9:de:18:14:21:0e:aa: 4a:59:d9:a1:62:1c:03:06:5f:fb:17:b8:d2:fd:56:24:0f:04: 45:68:0c:33:65:d7:fb:8c:36:ff:36:01:1f:9d:bd:88:3e:6f: 2d:4c:2d:10:c9:39:e4:87:03:3d:c6:d0:d3:8b:ca:26:a0:cb: 69:5f:90:54:4b:11:c9:0a:b5:4b:ff:c9:21:e8:79:ab:98:68: 93:54:bc:9c:10:a0:ad:9f:fa:98:38:62:4c:0c:a2:be:ff:02: a2:53:91:42:a1:3a:3a:05:5e:7c:f6:1f:5e:8d:9d:8a:00:bb: d0:e7:09:de:02:a8:bf:36:a4:06:ea:b3:53:35:54:9f:7d:22: 97:9c:dd:cc:9e:a3:e3:38:70:08:61:98:98:5a:91:56:ed:fd: 7d:e0:03:44:22:4a:cb:59:ff:30:ff:53:42:f4:56:31:2d:c4: 8f:6f:73:38:8d:39:30:1b:13:fe:7b:79:1f:5e:28:ea:02:e6: 9e:3d:8e:2a:9c:c8:cb:45:04:9b:4c:d4:d7:53:0a:cd:25:5d: 92:2b:c2:6c:a8:46:59:24:54:36:79:ec:cf:59:96:20:c4:ae: d3:32:5f:fa:dd:33:e2:90:d3:cf:3a:c9:d6:28:02:09:c4:84: d0:2f:09:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDRUYxMTAvBgNVBAUTKEQ5NDVCNjBGMDA5Q0RGMTU1QzQyOUQ0MDg1QUVCNkNG RTA2QkNFMDAwHhcNMjUwODAxMDA1NDU5WhcNMjUwODA4MDA1NDU5WjAYMRYwFAYD VQQDEw02ODhjMTA2My1kNWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyXkmsbZoI1DwF5tcuxHXaytrBgi/DqF4P7m2lhK9zmbBMChX7CYJs/2OCG4D sRDUrL5b4mtGMJ3+kUNvrfUVvqJYUBaIAESloZGGZ7DyGtXQ0l0t7AXP511Z/Vvj Yn+gniQPQI58HOkdWq34y+DqsPgn3ut/JOqg7w7ELrs8W8hQuluK+3+is/7oaMB/ +DgkoXGMwDCmtOTYF3TlTK52rd9Wo9FTUqmfx3Zu4dJy5UmNAMpANNOkgDXXALGZ YdzVoDmvvGInFWXTTXgXL01wqtJUugFc88+ieYqHc/wPyy44T7hMC6eJOXc5QYzr nznZIEWP1IyKx5Abuew+IhKs0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ3Vw3CN aXmnBcfjy4DTgS3pT38NMB8GA1UdIwQYMBaAFNlFtg8AnN8VXEKdQIWuts/ga84A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUNFRi9DNDAxOUQyNDJD MTMxMUVDQjQ1ODA4NDJDNEY5QUUwMi8yVVcyRHdDYzN4VmNRcDFBaGE2MnotQnJ6 Z0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJVVzJEd0NjM3hWY1FwMUFoYTYyei1CcnpnQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUNFRi9DNDAxOUQyNDJDMTMxMUVDQjQ1ODA4NDJDNEY5QUUwMi8yVVcyRHdDYzN4 VmNRcDFBaGE2MnotQnJ6Z0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYHaMA/x4G1Rw6paneGBQhDqpKWdmhYhwDBl/7F7jS/VYkDwRFaAwz Zdf7jDb/NgEfnb2IPm8tTC0QyTnkhwM9xtDTi8omoMtpX5BUSxHJCrVL/8kh6Hmr mGiTVLycEKCtn/qYOGJMDKK+/wKiU5FCoTo6BV589h9ejZ2KALvQ5wneAqi/NqQG 6rNTNVSffSKXnN3MnqPjOHAIYZiYWpFW7f194ANEIkrLWf8w/1NC9FYxLcSPb3M4 jTkwGxP+e3kfXijqAuaePY4qnMjLRQSbTNTXUwrNJV2SK8JsqEZZJFQ2eezPWZYg xK7TMl/63TPikNPPOsnWKAIJxITQLwmk -----END CERTIFICATE-----Generated at Sat Aug 2 05:53:43 2025 by rpki-client