$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft File: 2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft (raw, json) Hash identifier: eqjm/Pi40viaC9Q+xfqWNhdremE2mvgWqhdHCsoEyns= Subject key identifier: 02:9B:7B:2B:DC:AD:AC:B5:8E:EB:2F:F1:2B:B1:73:AC:CA:5D:B3:0A Authority key identifier: D9:85:29:14:8C:BA:5D:DE:D3:B7:3D:60:52:EE:05:16:C0:24:C4:F3 Certificate issuer: /CN=A914C4ED/serialNumber=D98529148CBA5DDED3B73D6052EE0516C024C4F3 Certificate serial: 0210 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft Manifest number: 020B Signing time: Fri 05 Sep 2025 01:06:40 +0000 Manifest this update: Fri 05 Sep 2025 01:06:40 +0000 Manifest next update: Fri 12 Sep 2025 01:06:40 +0000 Files and hashes: 1: 2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl (hash: ykbIwF0RZpAkGIYHB3RpTc1k39i0VzI4SjqPGi8jkFM=) 2: F060FF0E720D11EDA84BE02EC4F9AE02.roa (hash: MTvQaAV2j4a15rRSTpoB41scqYTwrnry9bJaizx2K5M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 01:06:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 528 (0x210) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C4ED, serialNumber=D98529148CBA5DDED3B73D6052EE0516C024C4F3 Validity Not Before: Sep 5 01:06:40 2025 GMT Not After : Sep 12 01:06:40 2025 GMT Subject: CN=68ba37a0-9097 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:7b:d0:03:bd:ea:32:27:20:69:a9:a1:d5:d2: 03:17:24:39:40:38:25:4d:87:00:3d:31:64:65:20: b9:e4:57:af:c4:9d:d2:c4:99:06:1b:7f:22:6b:67: f8:a3:28:62:22:be:19:a8:6a:d2:92:9f:60:62:25: 90:ea:c2:b1:bc:eb:7e:d7:8e:b0:46:9f:8e:df:8b: ea:32:31:63:06:f9:c6:13:7b:28:bd:5a:c1:fe:6e: f8:20:56:e6:2b:d7:2d:98:a4:4d:46:a8:82:29:8f: 2a:cc:25:dd:2d:23:9f:97:33:0e:a5:3b:b5:fd:1a: e1:07:46:d2:b5:44:8f:e1:6f:54:90:ba:cc:80:a8: 4d:d6:53:85:94:63:d9:27:6a:2d:a0:fa:6e:96:ca: f2:8d:a3:16:52:96:81:a1:b7:45:4b:8d:ea:51:d0: ad:85:b6:d4:9c:f3:22:ee:96:bf:87:94:9b:5e:9f: b4:02:62:97:d1:5a:1d:11:6f:a2:8b:b2:19:bc:5d: 11:1c:c0:fe:7d:20:2c:2c:1b:80:0a:0b:65:af:fe: 6e:62:ff:43:6a:e3:f6:c5:2c:d6:c2:1a:d8:98:5e: 89:5a:77:d8:c7:8a:18:1a:20:a7:c9:f5:ec:3c:e8: a6:b6:d0:17:28:af:84:c9:de:90:6b:c9:ab:e9:15: 7f:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:9B:7B:2B:DC:AD:AC:B5:8E:EB:2F:F1:2B:B1:73:AC:CA:5D:B3:0A X509v3 Authority Key Identifier: keyid:D9:85:29:14:8C:BA:5D:DE:D3:B7:3D:60:52:EE:05:16:C0:24:C4:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:12:cf:0a:4f:6b:3e:16:2c:e0:52:a0:1e:42:a6:dc:f5:71: 30:15:ec:38:bc:bf:b9:d9:74:7f:6b:9a:8a:04:e5:30:58:23: 16:e4:fe:88:9b:2f:62:53:2c:88:e6:4c:ac:fe:b8:b4:15:15: bd:fc:b0:f2:16:a3:1e:93:d6:a7:ba:1d:bd:5e:8b:b3:85:e9: c0:7a:3d:37:2e:47:3f:9b:64:d6:a6:da:58:7f:46:df:af:47: a9:74:f0:3e:08:e5:f6:03:66:b9:aa:df:55:2a:86:2e:b1:c2: b6:fd:96:ab:04:ff:5c:96:e5:9b:a2:a1:84:92:2d:94:4c:d9: 6e:64:59:bd:e0:a0:00:bb:a6:c8:20:e4:ac:86:f0:3e:cd:75: c5:56:6f:1b:2f:25:29:1d:b3:61:dd:5c:2e:90:d3:df:7a:e5: 62:e1:1e:06:cf:93:55:68:41:07:f1:c4:b3:96:12:5e:07:14: c0:45:8b:1b:aa:dc:da:f1:f1:30:57:01:9d:77:04:99:a1:94: 4a:a8:e7:48:80:f8:d3:6e:b1:f5:ae:4c:1b:49:f8:3e:40:c7: 14:e6:5c:08:2b:cd:f8:cd:67:79:7a:4d:a5:89:a5:31:87:94: 56:14:78:55:1d:bb:71:43:34:3c:b2:9a:02:43:13:9b:44:00: f7:cc:5a:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0RUQxMTAvBgNVBAUTKEQ5ODUyOTE0OENCQTVEREVEM0I3M0Q2MDUyRUUwNTE2 QzAyNEM0RjMwHhcNMjUwOTA1MDEwNjQwWhcNMjUwOTEyMDEwNjQwWjAYMRYwFAYD VQQDEw02OGJhMzdhMC05MDk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw3vQA73qMicgaamh1dIDFyQ5QDglTYcAPTFkZSC55FevxJ3SxJkGG38ia2f4 oyhiIr4ZqGrSkp9gYiWQ6sKxvOt+146wRp+O34vqMjFjBvnGE3sovVrB/m74IFbm K9ctmKRNRqiCKY8qzCXdLSOflzMOpTu1/RrhB0bStUSP4W9UkLrMgKhN1lOFlGPZ J2otoPpulsryjaMWUpaBobdFS43qUdCthbbUnPMi7pa/h5SbXp+0AmKX0VodEW+i i7IZvF0RHMD+fSAsLBuACgtlr/5uYv9DauP2xSzWwhrYmF6JWnfYx4oYGiCnyfXs POimttAXKK+Eyd6Qa8mr6RV/hwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAKbeyvc ray1jusv8Suxc6zKXbMKMB8GA1UdIwQYMBaAFNmFKRSMul3e07c9YFLuBRbAJMTz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzRFRC83NTk4NDQ0NDcy MEQxMUVEQjU0NUUwMzBDNEY5QUUwMi8yWVVwRkl5NlhkN1R0ejFnVXU0RkZzQWt4 UE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJZVXBGSXk2WGQ3VHR6MWdVdTRGRnNBa3hQTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzRFRC83NTk4NDQ0NDcyMEQxMUVEQjU0NUUwMzBDNEY5QUUwMi8yWVVwRkl5Nlhk N1R0ejFnVXU0RkZzQWt4UE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXEs8KT2s+FizgUqAeQqbc9XEwFew4vL+52XR/a5qKBOUwWCMW5P6I my9iUyyI5kys/ri0FRW9/LDyFqMek9anuh29XouzhenAej03Lkc/m2TWptpYf0bf r0epdPA+COX2A2a5qt9VKoYuscK2/ZarBP9cluWboqGEki2UTNluZFm94KAAu6bI IOSshvA+zXXFVm8bLyUpHbNh3VwukNPfeuVi4R4Gz5NVaEEH8cSzlhJeBxTARYsb qtza8fEwVwGddwSZoZRKqOdIgPjTbrH1rkwbSfg+QMcU5lwIK834zWd5ek2liaUx h5RWFHhVHbtxQzQ8spoCQxObRAD3zFpz -----END CERTIFICATE-----Generated at Sat Sep 6 06:01:52 2025 by rpki-client