$ rpki-client -vvf rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft File: 2QhrDfk0LcKwkbrobLd5_GJZvXs.mft (raw, json) Hash identifier: 0Wx3qC9WqZuA2vOOLyMcaKcHD7CtCKG44krWqhJLR+w= Subject key identifier: CE:E0:C5:1B:23:0B:BB:92:24:E1:2D:7B:E6:FF:02:C4:0F:8D:21:A0 Authority key identifier: D9:08:6B:0D:F9:34:2D:C2:B0:91:BA:E8:6C:B7:79:FC:62:59:BD:7B Certificate issuer: /CN=A914F2EC/serialNumber=D9086B0DF9342DC2B091BAE86CB779FC6259BD7B Certificate serial: 34CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft Manifest number: 34C6 Signing time: Thu 18 Sep 2025 15:02:01 +0000 Manifest this update: Thu 18 Sep 2025 15:02:01 +0000 Manifest next update: Thu 25 Sep 2025 15:02:01 +0000 Files and hashes: 1: 2QhrDfk0LcKwkbrobLd5_GJZvXs.crl (hash: mBOkA0JZiE+28cxbKknPil7qWN1NTKDj/LZCNuzuCCE=) 2: 588BD7269A1211E8B97A623AC4F9AE02.roa (hash: KKbAooYir9kiM+kQeIhamjhStk+gbSQk/A73xTUucXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.crl rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 15:02:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13519 (0x34cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F2EC, serialNumber=D9086B0DF9342DC2B091BAE86CB779FC6259BD7B Validity Not Before: Sep 18 15:02:01 2025 GMT Not After : Sep 25 15:02:01 2025 GMT Subject: CN=68cc1ee9-bad9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5b:61:7f:92:15:77:3c:45:d4:e3:75:de:2e: db:c4:af:ac:a6:bb:70:36:20:4d:b6:7c:bb:03:1a: d5:b2:97:22:b7:2e:9c:6f:36:8e:ee:b8:37:f2:c5: 9c:d7:78:7f:63:1e:64:ff:6d:9f:de:1d:9f:54:68: c5:bb:cb:ee:50:3e:4b:e5:a6:45:b1:b7:09:c0:3c: 32:39:60:79:f1:e2:5f:e0:05:ee:07:48:90:a7:88: d7:a8:03:e6:a9:d1:21:a0:40:b9:ad:ce:fc:c5:5a: 3f:62:9b:e3:37:40:5f:6a:5b:41:55:43:7d:0a:03: c5:2a:fa:c7:0a:d6:fb:58:3a:3b:1b:84:0a:82:4a: 68:e7:20:92:60:f5:4a:bc:f1:f1:ed:25:79:24:b6: e7:07:cd:0f:ce:ba:63:f6:76:2e:37:0e:b5:11:e1: cd:05:43:ac:2b:ed:93:a6:73:bd:2f:af:b8:59:c7: a2:03:0e:b9:fc:19:e5:ef:a8:cb:c6:34:9f:25:10: 90:dd:2f:70:8f:df:ba:f7:82:c1:c6:61:6a:5b:af: 15:86:d3:71:33:8c:68:d1:e8:22:21:2a:17:3c:71: 8b:6a:2a:97:74:83:75:37:86:2b:ae:19:4c:2b:67: 5a:90:67:e2:93:c2:06:b2:0b:5e:8e:cb:eb:61:4f: a3:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:E0:C5:1B:23:0B:BB:92:24:E1:2D:7B:E6:FF:02:C4:0F:8D:21:A0 X509v3 Authority Key Identifier: keyid:D9:08:6B:0D:F9:34:2D:C2:B0:91:BA:E8:6C:B7:79:FC:62:59:BD:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:3e:46:61:2b:c0:df:a4:15:cb:e2:59:b9:8c:c8:a2:30:bf: 85:f5:31:a2:7e:39:ed:6d:1e:6c:da:60:5e:24:fe:79:99:59: e4:0d:3c:f6:15:06:ff:85:e7:f6:fa:e3:71:ae:4d:cc:cc:b3: d2:a5:7a:95:dd:a5:a8:50:48:83:49:a8:83:4b:f1:ff:ad:2c: 0c:82:5e:5a:33:70:da:90:7d:8d:0c:19:16:35:fc:44:5d:2d: 06:b3:4f:fa:0e:3e:7b:4e:ab:06:64:00:7a:da:74:43:8f:91: 38:83:46:69:04:bd:ad:3d:9a:da:aa:83:b5:02:18:6c:41:bd: 91:ac:58:e8:f2:e8:02:c4:34:92:f2:eb:e8:67:45:66:22:61: 0b:5d:54:0c:4d:bd:45:e6:bb:da:74:5f:e0:43:59:97:5e:5b: 84:dd:0c:8d:b3:48:4e:a2:1f:13:0e:7e:f6:d5:c4:06:87:8c: 10:20:5d:40:4b:06:8c:c1:a3:93:bf:c1:e5:97:88:df:93:9e: 84:b1:b3:d8:56:ce:96:e1:99:85:09:1c:13:88:cb:71:28:ef: cb:73:13:33:09:50:01:e8:77:93:c8:17:1d:0f:96:49:4f:74: 3b:69:6b:9b:ac:3c:63:33:43:a5:fe:f4:05:8a:98:3f:d6:e8: 35:b8:1d:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYyRUMxMTAvBgNVBAUTKEQ5MDg2QjBERjkzNDJEQzJCMDkxQkFFODZDQjc3OUZD NjI1OUJEN0IwHhcNMjUwOTE4MTUwMjAxWhcNMjUwOTI1MTUwMjAxWjAYMRYwFAYD VQQDEw02OGNjMWVlOS1iYWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv1thf5IVdzxF1ON13i7bxK+sprtwNiBNtny7AxrVspcity6cbzaO7rg38sWc 13h/Yx5k/22f3h2fVGjFu8vuUD5L5aZFsbcJwDwyOWB58eJf4AXuB0iQp4jXqAPm qdEhoEC5rc78xVo/YpvjN0BfaltBVUN9CgPFKvrHCtb7WDo7G4QKgkpo5yCSYPVK vPHx7SV5JLbnB80Pzrpj9nYuNw61EeHNBUOsK+2TpnO9L6+4WceiAw65/Bnl76jL xjSfJRCQ3S9wj9+694LBxmFqW68VhtNxM4xo0egiISoXPHGLaiqXdIN1N4YrrhlM K2dakGfik8IGsgtejsvrYU+juQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM7gxRsj C7uSJOEte+b/AsQPjSGgMB8GA1UdIwQYMBaAFNkIaw35NC3CsJG66Gy3efxiWb17 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjJFQy9ENThBMjI2QzFE OUMxMUUyOUJDM0IyOEIwOEIwMkNEMi8yUWhyRGZrMExjS3drYnJvYkxkNV9HSlp2 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRaHJEZmswTGNLd2ticm9iTGQ1X0dKWnZYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjJFQy9ENThBMjI2QzFEOUMxMUUyOUJDM0IyOEIwOEIwMkNEMi8yUWhyRGZrMExj S3drYnJvYkxkNV9HSlp2WHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzPkZhK8DfpBXL4lm5jMiiML+F9TGifjntbR5s2mBeJP55mVnkDTz2 FQb/hef2+uNxrk3MzLPSpXqV3aWoUEiDSaiDS/H/rSwMgl5aM3DakH2NDBkWNfxE XS0Gs0/6Dj57TqsGZAB62nRDj5E4g0ZpBL2tPZraqoO1AhhsQb2RrFjo8ugCxDSS 8uvoZ0VmImELXVQMTb1F5rvadF/gQ1mXXluE3QyNs0hOoh8TDn721cQGh4wQIF1A SwaMwaOTv8Hll4jfk56EsbPYVs6W4ZmFCRwTiMtxKO/LcxMzCVAB6HeTyBcdD5ZJ T3Q7aWubrDxjM0Ol/vQFipg/1ug1uB2X -----END CERTIFICATE-----Generated at Fri Sep 19 00:41:00 2025 by rpki-client