$ rpki-client -vvf rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/2u-lQ1j0vMDYR8xtycr3i8XgmW4.mft File: 2u-lQ1j0vMDYR8xtycr3i8XgmW4.mft (raw, json) Hash identifier: bs2LeqTGLXFw1a5PE2ffVOqFyt38mT9OX7Ww5lu7yf4= Subject key identifier: AF:DD:54:2F:64:A8:A7:35:4A:7A:0E:05:5F:8A:B7:DF:7C:6A:DE:D2 Authority key identifier: DA:EF:A5:43:58:F4:BC:C0:D8:47:CC:6D:C9:CA:F7:8B:C5:E0:99:6E Certificate issuer: /CN=A915FA96/serialNumber=DAEFA54358F4BCC0D847CC6DC9CAF78BC5E0996E Certificate serial: 92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2u-lQ1j0vMDYR8xtycr3i8XgmW4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/2u-lQ1j0vMDYR8xtycr3i8XgmW4.mft Manifest number: 8F Signing time: Sun 07 Sep 2025 07:02:19 +0000 Manifest this update: Sun 07 Sep 2025 07:02:19 +0000 Manifest next update: Sun 14 Sep 2025 07:02:19 +0000 Files and hashes: 1: 2u-lQ1j0vMDYR8xtycr3i8XgmW4.crl (hash: 18a94APwX2UvxSq844FsEaB7kob9zmGUITFPJoy8Vik=) 2: 50B93FA8B5EE11EF9AC9D812C4F9AE02.roa (hash: 7AoMz8H6zHHdV8IPpxWlOn2xVFqVFr83q+XexoYNuOw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/2u-lQ1j0vMDYR8xtycr3i8XgmW4.crl rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/2u-lQ1j0vMDYR8xtycr3i8XgmW4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2u-lQ1j0vMDYR8xtycr3i8XgmW4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 07:02:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 146 (0x92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FA96, serialNumber=DAEFA54358F4BCC0D847CC6DC9CAF78BC5E0996E Validity Not Before: Sep 7 07:02:19 2025 GMT Not After : Sep 14 07:02:19 2025 GMT Subject: CN=68bd2dfb-786d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:af:ee:8d:a3:16:f6:58:dc:d5:8d:09:2f:b4: dd:99:e2:6a:04:a2:82:59:b3:ea:97:d2:2e:e2:a2: 15:2c:7a:db:b9:2b:8d:43:87:52:53:4c:0e:e1:ff: 4a:ec:10:86:a4:bb:5e:83:ba:e5:d4:0b:13:59:40: 29:40:78:f4:b5:43:09:84:c8:51:23:24:12:97:c9: 81:d1:94:3b:5b:39:09:8d:6f:f6:c9:f3:b5:3d:ed: ab:55:b4:ed:d9:bc:39:f2:f2:39:48:0e:39:a9:41: f2:d8:db:e8:5a:bd:e3:87:82:2f:04:e5:55:79:11: fe:7c:d8:64:cb:09:9d:d5:ce:6b:1f:76:c3:1f:7e: 44:46:37:f0:f2:7c:41:0f:fc:5d:c4:e0:08:9a:25: cc:10:e7:3c:a8:52:29:0d:4e:a5:5d:ca:38:a7:73: 7a:ea:b0:56:71:bf:50:e1:9c:23:f0:d1:54:65:ee: c2:23:69:5c:c0:24:f1:1e:d8:7c:82:91:12:94:da: a5:b0:49:fb:cb:41:6e:04:5a:61:49:f5:fe:a0:13: 06:f7:2d:dc:e7:f0:c7:c2:54:46:f6:4c:e1:8f:a2: 99:2d:ae:06:29:1d:8f:32:73:fb:f6:d8:a7:c8:8c: 95:60:b2:94:fb:f8:5f:4a:90:82:4a:ee:d7:28:6d: 51:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:DD:54:2F:64:A8:A7:35:4A:7A:0E:05:5F:8A:B7:DF:7C:6A:DE:D2 X509v3 Authority Key Identifier: keyid:DA:EF:A5:43:58:F4:BC:C0:D8:47:CC:6D:C9:CA:F7:8B:C5:E0:99:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/2u-lQ1j0vMDYR8xtycr3i8XgmW4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2u-lQ1j0vMDYR8xtycr3i8XgmW4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/2u-lQ1j0vMDYR8xtycr3i8XgmW4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:27:bc:6f:86:c8:9f:50:4f:c0:8e:0a:f3:ab:e5:62:5f:2d: 43:73:05:d9:07:3b:5e:9d:05:65:24:16:c9:f3:ce:7a:77:9c: 33:28:61:a8:ae:7f:a9:c2:86:f2:00:40:d9:17:03:ec:a7:a1: f9:9d:cc:0b:32:18:39:2c:59:f2:85:1f:12:72:cc:4f:09:97: be:eb:f2:d7:2b:2f:86:c9:46:2e:dd:d8:2d:25:f6:6a:28:f5: a2:0b:49:23:54:7c:3f:3a:8e:e2:dc:cb:53:ac:ce:b9:45:a6: ff:6d:80:09:ec:ae:13:7b:3b:13:5d:4b:c5:3c:4e:43:18:65: c3:34:7f:ce:81:57:ae:5c:65:8f:09:6b:fb:25:f0:a6:08:8b: 89:51:dd:ab:b1:c5:68:fe:c5:c6:40:98:c3:2f:98:f5:46:9e: ef:5a:9a:e0:7c:33:38:5c:42:df:db:7b:1d:c9:c1:77:07:2f: 12:e4:d0:25:85:59:9d:c7:96:af:44:20:50:ad:6e:e2:78:c4: 95:88:02:f4:65:3b:1d:12:c2:87:26:09:53:aa:45:58:52:37: c9:09:43:f0:b2:29:71:9f:22:d9:f2:c5:fc:36:22:ed:87:42: f0:88:45:f7:03:ca:8e:40:e5:33:26:91:97:69:c2:65:86:76: 90:d0:46:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZBOTYxMTAvBgNVBAUTKERBRUZBNTQzNThGNEJDQzBEODQ3Q0M2REM5Q0FGNzhC QzVFMDk5NkUwHhcNMjUwOTA3MDcwMjE5WhcNMjUwOTE0MDcwMjE5WjAYMRYwFAYD VQQDEw02OGJkMmRmYi03ODZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtq/ujaMW9ljc1Y0JL7TdmeJqBKKCWbPql9Iu4qIVLHrbuSuNQ4dSU0wO4f9K 7BCGpLteg7rl1AsTWUApQHj0tUMJhMhRIyQSl8mB0ZQ7WzkJjW/2yfO1Pe2rVbTt 2bw58vI5SA45qUHy2NvoWr3jh4IvBOVVeRH+fNhkywmd1c5rH3bDH35ERjfw8nxB D/xdxOAImiXMEOc8qFIpDU6lXco4p3N66rBWcb9Q4Zwj8NFUZe7CI2lcwCTxHth8 gpESlNqlsEn7y0FuBFphSfX+oBMG9y3c5/DHwlRG9kzhj6KZLa4GKR2PMnP79tin yIyVYLKU+/hfSpCCSu7XKG1RyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK/dVC9k qKc1SnoOBV+Kt998at7SMB8GA1UdIwQYMBaAFNrvpUNY9LzA2EfMbcnK94vF4Jlu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkE5Ni84QTM1MDkwQ0I1 RUQxMUVGOUQyMDY5MEVDNEY5QUUwMi8ydS1sUTFqMHZNRFlSOHh0eWNyM2k4WGdt VzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ1LWxRMWowdk1EWVI4eHR5Y3IzaThYZ21XNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkE5Ni84QTM1MDkwQ0I1RUQxMUVGOUQyMDY5MEVDNEY5QUUwMi8ydS1sUTFqMHZN RFlSOHh0eWNyM2k4WGdtVzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYJ7xvhsifUE/Ajgrzq+ViXy1DcwXZBztenQVlJBbJ8856d5wzKGGo rn+pwobyAEDZFwPsp6H5ncwLMhg5LFnyhR8ScsxPCZe+6/LXKy+GyUYu3dgtJfZq KPWiC0kjVHw/Oo7i3MtTrM65Rab/bYAJ7K4TezsTXUvFPE5DGGXDNH/OgVeuXGWP CWv7JfCmCIuJUd2rscVo/sXGQJjDL5j1Rp7vWprgfDM4XELf23sdycF3By8S5NAl hVmdx5avRCBQrW7ieMSViAL0ZTsdEsKHJglTqkVYUjfJCUPwsilxnyLZ8sX8NiLt h0LwiEX3A8qOQOUzJpGXacJlhnaQ0EbS -----END CERTIFICATE-----Generated at Sun Sep 7 14:33:07 2025 by rpki-client