$ rpki-client -vvf rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft File: 2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft (raw, json) Hash identifier: r4+S9rXiErx0hzkOgYE6UHtDOzP6eqh2OVx8IU4uNU0= Subject key identifier: 4B:A6:0C:CC:50:DA:F8:B4:D6:A4:CE:59:D8:0B:49:E8:21:29:11:A4 Authority key identifier: DA:BB:16:9D:9E:9D:77:E6:57:6C:01:81:01:25:2C:B0:B4:85:7F:62 Certificate issuer: /CN=A916D687/serialNumber=DABB169D9E9D77E6576C018101252CB0B4857F62 Certificate serial: 0973 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rsWnZ6dd-ZXbAGBASUssLSFf2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft Manifest number: 096A Signing time: Tue 16 Sep 2025 20:20:51 +0000 Manifest this update: Tue 16 Sep 2025 20:20:51 +0000 Manifest next update: Tue 23 Sep 2025 20:20:51 +0000 Files and hashes: 1: 2rsWnZ6dd-ZXbAGBASUssLSFf2I.crl (hash: eztx2LCKR8C1R+vedQqEMdIuM4icZ/WgGVHgjdhGDko=) 2: 33CDE41E5A4711EFA5ED8487C4F9AE02.roa (hash: 4ExF2O2Frz9RSsUL7YBwRkgASJlP9BcJdkByxRonGSo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.crl rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rsWnZ6dd-ZXbAGBASUssLSFf2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Sep 2025 20:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2419 (0x973) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D687, serialNumber=DABB169D9E9D77E6576C018101252CB0B4857F62 Validity Not Before: Sep 16 20:20:51 2025 GMT Not After : Sep 23 20:20:51 2025 GMT Subject: CN=68c9c6a3-5762 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:ca:05:79:c3:2b:1b:22:7e:d6:e1:cd:2c:a0: c7:25:6f:8e:40:b5:6e:71:ec:e9:b3:8c:d3:2a:e4: 7f:6b:7a:cc:a7:bf:f1:5c:79:1d:11:19:1d:e5:a3: dc:3c:9f:9e:7b:64:c3:3a:8b:d2:ed:fa:08:f5:2a: cc:b5:a2:dc:28:fe:12:5c:2b:ca:db:d1:8d:61:cc: 36:60:e8:3e:9e:d0:a9:78:c8:30:a5:3b:eb:06:67: 80:30:52:92:72:c6:51:19:8f:21:2e:66:92:9d:42: 8e:ff:71:fc:e7:e5:47:7a:e1:9a:c8:cc:bc:a4:e7: a0:bc:01:11:77:85:95:1a:0b:e1:69:10:84:48:b1: f2:a2:11:24:8d:fe:56:35:3b:d2:73:50:5d:17:d2: 37:77:62:6b:8c:f3:80:6e:a2:64:37:f5:89:e7:8d: 12:03:f6:01:6f:92:a5:1c:c1:2e:ce:17:81:09:a4: 40:3c:b4:f7:b3:cc:ab:06:b5:f0:21:f6:97:7b:c5: b8:3c:16:cf:1b:92:33:3a:d6:a8:71:4d:cd:62:2c: 64:56:be:47:25:a3:12:19:8c:4b:17:82:9b:32:e9: 6f:83:ba:71:68:35:c3:16:a4:2e:cb:f4:a0:34:9a: 5f:cb:11:0d:71:6b:e7:8c:bb:b7:34:2c:40:2c:22: 91:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:A6:0C:CC:50:DA:F8:B4:D6:A4:CE:59:D8:0B:49:E8:21:29:11:A4 X509v3 Authority Key Identifier: keyid:DA:BB:16:9D:9E:9D:77:E6:57:6C:01:81:01:25:2C:B0:B4:85:7F:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rsWnZ6dd-ZXbAGBASUssLSFf2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:4b:0e:96:3d:c6:c5:71:c8:ea:8e:05:b7:34:95:ad:5f:aa: 1f:24:59:a1:cc:3c:b3:9f:a3:c6:e7:07:fc:91:87:15:d8:99: 3e:1f:e0:13:d1:b9:01:de:cc:c3:5b:33:ad:b5:7b:21:d8:26: b6:c6:35:54:74:1e:d4:5e:cb:a0:46:d9:8b:55:1e:e6:f9:f8: 99:2d:0f:c5:5f:80:2d:5d:91:ee:9c:dd:7a:4d:88:ff:3a:04: 30:03:d7:8d:89:3a:48:21:85:6c:84:cd:12:f3:c3:67:ad:0f: 10:66:65:a1:83:f2:b1:33:6e:46:b5:6a:95:39:d0:72:d4:ce: 4b:32:4f:53:ec:16:39:96:52:40:5f:c6:ea:9e:eb:e0:1c:7c: e0:c2:38:cb:ed:df:fb:bd:10:b9:f6:7f:84:c4:40:86:a9:00: 7c:a9:2b:6a:27:ff:da:7f:01:13:9c:c4:29:60:24:ac:7d:2e: 67:75:1c:91:cb:b1:81:9f:f1:e4:e2:6e:55:ad:d3:59:2d:d6: 85:8b:ab:1a:7f:2f:90:41:8b:2f:bf:6f:34:97:bb:87:36:7e: f4:f8:a4:81:e9:a0:10:12:f4:fa:42:1a:db:72:b2:1b:ab:0c: 0a:be:fd:71:71:55:3d:2e:04:d6:84:0e:9c:90:74:78:b1:1d: 19:72:0c:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQ2ODcxMTAvBgNVBAUTKERBQkIxNjlEOUU5RDc3RTY1NzZDMDE4MTAxMjUyQ0Iw QjQ4NTdGNjIwHhcNMjUwOTE2MjAyMDUxWhcNMjUwOTIzMjAyMDUxWjAYMRYwFAYD VQQDEw02OGM5YzZhMy01NzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7MoFecMrGyJ+1uHNLKDHJW+OQLVucezps4zTKuR/a3rMp7/xXHkdERkd5aPc PJ+ee2TDOovS7foI9SrMtaLcKP4SXCvK29GNYcw2YOg+ntCpeMgwpTvrBmeAMFKS csZRGY8hLmaSnUKO/3H85+VHeuGayMy8pOegvAERd4WVGgvhaRCESLHyohEkjf5W NTvSc1BdF9I3d2JrjPOAbqJkN/WJ540SA/YBb5KlHMEuzheBCaRAPLT3s8yrBrXw IfaXe8W4PBbPG5IzOtaocU3NYixkVr5HJaMSGYxLF4KbMulvg7pxaDXDFqQuy/Sg NJpfyxENcWvnjLu3NCxALCKRXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEumDMxQ 2vi01qTOWdgLSeghKRGkMB8GA1UdIwQYMBaAFNq7Fp2enXfmV2wBgQElLLC0hX9i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDY4Ny83NkI0M0I2NDlG NDUxMUVBOUU1MjM1NjNDNEY5QUUwMi8ycnNXblo2ZGQtWlhiQUdCQVNVc3NMU0Zm MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJyc1duWjZkZC1aWGJBR0JBU1Vzc0xTRmYySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDY4Ny83NkI0M0I2NDlGNDUxMUVBOUU1MjM1NjNDNEY5QUUwMi8ycnNXblo2ZGQt WlhiQUdCQVNVc3NMU0ZmMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0Sw6WPcbFccjqjgW3NJWtX6ofJFmhzDyzn6PG5wf8kYcV2Jk+H+AT 0bkB3szDWzOttXsh2Ca2xjVUdB7UXsugRtmLVR7m+fiZLQ/FX4AtXZHunN16TYj/ OgQwA9eNiTpIIYVshM0S88NnrQ8QZmWhg/KxM25GtWqVOdBy1M5LMk9T7BY5llJA X8bqnuvgHHzgwjjL7d/7vRC59n+ExECGqQB8qStqJ//afwETnMQpYCSsfS5ndRyR y7GBn/Hk4m5VrdNZLdaFi6safy+QQYsvv280l7uHNn70+KSB6aAQEvT6QhrbcrIb qwwKvv1xcVU9LgTWhA6ckHR4sR0Zcgyc -----END CERTIFICATE-----Generated at Thu Sep 18 19:10:52 2025 by rpki-client