$ rpki-client -vvf rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.mft File: 2QhMrcO-yMIAxalrcu2v1KAOrug.mft (raw, json) Hash identifier: cXSq3ouUTe0+qEAYtDz7irxuk1vFQV1hSG/b3pYGvcI= Subject key identifier: FE:01:A7:57:DF:B2:74:83:F6:EA:4A:04:A6:5E:B8:F2:98:49:A3:F6 Authority key identifier: D9:08:4C:AD:C3:BE:C8:C2:00:C5:A9:6B:72:ED:AF:D4:A0:0E:AE:E8 Certificate issuer: /CN=A91719F1/serialNumber=D9084CADC3BEC8C200C5A96B72EDAFD4A00EAEE8 Certificate serial: 0281 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhMrcO-yMIAxalrcu2v1KAOrug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.mft Manifest number: 027A Signing time: Tue 09 Sep 2025 01:47:21 +0000 Manifest this update: Tue 09 Sep 2025 01:47:21 +0000 Manifest next update: Tue 16 Sep 2025 01:47:21 +0000 Files and hashes: 1: 2QhMrcO-yMIAxalrcu2v1KAOrug.crl (hash: k8RgdOYAS4FklxuNswondZpjp+BGi/JSNUWJuWjYFxc=) 2: 00724F9621F111ED93774B6EC4F9AE02.roa (hash: 1MS8BgQSeLxFZfjzI2XVs+BA1y3N2nYBN3Uvkoalvq8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.crl rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhMrcO-yMIAxalrcu2v1KAOrug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 01:47:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 641 (0x281) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91719F1, serialNumber=D9084CADC3BEC8C200C5A96B72EDAFD4A00EAEE8 Validity Not Before: Sep 9 01:47:21 2025 GMT Not After : Sep 16 01:47:21 2025 GMT Subject: CN=68bf8729-7f52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:94:54:73:2b:b9:09:0f:2a:05:e0:49:6b:d2: 06:77:f7:c9:85:18:f9:a8:76:7b:19:b2:3d:9c:84: 63:56:ba:bd:bb:c9:26:f7:35:b0:51:24:e1:42:35: d7:2b:d8:c5:6f:98:bc:72:a6:f3:77:93:2c:6c:83: ec:f7:dc:e6:9a:c2:f3:3d:c7:9b:f3:e7:74:48:00: 18:f4:1c:8e:66:c1:bb:24:0d:3f:59:2a:4e:19:62: e7:19:14:2d:33:a8:99:c5:15:3e:09:77:c5:47:10: 47:a5:cb:b5:8c:49:b1:7a:b4:9c:91:dd:98:43:38: 5c:de:5e:c1:31:4b:75:dd:2e:55:c1:47:8a:ef:0b: 9d:d3:bb:04:dc:ce:80:98:d8:d4:9b:92:e3:20:26: a6:78:af:2e:e6:a5:5d:ab:92:03:bd:70:1d:0b:7a: fd:ac:bf:84:97:06:3c:ef:2c:ec:ca:c3:79:46:5e: 09:29:d3:8d:9a:fc:5b:a9:33:cf:5e:17:58:ab:25: 2f:c2:38:30:3c:70:ba:b5:2b:1c:8e:5b:22:a1:ee: 26:c9:07:b5:94:e8:6c:ff:fe:c4:d4:40:61:7c:f3: 0b:04:21:a9:52:17:32:e1:7a:71:4f:ca:74:e7:7e: e2:b2:66:6f:72:e8:c7:b1:db:93:d5:27:d2:a1:b4: 8b:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:01:A7:57:DF:B2:74:83:F6:EA:4A:04:A6:5E:B8:F2:98:49:A3:F6 X509v3 Authority Key Identifier: keyid:D9:08:4C:AD:C3:BE:C8:C2:00:C5:A9:6B:72:ED:AF:D4:A0:0E:AE:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhMrcO-yMIAxalrcu2v1KAOrug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:66:36:57:ee:33:67:be:75:a1:dc:c8:35:fe:27:a0:a5:fe: 64:35:d2:09:1d:4c:3c:e7:08:ee:d0:e1:f4:f7:29:41:8f:b1: a1:62:7c:ef:6f:2f:de:9c:41:05:c8:1b:2c:34:51:16:d1:3b: cf:72:be:bf:fb:0c:2b:c4:09:25:06:41:91:1d:e7:05:8a:9d: 2a:74:fe:bf:54:8d:1d:5c:df:0d:4a:ab:d9:fa:cb:5b:47:9a: df:91:4d:b0:3f:91:d8:cf:ff:57:23:cc:de:57:d0:ef:b1:b7: cb:65:92:a5:69:a7:c4:2c:fa:34:09:6f:f3:45:4f:9f:7c:b2: eb:72:ba:fb:68:53:bc:ee:8c:6d:98:30:ff:89:25:f2:bb:bd: 16:65:ff:f3:54:3f:8b:30:e0:34:0f:7e:1c:f1:8f:0f:de:78: f5:4d:88:14:c4:d9:6a:0f:a4:52:31:51:75:29:78:91:e7:4e: 85:f4:aa:11:4b:bd:84:9b:04:9d:6c:91:5d:a0:d8:03:df:70: e0:d8:35:97:9b:a2:52:52:0a:a8:fb:49:04:9a:89:b6:37:97: 3a:ae:6d:4c:ca:ab:34:2c:e3:4c:b6:68:5d:af:d8:e6:5e:42: 8d:d2:52:91:59:55:ff:d9:93:5c:1a:12:df:cf:21:c0:0c:f1: 47:55:62:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE5RjExMTAvBgNVBAUTKEQ5MDg0Q0FEQzNCRUM4QzIwMEM1QTk2QjcyRURBRkQ0 QTAwRUFFRTgwHhcNMjUwOTA5MDE0NzIxWhcNMjUwOTE2MDE0NzIxWjAYMRYwFAYD VQQDEw02OGJmODcyOS03ZjUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuJRUcyu5CQ8qBeBJa9IGd/fJhRj5qHZ7GbI9nIRjVrq9u8km9zWwUSThQjXX K9jFb5i8cqbzd5MsbIPs99zmmsLzPceb8+d0SAAY9ByOZsG7JA0/WSpOGWLnGRQt M6iZxRU+CXfFRxBHpcu1jEmxerSckd2YQzhc3l7BMUt13S5VwUeK7wud07sE3M6A mNjUm5LjICameK8u5qVdq5IDvXAdC3r9rL+ElwY87yzsysN5Rl4JKdONmvxbqTPP XhdYqyUvwjgwPHC6tSscjlsioe4myQe1lOhs//7E1EBhfPMLBCGpUhcy4XpxT8p0 537ismZvcujHsduT1SfSobSLkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP4Bp1ff snSD9upKBKZeuPKYSaP2MB8GA1UdIwQYMBaAFNkITK3DvsjCAMWpa3Ltr9SgDq7o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTlGMS82OTVGOTNGRTIx RUUxMUVEQjRDOEJENkNDNEY5QUUwMi8yUWhNcmNPLXlNSUF4YWxyY3UydjFLQU9y dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRaE1yY08teU1JQXhhbHJjdTJ2MUtBT3J1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTlGMS82OTVGOTNGRTIxRUUxMUVEQjRDOEJENkNDNEY5QUUwMi8yUWhNcmNPLXlN SUF4YWxyY3UydjFLQU9ydWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUZjZX7jNnvnWh3Mg1/iegpf5kNdIJHUw85wju0OH09ylBj7GhYnzv by/enEEFyBssNFEW0TvPcr6/+wwrxAklBkGRHecFip0qdP6/VI0dXN8NSqvZ+stb R5rfkU2wP5HYz/9XI8zeV9DvsbfLZZKlaafELPo0CW/zRU+ffLLrcrr7aFO87oxt mDD/iSXyu70WZf/zVD+LMOA0D34c8Y8P3nj1TYgUxNlqD6RSMVF1KXiR506F9KoR S72EmwSdbJFdoNgD33Dg2DWXm6JSUgqo+0kEmom2N5c6rm1Myqs0LONMtmhdr9jm XkKN0lKRWVX/2ZNcGhLfzyHADPFHVWJZ -----END CERTIFICATE-----Generated at Tue Sep 9 12:45:53 2025 by rpki-client