$ rpki-client -vvf rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft File: 2CVmixrBt_OBXwe82lfnSMSWSpo.mft (raw, json) Hash identifier: /BUSzmGBP/dssYbdrzp8RmBk0rTQrLyRppAKc82g6qw= Subject key identifier: E9:CA:81:58:F3:D8:0D:82:47:98:EE:C8:59:8B:40:09:D3:55:0D:F0 Authority key identifier: D8:25:66:8B:1A:C1:B7:F3:81:5F:07:BC:DA:57:E7:48:C4:96:4A:9A Certificate issuer: /CN=A91756C3/serialNumber=D825668B1AC1B7F3815F07BCDA57E748C4964A9A Certificate serial: 79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CVmixrBt_OBXwe82lfnSMSWSpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft Manifest number: 77 Signing time: Wed 17 Sep 2025 07:31:37 +0000 Manifest this update: Wed 17 Sep 2025 07:31:37 +0000 Manifest next update: Wed 24 Sep 2025 07:31:37 +0000 Files and hashes: 1: 2CVmixrBt_OBXwe82lfnSMSWSpo.crl (hash: rp7hII0J3zWhC+KNEUgkZzv895ckESLu6hrpiH3fT0c=) 2: 00078764E06811EF8716401DC4F9AE02.roa (hash: LbImQdZW2RSWgtVHcpBhymJAYl7D/59tKMuTPJC97Bo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.crl rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CVmixrBt_OBXwe82lfnSMSWSpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 07:31:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 121 (0x79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91756C3, serialNumber=D825668B1AC1B7F3815F07BCDA57E748C4964A9A Validity Not Before: Sep 17 07:31:37 2025 GMT Not After : Sep 24 07:31:37 2025 GMT Subject: CN=68ca63d9-0a09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:24:97:8a:ec:10:c4:6f:88:35:39:f8:12:a4: 89:92:b1:94:6e:46:f5:31:a3:2c:05:de:0f:72:5e: ab:9a:65:22:f5:88:5a:66:9f:8d:28:fa:cd:e7:da: 5e:8d:74:8e:76:cd:a2:99:72:76:78:8f:f4:64:ca: 9c:3d:31:e6:d6:25:fb:bf:3f:e4:95:e6:44:60:81: 9d:d5:58:f8:4a:2e:23:37:5b:8a:e7:bd:32:91:5f: 3b:a3:ab:31:3a:d8:25:9e:a6:17:aa:87:cc:2f:f6: 59:8d:0e:32:94:bb:a0:27:f3:32:a4:ea:bc:80:86: 7e:a4:57:8e:33:17:48:b4:f2:0e:ea:b1:01:34:cb: a2:44:70:40:15:0b:f1:76:8a:7e:ca:48:d9:be:4d: 2c:04:88:0b:27:d0:37:86:0d:f5:62:ce:4b:77:ae: 72:15:c8:f5:c8:83:a0:9e:d4:b6:7a:c2:7d:4b:c9: 6e:c0:17:eb:15:31:9e:3a:60:89:1d:0f:d8:1b:7b: 35:d1:f1:68:6b:d1:75:b5:e3:ef:c6:4b:ba:cc:56: 69:6e:ae:fc:d7:8f:e6:fb:94:47:67:0c:e8:ab:d5: 96:10:46:4c:3b:70:70:5c:41:dc:ab:e8:cf:3f:98: b8:06:05:74:b1:6a:41:83:49:9e:f0:7e:10:d8:e0: 21:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:CA:81:58:F3:D8:0D:82:47:98:EE:C8:59:8B:40:09:D3:55:0D:F0 X509v3 Authority Key Identifier: keyid:D8:25:66:8B:1A:C1:B7:F3:81:5F:07:BC:DA:57:E7:48:C4:96:4A:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CVmixrBt_OBXwe82lfnSMSWSpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:fc:5d:4a:ca:36:9c:3b:6c:13:c1:11:14:01:0e:8e:3f:5f: 3a:0b:cf:25:05:f7:bd:ec:09:5d:f1:6f:4e:2f:b5:84:1e:e6: 1d:f9:44:2a:2b:eb:d1:f0:b9:d6:ae:f1:3b:03:c5:84:8b:e3: 03:02:4e:97:15:d3:ac:ce:03:ff:68:81:92:ab:78:40:c5:b2: d6:46:14:60:ad:8a:f7:97:4a:3e:5c:b2:cb:5e:56:c7:5a:19: 6a:c5:75:9a:2d:83:b6:8a:e0:bf:d1:eb:96:5a:e4:f1:bc:09: 1a:52:8e:a8:6a:6b:30:d1:45:ea:e2:ce:df:3b:48:c0:48:43: 59:7e:75:14:a7:2b:e4:43:82:cc:14:99:01:38:d2:f1:63:f3: 05:76:b6:8a:40:8d:9c:6c:27:9c:b0:b8:36:b7:05:de:f2:a5: fe:82:2d:3a:91:33:ad:6e:2f:b6:c7:8c:e3:94:96:da:02:69: 30:01:2d:af:1e:77:68:b2:f8:95:42:20:e6:29:b7:28:87:b5: e0:06:55:84:28:24:fc:17:20:47:d4:c8:94:66:98:a6:f2:d3: 73:63:39:97:85:a8:0b:48:1b:64:35:ff:97:53:fc:c0:9b:55: 7d:ab:bf:c5:94:0d:da:da:9b:c9:0b:e2:a9:f4:2f:d4:04:2d: cc:1f:ca:e0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NTZDMzExMC8GA1UEBRMoRDgyNTY2OEIxQUMxQjdGMzgxNUYwN0JDREE1N0U3NDhD NDk2NEE5QTAeFw0yNTA5MTcwNzMxMzdaFw0yNTA5MjQwNzMxMzdaMBgxFjAUBgNV BAMTDTY4Y2E2M2Q5LTBhMDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbJJeK7BDEb4g1OfgSpImSsZRuRvUxoywF3g9yXquaZSL1iFpmn40o+s3n2l6N dI52zaKZcnZ4j/Rkypw9MebWJfu/P+SV5kRggZ3VWPhKLiM3W4rnvTKRXzujqzE6 2CWepheqh8wv9lmNDjKUu6An8zKk6ryAhn6kV44zF0i08g7qsQE0y6JEcEAVC/F2 in7KSNm+TSwEiAsn0DeGDfVizkt3rnIVyPXIg6Ce1LZ6wn1LyW7AF+sVMZ46YIkd D9gbezXR8Whr0XW14+/GS7rMVmlurvzXj+b7lEdnDOir1ZYQRkw7cHBcQdyr6M8/ mLgGBXSxakGDSZ7wfhDY4CFvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6cqBWPPY DYJHmO7IWYtACdNVDfAwHwYDVR0jBBgwFoAU2CVmixrBt/OBXwe82lfnSMSWSpow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1NkMzLzVCRjUxOTJBRTA2 NzExRUZCQzNEMTcxQkM0RjlBRTAyLzJDVm1peHJCdF9PQlh3ZTgybGZuU01TV1Nw by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMkNWbWl4ckJ0X09CWHdlODJsZm5TTVNXU3BvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1 NkMzLzVCRjUxOTJBRTA2NzExRUZCQzNEMTcxQkM0RjlBRTAyLzJDVm1peHJCdF9P Qlh3ZTgybGZuU01TV1Nwby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF38XUrKNpw7bBPBERQBDo4/XzoLzyUF973sCV3xb04vtYQe5h35RCor 69Hwudau8TsDxYSL4wMCTpcV06zOA/9ogZKreEDFstZGFGCtiveXSj5cssteVsda GWrFdZotg7aK4L/R65Za5PG8CRpSjqhqazDRRerizt87SMBIQ1l+dRSnK+RDgswU mQE40vFj8wV2topAjZxsJ5ywuDa3Bd7ypf6CLTqRM61uL7bHjOOUltoCaTABLa8e d2iy+JVCIOYptyiHteAGVYQoJPwXIEfUyJRmmKby03NjOZeFqAtIG2Q1/5dT/MCb VX2rv8WUDdram8kL4qn0L9QELcwfyuA= -----END CERTIFICATE-----Generated at Fri Sep 19 03:57:44 2025 by rpki-client