$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft File: 2H4ClpVGrcVaesygjK2yh5vGmck.mft (raw, json) Hash identifier: WJnx886/KflkKFtFLRhWI5Rz9k00Rw1/LuSqYMqV2Oo= Subject key identifier: 52:F8:98:DB:71:8C:E0:EB:D8:F1:51:C3:19:DE:37:BB:2F:6F:F5:3C Authority key identifier: D8:7E:02:96:95:46:AD:C5:5A:7A:CC:A0:8C:AD:B2:87:9B:C6:99:C9 Certificate issuer: /CN=A9185B5F/serialNumber=D87E02969546ADC55A7ACCA08CADB2879BC699C9 Certificate serial: 01B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft Manifest number: 01AE Signing time: Sat 23 Aug 2025 03:17:43 +0000 Manifest this update: Sat 23 Aug 2025 03:17:42 +0000 Manifest next update: Sat 30 Aug 2025 03:17:42 +0000 Files and hashes: 1: 2H4ClpVGrcVaesygjK2yh5vGmck.crl (hash: T9rhVyAm4AQHmyo+I644vBV2lTCXGn8s4xvYMY8TisY=) 2: A4B0D326F0A311ED99A1471CC4F9AE02.roa (hash: 0/Ic5iho+pqF4si9nqRdEW+r600hwTvuyP9trzSoxtE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.crl rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:17:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 434 (0x1b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B5F, serialNumber=D87E02969546ADC55A7ACCA08CADB2879BC699C9 Validity Not Before: Aug 23 03:17:42 2025 GMT Not After : Aug 30 03:17:42 2025 GMT Subject: CN=68a932d6-a1ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:b1:53:75:da:29:fa:72:7a:e3:41:2d:97:94: 71:e1:a4:67:d8:1d:76:e3:70:35:2a:33:1c:63:28: f8:84:c4:24:76:9c:0e:6b:55:3c:65:0f:f7:b0:73: 0c:0b:c7:ad:c4:94:45:8f:cb:d2:10:71:6d:27:4f: 85:aa:bc:00:c0:cc:88:8c:e2:bc:e8:f0:be:a7:84: c7:2d:85:84:49:7e:86:1e:03:55:cc:bc:b6:79:f0: fc:50:04:7c:9a:ec:2b:78:5d:7d:a5:1d:3a:60:a7: c0:74:15:be:cf:e6:67:51:42:51:fe:2a:08:96:5e: a0:3c:15:42:d1:6f:36:04:a5:c0:ed:fa:a8:c8:f0: ad:e9:5a:80:be:97:15:32:4e:9d:e9:95:09:65:fa: 54:5d:5e:25:15:cd:be:b0:99:9f:f3:5c:42:bd:8d: 38:0f:dd:b9:9a:ca:d0:d5:9c:ff:3d:63:c9:26:63: b9:9c:09:86:4e:c3:04:ad:5b:1e:c3:18:77:2a:1d: c7:fa:49:b1:1e:3c:9d:ef:f5:bb:45:14:94:75:dc: 10:ff:ce:fd:08:8b:85:0e:48:49:e6:7e:1a:95:4f: 8a:cf:a5:d0:ab:66:10:d3:00:e2:98:c4:a4:05:e9: 81:9e:f7:93:14:08:5b:c2:f3:6c:7b:54:c2:7b:b6: ff:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:F8:98:DB:71:8C:E0:EB:D8:F1:51:C3:19:DE:37:BB:2F:6F:F5:3C X509v3 Authority Key Identifier: keyid:D8:7E:02:96:95:46:AD:C5:5A:7A:CC:A0:8C:AD:B2:87:9B:C6:99:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:2a:59:8d:0a:e9:db:1c:80:71:f5:5c:12:fa:fa:13:b8:1c: ba:00:6e:af:4c:a2:5d:8d:32:7b:e2:c6:73:92:f2:d7:ca:a0: 63:c6:c1:73:8f:fb:18:d3:51:d7:9b:97:69:a7:6b:6c:4c:bf: 92:c2:6c:37:6a:ad:f4:99:e7:78:6e:e5:07:ae:ca:ee:4b:a5: 98:e2:0c:5b:0e:9a:67:85:89:77:72:7d:27:55:18:64:56:69: 5e:0c:eb:38:b7:32:00:b9:aa:bc:11:de:6d:0d:7e:d9:31:bb: 63:0d:26:29:ef:eb:6b:e0:f1:c7:8d:66:8b:60:03:81:8d:10: 61:d1:4d:4c:62:43:37:1a:26:3f:3a:1b:d6:68:bd:f1:f6:2e: 0a:54:62:b7:cd:6e:e3:26:cf:23:e1:d2:92:c9:ff:ec:c1:a2: 27:e1:c6:b3:73:ad:0f:b2:84:2f:2f:6a:af:32:5b:89:d1:26: 09:2d:40:60:9b:8e:34:29:32:1a:8a:60:e4:2f:33:a7:42:1e: 72:16:13:73:35:36:bf:f6:12:ed:5f:88:d6:56:b3:e4:70:8c: 8c:73:7a:5a:eb:4e:74:61:59:fc:60:4a:09:e3:34:2a:57:33: 3b:1f:b6:22:2e:40:67:4f:72:ee:5e:8a:d0:b6:c0:22:a8:7a: fd:6a:3e:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCNUYxMTAvBgNVBAUTKEQ4N0UwMjk2OTU0NkFEQzU1QTdBQ0NBMDhDQURCMjg3 OUJDNjk5QzkwHhcNMjUwODIzMDMxNzQyWhcNMjUwODMwMDMxNzQyWjAYMRYwFAYD VQQDEw02OGE5MzJkNi1hMWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1rFTddop+nJ640Etl5Rx4aRn2B1243A1KjMcYyj4hMQkdpwOa1U8ZQ/3sHMM C8etxJRFj8vSEHFtJ0+FqrwAwMyIjOK86PC+p4THLYWESX6GHgNVzLy2efD8UAR8 muwreF19pR06YKfAdBW+z+ZnUUJR/ioIll6gPBVC0W82BKXA7fqoyPCt6VqAvpcV Mk6d6ZUJZfpUXV4lFc2+sJmf81xCvY04D925msrQ1Zz/PWPJJmO5nAmGTsMErVse wxh3Kh3H+kmxHjyd7/W7RRSUddwQ/879CIuFDkhJ5n4alU+Kz6XQq2YQ0wDimMSk BemBnveTFAhbwvNse1TCe7b/FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFL4mNtx jODr2PFRwxneN7svb/U8MB8GA1UdIwQYMBaAFNh+ApaVRq3FWnrMoIytsoebxpnJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUI1Ri84RTQxODAyMEYw OUIxMUVEQTYwNkJENjJDNEY5QUUwMi8ySDRDbHBWR3JjVmFlc3lnaksyeWg1dkdt Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJINENscFZHcmNWYWVzeWdqSzJ5aDV2R21jay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUI1Ri84RTQxODAyMEYwOUIxMUVEQTYwNkJENjJDNEY5QUUwMi8ySDRDbHBWR3Jj VmFlc3lnaksyeWg1dkdtY2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsKlmNCunbHIBx9VwS+voTuBy6AG6vTKJdjTJ74sZzkvLXyqBjxsFz j/sY01HXm5dpp2tsTL+Swmw3aq30med4buUHrsruS6WY4gxbDppnhYl3cn0nVRhk VmleDOs4tzIAuaq8Ed5tDX7ZMbtjDSYp7+tr4PHHjWaLYAOBjRBh0U1MYkM3GiY/ OhvWaL3x9i4KVGK3zW7jJs8j4dKSyf/swaIn4cazc60PsoQvL2qvMluJ0SYJLUBg m440KTIaimDkLzOnQh5yFhNzNTa/9hLtX4jWVrPkcIyMc3pa6050YVn8YEoJ4zQq VzM7H7YiLkBnT3LuXorQtsAiqHr9aj7j -----END CERTIFICATE-----Generated at Sun Aug 24 22:23:13 2025 by rpki-client