$ rpki-client -vvf rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft File: r2oY2zoHHvGMylvos1Qz31RPD7I.mft (raw, json) Hash identifier: Aryv6Mhvw3DduQ3xkTs/wLmW1Uz2u4XpYZy9noBZbuY= Subject key identifier: 4C:65:1D:41:BF:F9:50:F5:95:C1:93:09:8F:36:6B:74:67:1D:5F:4B Authority key identifier: AF:6A:18:DB:3A:07:1E:F1:8C:CA:5B:E8:B3:54:33:DF:54:4F:0F:B2 Certificate issuer: /CN=A918E20E/serialNumber=AF6A18DB3A071EF18CCA5BE8B35433DF544F0FB2 Certificate serial: 0BEB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft Manifest number: 0BE4 Signing time: Sun 24 Aug 2025 18:50:02 +0000 Manifest this update: Sun 24 Aug 2025 18:50:01 +0000 Manifest next update: Sun 31 Aug 2025 18:50:01 +0000 Files and hashes: 1: r2oY2zoHHvGMylvos1Qz31RPD7I.crl (hash: 0RkpyqpowJ1jJHrnLH0yDMXj9VXDX+r6Kor//PPfP/c=) 2: BFA3B5F81FC911EA8CF04E61C4F9AE02.roa (hash: GOn5I83uJZSyXlxS2nqYANbi3ziYR8hFxpWIpKnwdbc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.crl rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 18:50:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3051 (0xbeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E20E, serialNumber=AF6A18DB3A071EF18CCA5BE8B35433DF544F0FB2 Validity Not Before: Aug 24 18:50:01 2025 GMT Not After : Aug 31 18:50:01 2025 GMT Subject: CN=68ab5eda-3797 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a4:1c:6c:8e:56:e8:66:31:66:4e:dd:f7:c8: 8e:ab:87:33:8c:4e:36:31:2e:c2:96:41:92:f8:d0: 88:1e:32:f1:02:47:db:91:2e:25:43:0d:50:a0:0b: 84:96:b7:12:35:cd:e6:e2:42:5e:f2:bf:b2:7a:b5: 21:fb:29:16:14:11:f9:07:ef:5c:79:ab:52:31:5a: 4d:0b:da:2c:ac:4f:66:e5:53:ac:c0:fd:45:31:4e: be:06:63:d4:33:0b:83:36:98:87:8f:7f:94:0c:86: 87:ac:14:c3:3e:50:e5:bb:8d:46:35:d0:01:26:d1: c3:1c:20:68:5f:ff:4a:b7:08:20:be:8e:cf:df:b6: 17:3d:ca:a3:f9:e1:84:c3:06:98:30:35:cc:b5:fb: bd:80:e9:1c:05:e4:b0:04:11:3c:49:ca:17:f3:77: d7:5d:32:0f:ee:3f:de:c1:61:8d:01:6d:a2:02:8c: a5:b0:e5:1a:28:d1:45:a1:4c:0c:d0:84:c1:95:93: 74:4f:0b:d2:7b:3d:93:6c:60:50:d2:11:b6:76:02: b3:48:a9:8d:09:9c:97:27:4d:a6:0c:e1:56:5a:90: 0b:38:af:72:fa:c7:4a:61:5e:78:f3:17:06:55:a3: 21:c8:25:c8:57:02:0b:3a:21:1e:ea:2b:87:f6:06: b5:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:65:1D:41:BF:F9:50:F5:95:C1:93:09:8F:36:6B:74:67:1D:5F:4B X509v3 Authority Key Identifier: keyid:AF:6A:18:DB:3A:07:1E:F1:8C:CA:5B:E8:B3:54:33:DF:54:4F:0F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:19:3d:fb:0a:92:ac:c9:9b:0f:f9:ce:af:5e:36:4a:4d:c8: e7:0e:ab:7d:69:cd:5e:ad:38:e3:28:5f:7f:ce:59:04:f2:d3: 51:88:15:14:f9:a3:c3:a5:1f:fd:aa:61:67:ba:3d:75:34:03: cf:36:88:0f:ee:d2:3e:53:81:18:d5:ea:0a:63:b1:c9:2d:70: 9f:7d:1b:2a:69:a4:28:81:1c:89:aa:37:99:33:c6:90:92:37: 1e:1d:a1:11:97:e9:0d:f2:0e:71:c2:72:07:71:4b:b0:ce:53: d3:9c:16:47:c5:3d:e6:6e:ad:a8:40:56:ca:63:6d:b8:a3:58: 02:9f:aa:a8:35:1f:67:6f:76:45:5d:0c:52:7d:eb:62:64:d9: 4b:48:c6:33:e8:a7:fd:51:59:03:93:8b:77:15:f8:7e:20:7e: 6d:ac:76:0d:64:56:e0:c9:29:3e:7c:a9:a0:48:f8:3b:e6:20: 38:3f:10:5e:3c:4d:ae:2e:3e:0f:a6:42:1f:84:a5:97:51:22: 9d:f8:92:be:97:79:4d:9b:7a:fa:26:ef:84:76:87:e1:00:f5: d2:14:dc:60:72:e6:5d:1c:09:38:28:2e:bf:28:65:7b:a7:b7: 0d:18:36:eb:d4:59:5a:da:a1:c2:d2:64:b5:74:77:4f:67:d6: 98:35:44:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUyMEUxMTAvBgNVBAUTKEFGNkExOERCM0EwNzFFRjE4Q0NBNUJFOEIzNTQzM0RG NTQ0RjBGQjIwHhcNMjUwODI0MTg1MDAxWhcNMjUwODMxMTg1MDAxWjAYMRYwFAYD VQQDEw02OGFiNWVkYS0zNzk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuKQcbI5W6GYxZk7d98iOq4czjE42MS7ClkGS+NCIHjLxAkfbkS4lQw1QoAuE lrcSNc3m4kJe8r+yerUh+ykWFBH5B+9ceatSMVpNC9osrE9m5VOswP1FMU6+BmPU MwuDNpiHj3+UDIaHrBTDPlDlu41GNdABJtHDHCBoX/9Ktwggvo7P37YXPcqj+eGE wwaYMDXMtfu9gOkcBeSwBBE8ScoX83fXXTIP7j/ewWGNAW2iAoylsOUaKNFFoUwM 0ITBlZN0TwvSez2TbGBQ0hG2dgKzSKmNCZyXJ02mDOFWWpALOK9y+sdKYV548xcG VaMhyCXIVwILOiEe6iuH9ga1lQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFExlHUG/ +VD1lcGTCY82a3RnHV9LMB8GA1UdIwQYMBaAFK9qGNs6Bx7xjMpb6LNUM99UTw+y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTIwRS8yM0FBRDk4RTFG QzgxMUVBODQ1OTRGNUVDNEY5QUUwMi9yMm9ZMnpvSEh2R015bHZvczFRejMxUlBE N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Iyb1kyem9ISHZHTXlsdm9zMVF6MzFSUEQ3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTIwRS8yM0FBRDk4RTFGQzgxMUVBODQ1OTRGNUVDNEY5QUUwMi9yMm9ZMnpvSEh2 R015bHZvczFRejMxUlBEN0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIGT37CpKsyZsP+c6vXjZKTcjnDqt9ac1erTjjKF9/zlkE8tNRiBUU +aPDpR/9qmFnuj11NAPPNogP7tI+U4EY1eoKY7HJLXCffRsqaaQogRyJqjeZM8aQ kjceHaERl+kN8g5xwnIHcUuwzlPTnBZHxT3mbq2oQFbKY224o1gCn6qoNR9nb3ZF XQxSfetiZNlLSMYz6Kf9UVkDk4t3Ffh+IH5trHYNZFbgySk+fKmgSPg75iA4PxBe PE2uLj4PpkIfhKWXUSKd+JK+l3lNm3r6Ju+EdofhAPXSFNxgcuZdHAk4KC6/KGV7 p7cNGDbr1Fla2qHC0mS1dHdPZ9aYNUTC -----END CERTIFICATE-----Generated at Sun Aug 24 21:54:11 2025 by rpki-client