$ rpki-client -vvf rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft File: 2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft (raw, json) Hash identifier: rUjw9dI6zCwHcwT9Ye82UCQLj2MaxTxZJaBBIU14U8s= Subject key identifier: F7:09:19:5F:73:84:BC:25:AF:B4:17:C8:66:9E:80:E7:96:D6:9E:A8 Authority key identifier: D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B Certificate issuer: /CN=A9197277/serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Certificate serial: 0143 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft Manifest number: 0137 Signing time: Fri 05 Sep 2025 04:53:45 +0000 Manifest this update: Fri 05 Sep 2025 04:53:45 +0000 Manifest next update: Fri 12 Sep 2025 04:53:45 +0000 Files and hashes: 1: 2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl (hash: 1ByS5ZlOqMhkT/kI9OcFgidnx5orJ8QVq7vNA13PvTw=) 2: 2DCC0688B57211EEBB68526DC4F9AE02.roa (hash: 3pfVChkV7zELWja+oHQv3Km6INJzdWSQS1Y4XK0gQXg=) 3: 2E31B8FCB57211EEBB68526DC4F9AE02.roa (hash: sp0oN6M3b0vKQWiSIdTtVM/z4x+pZK5BNETB2TbgZ2E=) 4: 6F5F30B8B56111EE91C72951C4F9AE02.roa (hash: ipvSSCsuIB7+MwYDiVzzG4/g5ky54F8EF1XYBBpIM6E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 04:53:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 323 (0x143) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197277, serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Validity Not Before: Sep 5 04:53:45 2025 GMT Not After : Sep 12 04:53:45 2025 GMT Subject: CN=68ba6cd9-17c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:99:d7:89:5d:29:04:64:88:8d:0b:9c:e6:2b: 8e:a6:d3:7b:ff:b6:c5:dd:6a:de:b5:63:17:d3:f5: 48:7a:ab:18:4c:93:87:66:99:db:cb:13:98:ea:90: 90:92:9f:62:95:8a:2a:0e:cf:42:cb:b4:bc:0d:19: ec:f8:48:00:4e:cc:a2:d2:34:b8:46:aa:b2:8b:43: b1:1e:35:8a:44:4c:28:b6:d2:18:f7:0c:fe:5c:0f: c3:e2:90:00:04:66:f2:ff:5a:c9:53:6e:3a:48:f9: be:c0:44:17:00:2a:6f:74:7e:ff:86:36:74:db:65: 07:69:98:7a:f5:24:5d:3a:c0:38:6b:20:b2:f1:df: fb:8c:36:62:4e:72:0c:91:71:53:00:0b:e8:d4:ee: 9d:75:26:c9:cb:c2:d2:51:ff:52:12:95:e9:4d:de: 36:84:e1:f3:f5:91:e0:26:b2:00:d2:1d:9d:5b:1c: a4:18:64:5e:6d:90:41:e3:c4:e7:fd:2e:69:1f:4e: 1f:f5:6a:57:ce:c3:c8:e9:19:53:f9:e3:54:fd:e1: 1f:0a:39:b2:2e:5c:a1:3b:dd:e4:ff:75:0e:30:fd: 84:bd:b3:bf:9d:b1:bf:63:0b:21:42:cc:0d:c7:ca: b8:09:60:3d:8c:0f:2f:c8:3a:8c:16:21:20:04:b8: 3a:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:09:19:5F:73:84:BC:25:AF:B4:17:C8:66:9E:80:E7:96:D6:9E:A8 X509v3 Authority Key Identifier: keyid:D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:2d:31:4c:d2:07:8b:1e:eb:5e:62:7f:0c:33:fc:2f:c0:c2: ce:c6:76:13:12:3f:c9:48:a4:a6:56:a8:b0:7d:59:91:ab:3c: 39:62:c5:19:9f:c6:43:ea:8d:44:d0:36:ad:8c:26:71:e1:87: e1:74:5c:fb:01:7d:5b:4d:76:31:46:52:bd:85:2b:c0:b7:31: ee:0c:8b:10:b0:57:19:52:3e:f9:dc:1d:81:68:25:05:f3:52: 3e:c9:90:6b:30:02:a7:39:9f:fb:28:fe:05:d9:36:c8:74:7b: 58:37:38:ea:f2:2e:2d:7d:e8:a2:34:49:02:2d:7f:1c:c2:a8: 5c:75:32:e7:14:9a:7c:70:eb:3a:17:c7:da:19:de:4b:8c:82: f1:84:af:6f:64:44:34:9f:be:90:52:6e:1c:86:2f:23:a7:1f: c4:b8:8a:ef:01:34:d8:aa:fe:9f:9c:fb:88:ff:fe:4f:e3:c9: 1a:73:56:b9:a2:91:87:5e:ec:75:f3:f2:a6:1d:2c:29:50:19: 01:af:4f:db:9b:91:98:18:79:7a:2f:02:52:cd:d9:b8:58:0d: c9:b0:30:d8:99:02:26:a4:36:ec:f8:32:47:5f:3d:9c:bf:e5: 57:1d:89:be:e8:1a:6b:38:0f:a4:b9:21:50:40:bb:39:52:31: a3:df:ca:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyNzcxMTAvBgNVBAUTKEQ4M0I5M0UzMUU5Mzk5MzdEOENCMTVGRTM5Q0E1RTZF OEZFQUZBOUIwHhcNMjUwOTA1MDQ1MzQ1WhcNMjUwOTEyMDQ1MzQ1WjAYMRYwFAYD VQQDEw02OGJhNmNkOS0xN2MzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt5nXiV0pBGSIjQuc5iuOptN7/7bF3WretWMX0/VIeqsYTJOHZpnbyxOY6pCQ kp9ilYoqDs9Cy7S8DRns+EgATsyi0jS4Rqqyi0OxHjWKREwottIY9wz+XA/D4pAA BGby/1rJU246SPm+wEQXACpvdH7/hjZ022UHaZh69SRdOsA4ayCy8d/7jDZiTnIM kXFTAAvo1O6ddSbJy8LSUf9SEpXpTd42hOHz9ZHgJrIA0h2dWxykGGRebZBB48Tn /S5pH04f9WpXzsPI6RlT+eNU/eEfCjmyLlyhO93k/3UOMP2EvbO/nbG/YwshQswN x8q4CWA9jA8vyDqMFiEgBLg6FwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPcJGV9z hLwlr7QXyGaegOeW1p6oMB8GA1UdIwQYMBaAFNg7k+Mek5k32MsV/jnKXm6P6vqb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzI3Ny80M0E3RTg5NEI1 NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRHVUNHg2VG1UZll5eFgtT2NwZWJvX3Et cHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJEdVQ0eDZUbVRmWXl4WC1PY3BlYm9fcS1wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzI3Ny80M0E3RTg5NEI1NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRHVUNHg2VG1U Zll5eFgtT2NwZWJvX3EtcHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcLTFM0geLHuteYn8MM/wvwMLOxnYTEj/JSKSmVqiwfVmRqzw5YsUZ n8ZD6o1E0DatjCZx4YfhdFz7AX1bTXYxRlK9hSvAtzHuDIsQsFcZUj753B2BaCUF 81I+yZBrMAKnOZ/7KP4F2TbIdHtYNzjq8i4tfeiiNEkCLX8cwqhcdTLnFJp8cOs6 F8faGd5LjILxhK9vZEQ0n76QUm4chi8jpx/EuIrvATTYqv6fnPuI//5P48kac1a5 opGHXux18/KmHSwpUBkBr0/bm5GYGHl6LwJSzdm4WA3JsDDYmQImpDbs+DJHXz2c v+VXHYm+6BprOA+kuSFQQLs5UjGj38p/ -----END CERTIFICATE-----Generated at Sat Sep 6 21:05:05 2025 by rpki-client