$ rpki-client -vvf rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft File: 2h2yzTH0VPaVYdhmXck--BLzl7A.mft (raw, json) Hash identifier: I1Qu7hZEYt88mqM+4lQ/FlJ805stGQO7Nqucl8su+u4= Subject key identifier: E7:CB:9B:8B:24:81:B5:0D:CE:83:22:A2:B4:45:2E:EE:2D:03:90:AE Authority key identifier: DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 Certificate issuer: /CN=A919A7CA/serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Certificate serial: 0165 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft Manifest number: 015B Signing time: Tue 09 Sep 2025 04:10:14 +0000 Manifest this update: Tue 09 Sep 2025 04:10:13 +0000 Manifest next update: Tue 16 Sep 2025 04:10:13 +0000 Files and hashes: 1: 2h2yzTH0VPaVYdhmXck--BLzl7A.crl (hash: BUdjSP+KnD94vS/GP2p0lRHRd6te5lIWKcygK/ownUM=) 2: 730B201A81E911EEAEFE7735C4F9AE02.roa (hash: s0CFqQaJE4zfLQbz4CeHwWhJkg8L6CDsaxGgDdisTeI=) 3: 4317395081E611EE9EFE132BC4F9AE02.roa (hash: tQp/nzqfCovKInVuREO99dY4qu3efR3x/X9HpDvqlY0=) 4: E71AB92A7F7D11EE8C183162C4F9AE02.roa (hash: Dsh7pIT1SQfv6ivkNmsm2ZCHRytBDFAmEgjeRNzC7do=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 04:10:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 357 (0x165) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A7CA, serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Validity Not Before: Sep 9 04:10:13 2025 GMT Not After : Sep 16 04:10:13 2025 GMT Subject: CN=68bfa8a5-2554 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ca:22:5f:40:f3:da:54:2e:90:0c:72:1e:c3: c1:f4:a3:97:50:7e:56:32:90:9e:b9:af:70:92:cd: 09:b5:ee:fc:8d:ae:f8:8b:cb:16:50:a4:04:23:85: fe:0a:3d:3d:25:67:72:b9:85:fe:07:b2:b6:8d:a6: 6b:1e:44:01:30:2a:b6:d9:da:db:92:b9:46:ba:d8: 4d:aa:68:98:47:5c:88:38:c2:31:fa:bf:e1:35:72: 15:f4:b2:ec:36:ee:9b:33:db:d4:a6:5f:0d:29:1f: b9:e5:7d:c8:20:62:76:ec:24:18:f9:32:c3:68:27: 2f:27:48:d4:ac:03:16:10:8b:b6:c8:44:eb:fd:eb: 1f:11:91:b5:62:94:ef:63:de:22:6b:ae:38:cc:80: a8:ca:88:16:7f:1a:8d:be:bb:b4:ac:be:73:b5:12: b8:6a:b5:76:83:d2:b5:69:8c:f3:cf:02:a7:af:0f: 4a:a1:56:58:7d:40:e2:28:6e:f6:d8:11:f9:0d:db: 9e:b3:a1:89:16:c4:d9:00:42:1a:47:98:b7:df:f0: 31:ee:68:0e:7c:40:24:d2:28:c6:30:f9:6e:72:1e: c6:75:8e:47:f6:8b:b1:fa:c7:0c:0c:57:55:c3:a5: 08:9b:5f:5b:66:9c:4e:69:bc:d4:90:53:23:97:6b: c1:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:CB:9B:8B:24:81:B5:0D:CE:83:22:A2:B4:45:2E:EE:2D:03:90:AE X509v3 Authority Key Identifier: keyid:DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:2d:4d:d1:e5:b5:f6:14:a3:33:ac:9c:65:10:cd:48:2f:25: 3f:05:52:bf:1a:ba:8d:b5:ae:5d:11:94:5e:3b:0b:eb:27:27: 76:c0:15:11:21:54:43:35:c0:99:2f:36:58:27:e6:65:f7:86: 48:91:e5:30:da:e4:aa:ea:0b:50:96:a9:b8:f8:0d:49:dd:90: 7d:30:b2:62:0a:33:4c:6c:c9:9f:bf:ec:79:a7:f9:7a:7f:fa: 2a:7b:99:0b:75:cd:ca:e6:e5:b0:2a:3b:ec:5d:85:5e:2f:d1: d1:c0:08:46:d8:d8:90:46:99:68:1b:58:49:00:13:10:c0:bb: 39:bd:6c:27:74:5a:be:cc:77:d3:81:a4:e2:f8:0b:69:0c:70: a6:74:40:4c:8e:54:c9:5b:6b:26:97:d0:f8:c1:75:d3:44:75: bf:dd:b9:c4:e3:3b:ae:7b:f6:b9:1b:d1:59:d1:07:c5:45:2a: 5d:8c:c2:6c:df:4b:80:e7:5a:fa:4d:44:05:43:52:c2:6a:16: e0:e1:81:32:e8:d8:ee:cb:c1:01:a5:76:07:35:49:7a:c5:78: 77:47:45:0f:16:0d:36:52:5d:84:9e:51:e6:f1:9b:79:0d:58: d4:9a:68:80:c8:f6:f6:96:77:47:20:58:30:59:4e:5e:a2:6f: a5:09:40:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE3Q0ExMTAvBgNVBAUTKERBMURCMkNEMzFGNDU0RjY5NTYxRDg2NjVEQzkzRUY4 MTJGMzk3QjAwHhcNMjUwOTA5MDQxMDEzWhcNMjUwOTE2MDQxMDEzWjAYMRYwFAYD VQQDEw02OGJmYThhNS0yNTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx8oiX0Dz2lQukAxyHsPB9KOXUH5WMpCeua9wks0Jte78ja74i8sWUKQEI4X+ Cj09JWdyuYX+B7K2jaZrHkQBMCq22drbkrlGuthNqmiYR1yIOMIx+r/hNXIV9LLs Nu6bM9vUpl8NKR+55X3IIGJ27CQY+TLDaCcvJ0jUrAMWEIu2yETr/esfEZG1YpTv Y94ia644zICoyogWfxqNvru0rL5ztRK4arV2g9K1aYzzzwKnrw9KoVZYfUDiKG72 2BH5Ddues6GJFsTZAEIaR5i33/Ax7mgOfEAk0ijGMPluch7GdY5H9oux+scMDFdV w6UIm19bZpxOabzUkFMjl2vB2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOfLm4sk gbUNzoMiorRFLu4tA5CuMB8GA1UdIwQYMBaAFNodss0x9FT2lWHYZl3JPvgS85ew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTdDQS80Q0Y3RjE1ODdF QjcxMUVFOTYyM0U5MUFDNEY5QUUwMi8yaDJ5elRIMFZQYVZZZGhtWGNrLS1CTHps N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJoMnl6VEgwVlBhVllkaG1YY2stLUJMemw3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTdDQS80Q0Y3RjE1ODdFQjcxMUVFOTYyM0U5MUFDNEY5QUUwMi8yaDJ5elRIMFZQ YVZZZGhtWGNrLS1CTHpsN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoLU3R5bX2FKMzrJxlEM1ILyU/BVK/GrqNta5dEZReOwvrJyd2wBUR IVRDNcCZLzZYJ+Zl94ZIkeUw2uSq6gtQlqm4+A1J3ZB9MLJiCjNMbMmfv+x5p/l6 f/oqe5kLdc3K5uWwKjvsXYVeL9HRwAhG2NiQRploG1hJABMQwLs5vWwndFq+zHfT gaTi+AtpDHCmdEBMjlTJW2sml9D4wXXTRHW/3bnE4zuue/a5G9FZ0QfFRSpdjMJs 30uA51r6TUQFQ1LCahbg4YEy6Njuy8EBpXYHNUl6xXh3R0UPFg02Ul2EnlHm8Zt5 DVjUmmiAyPb2lndHIFgwWU5eom+lCUA2 -----END CERTIFICATE-----Generated at Wed Sep 10 12:24:14 2025 by rpki-client