$ rpki-client -vvf rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft File: 2MZzCV6Cqbfn381GWA94MajRiso.mft (raw, json) Hash identifier: J0lYeGY7oUfsSvkuJywSZ/mYpM0T6N6XIrF3lTLnWVg= Subject key identifier: 31:55:4A:B5:CC:CF:A8:82:20:79:7C:09:46:1E:7A:34:06:F3:53:94 Authority key identifier: D8:C6:73:09:5E:82:A9:B7:E7:DF:CD:46:58:0F:78:31:A8:D1:8A:CA Certificate issuer: /CN=A911862D/serialNumber=D8C673095E82A9B7E7DFCD46580F7831A8D18ACA Certificate serial: 1763 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft Manifest number: 1748 Signing time: Fri 22 Aug 2025 16:44:00 +0000 Manifest this update: Fri 22 Aug 2025 16:43:59 +0000 Manifest next update: Fri 29 Aug 2025 16:43:59 +0000 Files and hashes: 1: 2MZzCV6Cqbfn381GWA94MajRiso.crl (hash: L+oTFgX89Zg6wEpdbJHEYKJksoiszW9Y6CVvqEa1F8U=) 2: D4A7497E6E6B11EF9FC61C6AC4F9AE02.roa (hash: JBsRHnJPdnzdINV0pvwEs0IpHO7Li2A9KaO/T3DyLM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.crl rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:43:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5987 (0x1763) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911862D, serialNumber=D8C673095E82A9B7E7DFCD46580F7831A8D18ACA Validity Not Before: Aug 22 16:43:59 2025 GMT Not After : Aug 29 16:43:59 2025 GMT Subject: CN=68a89e50-24d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:53:87:fd:01:39:6f:e0:3a:7e:7d:63:0e:2d: 70:e6:1c:b3:29:33:dc:6b:35:e5:ec:1f:25:17:00: 16:ff:af:25:33:25:fb:ac:24:84:c3:55:f3:c0:93: 8e:75:6e:c1:6a:fb:b0:03:ce:7d:6e:44:7b:a1:8b: 9a:12:d7:26:33:d1:79:66:2f:04:77:a1:4e:30:d7: 85:39:e1:c2:46:e1:94:00:75:e3:1c:68:92:f4:ea: 38:1e:19:b7:b3:34:cd:a9:92:43:aa:06:44:43:2e: a8:35:a0:70:ff:f3:a6:c4:3b:fa:ad:24:eb:4d:e8: df:6b:d2:bb:1c:d2:f0:92:53:2f:2d:67:b4:63:7b: 1b:77:f1:73:09:af:cb:86:10:d7:d9:d2:ca:a6:94: 0f:f2:06:ac:69:6b:f3:ce:8f:33:b4:c2:b9:fe:7e: e9:c0:d8:ae:20:6c:53:02:f8:3f:8f:ed:69:22:1a: b8:39:fd:b6:5f:5c:e0:02:69:dc:ce:72:9c:ae:1a: 40:d5:90:af:c1:aa:ca:db:08:5c:bd:3f:b0:b6:a6: 9f:f6:0d:2f:6c:6e:ed:4e:19:4a:6c:d6:1d:02:ea: 58:02:02:fc:ad:09:36:a6:4a:66:03:ee:f9:1f:ca: 5f:17:d2:1c:e8:df:06:44:51:5c:ce:8f:46:14:dd: b5:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:55:4A:B5:CC:CF:A8:82:20:79:7C:09:46:1E:7A:34:06:F3:53:94 X509v3 Authority Key Identifier: keyid:D8:C6:73:09:5E:82:A9:B7:E7:DF:CD:46:58:0F:78:31:A8:D1:8A:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:e8:1e:49:83:70:63:37:e5:88:ff:00:64:c2:e5:d0:d9:37: b8:0b:85:38:cd:06:f4:57:80:92:02:5b:97:66:69:d8:53:42: 79:0c:bb:a2:df:9c:5f:7f:51:70:82:88:29:87:df:ef:b9:f8: a4:16:e1:5a:9c:a3:83:93:d9:a4:93:39:62:56:d9:07:fe:37: e7:a2:6b:60:fe:92:c6:85:c2:d3:35:30:c9:96:61:d0:fd:51: 09:f2:53:29:c6:a4:14:5f:0f:36:ee:af:71:70:45:5b:3e:c0: 81:96:a7:d3:22:39:2c:15:9e:a6:82:17:78:68:ce:22:28:1c: e2:e0:5d:f9:2c:a6:cf:86:e7:4d:2d:a0:54:9f:f7:47:66:4a: b0:7e:22:c9:82:00:98:da:c3:fd:d3:ea:18:68:dc:b1:62:32: eb:37:cb:fa:1b:f3:61:04:81:88:ee:61:b9:e8:97:cb:3d:46: 4c:3d:9f:5b:52:06:aa:57:cb:60:e2:ca:60:c9:b8:af:d0:56: bb:2e:88:df:1d:93:92:fe:68:e7:6c:b0:d5:b9:54:e6:c4:83: 94:c1:7a:83:72:23:d1:a5:06:51:15:de:73:28:37:5a:5c:2d: a8:f5:4c:1f:bb:e5:f7:94:f3:f9:b1:76:49:25:3b:70:5b:b4: cd:b2:13:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF2MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg2MkQxMTAvBgNVBAUTKEQ4QzY3MzA5NUU4MkE5QjdFN0RGQ0Q0NjU4MEY3ODMx QThEMThBQ0EwHhcNMjUwODIyMTY0MzU5WhcNMjUwODI5MTY0MzU5WjAYMRYwFAYD VQQDEw02OGE4OWU1MC0yNGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAolOH/QE5b+A6fn1jDi1w5hyzKTPcazXl7B8lFwAW/68lMyX7rCSEw1XzwJOO dW7BavuwA859bkR7oYuaEtcmM9F5Zi8Ed6FOMNeFOeHCRuGUAHXjHGiS9Oo4Hhm3 szTNqZJDqgZEQy6oNaBw//OmxDv6rSTrTejfa9K7HNLwklMvLWe0Y3sbd/FzCa/L hhDX2dLKppQP8gasaWvzzo8ztMK5/n7pwNiuIGxTAvg/j+1pIhq4Of22X1zgAmnc znKcrhpA1ZCvwarK2whcvT+wtqaf9g0vbG7tThlKbNYdAupYAgL8rQk2pkpmA+75 H8pfF9Ic6N8GRFFczo9GFN21NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDFVSrXM z6iCIHl8CUYeejQG81OUMB8GA1UdIwQYMBaAFNjGcwlegqm359/NRlgPeDGo0YrK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODYyRC8zMjg3OUQzQUU4 QkExMUU3OEE2QTcwNDJDNEY5QUUwMi8yTVp6Q1Y2Q3FiZm4zODFHV0E5NE1halJp c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJNWnpDVjZDcWJmbjM4MUdXQTk0TWFqUmlzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODYyRC8zMjg3OUQzQUU4QkExMUU3OEE2QTcwNDJDNEY5QUUwMi8yTVp6Q1Y2Q3Fi Zm4zODFHV0E5NE1halJpc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBw6B5Jg3BjN+WI/wBkwuXQ2Te4C4U4zQb0V4CSAluXZmnYU0J5DLui 35xff1Fwgogph9/vufikFuFanKODk9mkkzliVtkH/jfnomtg/pLGhcLTNTDJlmHQ /VEJ8lMpxqQUXw827q9xcEVbPsCBlqfTIjksFZ6mghd4aM4iKBzi4F35LKbPhudN LaBUn/dHZkqwfiLJggCY2sP90+oYaNyxYjLrN8v6G/NhBIGI7mG56JfLPUZMPZ9b UgaqV8tg4spgybiv0Fa7LojfHZOS/mjnbLDVuVTmxIOUwXqDciPRpQZRFd5zKDda XC2o9Uwfu+X3lPP5sXZJJTtwW7TNshP7 -----END CERTIFICATE-----Generated at Sun Aug 24 04:46:37 2025 by rpki-client