$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft File: 2QaTkaPngEpuvd-dQfLeTZG9UbM.mft (raw, json) Hash identifier: miKwQrkTw1HedPJBRl7QuflhZhNn4rYvdedPk8Veo7k= Subject key identifier: 85:99:42:8B:4B:D8:E7:2B:5B:90:A7:52:AA:4C:76:C6:61:B1:53:02 Authority key identifier: D9:06:93:91:A3:E7:80:4A:6E:BD:DF:9D:41:F2:DE:4D:91:BD:51:B3 Certificate issuer: /CN=A9125C22/serialNumber=D9069391A3E7804A6EBDDF9D41F2DE4D91BD51B3 Certificate serial: 0689 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QaTkaPngEpuvd-dQfLeTZG9UbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft Manifest number: 067F Signing time: Fri 04 Jul 2025 22:44:39 +0000 Manifest this update: Fri 04 Jul 2025 22:44:38 +0000 Manifest next update: Fri 11 Jul 2025 22:44:38 +0000 Files and hashes: 1: 2QaTkaPngEpuvd-dQfLeTZG9UbM.crl (hash: 4c0loguAJslsxb6+r8I1g2ZnAch7weRcyEwtUUhsCzQ=) 2: 202A51EA52D611EFA0333E23C4F9AE02.roa (hash: jy45pLpGUEHdAvcc7aV1J1N0BlCts0GUmsU/8qKGZrI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.crl rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QaTkaPngEpuvd-dQfLeTZG9UbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1673 (0x689) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C22, serialNumber=D9069391A3E7804A6EBDDF9D41F2DE4D91BD51B3 Validity Not Before: Jul 4 22:44:38 2025 GMT Not After : Jul 11 22:44:38 2025 GMT Subject: CN=68685957-2faf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:9e:0b:2b:4a:51:e3:1c:84:02:bb:be:01:fe: df:6f:0c:5b:a2:3d:f0:3f:07:29:50:26:cd:6d:00: b1:f0:d8:75:f6:ba:de:d4:25:4b:15:c9:f0:ca:99: 0b:34:56:cb:d8:3a:6b:58:97:2e:b3:75:f4:3b:ad: 96:a4:c0:bf:97:48:e6:1a:b2:74:1b:06:1e:38:1b: 4a:22:92:13:cc:84:84:61:39:ad:d3:d6:ce:a8:2b: 58:32:82:fa:50:a4:cc:f7:39:3d:de:51:67:3a:07: cf:81:83:1e:af:e0:ea:08:77:12:81:a6:1f:b3:35: fa:4e:97:ae:ce:0d:8e:e4:75:78:02:fa:30:ab:c1: 98:22:c2:dd:99:28:ab:5f:0f:cd:23:fb:9e:56:e7: 9a:67:87:97:49:3e:69:e8:5a:21:83:f2:61:d8:17: f7:40:63:ad:74:7d:87:9c:28:cf:6c:91:66:80:ab: 72:84:d6:f7:57:f1:14:97:62:b9:2b:6e:b0:76:11: 9e:64:98:53:b1:e1:e2:a4:0e:d5:69:35:0d:49:d3: 19:3f:ce:6d:06:b5:46:73:25:66:e9:5e:e7:79:9a: c5:33:4d:2c:52:d2:c9:64:4e:30:e7:93:c1:27:af: e4:8b:ae:c9:3c:67:e8:39:02:eb:42:ea:6a:5f:b5: 3d:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:99:42:8B:4B:D8:E7:2B:5B:90:A7:52:AA:4C:76:C6:61:B1:53:02 X509v3 Authority Key Identifier: keyid:D9:06:93:91:A3:E7:80:4A:6E:BD:DF:9D:41:F2:DE:4D:91:BD:51:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QaTkaPngEpuvd-dQfLeTZG9UbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:18:ff:aa:85:ce:7a:52:31:d6:f9:d8:bc:ef:40:f0:00:a3: c6:3b:94:c5:7c:5c:0e:2a:d7:59:ec:96:d9:c0:cf:55:f1:ac: a9:50:c6:55:30:d6:64:c3:db:f0:ef:f4:c7:da:bb:1b:8c:66: 75:0d:97:a7:b1:b7:9e:f6:a4:16:2a:ba:36:ad:54:e2:96:7b: fd:e5:9e:5c:6a:93:82:a1:4f:31:f7:c0:1d:84:93:06:61:b3: 53:0b:7b:a7:46:9b:48:ba:4c:41:c5:73:7e:95:59:9d:4e:04: 5c:13:3c:07:c8:83:3d:d2:be:a3:32:08:98:90:e8:e4:99:97: 06:1a:0a:91:64:bc:3a:49:8c:8e:b4:43:a4:8a:6d:00:14:bd: c2:37:09:f3:75:72:c8:03:09:ab:61:5e:5b:fc:57:92:bf:09: ba:a9:54:89:22:ce:a6:2f:2e:9a:bb:fa:63:21:df:12:75:7f: 5e:2f:ad:eb:02:6b:73:23:6e:cf:1c:26:2e:f9:59:8a:5c:92: a4:6c:83:ae:06:7f:bd:eb:0d:48:ad:6f:19:87:7d:d4:bd:3a: 1c:2e:d8:cd:8f:c0:75:19:12:21:30:ca:ba:f3:38:96:56:f3: 78:b7:86:22:7d:7a:70:cb:f6:80:17:92:0e:9a:79:c1:d1:3a: 0a:5d:90:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMjIxMTAvBgNVBAUTKEQ5MDY5MzkxQTNFNzgwNEE2RUJEREY5RDQxRjJERTRE OTFCRDUxQjMwHhcNMjUwNzA0MjI0NDM4WhcNMjUwNzExMjI0NDM4WjAYMRYwFAYD VQQDEw02ODY4NTk1Ny0yZmFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZ4LK0pR4xyEAru+Af7fbwxboj3wPwcpUCbNbQCx8Nh19rre1CVLFcnwypkL NFbL2DprWJcus3X0O62WpMC/l0jmGrJ0GwYeOBtKIpITzISEYTmt09bOqCtYMoL6 UKTM9zk93lFnOgfPgYMer+DqCHcSgaYfszX6Tpeuzg2O5HV4Avowq8GYIsLdmSir Xw/NI/ueVueaZ4eXST5p6Fohg/Jh2Bf3QGOtdH2HnCjPbJFmgKtyhNb3V/EUl2K5 K26wdhGeZJhTseHipA7VaTUNSdMZP85tBrVGcyVm6V7neZrFM00sUtLJZE4w55PB J6/ki67JPGfoOQLrQupqX7U9iwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIWZQotL 2OcrW5CnUqpMdsZhsVMCMB8GA1UdIwQYMBaAFNkGk5Gj54BKbr3fnUHy3k2RvVGz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMyMi8wNDU2OTVCODdG QUUxMUVCOTc3QjUzMzVDNEY5QUUwMi8yUWFUa2FQbmdFcHV2ZC1kUWZMZVRaRzlV Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRYVRrYVBuZ0VwdXZkLWRRZkxlVFpHOVViTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMyMi8wNDU2OTVCODdGQUUxMUVCOTc3QjUzMzVDNEY5QUUwMi8yUWFUa2FQbmdF cHV2ZC1kUWZMZVRaRzlVYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrGP+qhc56UjHW+di870DwAKPGO5TFfFwOKtdZ7JbZwM9V8aypUMZV MNZkw9vw7/TH2rsbjGZ1DZensbee9qQWKro2rVTilnv95Z5capOCoU8x98AdhJMG YbNTC3unRptIukxBxXN+lVmdTgRcEzwHyIM90r6jMgiYkOjkmZcGGgqRZLw6SYyO tEOkim0AFL3CNwnzdXLIAwmrYV5b/FeSvwm6qVSJIs6mLy6au/pjId8SdX9eL63r AmtzI27PHCYu+VmKXJKkbIOuBn+96w1IrW8Zh33UvTocLtjNj8B1GRIhMMq68ziW VvN4t4YifXpwy/aAF5IOmnnB0ToKXZDM -----END CERTIFICATE-----Generated at Sun Jul 6 17:05:48 2025 by rpki-client