$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft File: 2QaTkaPngEpuvd-dQfLeTZG9UbM.mft (raw, json) Hash identifier: GY5zUjxMaHOIyJFq9KfPlVgbAysb/7/nTYIrZjGOw8Q= Subject key identifier: 7C:05:52:03:56:4C:33:C1:9B:F3:B9:AD:55:96:D6:64:C9:FC:85:6D Authority key identifier: D9:06:93:91:A3:E7:80:4A:6E:BD:DF:9D:41:F2:DE:4D:91:BD:51:B3 Certificate issuer: /CN=A9125C22/serialNumber=D9069391A3E7804A6EBDDF9D41F2DE4D91BD51B3 Certificate serial: 06A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QaTkaPngEpuvd-dQfLeTZG9UbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft Manifest number: 0698 Signing time: Fri 22 Aug 2025 22:25:44 +0000 Manifest this update: Fri 22 Aug 2025 22:25:43 +0000 Manifest next update: Fri 29 Aug 2025 22:25:43 +0000 Files and hashes: 1: 2QaTkaPngEpuvd-dQfLeTZG9UbM.crl (hash: AmWEqkO2NbEfCWO4M4FIaRbCektKlaEm+fFIxe4xfcE=) 2: 202A51EA52D611EFA0333E23C4F9AE02.roa (hash: jy45pLpGUEHdAvcc7aV1J1N0BlCts0GUmsU/8qKGZrI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.crl rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QaTkaPngEpuvd-dQfLeTZG9UbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:25:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1698 (0x6a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C22, serialNumber=D9069391A3E7804A6EBDDF9D41F2DE4D91BD51B3 Validity Not Before: Aug 22 22:25:43 2025 GMT Not After : Aug 29 22:25:43 2025 GMT Subject: CN=68a8ee67-b8d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:12:50:ae:c7:f0:e4:0c:a5:80:f3:81:59:3f: df:c6:98:be:57:3e:8b:4d:70:30:ae:fd:d7:07:d5: ba:99:48:26:e6:3f:a0:d1:08:a3:d1:cd:13:c0:26: 2c:8f:29:79:f2:d2:46:14:18:34:74:1b:46:f9:57: f7:77:30:1e:06:e5:ce:f0:6f:5d:55:78:ff:7d:b1: bc:37:eb:5c:38:48:ab:7b:4a:fd:fd:a6:c3:a4:bb: 67:d4:39:50:46:f8:11:d0:a3:81:5e:d9:4e:e0:dd: 2e:d2:a2:c6:c4:35:ac:fb:fe:83:67:22:3f:3a:4a: f1:f7:85:b7:69:48:44:db:08:da:d7:56:d0:a1:77: f4:1e:7d:92:fd:d2:53:10:08:c1:76:53:b7:10:4c: e2:31:72:69:2a:e2:de:60:8d:1d:35:9c:7a:51:df: 15:bf:bb:db:f1:2a:49:71:16:c1:16:95:58:6a:ae: ef:96:c3:36:56:cd:bc:b7:d2:81:8a:b6:c2:1e:1e: 00:b8:83:7a:00:dd:e5:ad:dd:42:3b:ff:77:dd:47: b2:73:a6:5d:83:94:88:ac:ba:43:08:5d:e3:3a:b1: 5b:0c:44:1c:52:bc:f3:73:34:d9:44:c2:dc:63:5a: a5:18:a4:f0:18:a3:21:7e:72:26:7c:ba:03:ec:9a: d6:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:05:52:03:56:4C:33:C1:9B:F3:B9:AD:55:96:D6:64:C9:FC:85:6D X509v3 Authority Key Identifier: keyid:D9:06:93:91:A3:E7:80:4A:6E:BD:DF:9D:41:F2:DE:4D:91:BD:51:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QaTkaPngEpuvd-dQfLeTZG9UbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:1d:c2:7e:b0:84:be:8d:69:28:dd:17:00:f5:ef:3c:3f:0d: 5c:ec:d8:63:9f:5b:ca:09:d8:0a:d8:bf:72:03:bb:5b:65:7a: 0a:fd:cb:59:4c:59:b1:1d:4a:95:f1:74:37:3e:9f:54:6f:65: 6e:47:00:b3:58:ae:a2:8d:60:2a:da:a9:8f:f7:3d:c6:52:43: 87:98:ea:eb:a2:32:d6:14:06:5d:45:47:be:3e:29:0b:8e:14: 2f:37:53:21:50:28:2f:4a:16:57:36:7f:94:e6:5f:81:4c:0e: 6a:fa:91:8e:ea:5d:d7:e4:fa:d9:2e:3f:53:e8:19:c9:c8:0e: 2c:d0:2e:94:e5:31:48:81:70:3f:29:42:83:b0:19:4a:ab:d4: 6a:4f:ea:a9:34:08:64:94:62:76:44:80:9e:6d:be:60:08:28: 64:41:ea:56:bb:90:f1:0b:c6:e8:4f:6e:69:8d:d1:31:d1:07: 38:7a:0a:85:31:3d:95:a5:2c:a7:e5:05:d3:d4:96:b0:5f:d7: 82:20:0e:1d:af:0e:fa:4d:3c:a9:23:b9:50:50:f8:5b:0c:36: 5c:cf:ad:0c:8d:c0:be:a3:82:1c:0e:1b:2c:de:42:2f:0b:2c: e3:24:b9:5d:70:05:2e:94:bd:59:6b:74:d2:93:31:65:6b:55: 8a:ce:e6:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMjIxMTAvBgNVBAUTKEQ5MDY5MzkxQTNFNzgwNEE2RUJEREY5RDQxRjJERTRE OTFCRDUxQjMwHhcNMjUwODIyMjIyNTQzWhcNMjUwODI5MjIyNTQzWjAYMRYwFAYD VQQDEw02OGE4ZWU2Ny1iOGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwBJQrsfw5AylgPOBWT/fxpi+Vz6LTXAwrv3XB9W6mUgm5j+g0Qij0c0TwCYs jyl58tJGFBg0dBtG+Vf3dzAeBuXO8G9dVXj/fbG8N+tcOEire0r9/abDpLtn1DlQ RvgR0KOBXtlO4N0u0qLGxDWs+/6DZyI/Okrx94W3aUhE2wja11bQoXf0Hn2S/dJT EAjBdlO3EEziMXJpKuLeYI0dNZx6Ud8Vv7vb8SpJcRbBFpVYaq7vlsM2Vs28t9KB irbCHh4AuIN6AN3lrd1CO/933Ueyc6Zdg5SIrLpDCF3jOrFbDEQcUrzzczTZRMLc Y1qlGKTwGKMhfnImfLoD7JrWyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHwFUgNW TDPBm/O5rVWW1mTJ/IVtMB8GA1UdIwQYMBaAFNkGk5Gj54BKbr3fnUHy3k2RvVGz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMyMi8wNDU2OTVCODdG QUUxMUVCOTc3QjUzMzVDNEY5QUUwMi8yUWFUa2FQbmdFcHV2ZC1kUWZMZVRaRzlV Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRYVRrYVBuZ0VwdXZkLWRRZkxlVFpHOVViTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMyMi8wNDU2OTVCODdGQUUxMUVCOTc3QjUzMzVDNEY5QUUwMi8yUWFUa2FQbmdF cHV2ZC1kUWZMZVRaRzlVYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3HcJ+sIS+jWko3RcA9e88Pw1c7Nhjn1vKCdgK2L9yA7tbZXoK/ctZ TFmxHUqV8XQ3Pp9Ub2VuRwCzWK6ijWAq2qmP9z3GUkOHmOrrojLWFAZdRUe+PikL jhQvN1MhUCgvShZXNn+U5l+BTA5q+pGO6l3X5PrZLj9T6BnJyA4s0C6U5TFIgXA/ KUKDsBlKq9RqT+qpNAhklGJ2RICebb5gCChkQepWu5DxC8boT25pjdEx0Qc4egqF MT2VpSyn5QXT1JawX9eCIA4drw76TTypI7lQUPhbDDZcz60MjcC+o4IcDhss3kIv CyzjJLldcAUulL1Za3TSkzFla1WKzuaP -----END CERTIFICATE-----Generated at Sun Aug 24 06:44:10 2025 by rpki-client