$ rpki-client -vvf rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft File: 2lexkcVbszGevZGC3A1Oau8-Ddg.mft (raw, json) Hash identifier: 65mwbGK/SxGJeC6DuFla+rrT2vI7K9K9xcWp6fQMsGA= Subject key identifier: A1:3E:66:14:51:04:5D:B8:03:45:33:E8:D7:23:BF:E9:3A:10:C8:E0 Authority key identifier: DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 Certificate issuer: /CN=A912A31E/serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Certificate serial: 01B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft Manifest number: 01B4 Signing time: Sat 23 Aug 2025 03:13:51 +0000 Manifest this update: Sat 23 Aug 2025 03:13:50 +0000 Manifest next update: Sat 30 Aug 2025 03:13:50 +0000 Files and hashes: 1: 2lexkcVbszGevZGC3A1Oau8-Ddg.crl (hash: bF0kmMeH6yja0Nm7CVSqQni3eGy7uZECO+TiWqgWYpk=) 2: 5181F33CE8C011EDADA54A23C4F9AE02.roa (hash: 9wRwgsGB8Fy9z1Xq7bw5sLUsMsE1FSTZuA/DyllyXak=) 3: 7DA38A8E727011F08682A20EC4F9AE02.roa (hash: 5M/0FRLT6dVdFlhFwevO8pC082IglmsJ5K/2QwF0Lz0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:13:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 440 (0x1b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A31E, serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Validity Not Before: Aug 23 03:13:50 2025 GMT Not After : Aug 30 03:13:50 2025 GMT Subject: CN=68a931ee-f35c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c2:b4:0f:aa:66:ed:2b:2b:de:a9:83:5e:e7: c1:89:a0:22:bd:bc:7e:13:fd:06:10:de:29:55:74: fb:02:ec:85:b9:8e:2c:8c:38:66:3b:bb:aa:5f:10: a5:68:37:68:6c:2c:bf:de:96:2b:1b:c5:34:13:a4: 8d:66:24:10:2e:e6:82:86:5c:c3:64:6e:d6:ed:cd: bb:56:74:8c:8c:9f:eb:45:c4:25:4f:c9:c8:aa:fe: 4e:ea:c7:9b:1b:b3:04:42:60:91:27:a8:01:51:42: b3:64:df:23:16:a8:45:fd:c9:8b:48:d0:88:0e:d4: c0:1a:52:68:e1:dc:10:a6:27:43:96:57:41:8c:37: e5:00:3e:13:ba:20:22:16:4e:b1:c2:64:cc:a3:12: 00:52:18:26:b0:c9:a0:7a:fb:bb:cf:6e:2d:c3:0a: 5c:f8:ce:d7:e2:8b:55:6f:e6:7e:b9:0f:db:9b:a9: d0:7b:35:2e:c8:ce:db:24:ce:dc:d3:66:62:b1:a7: e5:be:90:24:29:84:03:ec:d0:b3:b6:bb:a5:34:8d: 63:29:b0:a7:08:93:21:d0:25:72:0f:e4:17:0d:d8: 3c:44:8c:96:ff:31:dc:47:7b:ff:57:b0:e4:e4:08: b3:3d:33:58:94:32:13:80:ed:38:f1:da:b3:9f:42: 33:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:3E:66:14:51:04:5D:B8:03:45:33:E8:D7:23:BF:E9:3A:10:C8:E0 X509v3 Authority Key Identifier: keyid:DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:a7:a6:e2:e2:7c:2e:47:bd:88:d1:eb:85:08:d4:57:6e:92: 7d:e0:ae:54:6d:4e:6e:fd:e6:da:5e:ad:a4:67:8f:88:5a:7b: 3c:38:e7:ab:55:c0:5e:e0:f6:c6:d2:c4:25:04:08:e8:c3:87: a1:77:1d:20:f0:f7:fb:91:e4:e6:be:a6:3b:56:cc:f9:c2:09: 3b:27:c9:66:8e:4c:1c:c7:c7:d2:9c:d9:04:59:f5:e4:2b:15: 92:7d:aa:d4:53:2b:ee:19:00:a5:ca:de:30:2b:da:2a:b3:a9: 99:da:94:43:d5:35:b9:db:c6:e0:92:1c:31:17:bd:1b:94:a4: bf:32:81:78:f5:ed:07:ac:f9:f1:47:40:d2:4d:53:23:5b:4f: d9:4e:ff:43:d8:fa:24:6e:db:c5:4d:93:7d:e0:10:0d:bc:0b: ce:fa:49:59:be:0f:89:54:41:7f:18:75:89:2b:3f:1b:ae:77: 5b:7b:d9:c4:18:ce:fd:65:28:47:ec:00:17:7d:c0:ac:df:04: 3a:d2:69:d4:54:41:a2:9a:8c:e0:59:95:5c:12:a0:94:97:85: 67:33:0a:06:69:5d:e1:12:94:07:79:b5:fc:1a:37:b3:4a:c3: e3:2f:9c:8c:2c:98:66:c1:9d:bd:c0:09:ad:da:5b:56:bc:ab: a6:11:3e:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEzMUUxMTAvBgNVBAUTKERBNTdCMTkxQzU1QkIzMzE5RUJEOTE4MkRDMEQ0RTZB RUYzRTBERDgwHhcNMjUwODIzMDMxMzUwWhcNMjUwODMwMDMxMzUwWjAYMRYwFAYD VQQDEw02OGE5MzFlZS1mMzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArMK0D6pm7Ssr3qmDXufBiaAivbx+E/0GEN4pVXT7AuyFuY4sjDhmO7uqXxCl aDdobCy/3pYrG8U0E6SNZiQQLuaChlzDZG7W7c27VnSMjJ/rRcQlT8nIqv5O6seb G7MEQmCRJ6gBUUKzZN8jFqhF/cmLSNCIDtTAGlJo4dwQpidDlldBjDflAD4TuiAi Fk6xwmTMoxIAUhgmsMmgevu7z24twwpc+M7X4otVb+Z+uQ/bm6nQezUuyM7bJM7c 02ZisaflvpAkKYQD7NCztrulNI1jKbCnCJMh0CVyD+QXDdg8RIyW/zHcR3v/V7Dk 5AizPTNYlDITgO048dqzn0IzIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKE+ZhRR BF24A0Uz6Ncjv+k6EMjgMB8GA1UdIwQYMBaAFNpXsZHFW7Mxnr2RgtwNTmrvPg3Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTMxRS9DOEE0QzRFNEU4 QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6R2V2WkdDM0ExT2F1OC1E ZGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsZXhrY1Zic3pHZXZaR0MzQTFPYXU4LURkZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTMxRS9DOEE0QzRFNEU4QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6 R2V2WkdDM0ExT2F1OC1EZGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHp6bi4nwuR72I0euFCNRXbpJ94K5UbU5u/ebaXq2kZ4+IWns8OOer VcBe4PbG0sQlBAjow4ehdx0g8Pf7keTmvqY7Vsz5wgk7J8lmjkwcx8fSnNkEWfXk KxWSfarUUyvuGQClyt4wK9oqs6mZ2pRD1TW528bgkhwxF70blKS/MoF49e0HrPnx R0DSTVMjW0/ZTv9D2PokbtvFTZN94BANvAvO+klZvg+JVEF/GHWJKz8brndbe9nE GM79ZShH7AAXfcCs3wQ60mnUVEGimozgWZVcEqCUl4VnMwoGaV3hEpQHebX8Gjez SsPjL5yMLJhmwZ29wAmt2ltWvKumET5b -----END CERTIFICATE-----Generated at Sat Aug 23 17:06:49 2025 by rpki-client