$ rpki-client -vvf rpki.apnic.net/member_repository/A913DA3E/42268748734411EBA8E4DA5FC4F9AE02/wT2PgrPTzkdGU1QOU2XEyQiUwD0.mft File: wT2PgrPTzkdGU1QOU2XEyQiUwD0.mft (raw, json) Hash identifier: 8Yg2EMKzMhnWci9iKnsbs1Wxrvy9FGP7meVoI8OoKqw= Subject key identifier: 99:28:86:E9:95:86:2C:D0:C2:3E:5A:0F:CE:B3:86:F5:9F:4D:37:D4 Authority key identifier: C1:3D:8F:82:B3:D3:CE:47:46:53:54:0E:53:65:C4:C9:08:94:C0:3D Certificate issuer: /CN=A913DA3E/serialNumber=C13D8F82B3D3CE474653540E5365C4C90894C03D Certificate serial: 06B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wT2PgrPTzkdGU1QOU2XEyQiUwD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913DA3E/42268748734411EBA8E4DA5FC4F9AE02/wT2PgrPTzkdGU1QOU2XEyQiUwD0.mft Manifest number: 06B3 Signing time: Fri 22 Aug 2025 22:17:07 +0000 Manifest this update: Fri 22 Aug 2025 22:17:06 +0000 Manifest next update: Fri 29 Aug 2025 22:17:06 +0000 Files and hashes: 1: wT2PgrPTzkdGU1QOU2XEyQiUwD0.crl (hash: aQZRtFUcHeQS7wYjuLqdLZkuqTLTajxAY/KJdN9iTKo=) 2: 19AB8E92734611EB816DB064C4F9AE02.roa (hash: 7I2G/hN0Fa3HUj7sGDHCqmaUYDxqe3fLWkw77NWZoq4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913DA3E/42268748734411EBA8E4DA5FC4F9AE02/wT2PgrPTzkdGU1QOU2XEyQiUwD0.crl rsync://rpki.apnic.net/member_repository/A913DA3E/42268748734411EBA8E4DA5FC4F9AE02/wT2PgrPTzkdGU1QOU2XEyQiUwD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wT2PgrPTzkdGU1QOU2XEyQiUwD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:17:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1721 (0x6b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913DA3E, serialNumber=C13D8F82B3D3CE474653540E5365C4C90894C03D Validity Not Before: Aug 22 22:17:06 2025 GMT Not After : Aug 29 22:17:06 2025 GMT Subject: CN=68a8ec63-9760 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e2:00:e8:8c:09:21:78:15:56:7e:71:55:00: d4:db:a1:59:48:8c:b7:b4:52:f3:7f:bd:8a:ad:84: b2:5a:58:4a:8c:e5:ee:b0:ee:3f:8b:bd:f7:57:68: 41:e1:5f:45:af:9d:ff:0c:1a:86:c3:31:0d:6f:4c: 9a:63:a1:8b:a7:88:43:10:f7:9f:0a:df:2d:f7:8a: b6:63:46:63:1a:f4:ec:85:70:c5:fc:6f:eb:8c:ca: 82:79:53:09:87:4d:7d:65:58:06:87:0d:df:94:ec: a3:32:9f:c9:f6:f7:2e:42:3e:8d:08:e0:6c:cf:23: 37:78:af:4d:7b:14:7c:46:35:a4:08:9f:eb:67:9b: ef:e8:1b:c8:a7:11:90:73:0c:2b:5f:72:9f:57:a5: b9:1e:a0:25:cd:21:42:cd:3c:a0:5f:1f:7d:c9:a7: d8:a0:ae:0b:bc:44:2f:fa:db:26:a6:fa:54:a0:55: 68:72:03:14:50:18:3d:3c:ae:4a:df:25:06:77:20: 4b:73:46:63:1a:10:69:9e:5a:86:2b:89:d0:3a:a8: 37:8a:0e:2d:a2:02:07:70:c0:1a:8a:94:a3:fe:26: 4e:1e:c5:0f:2b:db:7e:42:e0:19:83:69:20:4f:0f: c7:a7:44:aa:bc:0e:0a:ae:48:1d:74:29:ba:bf:b1: 4f:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:28:86:E9:95:86:2C:D0:C2:3E:5A:0F:CE:B3:86:F5:9F:4D:37:D4 X509v3 Authority Key Identifier: keyid:C1:3D:8F:82:B3:D3:CE:47:46:53:54:0E:53:65:C4:C9:08:94:C0:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913DA3E/42268748734411EBA8E4DA5FC4F9AE02/wT2PgrPTzkdGU1QOU2XEyQiUwD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wT2PgrPTzkdGU1QOU2XEyQiUwD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913DA3E/42268748734411EBA8E4DA5FC4F9AE02/wT2PgrPTzkdGU1QOU2XEyQiUwD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:92:29:1e:89:b8:4d:bd:3b:ec:9d:6f:fd:e2:35:e4:b7:34: be:f0:b5:ad:35:d3:72:e9:54:1c:64:75:6f:17:28:ab:ca:b2: 79:d2:ea:55:da:4e:39:e0:71:92:34:ae:84:73:61:d3:e4:bd: 28:c2:cc:20:c4:22:f8:b9:28:74:0c:eb:4b:01:6a:c6:92:94: 88:f6:be:33:7b:51:21:d7:88:9b:5c:ad:83:1a:58:ec:b2:68: 21:32:6a:86:58:39:7e:0c:a2:4a:7c:87:e9:fe:b3:9e:66:3b: 59:cb:c4:ef:bd:9c:0a:72:bc:37:b1:67:a6:41:77:51:ef:1e: 86:61:27:0b:75:51:36:88:c8:5f:db:50:20:63:c4:f4:e4:93: db:94:f3:7f:19:89:b3:20:1b:3a:e0:54:f6:d1:e3:80:be:db: 28:ab:18:d1:e5:b5:77:a5:5a:bb:35:69:fb:4b:35:9a:df:96: af:af:47:3e:19:51:e8:b2:69:2d:5a:da:2a:fe:74:03:92:3a: 25:d6:de:98:95:a6:28:3c:65:79:7f:4d:e6:51:31:8b:6d:24: 49:d5:a9:de:9f:78:f1:7a:ba:50:13:e0:f2:ab:1a:96:11:38: 5c:f9:af:06:48:1f:0b:9f:ac:da:14:b4:23:fe:42:53:2c:0e: 35:63:0a:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0RBM0UxMTAvBgNVBAUTKEMxM0Q4RjgyQjNEM0NFNDc0NjUzNTQwRTUzNjVDNEM5 MDg5NEMwM0QwHhcNMjUwODIyMjIxNzA2WhcNMjUwODI5MjIxNzA2WjAYMRYwFAYD VQQDEw02OGE4ZWM2My05NzYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq+IA6IwJIXgVVn5xVQDU26FZSIy3tFLzf72KrYSyWlhKjOXusO4/i733V2hB 4V9Fr53/DBqGwzENb0yaY6GLp4hDEPefCt8t94q2Y0ZjGvTshXDF/G/rjMqCeVMJ h019ZVgGhw3flOyjMp/J9vcuQj6NCOBszyM3eK9NexR8RjWkCJ/rZ5vv6BvIpxGQ cwwrX3KfV6W5HqAlzSFCzTygXx99yafYoK4LvEQv+tsmpvpUoFVocgMUUBg9PK5K 3yUGdyBLc0ZjGhBpnlqGK4nQOqg3ig4togIHcMAaipSj/iZOHsUPK9t+QuAZg2kg Tw/Hp0SqvA4KrkgddCm6v7FP+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJkohumV hizQwj5aD86zhvWfTTfUMB8GA1UdIwQYMBaAFME9j4Kz085HRlNUDlNlxMkIlMA9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzREEzRS80MjI2ODc0ODcz NDQxMUVCQThFNERBNUZDNEY5QUUwMi93VDJQZ3JQVHprZEdVMVFPVTJYRXlRaVV3 RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dUMlBnclBUemtkR1UxUU9VMlhFeVFpVXdEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz REEzRS80MjI2ODc0ODczNDQxMUVCQThFNERBNUZDNEY5QUUwMi93VDJQZ3JQVHpr ZEdVMVFPVTJYRXlRaVV3RDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvkikeibhNvTvsnW/94jXktzS+8LWtNdNy6VQcZHVvFyiryrJ50upV 2k454HGSNK6Ec2HT5L0owswgxCL4uSh0DOtLAWrGkpSI9r4ze1Eh14ibXK2DGljs smghMmqGWDl+DKJKfIfp/rOeZjtZy8TvvZwKcrw3sWemQXdR7x6GYScLdVE2iMhf 21AgY8T05JPblPN/GYmzIBs64FT20eOAvtsoqxjR5bV3pVq7NWn7SzWa35avr0c+ GVHosmktWtoq/nQDkjol1t6YlaYoPGV5f03mUTGLbSRJ1anen3jxerpQE+DyqxqW EThc+a8GSB8Ln6zaFLQj/kJTLA41Ywq9 -----END CERTIFICATE-----Generated at Sat Aug 23 23:57:47 2025 by rpki-client