$ rpki-client -vvf rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft File: 2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft (raw, json) Hash identifier: pl7YwufWBq20iexcHq9w5cfA86Y7hTnAC9DshXeTjmc= Subject key identifier: 57:4D:76:0B:DA:B7:B9:10:EB:EB:DB:B4:8F:AD:77:13:41:AA:7B:9A Authority key identifier: DA:54:7E:D6:92:8A:AD:1E:CF:B6:84:7A:1B:07:43:2B:D8:7B:19:EF Certificate issuer: /CN=A9140E66/serialNumber=DA547ED6928AAD1ECFB6847A1B07432BD87B19EF Certificate serial: 0C9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft Manifest number: 0C91 Signing time: Fri 22 Aug 2025 18:20:56 +0000 Manifest this update: Fri 22 Aug 2025 18:20:55 +0000 Manifest next update: Fri 29 Aug 2025 18:20:55 +0000 Files and hashes: 1: 2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl (hash: N4KdR/Bk2sv2IvK8ti009XwF46wDkl8HOuzPAuzZBYM=) 2: 44FEC394589711F0B981A181C4F9AE02.roa (hash: czF1g9Ex6VYm+KxfQ/94CmFck1ccrgeMZN09KqEwv5g=) 3: C21D3A065B7E11F0A8B76B2EC4F9AE02.roa (hash: 84DuWQA+97cDdeAiob2yXUJKVlhHSu21Cq4u1ZPXmWs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:20:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3227 (0xc9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140E66, serialNumber=DA547ED6928AAD1ECFB6847A1B07432BD87B19EF Validity Not Before: Aug 22 18:20:55 2025 GMT Not After : Aug 29 18:20:55 2025 GMT Subject: CN=68a8b508-3bb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:8a:3a:b8:c3:97:23:27:cc:ea:cc:d4:3d:52: 1f:4a:2b:64:7c:ac:d6:0e:87:bd:64:20:d6:c8:7b: a8:e8:2f:7c:15:49:08:31:93:39:c4:6a:ef:32:ba: e6:f9:46:90:cf:6e:cd:5e:88:bf:8a:ee:4d:85:95: 65:04:21:2c:5a:b8:6b:b9:26:33:28:91:d5:e6:cb: 36:af:ac:71:5f:e1:83:89:bf:62:7b:4c:13:4f:aa: 1d:6e:4b:e2:b7:22:f8:78:3d:55:c9:d0:c0:49:e8: 43:90:8a:cf:57:cc:1c:d0:d5:89:bd:21:12:86:3d: 23:eb:61:e1:3a:48:da:d7:8f:26:17:8e:23:46:d9: 3f:68:7d:11:5a:78:77:3b:e4:39:23:ca:89:aa:46: 51:89:42:af:90:4e:ba:a4:bf:d4:b2:16:05:47:de: 1d:0d:e5:06:8b:50:74:97:f3:66:fe:da:f9:90:c4: e0:d1:3d:20:64:fa:f1:dd:2f:5b:00:ae:04:84:e4: b3:ce:28:1d:ec:07:ae:60:fd:9b:80:a5:fa:9c:28: a0:bb:85:2f:49:6d:b1:bf:65:c2:31:26:e0:d6:b7: 4d:b8:ba:86:db:12:1c:99:63:d3:21:8a:2c:89:b2: 08:95:ed:7c:77:6c:6b:5e:79:e6:9c:dc:fe:ea:07: 7d:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:4D:76:0B:DA:B7:B9:10:EB:EB:DB:B4:8F:AD:77:13:41:AA:7B:9A X509v3 Authority Key Identifier: keyid:DA:54:7E:D6:92:8A:AD:1E:CF:B6:84:7A:1B:07:43:2B:D8:7B:19:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:79:f6:9f:ea:53:22:56:05:1c:60:f6:62:c4:0d:00:47:40: c9:b6:27:d1:4d:69:c2:d0:2b:3c:f4:33:10:57:93:d0:aa:ec: 5a:d8:a3:68:1f:eb:45:cf:0f:15:ae:96:46:ac:c1:a5:fd:35: 0e:71:58:c0:02:ad:9a:b9:86:f7:f0:99:7c:c0:cc:61:20:88: e6:83:af:7d:8c:4d:03:97:da:51:a9:ad:32:99:6a:4a:48:b1: 42:72:8b:f3:d1:8f:4d:82:a1:17:c4:06:80:40:08:51:de:55: e8:85:5c:0c:32:42:ef:5d:69:18:c7:fc:0e:34:3b:d7:58:ea: 0a:0c:8a:32:f7:3c:9f:64:a8:19:8f:7b:65:4d:b5:fe:4e:2c: b1:d1:07:81:7f:93:a0:46:59:e6:95:fc:08:b5:60:3d:92:52: 01:e6:ba:3b:c2:25:95:53:dc:9e:b0:ea:23:db:f3:22:68:f5: d6:fc:e7:00:0c:57:d0:02:d5:0d:0f:4e:41:1f:d7:af:4e:57: 6a:c0:c7:f0:31:4a:4d:42:6e:d8:3a:e5:f8:75:f7:0c:0f:9d: 81:c2:cd:08:0d:03:10:88:d8:b7:38:57:d8:9f:d4:69:b0:08: 1d:f9:0e:8a:bf:6b:65:e7:39:46:73:84:34:15:36:e7:66:93: c4:d3:42:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFNjYxMTAvBgNVBAUTKERBNTQ3RUQ2OTI4QUFEMUVDRkI2ODQ3QTFCMDc0MzJC RDg3QjE5RUYwHhcNMjUwODIyMTgyMDU1WhcNMjUwODI5MTgyMDU1WjAYMRYwFAYD VQQDEw02OGE4YjUwOC0zYmIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA64o6uMOXIyfM6szUPVIfSitkfKzWDoe9ZCDWyHuo6C98FUkIMZM5xGrvMrrm +UaQz27NXoi/iu5NhZVlBCEsWrhruSYzKJHV5ss2r6xxX+GDib9ie0wTT6odbkvi tyL4eD1VydDASehDkIrPV8wc0NWJvSEShj0j62HhOkja148mF44jRtk/aH0RWnh3 O+Q5I8qJqkZRiUKvkE66pL/UshYFR94dDeUGi1B0l/Nm/tr5kMTg0T0gZPrx3S9b AK4EhOSzzigd7AeuYP2bgKX6nCigu4UvSW2xv2XCMSbg1rdNuLqG2xIcmWPTIYos ibIIle18d2xrXnnmnNz+6gd95wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFdNdgva t7kQ6+vbtI+tdxNBqnuaMB8GA1UdIwQYMBaAFNpUftaSiq0ez7aEehsHQyvYexnv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEU2Ni83MDYzOUVGQ0ZG NkUxMUU5ODVBODhDNjdDNEY5QUUwMi8ybFItMXBLS3JSN1B0b1I2R3dkREs5aDdH ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsUi0xcEtLclI3UHRvUjZHd2RESzloN0dlOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEU2Ni83MDYzOUVGQ0ZGNkUxMUU5ODVBODhDNjdDNEY5QUUwMi8ybFItMXBLS3JS N1B0b1I2R3dkREs5aDdHZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATefaf6lMiVgUcYPZixA0AR0DJtifRTWnC0Cs89DMQV5PQquxa2KNo H+tFzw8VrpZGrMGl/TUOcVjAAq2auYb38Jl8wMxhIIjmg699jE0Dl9pRqa0ymWpK SLFCcovz0Y9NgqEXxAaAQAhR3lXohVwMMkLvXWkYx/wONDvXWOoKDIoy9zyfZKgZ j3tlTbX+Tiyx0QeBf5OgRlnmlfwItWA9klIB5ro7wiWVU9yesOoj2/MiaPXW/OcA DFfQAtUND05BH9evTldqwMfwMUpNQm7YOuX4dfcMD52Bws0IDQMQiNi3OFfYn9Rp sAgd+Q6Kv2tl5zlGc4Q0FTbnZpPE00I+ -----END CERTIFICATE-----Generated at Sat Aug 23 21:37:50 2025 by rpki-client