$ rpki-client -vvf rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft File: 2gQijT7rRR_A8iM2aXFwV_irNmk.mft (raw, json) Hash identifier: GnwDU1+tsiHCs1/9T5LYo8sOzg1IbSFEgCcjpScfFGs= Subject key identifier: 59:79:CE:5D:2E:18:F2:3A:28:F3:1D:60:0A:AA:0A:09:19:4B:03:18 Authority key identifier: DA:04:22:8D:3E:EB:45:1F:C0:F2:23:36:69:71:70:57:F8:AB:36:69 Certificate issuer: /CN=A914B165/serialNumber=DA04228D3EEB451FC0F2233669717057F8AB3669 Certificate serial: 08A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft Manifest number: 089F Signing time: Fri 22 Aug 2025 20:41:02 +0000 Manifest this update: Fri 22 Aug 2025 20:41:02 +0000 Manifest next update: Fri 29 Aug 2025 20:41:02 +0000 Files and hashes: 1: 2gQijT7rRR_A8iM2aXFwV_irNmk.crl (hash: WT7NPNGdFEWwZtBbMQctc5iLOnG7RgSvL6oLblFQHIQ=) 2: 26AECD92C2B211EABBD0ED4AC4F9AE02.roa (hash: 8bFMS7lUFa5a04616nMhBCIyPXjI0vGFlv2YHmEk/tM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.crl rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:41:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2213 (0x8a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B165, serialNumber=DA04228D3EEB451FC0F2233669717057F8AB3669 Validity Not Before: Aug 22 20:41:02 2025 GMT Not After : Aug 29 20:41:02 2025 GMT Subject: CN=68a8d5de-37b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e5:40:dd:54:a2:ef:5c:f8:20:d7:bc:f5:3a: b2:09:b4:b0:41:24:dc:89:d1:a1:fd:f9:a0:aa:ec: 9b:f5:d2:6f:c7:3c:aa:a3:ac:33:e4:ba:61:e0:5f: 65:f0:0c:01:b5:80:0f:8d:2e:a2:58:6f:ff:97:ac: 4f:4b:88:a7:77:51:d2:80:12:33:58:0e:0e:d7:5c: 75:7c:4c:8d:9e:b7:67:a2:70:c5:93:4a:50:27:57: 83:c6:61:23:10:a6:99:7b:f3:41:26:f9:f1:a6:ba: b7:65:63:d6:4c:f8:84:63:b3:96:d1:d6:84:44:3c: f6:b6:5e:84:dd:3a:a0:92:74:bd:17:e7:d5:cb:b8: d0:86:3d:c6:73:d7:c0:5f:34:d6:17:06:3b:92:c1: 7e:e0:be:00:5d:60:9f:80:68:73:aa:bf:62:9e:b4: 33:e6:b0:a6:96:76:8e:2d:bb:b3:4a:3b:63:2e:30: 8a:8c:82:33:b0:bf:80:5f:43:47:7f:99:ac:c7:51: 6f:8a:30:ef:76:cb:21:a3:66:62:c0:58:a1:03:cc: 63:f0:78:d1:1d:e5:2c:32:26:16:23:d8:13:ac:f9: 01:74:2f:38:91:e7:2c:b4:6d:ac:55:1d:14:74:5b: 12:87:ee:1e:85:d6:d3:f5:25:18:66:60:fa:65:ea: b1:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:79:CE:5D:2E:18:F2:3A:28:F3:1D:60:0A:AA:0A:09:19:4B:03:18 X509v3 Authority Key Identifier: keyid:DA:04:22:8D:3E:EB:45:1F:C0:F2:23:36:69:71:70:57:F8:AB:36:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:25:d2:3f:8d:ed:37:43:b6:ac:0e:e6:6b:e8:f4:be:71:a2: 56:78:c1:b2:aa:a7:cb:d6:dd:a8:72:30:58:db:ef:5c:05:3e: 32:f6:6f:76:24:b9:3c:de:4c:32:e1:79:5f:95:68:cb:39:99: db:12:dc:66:be:3b:ba:6b:30:d6:e9:b8:ae:a6:70:6e:19:4e: 13:ee:94:20:77:35:2b:2c:22:47:1a:7d:14:bf:02:f2:4f:77: 7e:d3:2a:c6:e0:4a:4e:28:35:dc:d1:9f:16:6a:52:76:a6:6e: 91:c5:67:86:7e:14:89:f7:2b:82:24:eb:b0:f4:83:8f:c7:6f: ba:e6:4a:62:ea:26:33:12:73:a8:8c:ed:ac:f2:0a:d3:ce:47: 98:80:9f:e8:2d:14:f7:8c:59:16:60:ea:86:98:eb:a6:d1:58: 5f:bc:f5:27:0e:cb:6c:5e:87:4b:5b:24:43:91:52:c2:af:bd: 53:ca:74:31:7e:c7:b4:8b:bd:a4:f1:ff:79:a9:48:70:3c:3a: 61:0e:3a:b2:7c:b9:73:6f:28:0a:81:66:e1:3a:48:99:60:4d: 84:b5:43:c1:38:87:ee:be:17:4f:6c:96:1a:e3:af:0a:40:94: 15:4e:8d:0a:75:09:62:ef:9f:5b:2d:d1:bf:40:90:e5:b8:b6: f1:69:3c:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIxNjUxMTAvBgNVBAUTKERBMDQyMjhEM0VFQjQ1MUZDMEYyMjMzNjY5NzE3MDU3 RjhBQjM2NjkwHhcNMjUwODIyMjA0MTAyWhcNMjUwODI5MjA0MTAyWjAYMRYwFAYD VQQDEw02OGE4ZDVkZS0zN2I2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv+VA3VSi71z4INe89TqyCbSwQSTcidGh/fmgquyb9dJvxzyqo6wz5Lph4F9l 8AwBtYAPjS6iWG//l6xPS4ind1HSgBIzWA4O11x1fEyNnrdnonDFk0pQJ1eDxmEj EKaZe/NBJvnxprq3ZWPWTPiEY7OW0daERDz2tl6E3TqgknS9F+fVy7jQhj3Gc9fA XzTWFwY7ksF+4L4AXWCfgGhzqr9inrQz5rCmlnaOLbuzSjtjLjCKjIIzsL+AX0NH f5msx1FvijDvdssho2ZiwFihA8xj8HjRHeUsMiYWI9gTrPkBdC84kecstG2sVR0U dFsSh+4ehdbT9SUYZmD6ZeqxywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFl5zl0u GPI6KPMdYAqqCgkZSwMYMB8GA1UdIwQYMBaAFNoEIo0+60UfwPIjNmlxcFf4qzZp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjE2NS82QTNFQjhCNkMy QjExMUVBOTIwQkI5NEFDNEY5QUUwMi8yZ1FpalQ3clJSX0E4aU0yYVhGd1ZfaXJO bWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnUWlqVDdyUlJfQThpTTJhWEZ3Vl9pck5tay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjE2NS82QTNFQjhCNkMyQjExMUVBOTIwQkI5NEFDNEY5QUUwMi8yZ1FpalQ3clJS X0E4aU0yYVhGd1ZfaXJObWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwJdI/je03Q7asDuZr6PS+caJWeMGyqqfL1t2ocjBY2+9cBT4y9m92 JLk83kwy4XlflWjLOZnbEtxmvju6azDW6biupnBuGU4T7pQgdzUrLCJHGn0UvwLy T3d+0yrG4EpOKDXc0Z8WalJ2pm6RxWeGfhSJ9yuCJOuw9IOPx2+65kpi6iYzEnOo jO2s8grTzkeYgJ/oLRT3jFkWYOqGmOum0VhfvPUnDstsXodLWyRDkVLCr71TynQx fse0i72k8f95qUhwPDphDjqyfLlzbygKgWbhOkiZYE2EtUPBOIfuvhdPbJYa468K QJQVTo0KdQli759bLdG/QJDluLbxaTzC -----END CERTIFICATE-----Generated at Sat Aug 23 16:29:55 2025 by rpki-client