$ rpki-client -vvf rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.mft File: nIFHHxiq7s35RafJF_2KiYXXw6w.mft (raw, json) Hash identifier: 8mDb1XKbLpZcs2U7a5vwoYZXLtPfXPAG/mc16wzliN8= Subject key identifier: 7B:EB:21:CB:4A:8A:3A:2C:0F:F7:6F:F3:00:F5:AF:04:5D:65:01:4E Authority key identifier: 9C:81:47:1F:18:AA:EE:CD:F9:45:A7:C9:17:FD:8A:89:85:D7:C3:AC Certificate issuer: /CN=A914C33A/serialNumber=9C81471F18AAEECDF945A7C917FD8A8985D7C3AC Certificate serial: 2AB7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIFHHxiq7s35RafJF_2KiYXXw6w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.mft Manifest number: 2A79 Signing time: Fri 22 Aug 2025 15:37:00 +0000 Manifest this update: Fri 22 Aug 2025 15:37:00 +0000 Manifest next update: Fri 29 Aug 2025 15:37:00 +0000 Files and hashes: 1: nIFHHxiq7s35RafJF_2KiYXXw6w.crl (hash: lFekIuF0EUHlNJPI7GE0/I6xtAu8m4vLpfvplr4KjKM=) 2: FB405D86900E11EAA43BB21FC4F9AE02.roa (hash: xBHGq+I+gC6mBEO7iAqcoK3D8WpSvv5eSxXQn/j0Q60=) 3: 3118E43E966B11EAAA23047CC4F9AE02.roa (hash: gq6V0/TIcAAKvh2pY9bQTg3IwnYpN56MDdlGTWJZ3cM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.crl rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIFHHxiq7s35RafJF_2KiYXXw6w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:36:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10935 (0x2ab7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C33A, serialNumber=9C81471F18AAEECDF945A7C917FD8A8985D7C3AC Validity Not Before: Aug 22 15:37:00 2025 GMT Not After : Aug 29 15:37:00 2025 GMT Subject: CN=68a88e9c-9ae0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:66:ad:13:14:f1:6c:11:d4:83:ae:ea:ea:75: 8c:0c:5b:09:ee:9c:3b:30:91:6b:22:cd:10:9f:e7: 0c:c3:9a:77:79:9e:ab:63:bc:4c:90:fc:f2:4b:d7: 5e:af:41:4b:de:e4:13:b6:fe:ad:40:3b:33:b8:14: 83:d5:e2:88:92:95:68:18:39:83:27:65:fd:f5:78: 27:a1:72:f9:65:12:60:00:8a:dc:5b:ab:a1:8d:f8: ba:63:e5:5f:70:ac:29:23:4b:d9:28:a4:8f:7c:18: 8d:ef:23:ad:14:7e:d0:22:4b:34:2d:f8:7a:b3:6c: 8b:40:a6:cd:38:1b:69:25:d0:62:05:a7:da:03:b4: 52:83:70:3f:e8:94:2c:0d:88:87:7c:03:a7:ad:79: 50:5a:4d:17:1c:f0:5c:78:29:9f:c8:bd:26:eb:29: 71:ce:25:d6:52:7a:52:61:bb:60:ce:0b:29:3f:e8: 66:b4:6a:f0:35:c2:66:88:1a:86:ec:90:a8:5b:52: ba:93:0d:0c:a3:7d:e2:40:7d:5f:e6:d6:45:5f:a6: 06:9c:a9:ab:1e:df:c3:e3:ad:2e:6b:b8:a1:1a:80: a3:bf:6f:b3:c3:4a:ba:16:6a:c5:ea:25:bd:f3:bb: 12:ac:be:7f:54:40:eb:b0:35:04:fb:f7:3a:1f:10: ad:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:EB:21:CB:4A:8A:3A:2C:0F:F7:6F:F3:00:F5:AF:04:5D:65:01:4E X509v3 Authority Key Identifier: keyid:9C:81:47:1F:18:AA:EE:CD:F9:45:A7:C9:17:FD:8A:89:85:D7:C3:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIFHHxiq7s35RafJF_2KiYXXw6w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:ab:47:78:d6:90:ec:c7:90:f0:f8:30:ae:80:fe:c3:b9:74: 95:20:69:9f:e3:1e:fa:d8:86:8e:ef:28:7d:ed:d1:6f:9c:d1: c7:ff:1f:c1:03:ef:c6:63:cf:ca:23:7f:6d:1e:d6:7d:7a:0e: 8d:5c:aa:36:8e:1e:65:d3:20:dd:0e:a1:a6:68:06:96:21:09: ee:0b:82:86:1a:f8:ad:17:23:87:c7:09:12:82:d5:c8:78:ab: dc:07:6e:8e:10:4e:2c:34:61:69:18:ae:93:e2:58:a8:b3:26: 88:3e:1f:2f:68:ce:02:33:65:48:44:4e:e9:db:9d:41:6c:70: 6e:5c:48:81:ab:8b:62:7f:72:4a:d3:fd:c3:04:4e:a6:b9:fc: 81:f5:53:fb:57:cd:0c:b7:65:08:5d:0d:97:80:1b:88:3d:c5: ff:37:99:ab:04:d6:68:66:56:47:7f:ac:0a:60:65:f1:c0:b6: 69:47:61:a0:ad:18:e0:df:75:4f:1c:f1:56:0c:b8:0f:3d:22: 99:64:d6:5c:84:d1:73:61:f7:54:f7:55:74:e0:4d:d6:a6:b1: 19:c5:e6:3e:a4:5d:52:7f:aa:a5:cf:22:b8:a9:8d:54:d6:8e: 54:1b:12:65:6a:66:f2:ba:83:12:32:35:df:86:95:22:61:4e: aa:98:0f:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKrcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMzM0ExMTAvBgNVBAUTKDlDODE0NzFGMThBQUVFQ0RGOTQ1QTdDOTE3RkQ4QTg5 ODVEN0MzQUMwHhcNMjUwODIyMTUzNzAwWhcNMjUwODI5MTUzNzAwWjAYMRYwFAYD VQQDEw02OGE4OGU5Yy05YWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtWatExTxbBHUg67q6nWMDFsJ7pw7MJFrIs0Qn+cMw5p3eZ6rY7xMkPzyS9de r0FL3uQTtv6tQDszuBSD1eKIkpVoGDmDJ2X99XgnoXL5ZRJgAIrcW6uhjfi6Y+Vf cKwpI0vZKKSPfBiN7yOtFH7QIks0Lfh6s2yLQKbNOBtpJdBiBafaA7RSg3A/6JQs DYiHfAOnrXlQWk0XHPBceCmfyL0m6ylxziXWUnpSYbtgzgspP+hmtGrwNcJmiBqG 7JCoW1K6kw0Mo33iQH1f5tZFX6YGnKmrHt/D460ua7ihGoCjv2+zw0q6FmrF6iW9 87sSrL5/VEDrsDUE+/c6HxCttQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHvrIctK ijosD/dv8wD1rwRdZQFOMB8GA1UdIwQYMBaAFJyBRx8Yqu7N+UWnyRf9iomF18Os MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzMzQS8xRDJCRDAzRTJE REIxMUU0OUFGNjE1MzBDNEY5QUUwMi9uSUZISHhpcTdzMzVSYWZKRl8yS2lZWFh3 NncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25JRkhIeGlxN3MzNVJhZkpGXzJLaVlYWHc2dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzMzQS8xRDJCRDAzRTJEREIxMUU0OUFGNjE1MzBDNEY5QUUwMi9uSUZISHhpcTdz MzVSYWZKRl8yS2lZWFh3NncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtq0d41pDsx5Dw+DCugP7DuXSVIGmf4x762IaO7yh97dFvnNHH/x/B A+/GY8/KI39tHtZ9eg6NXKo2jh5l0yDdDqGmaAaWIQnuC4KGGvitFyOHxwkSgtXI eKvcB26OEE4sNGFpGK6T4liosyaIPh8vaM4CM2VIRE7p251BbHBuXEiBq4tif3JK 0/3DBE6mufyB9VP7V80Mt2UIXQ2XgBuIPcX/N5mrBNZoZlZHf6wKYGXxwLZpR2Gg rRjg33VPHPFWDLgPPSKZZNZchNFzYfdU91V04E3WprEZxeY+pF1Sf6qlzyK4qY1U 1o5UGxJlambyuoMSMjXfhpUiYU6qmA8I -----END CERTIFICATE-----Generated at Sat Aug 23 20:25:50 2025 by rpki-client