$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft File: 2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft (raw, json) Hash identifier: KUWTwP15vSiVSLO4rJVptRUL56H6ya5QWECz44x3TmE= Subject key identifier: C1:01:00:9B:64:A5:B2:64:33:F6:97:61:78:71:9F:09:71:FF:BF:99 Authority key identifier: D9:85:29:14:8C:BA:5D:DE:D3:B7:3D:60:52:EE:05:16:C0:24:C4:F3 Certificate issuer: /CN=A914C4ED/serialNumber=D98529148CBA5DDED3B73D6052EE0516C024C4F3 Certificate serial: 0209 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft Manifest number: 0204 Signing time: Sat 23 Aug 2025 01:03:20 +0000 Manifest this update: Sat 23 Aug 2025 01:03:19 +0000 Manifest next update: Sat 30 Aug 2025 01:03:19 +0000 Files and hashes: 1: 2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl (hash: k/5RbJw6ptN7oIV2rZQPXfp82wunVE98OMRt0hgIiNM=) 2: F060FF0E720D11EDA84BE02EC4F9AE02.roa (hash: MTvQaAV2j4a15rRSTpoB41scqYTwrnry9bJaizx2K5M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:03:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 521 (0x209) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C4ED, serialNumber=D98529148CBA5DDED3B73D6052EE0516C024C4F3 Validity Not Before: Aug 23 01:03:19 2025 GMT Not After : Aug 30 01:03:19 2025 GMT Subject: CN=68a91358-ddd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4f:25:82:d9:4e:9c:c8:0a:ce:d2:b7:d8:07: 1e:dd:a4:c6:0d:b6:35:8a:8c:4c:ac:38:04:d9:28: af:dd:15:91:59:94:e6:ec:d5:50:31:c1:14:ba:4b: bd:f8:3b:fe:81:59:ef:43:9c:1a:a8:f8:d2:ad:d8: f6:e7:49:40:a5:e2:c7:b8:25:fc:3e:bd:63:88:c5: 45:c9:25:4d:13:25:b2:7c:43:69:01:53:0c:e5:8b: 6a:b3:51:2b:8d:79:ae:8a:4a:75:03:9b:03:e3:5e: 1a:3c:8d:d1:ba:e9:a3:ea:03:83:5b:0d:ed:e0:54: ee:ab:97:7a:ba:06:f0:60:3e:29:2a:ba:d6:fc:5e: c4:61:91:2e:65:ab:83:ca:90:4e:a6:a6:0a:e9:58: 16:c6:e4:7d:df:50:fe:88:a1:1b:c6:c4:19:bc:c2: 93:ea:34:e4:dd:76:8c:ab:54:36:62:80:8d:0d:29: a0:9b:64:3c:3a:3a:d1:95:26:1a:ec:eb:fe:96:53: 98:1a:68:52:6c:a8:0c:4d:5a:03:00:da:dc:95:6d: 8c:c1:ae:ac:b9:92:5c:30:de:9a:3d:70:01:e1:75: 14:fa:76:d5:9a:98:8a:dc:71:2a:29:d9:5c:05:62: 60:ff:51:b9:2f:61:2a:02:79:ff:ae:e0:e1:ab:14: b6:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:01:00:9B:64:A5:B2:64:33:F6:97:61:78:71:9F:09:71:FF:BF:99 X509v3 Authority Key Identifier: keyid:D9:85:29:14:8C:BA:5D:DE:D3:B7:3D:60:52:EE:05:16:C0:24:C4:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:7e:9a:f1:5f:49:38:d1:7e:91:a4:9e:dc:87:f0:83:21:fb: 12:c9:e8:4c:e5:7a:57:68:69:f4:ce:e3:c0:f8:5b:d2:97:15: 62:98:a3:42:24:38:37:9d:77:25:d1:70:90:79:bd:14:96:31: 87:c1:d6:8c:77:20:c6:ab:27:47:d5:11:91:5b:0c:ee:fe:26: 84:20:b6:86:44:45:b8:ce:77:94:fc:24:ab:4f:6c:45:00:53: da:92:45:97:82:1a:b6:38:55:b8:a6:03:22:2c:78:47:dd:69: 4b:6d:66:40:fb:9d:19:39:e2:bc:de:b8:36:e2:b9:3a:82:45: 29:4b:ca:d1:c5:7a:dd:9a:50:23:d8:af:7a:00:07:17:e1:06: 92:bc:81:d2:61:64:9e:0b:e4:63:7a:61:9b:79:88:64:7b:3c: d2:56:29:82:21:f2:f8:e5:23:16:27:d6:17:a5:3b:a6:42:06: 93:6b:67:8f:e7:4d:34:1e:75:99:bc:53:c5:e7:21:00:c1:90: 24:47:8b:79:54:22:f8:a2:1b:bb:eb:0e:c1:d9:ec:1a:77:5d: 78:23:d5:27:a1:b7:d7:e0:ac:f9:58:23:be:01:d1:e4:af:f6: da:6c:00:d8:59:b0:bb:69:e1:93:10:cb:42:c2:5e:4d:a8:f3: e5:28:ef:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0RUQxMTAvBgNVBAUTKEQ5ODUyOTE0OENCQTVEREVEM0I3M0Q2MDUyRUUwNTE2 QzAyNEM0RjMwHhcNMjUwODIzMDEwMzE5WhcNMjUwODMwMDEwMzE5WjAYMRYwFAYD VQQDEw02OGE5MTM1OC1kZGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvU8lgtlOnMgKztK32Ace3aTGDbY1ioxMrDgE2Siv3RWRWZTm7NVQMcEUuku9 +Dv+gVnvQ5waqPjSrdj250lApeLHuCX8Pr1jiMVFySVNEyWyfENpAVMM5Ytqs1Er jXmuikp1A5sD414aPI3Ruumj6gODWw3t4FTuq5d6ugbwYD4pKrrW/F7EYZEuZauD ypBOpqYK6VgWxuR931D+iKEbxsQZvMKT6jTk3XaMq1Q2YoCNDSmgm2Q8OjrRlSYa 7Ov+llOYGmhSbKgMTVoDANrclW2Mwa6suZJcMN6aPXAB4XUU+nbVmpiK3HEqKdlc BWJg/1G5L2EqAnn/ruDhqxS2cwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMEBAJtk pbJkM/aXYXhxnwlx/7+ZMB8GA1UdIwQYMBaAFNmFKRSMul3e07c9YFLuBRbAJMTz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzRFRC83NTk4NDQ0NDcy MEQxMUVEQjU0NUUwMzBDNEY5QUUwMi8yWVVwRkl5NlhkN1R0ejFnVXU0RkZzQWt4 UE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJZVXBGSXk2WGQ3VHR6MWdVdTRGRnNBa3hQTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzRFRC83NTk4NDQ0NDcyMEQxMUVEQjU0NUUwMzBDNEY5QUUwMi8yWVVwRkl5Nlhk N1R0ejFnVXU0RkZzQWt4UE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSfprxX0k40X6RpJ7ch/CDIfsSyehM5XpXaGn0zuPA+FvSlxVimKNC JDg3nXcl0XCQeb0UljGHwdaMdyDGqydH1RGRWwzu/iaEILaGREW4zneU/CSrT2xF AFPakkWXghq2OFW4pgMiLHhH3WlLbWZA+50ZOeK83rg24rk6gkUpS8rRxXrdmlAj 2K96AAcX4QaSvIHSYWSeC+RjemGbeYhkezzSVimCIfL45SMWJ9YXpTumQgaTa2eP 5000HnWZvFPF5yEAwZAkR4t5VCL4ohu76w7B2ewad114I9UnobfX4Kz5WCO+AdHk r/babADYWbC7aeGTEMtCwl5NqPPlKO+r -----END CERTIFICATE-----Generated at Sat Aug 23 12:43:26 2025 by rpki-client