$ rpki-client -vvf rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft File: 2HXmPHNQjdifas3MBgFEoIwIZtw.mft (raw, json) Hash identifier: glq3T8lFWwn4s2ktEQbbjhANv8I8bAulv0Miq10aJMo= Subject key identifier: 18:E3:01:02:D7:7E:0B:14:70:95:CA:C5:7F:57:37:01:A3:53:4B:28 Authority key identifier: D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC Certificate issuer: /CN=A914E950/serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Certificate serial: 03EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft Manifest number: 03E7 Signing time: Sat 23 Aug 2025 00:45:38 +0000 Manifest this update: Sat 23 Aug 2025 00:45:37 +0000 Manifest next update: Sat 30 Aug 2025 00:45:37 +0000 Files and hashes: 1: 2HXmPHNQjdifas3MBgFEoIwIZtw.crl (hash: wtwDZehX9oyrxgPWlponc/QQbqNppyBznUvvDAZivus=) 2: 6199B5668DE011ECB9F9C06EC4F9AE02.roa (hash: 2v76irvv8YBootZ9ixmNS7BdVolsdY5VCXkGVLqaKlA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:45:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1003 (0x3eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E950, serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Validity Not Before: Aug 23 00:45:37 2025 GMT Not After : Aug 30 00:45:37 2025 GMT Subject: CN=68a90f31-786f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:a5:5a:26:24:52:8f:49:35:42:8f:53:3b:04: 78:74:e0:d4:90:0b:da:9d:9e:d5:00:42:fe:92:fd: 67:e6:63:9e:95:8f:f1:86:94:32:5a:70:9a:3c:7a: dc:b3:77:21:20:70:bb:b7:89:68:17:86:11:4a:ec: 96:12:9f:9d:da:a7:06:a5:4c:13:ea:cb:36:fe:0d: 93:c8:37:c4:3d:41:56:e9:2a:67:92:f5:ad:be:d2: 4b:c8:a0:35:55:0b:39:2b:12:70:52:a5:97:8b:dd: 48:7f:33:de:d0:aa:c3:26:dc:27:0c:89:19:1c:de: f4:79:0d:8b:2d:2e:99:87:b4:b2:2c:3c:a5:d0:72: fa:3b:be:e9:5f:f3:cd:60:7e:89:e9:04:00:54:c0: e6:08:a3:15:21:85:a5:af:ae:ab:46:a9:8c:66:4a: 5c:e2:e1:f0:f1:ec:ce:28:3a:5f:a2:88:b2:d6:5d: 3e:e0:11:55:44:a8:3d:68:b0:f4:78:eb:3f:69:bf: a7:22:46:63:46:e8:b3:ce:dd:a0:4d:3a:c5:c8:36: 8f:e9:fb:68:cf:22:50:e5:08:d3:0e:fb:af:ba:c2: 4c:10:9c:e9:e9:f0:68:06:6f:5f:6f:ee:48:e8:2b: d1:03:2a:a0:26:4e:4d:ee:70:4e:bf:e0:90:bc:d5: 32:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:E3:01:02:D7:7E:0B:14:70:95:CA:C5:7F:57:37:01:A3:53:4B:28 X509v3 Authority Key Identifier: keyid:D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:62:c8:8f:e6:26:e6:9f:38:4e:25:13:c5:73:a9:85:54:c0: ed:08:e0:3b:14:6e:15:5a:a9:d4:79:e3:52:b7:08:10:b7:bb: 65:69:80:76:97:3b:f4:f3:00:5a:b3:e5:9d:50:ba:e2:25:57: eb:a4:1c:55:a2:5d:e6:bf:f9:26:83:4f:39:ab:09:6c:06:2d: d7:30:09:54:b0:7b:1b:1f:7d:55:39:46:2b:21:0a:8e:d1:2b: 80:f7:77:9a:92:76:54:9b:13:2f:16:da:5c:9f:c1:d9:57:59: dc:25:65:27:d4:49:c7:7b:b3:a4:d3:49:00:ee:4c:fc:a4:a1: fe:b5:b7:16:97:1b:b6:35:fb:1f:1e:bd:b9:f7:ae:9b:d9:4a: fb:30:4c:b9:1f:09:d2:14:1d:84:07:9f:17:8c:69:e5:5a:c8: 48:71:08:a9:c3:83:6b:a8:49:2a:f5:25:d5:c6:70:8e:9a:29: 30:66:d2:fa:f5:6e:17:38:24:9e:2e:8c:a7:6b:e1:2d:75:e7: 87:6b:0d:e0:cf:b3:78:0a:eb:ef:13:bc:77:80:79:09:4d:68: f9:a8:8d:bd:f8:fc:da:32:a8:ca:08:2b:7c:37:db:48:49:c2: 69:a2:69:00:fa:f4:03:7a:d8:b8:16:03:d5:e7:33:37:3d:c4: ed:c4:eb:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5NTAxMTAvBgNVBAUTKEQ4NzVFNjNDNzM1MDhERDg5RjZBQ0RDQzA2MDE0NEEw OEMwODY2REMwHhcNMjUwODIzMDA0NTM3WhcNMjUwODMwMDA0NTM3WjAYMRYwFAYD VQQDEw02OGE5MGYzMS03ODZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2aVaJiRSj0k1Qo9TOwR4dODUkAvanZ7VAEL+kv1n5mOelY/xhpQyWnCaPHrc s3chIHC7t4loF4YRSuyWEp+d2qcGpUwT6ss2/g2TyDfEPUFW6SpnkvWtvtJLyKA1 VQs5KxJwUqWXi91IfzPe0KrDJtwnDIkZHN70eQ2LLS6Zh7SyLDyl0HL6O77pX/PN YH6J6QQAVMDmCKMVIYWlr66rRqmMZkpc4uHw8ezOKDpfooiy1l0+4BFVRKg9aLD0 eOs/ab+nIkZjRuizzt2gTTrFyDaP6ftozyJQ5QjTDvuvusJMEJzp6fBoBm9fb+5I 6CvRAyqgJk5N7nBOv+CQvNUyPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBjjAQLX fgsUcJXKxX9XNwGjU0soMB8GA1UdIwQYMBaAFNh15jxzUI3Yn2rNzAYBRKCMCGbc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTk1MC9DQkYwNkYzMDhE REMxMUVDQTE0MDBDNjlDNEY5QUUwMi8ySFhtUEhOUWpkaWZhczNNQmdGRW9Jd0la dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJIWG1QSE5RamRpZmFzM01CZ0ZFb0l3SVp0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTk1MC9DQkYwNkYzMDhEREMxMUVDQTE0MDBDNjlDNEY5QUUwMi8ySFhtUEhOUWpk aWZhczNNQmdGRW9Jd0ladHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcYsiP5ibmnzhOJRPFc6mFVMDtCOA7FG4VWqnUeeNStwgQt7tlaYB2 lzv08wBas+WdULriJVfrpBxVol3mv/kmg085qwlsBi3XMAlUsHsbH31VOUYrIQqO 0SuA93eaknZUmxMvFtpcn8HZV1ncJWUn1EnHe7Ok00kA7kz8pKH+tbcWlxu2Nfsf Hr25966b2Ur7MEy5HwnSFB2EB58XjGnlWshIcQipw4NrqEkq9SXVxnCOmikwZtL6 9W4XOCSeLoyna+EtdeeHaw3gz7N4CuvvE7x3gHkJTWj5qI29+PzaMqjKCCt8N9tI ScJpomkA+vQDeti4FgPV5zM3PcTtxOuO -----END CERTIFICATE-----Generated at Sun Aug 24 00:14:27 2025 by rpki-client