$ rpki-client -vvf rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft File: 2QhrDfk0LcKwkbrobLd5_GJZvXs.mft (raw, json) Hash identifier: YknGxshAHxHBzyIQBKUTJisP+4YrTbJ+LhuUx04yWs0= Subject key identifier: 03:89:B4:C0:61:5C:63:88:E1:26:2B:99:4D:0D:28:17:60:46:98:01 Authority key identifier: D9:08:6B:0D:F9:34:2D:C2:B0:91:BA:E8:6C:B7:79:FC:62:59:BD:7B Certificate issuer: /CN=A914F2EC/serialNumber=D9086B0DF9342DC2B091BAE86CB779FC6259BD7B Certificate serial: 34C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft Manifest number: 34B8 Signing time: Fri 22 Aug 2025 15:00:42 +0000 Manifest this update: Fri 22 Aug 2025 15:00:42 +0000 Manifest next update: Fri 29 Aug 2025 15:00:42 +0000 Files and hashes: 1: 2QhrDfk0LcKwkbrobLd5_GJZvXs.crl (hash: x35fhj8OCLBw2GFXihCqQTfhaMoP9NamFJuUHfd37gY=) 2: 588BD7269A1211E8B97A623AC4F9AE02.roa (hash: KKbAooYir9kiM+kQeIhamjhStk+gbSQk/A73xTUucXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.crl rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13505 (0x34c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F2EC, serialNumber=D9086B0DF9342DC2B091BAE86CB779FC6259BD7B Validity Not Before: Aug 22 15:00:42 2025 GMT Not After : Aug 29 15:00:42 2025 GMT Subject: CN=68a8861a-cc4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:2c:0e:8a:8a:a9:9c:69:24:fe:12:7d:f5:4b: b3:99:d6:51:25:1c:b9:a4:ff:54:5d:76:9f:c3:d3: 79:b2:37:9a:9f:62:2d:f3:89:4f:dd:08:12:e6:e2: 6d:e4:56:71:33:fd:67:de:01:ca:31:52:de:c2:49: e3:04:29:54:9d:f8:ed:1b:b4:ad:f3:1d:cc:ff:66: 59:fa:1f:25:57:f9:92:3f:fd:5c:fa:aa:e4:3f:fb: 77:72:c2:1a:52:d3:c7:36:bf:8a:e8:2e:95:e2:31: dd:65:99:8a:5b:74:fa:9d:27:1f:d9:cb:08:4c:9e: 07:ef:cd:6f:46:c2:9f:f4:b0:1a:60:c8:65:d3:cd: 3e:07:12:d8:7d:0d:ba:dd:cc:4f:9d:56:eb:d0:f0: a8:12:bf:1c:84:2e:5b:aa:b5:3e:70:c6:2c:18:01: a3:19:db:4c:c1:93:83:a4:57:be:9c:6c:69:2f:2d: 26:24:e3:fa:bc:8c:e7:aa:f4:61:5a:c2:e9:c7:03: a9:20:b2:08:20:9f:73:95:68:b0:fe:ca:f9:41:73: cb:73:51:77:1c:93:5b:f8:8d:ba:e2:31:71:72:61: 26:6a:2d:48:63:6f:4d:c3:c3:b2:cb:36:2c:f8:8e: ad:15:f9:ad:59:28:e0:59:c0:5e:00:04:17:56:6a: c7:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:89:B4:C0:61:5C:63:88:E1:26:2B:99:4D:0D:28:17:60:46:98:01 X509v3 Authority Key Identifier: keyid:D9:08:6B:0D:F9:34:2D:C2:B0:91:BA:E8:6C:B7:79:FC:62:59:BD:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:b1:66:f9:fc:aa:3f:de:c7:99:33:91:b7:b9:98:d6:ff:21: 0e:16:57:a5:6e:aa:01:cd:36:59:a8:30:a2:a7:7c:80:65:6a: d7:90:6d:73:2c:67:68:2d:cd:37:05:2b:ad:68:6d:85:69:d3: 6d:77:49:57:a0:69:55:c9:fc:7b:d4:40:a5:ee:48:2e:35:d1: 61:b0:f4:20:8a:03:fb:85:b9:cf:e4:f0:55:b5:21:86:25:09: db:16:9e:9a:6e:04:86:3b:e9:46:51:59:12:68:b8:0e:85:f3: 9f:2e:f9:ba:47:22:20:9f:82:91:8b:4a:bd:e9:f8:f4:b2:a6: 06:ea:37:93:40:bb:c0:4c:f1:d4:37:1b:0c:b7:b2:53:32:a6: d4:7a:e4:9e:3c:f5:fc:bf:a3:be:93:8c:99:bc:fe:c7:ae:a4: bc:f4:4d:48:61:ac:ea:fe:74:60:7e:62:b9:1c:92:30:a1:b3: 0b:90:04:d4:41:47:4c:28:8f:e7:53:9e:e5:88:6b:ee:4e:71: bd:42:ce:31:50:fd:31:21:bf:1e:ae:23:f4:8a:b2:30:8b:47: b6:8d:b5:5e:19:3f:69:0c:a1:05:b1:12:ea:1c:15:cb:b7:e1: 71:e8:16:f0:a6:83:9b:8b:87:3a:ff:01:57:40:c5:97:b2:b2: 12:fb:df:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYyRUMxMTAvBgNVBAUTKEQ5MDg2QjBERjkzNDJEQzJCMDkxQkFFODZDQjc3OUZD NjI1OUJEN0IwHhcNMjUwODIyMTUwMDQyWhcNMjUwODI5MTUwMDQyWjAYMRYwFAYD VQQDEw02OGE4ODYxYS1jYzRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwCwOioqpnGkk/hJ99UuzmdZRJRy5pP9UXXafw9N5sjean2It84lP3QgS5uJt 5FZxM/1n3gHKMVLewknjBClUnfjtG7St8x3M/2ZZ+h8lV/mSP/1c+qrkP/t3csIa UtPHNr+K6C6V4jHdZZmKW3T6nScf2csITJ4H781vRsKf9LAaYMhl080+BxLYfQ26 3cxPnVbr0PCoEr8chC5bqrU+cMYsGAGjGdtMwZODpFe+nGxpLy0mJOP6vIznqvRh WsLpxwOpILIIIJ9zlWiw/sr5QXPLc1F3HJNb+I264jFxcmEmai1IY29Nw8OyyzYs +I6tFfmtWSjgWcBeAAQXVmrHhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAOJtMBh XGOI4SYrmU0NKBdgRpgBMB8GA1UdIwQYMBaAFNkIaw35NC3CsJG66Gy3efxiWb17 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjJFQy9ENThBMjI2QzFE OUMxMUUyOUJDM0IyOEIwOEIwMkNEMi8yUWhyRGZrMExjS3drYnJvYkxkNV9HSlp2 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRaHJEZmswTGNLd2ticm9iTGQ1X0dKWnZYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjJFQy9ENThBMjI2QzFEOUMxMUUyOUJDM0IyOEIwOEIwMkNEMi8yUWhyRGZrMExj S3drYnJvYkxkNV9HSlp2WHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDsWb5/Ko/3seZM5G3uZjW/yEOFlelbqoBzTZZqDCip3yAZWrXkG1z LGdoLc03BSutaG2FadNtd0lXoGlVyfx71ECl7kguNdFhsPQgigP7hbnP5PBVtSGG JQnbFp6abgSGO+lGUVkSaLgOhfOfLvm6RyIgn4KRi0q96fj0sqYG6jeTQLvATPHU NxsMt7JTMqbUeuSePPX8v6O+k4yZvP7HrqS89E1IYazq/nRgfmK5HJIwobMLkATU QUdMKI/nU57liGvuTnG9Qs4xUP0xIb8eriP0irIwi0e2jbVeGT9pDKEFsRLqHBXL t+Fx6BbwpoObi4c6/wFXQMWXsrIS+98+ -----END CERTIFICATE-----Generated at Sat Aug 23 21:29:09 2025 by rpki-client