$ rpki-client -vvf rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft File: 2-bH-ZCQRq41ohWw4hVErlIjfoo.mft (raw, json) Hash identifier: oEfvQXiocBwLQdA5c6votY3SzZNdN6xG3rLLVW7Tqc8= Subject key identifier: 36:77:F4:3F:9C:44:1E:2E:BB:65:D9:14:D1:F9:21:7D:83:EA:30:2E Authority key identifier: DB:E6:C7:F9:90:90:46:AE:35:A2:15:B0:E2:15:44:AE:52:23:7E:8A Certificate issuer: /CN=A914F697/serialNumber=DBE6C7F9909046AE35A215B0E21544AE52237E8A Certificate serial: 06A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-bH-ZCQRq41ohWw4hVErlIjfoo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft Manifest number: 07D5 Signing time: Fri 22 Aug 2025 20:59:40 +0000 Manifest this update: Fri 22 Aug 2025 20:59:39 +0000 Manifest next update: Fri 29 Aug 2025 20:59:39 +0000 Files and hashes: 1: 2-bH-ZCQRq41ohWw4hVErlIjfoo.crl (hash: GJECNnplI5+VDWqPatX4rbWN9jAa4XM/goC8Bo2ezcU=) 2: 1AA7504A92DD11EB9B9E993FC4F9AE02.roa (hash: C75Vrv4Uz+C6zFOBFG0FQ16ertvfsDBJQmC7BROeKb0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.crl rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-bH-ZCQRq41ohWw4hVErlIjfoo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:59:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1703 (0x6a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F697, serialNumber=DBE6C7F9909046AE35A215B0E21544AE52237E8A Validity Not Before: Aug 22 20:59:39 2025 GMT Not After : Aug 29 20:59:39 2025 GMT Subject: CN=68a8da3c-0518 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ae:2c:c3:f3:04:6f:4d:b4:b9:68:a8:ac:de: 9e:9c:44:02:b2:36:15:e9:af:41:cc:96:f5:52:17: 3a:1c:b6:08:7a:6d:5e:6d:21:3d:05:b5:30:a1:8b: 2f:84:8d:8e:e2:8e:fd:4f:ad:cf:2f:71:e6:2e:03: ab:0c:4e:27:b7:59:3f:4f:68:f9:bc:19:74:97:08: a3:10:18:0e:bc:fd:c4:f2:ed:53:a8:2f:05:26:fd: f5:8d:9c:b4:37:76:58:b3:e9:1a:79:e9:24:75:71: 69:37:b2:3f:f7:96:04:3e:75:4e:04:c7:80:2f:7a: 9e:76:5e:21:84:6b:12:d5:dc:71:3e:90:77:59:ea: 48:63:6e:4e:43:b2:b1:74:45:d6:9f:e8:89:81:6c: b1:b9:97:43:a8:92:4f:3c:70:72:13:1b:49:87:af: ce:35:78:60:95:cf:56:5d:cf:a5:41:d3:2d:99:d8: 19:31:22:3e:3a:d5:b1:4f:d0:38:91:9e:4b:31:16: 5f:9a:69:97:60:b0:ae:c5:28:0e:9d:88:c8:fd:8e: 24:2a:49:58:f9:e6:2f:6d:7d:38:11:83:43:98:31: 0e:1f:5f:bc:c9:ad:27:37:d1:1a:c5:ac:78:b2:e0: a2:48:8f:5c:b0:aa:9a:81:d7:c4:7f:46:ea:e1:85: 1d:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:77:F4:3F:9C:44:1E:2E:BB:65:D9:14:D1:F9:21:7D:83:EA:30:2E X509v3 Authority Key Identifier: keyid:DB:E6:C7:F9:90:90:46:AE:35:A2:15:B0:E2:15:44:AE:52:23:7E:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-bH-ZCQRq41ohWw4hVErlIjfoo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:45:93:0f:bd:23:a1:d6:e7:fa:64:32:89:5e:47:b3:86:dc: 9f:24:7b:c2:11:cd:ab:60:14:8c:38:ea:b5:14:c4:a6:6a:d5: e6:db:45:7b:e4:83:f5:98:35:44:c0:ad:0d:92:93:fd:33:90: 0f:4c:d2:3e:41:bd:0a:55:69:4f:70:3e:7f:fd:cf:8b:56:a9: 58:df:b0:b0:a9:c7:1e:f1:4a:79:63:4a:2e:55:3c:a2:58:d0: 1f:38:59:81:e8:47:33:92:5d:41:50:ca:30:3a:d3:14:5d:d8: 47:b4:78:38:40:17:99:1e:7e:75:3a:06:e8:f0:21:89:35:99: 30:55:e6:6c:e9:3b:ed:6f:0f:a7:72:27:47:10:d6:70:96:e2: 70:4c:1c:24:4e:3d:39:83:f8:70:13:8f:36:1c:52:de:57:d3: a9:d1:2e:a9:fc:c0:d3:ac:85:12:cd:a2:9d:b6:74:68:1c:d4: 93:d4:5a:7b:06:4b:8e:48:f9:1f:d1:11:a2:f6:93:5d:70:bc: 12:d8:82:ca:f2:ba:81:00:f7:32:8e:3e:ff:13:e4:41:d7:72: 3b:c2:3c:7b:29:74:0a:b7:95:dd:ac:e9:cb:d4:69:e4:84:66: 45:1c:37:84:f5:20:5c:b1:42:3c:3d:6d:1c:13:7a:c4:01:21: 62:86:cb:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY2OTcxMTAvBgNVBAUTKERCRTZDN0Y5OTA5MDQ2QUUzNUEyMTVCMEUyMTU0NEFF NTIyMzdFOEEwHhcNMjUwODIyMjA1OTM5WhcNMjUwODI5MjA1OTM5WjAYMRYwFAYD VQQDEw02OGE4ZGEzYy0wNTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAva4sw/MEb020uWiorN6enEQCsjYV6a9BzJb1Uhc6HLYIem1ebSE9BbUwoYsv hI2O4o79T63PL3HmLgOrDE4nt1k/T2j5vBl0lwijEBgOvP3E8u1TqC8FJv31jZy0 N3ZYs+kaeekkdXFpN7I/95YEPnVOBMeAL3qedl4hhGsS1dxxPpB3WepIY25OQ7Kx dEXWn+iJgWyxuZdDqJJPPHByExtJh6/ONXhglc9WXc+lQdMtmdgZMSI+OtWxT9A4 kZ5LMRZfmmmXYLCuxSgOnYjI/Y4kKklY+eYvbX04EYNDmDEOH1+8ya0nN9Eaxax4 suCiSI9csKqagdfEf0bq4YUdAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDZ39D+c RB4uu2XZFNH5IX2D6jAuMB8GA1UdIwQYMBaAFNvmx/mQkEauNaIVsOIVRK5SI36K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjY5Ny83NTIxREZDMEU4 NUQxMUVBQjIzQzhGODdDNEY5QUUwMi8yLWJILVpDUVJxNDFvaFd3NGhWRXJsSWpm b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItYkgtWkNRUnE0MW9oV3c0aFZFcmxJamZvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjY5Ny83NTIxREZDMEU4NUQxMUVBQjIzQzhGODdDNEY5QUUwMi8yLWJILVpDUVJx NDFvaFd3NGhWRXJsSWpmb28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANRZMPvSOh1uf6ZDKJXkezhtyfJHvCEc2rYBSMOOq1FMSmatXm20V7 5IP1mDVEwK0NkpP9M5APTNI+Qb0KVWlPcD5//c+LVqlY37Cwqcce8Up5Y0ouVTyi WNAfOFmB6Eczkl1BUMowOtMUXdhHtHg4QBeZHn51Ogbo8CGJNZkwVeZs6Tvtbw+n cidHENZwluJwTBwkTj05g/hwE482HFLeV9Op0S6p/MDTrIUSzaKdtnRoHNST1Fp7 BkuOSPkf0RGi9pNdcLwS2ILK8rqBAPcyjj7/E+RB13I7wjx7KXQKt5XdrOnL1Gnk hGZFHDeE9SBcsUI8PW0cE3rEASFihsu/ -----END CERTIFICATE-----Generated at Sat Aug 23 19:01:14 2025 by rpki-client