$ rpki-client -vvf rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.mft File: 2DvcT6zNnbegvEa0JE6jEHBgS5c.mft (raw, json) Hash identifier: X7wPeanBV/2NE37Zw4weMRBqbi272Gnrl1/DfRwCULY= Subject key identifier: 50:7B:FD:6C:86:04:86:C5:35:3B:A6:00:59:5D:1D:0C:BD:D4:2C:18 Authority key identifier: D8:3B:DC:4F:AC:CD:9D:B7:A0:BC:46:B4:24:4E:A3:10:70:60:4B:97 Certificate issuer: /CN=A914F870/serialNumber=D83BDC4FACCD9DB7A0BC46B4244EA31070604B97 Certificate serial: 6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DvcT6zNnbegvEa0JE6jEHBgS5c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.mft Manifest number: 6E Signing time: Sat 23 Aug 2025 07:09:09 +0000 Manifest this update: Sat 23 Aug 2025 07:09:09 +0000 Manifest next update: Sat 30 Aug 2025 07:09:09 +0000 Files and hashes: 1: 2DvcT6zNnbegvEa0JE6jEHBgS5c.crl (hash: 7fs6EWlEgZdvQJifDFJeHs2ry/TrDaBeDTVmhhzme0E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.crl rsync://rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DvcT6zNnbegvEa0JE6jEHBgS5c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:09:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F870, serialNumber=D83BDC4FACCD9DB7A0BC46B4244EA31070604B97 Validity Not Before: Aug 23 07:09:09 2025 GMT Not After : Aug 30 07:09:09 2025 GMT Subject: CN=68a96915-4a46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:79:5e:98:25:f7:a8:9f:03:e3:a8:02:a1:e5: 97:12:f2:d7:35:c5:85:45:d3:09:8f:63:95:96:dc: 58:be:b3:0b:25:36:cd:47:44:77:78:1f:1b:c9:db: 6f:f3:53:a6:76:97:c1:33:58:cf:88:cb:4e:87:84: 9a:04:83:bd:71:e2:ef:aa:ab:ea:ae:b4:a0:70:2f: c1:e7:db:63:88:23:c2:b4:95:01:00:13:8b:df:f1: 11:4d:3e:ed:bf:bb:ae:dd:eb:7b:da:51:6f:42:64: 0d:0b:a4:30:dd:2d:1a:82:b0:54:43:1e:b9:81:3a: 34:91:64:66:2e:52:1d:a0:ef:29:1d:ca:ba:00:58: bd:13:17:fd:f3:bb:eb:09:c4:a2:57:99:47:20:8f: 8c:30:dc:5e:87:36:cb:67:d2:ba:67:86:ee:df:58: b4:1c:c1:1a:fe:03:fe:83:0c:3b:bc:5a:72:e4:e8: c9:07:75:1a:d8:54:f7:e2:6d:55:ee:3c:1a:7b:55: a9:1e:3a:d7:d0:2c:56:ba:0a:4d:09:2b:f4:a6:f1: 7b:3b:6e:c3:fa:a2:56:5e:e0:67:f7:a2:ab:57:b6: 21:ec:ee:66:bb:a3:b4:97:ec:58:6f:74:c4:31:87: d2:de:71:f3:31:d3:81:97:46:76:ba:ed:c9:7f:3f: 53:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:7B:FD:6C:86:04:86:C5:35:3B:A6:00:59:5D:1D:0C:BD:D4:2C:18 X509v3 Authority Key Identifier: keyid:D8:3B:DC:4F:AC:CD:9D:B7:A0:BC:46:B4:24:4E:A3:10:70:60:4B:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DvcT6zNnbegvEa0JE6jEHBgS5c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:2c:35:b4:b1:9c:8a:cd:d4:74:73:06:eb:de:f7:7b:84:23: bf:b9:ed:06:40:ee:78:95:93:51:f0:43:a3:47:c5:49:f3:a0: db:76:c7:a7:46:9e:9e:ea:9f:b0:e8:03:01:14:24:fc:c1:7e: 0a:65:35:ed:74:8d:5b:66:e4:02:ed:58:ac:c3:8e:19:a8:0e: 61:40:61:1d:65:97:6d:9a:fe:51:09:69:86:78:60:c1:11:bd: 51:68:1f:32:2b:38:de:f2:9b:6c:55:9b:b8:5b:3c:64:ed:4d: f7:c6:8c:9f:57:27:9c:52:76:06:fd:95:bc:cc:55:74:e3:18: 55:8e:12:32:3b:f0:88:bc:f9:22:58:7c:39:5b:41:f9:78:d6: 60:ca:1d:99:93:63:0c:11:9b:80:1d:ff:e1:b1:55:67:67:7d: 74:5f:d6:a9:c7:d0:51:ed:3a:b1:12:68:52:66:11:28:d0:15: f0:1b:66:79:38:14:c7:68:df:f4:72:c0:43:9d:89:40:8c:9a: 94:ad:7a:6d:31:92:12:23:4f:7b:59:e7:b8:19:95:89:31:25: 19:c7:cd:3d:9c:22:43:96:0a:d4:45:99:87:e9:8d:41:fc:e4: 16:c5:68:90:9c:3d:82:d5:71:7a:69:23:cd:c9:3a:bb:36:51: 43:c3:1a:f9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 Rjg3MDExMC8GA1UEBRMoRDgzQkRDNEZBQ0NEOURCN0EwQkM0NkI0MjQ0RUEzMTA3 MDYwNEI5NzAeFw0yNTA4MjMwNzA5MDlaFw0yNTA4MzAwNzA5MDlaMBgxFjAUBgNV BAMTDTY4YTk2OTE1LTRhNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEeV6YJfeonwPjqAKh5ZcS8tc1xYVF0wmPY5WW3Fi+swslNs1HRHd4HxvJ22/z U6Z2l8EzWM+Iy06HhJoEg71x4u+qq+qutKBwL8Hn22OII8K0lQEAE4vf8RFNPu2/ u67d63vaUW9CZA0LpDDdLRqCsFRDHrmBOjSRZGYuUh2g7ykdyroAWL0TF/3zu+sJ xKJXmUcgj4ww3F6HNstn0rpnhu7fWLQcwRr+A/6DDDu8WnLk6MkHdRrYVPfibVXu PBp7VakeOtfQLFa6Ck0JK/Sm8Xs7bsP6olZe4Gf3oqtXtiHs7ma7o7SX7FhvdMQx h9LecfMx04GXRna67cl/P1OlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUUHv9bIYE hsU1O6YAWV0dDL3ULBgwHwYDVR0jBBgwFoAU2DvcT6zNnbegvEa0JE6jEHBgS5cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRGODcwL0QyRTI0Qzk4RDdF MjExRUZBRjBCM0I3REM0RjlBRTAyLzJEdmNUNnpObmJlZ3ZFYTBKRTZqRUhCZ1M1 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMkR2Y1Q2ek5uYmVndkVhMEpFNmpFSEJnUzVjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRG ODcwL0QyRTI0Qzk4RDdFMjExRUZBRjBCM0I3REM0RjlBRTAyLzJEdmNUNnpObmJl Z3ZFYTBKRTZqRUhCZ1M1Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKQsNbSxnIrN1HRzBuve93uEI7+57QZA7niVk1HwQ6NHxUnzoNt2x6dG np7qn7DoAwEUJPzBfgplNe10jVtm5ALtWKzDjhmoDmFAYR1ll22a/lEJaYZ4YMER vVFoHzIrON7ym2xVm7hbPGTtTffGjJ9XJ5xSdgb9lbzMVXTjGFWOEjI78Ii8+SJY fDlbQfl41mDKHZmTYwwRm4Ad/+GxVWdnfXRf1qnH0FHtOrESaFJmESjQFfAbZnk4 FMdo3/RywEOdiUCMmpStem0xkhIjT3tZ57gZlYkxJRnHzT2cIkOWCtRFmYfpjUH8 5BbFaJCcPYLVcXppI83JOrs2UUPDGvk= -----END CERTIFICATE-----Generated at Sat Aug 23 17:09:26 2025 by rpki-client