$ rpki-client -vvf rpki.apnic.net/member_repository/A915BA28/A47D2028285511E9AD381151C4F9AE02/f2BFo3Z2W_gnkqpwW72JlRnLGcc.mft File: f2BFo3Z2W_gnkqpwW72JlRnLGcc.mft (raw, json) Hash identifier: QqEhHxf4TM7PNhPyu+Vac5hJKeiHIoLTjPuVQqdGHOM= Subject key identifier: A5:97:B5:36:E9:03:93:39:D8:FF:FD:29:50:65:A4:84:9E:3F:36:0A Authority key identifier: 7F:60:45:A3:76:76:5B:F8:27:92:AA:70:5B:BD:89:95:19:CB:19:C7 Certificate issuer: /CN=A915BA28/serialNumber=7F6045A376765BF82792AA705BBD899519CB19C7 Certificate serial: 10E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2BFo3Z2W_gnkqpwW72JlRnLGcc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BA28/A47D2028285511E9AD381151C4F9AE02/f2BFo3Z2W_gnkqpwW72JlRnLGcc.mft Manifest number: 10D4 Signing time: Fri 22 Aug 2025 17:26:05 +0000 Manifest this update: Fri 22 Aug 2025 17:26:05 +0000 Manifest next update: Fri 29 Aug 2025 17:26:05 +0000 Files and hashes: 1: f2BFo3Z2W_gnkqpwW72JlRnLGcc.crl (hash: 7Gvd8aVATiVLQPQkK8lLVYnawcSEEGSyaf8LBGUg4Ac=) 2: C90C4476FBA611E9BA00AB33C4F9AE02.roa (hash: ibzIHQiS71/cKL/AN17g76C8mULHtazMynL8XoJHu8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BA28/A47D2028285511E9AD381151C4F9AE02/f2BFo3Z2W_gnkqpwW72JlRnLGcc.crl rsync://rpki.apnic.net/member_repository/A915BA28/A47D2028285511E9AD381151C4F9AE02/f2BFo3Z2W_gnkqpwW72JlRnLGcc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2BFo3Z2W_gnkqpwW72JlRnLGcc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:26:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4323 (0x10e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BA28, serialNumber=7F6045A376765BF82792AA705BBD899519CB19C7 Validity Not Before: Aug 22 17:26:05 2025 GMT Not After : Aug 29 17:26:05 2025 GMT Subject: CN=68a8a82d-d35a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:8f:e1:6c:3c:4e:2b:ee:42:6c:05:7f:c5:a8: 2b:9c:0d:ee:de:43:8e:60:72:75:d7:2b:0b:7a:04: b6:c3:52:66:4a:7c:93:ca:50:8d:64:45:95:1a:4e: f2:ab:24:fa:cc:1c:d4:06:81:19:2b:35:cd:f8:bf: 5f:fa:d8:b2:c6:48:db:96:6b:aa:0f:cc:22:54:82: cb:f8:36:da:09:fa:09:5d:2a:47:80:45:8e:77:ba: a7:75:bf:51:e1:5b:6c:e6:fd:49:33:f5:ea:74:e1: 79:bb:4e:9a:68:b7:35:18:05:04:de:68:2b:ab:0a: 9f:23:93:9e:04:cb:36:18:7a:56:36:f9:16:65:28: 45:2a:c9:e6:7e:0e:9e:83:f3:f5:a3:ec:b8:f1:73: e9:7a:de:f2:c0:ec:e2:be:b2:87:4d:a9:20:26:73: be:a3:5d:6f:b1:1c:03:10:25:76:e7:fd:01:87:af: ec:42:11:55:dc:c7:c2:f4:83:5d:1d:ab:71:7d:80: 09:10:f8:1b:36:86:15:a3:7a:c7:cd:e1:10:d7:60: e2:11:92:08:de:b8:ff:09:12:2c:02:e5:dd:c5:a4: f9:c4:61:b8:13:76:b8:a9:07:15:dd:f3:64:7f:68: 88:39:e8:d3:85:5c:ca:6a:1c:c4:45:88:df:0f:4d: 2f:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:97:B5:36:E9:03:93:39:D8:FF:FD:29:50:65:A4:84:9E:3F:36:0A X509v3 Authority Key Identifier: keyid:7F:60:45:A3:76:76:5B:F8:27:92:AA:70:5B:BD:89:95:19:CB:19:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BA28/A47D2028285511E9AD381151C4F9AE02/f2BFo3Z2W_gnkqpwW72JlRnLGcc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2BFo3Z2W_gnkqpwW72JlRnLGcc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BA28/A47D2028285511E9AD381151C4F9AE02/f2BFo3Z2W_gnkqpwW72JlRnLGcc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:d4:c6:98:08:19:46:fa:f2:2c:91:bd:2c:07:9c:1c:c3:8e: a7:64:da:85:87:21:86:9b:ea:fb:3f:0e:6d:42:0d:ca:fc:1a: 90:9d:15:6e:9c:13:e3:af:83:db:2e:f1:00:0b:00:ed:da:10: 81:5c:cd:7b:b1:50:15:19:6e:da:c9:ba:52:8c:b2:d8:c5:9d: 20:64:de:7e:4a:98:80:40:cd:50:7e:e0:93:61:e0:ea:83:83: 62:36:b4:e2:a0:8d:60:61:de:d5:ad:1c:99:97:3e:fd:fe:00: a2:ea:da:e1:fe:23:47:20:72:d8:29:27:70:45:29:58:03:f4: b6:cd:a0:3f:8a:e0:60:bc:2c:ce:02:d2:ee:a6:4e:9c:5c:1f: 34:d6:df:49:38:5b:e2:e3:53:59:fc:bc:55:df:3b:19:d9:13: 14:18:f1:1c:9d:bd:72:f7:13:2f:c2:40:05:da:78:ba:4b:5a: cf:5f:13:e5:7b:81:96:51:f1:91:cc:28:7a:53:3f:0b:b9:69: 70:87:c3:d8:c8:bb:a0:5b:3f:d3:d0:fc:1b:e7:85:c2:6a:39: db:3f:25:a4:9d:52:1e:63:fc:5d:44:82:e1:2a:ae:bf:7b:27: 43:7d:22:42:d3:29:b7:16:95:58:77:f6:e9:5d:6e:fe:c4:0b: 8a:7d:04:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUJBMjgxMTAvBgNVBAUTKDdGNjA0NUEzNzY3NjVCRjgyNzkyQUE3MDVCQkQ4OTk1 MTlDQjE5QzcwHhcNMjUwODIyMTcyNjA1WhcNMjUwODI5MTcyNjA1WjAYMRYwFAYD VQQDEw02OGE4YTgyZC1kMzVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6I/hbDxOK+5CbAV/xagrnA3u3kOOYHJ11ysLegS2w1JmSnyTylCNZEWVGk7y qyT6zBzUBoEZKzXN+L9f+tiyxkjblmuqD8wiVILL+DbaCfoJXSpHgEWOd7qndb9R 4Vts5v1JM/XqdOF5u06aaLc1GAUE3mgrqwqfI5OeBMs2GHpWNvkWZShFKsnmfg6e g/P1o+y48XPpet7ywOzivrKHTakgJnO+o11vsRwDECV25/0Bh6/sQhFV3MfC9INd HatxfYAJEPgbNoYVo3rHzeEQ12DiEZII3rj/CRIsAuXdxaT5xGG4E3a4qQcV3fNk f2iIOejThVzKahzERYjfD00v+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKWXtTbp A5M52P/9KVBlpISePzYKMB8GA1UdIwQYMBaAFH9gRaN2dlv4J5KqcFu9iZUZyxnH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QkEyOC9BNDdEMjAyODI4 NTUxMUU5QUQzODExNTFDNEY5QUUwMi9mMkJGbzNaMldfZ25rcXB3VzcySmxSbkxH Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2YyQkZvM1oyV19nbmtxcHdXNzJKbFJuTEdjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QkEyOC9BNDdEMjAyODI4NTUxMUU5QUQzODExNTFDNEY5QUUwMi9mMkJGbzNaMldf Z25rcXB3VzcySmxSbkxHY2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBX1MaYCBlG+vIskb0sB5wcw46nZNqFhyGGm+r7Pw5tQg3K/BqQnRVu nBPjr4PbLvEACwDt2hCBXM17sVAVGW7aybpSjLLYxZ0gZN5+SpiAQM1QfuCTYeDq g4NiNrTioI1gYd7VrRyZlz79/gCi6trh/iNHIHLYKSdwRSlYA/S2zaA/iuBgvCzO AtLupk6cXB801t9JOFvi41NZ/LxV3zsZ2RMUGPEcnb1y9xMvwkAF2ni6S1rPXxPl e4GWUfGRzCh6Uz8LuWlwh8PYyLugWz/T0Pwb54XCajnbPyWknVIeY/xdRILhKq6/ eydDfSJC0ym3FpVYd/bpXW7+xAuKfQTS -----END CERTIFICATE-----Generated at Sun Aug 24 00:47:57 2025 by rpki-client