$ rpki-client -vvf rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.mft File: 2dCjxqTde6e0VN6uAa9nryxUxDM.mft (raw, json) Hash identifier: iEU+6vT8PLXs97biYxzAeMadYreuNy1/OcI0iI+MoGA= Subject key identifier: 8C:93:D1:A9:F6:85:83:0F:1D:2B:66:01:7F:3A:02:FB:94:F8:75:3C Authority key identifier: D9:D0:A3:C6:A4:DD:7B:A7:B4:54:DE:AE:01:AF:67:AF:2C:54:C4:33 Certificate issuer: /CN=A915C9B7/serialNumber=D9D0A3C6A4DD7BA7B454DEAE01AF67AF2C54C433 Certificate serial: 0817 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dCjxqTde6e0VN6uAa9nryxUxDM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.mft Manifest number: 080C Signing time: Fri 22 Aug 2025 21:01:49 +0000 Manifest this update: Fri 22 Aug 2025 21:01:48 +0000 Manifest next update: Fri 29 Aug 2025 21:01:48 +0000 Files and hashes: 1: 2dCjxqTde6e0VN6uAa9nryxUxDM.crl (hash: GaoMaf5hIzj+8tGZey6pko2X5znCb7kxMNq3OSJxxAU=) 2: 12A47D4E9CDB11EF857FB626C4F9AE02.roa (hash: DuU/zvCDCUg2TONY7brDsE/++qWvSBYjnL7XCdcyag0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.crl rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dCjxqTde6e0VN6uAa9nryxUxDM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:01:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2071 (0x817) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C9B7, serialNumber=D9D0A3C6A4DD7BA7B454DEAE01AF67AF2C54C433 Validity Not Before: Aug 22 21:01:48 2025 GMT Not After : Aug 29 21:01:48 2025 GMT Subject: CN=68a8dabd-04f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:53:b0:b9:3d:66:24:7c:22:ed:8d:ac:18:0d: d9:06:e3:ec:11:88:4d:f2:83:5c:e5:bf:16:03:b1: d9:6b:e8:0f:bc:8e:0d:20:36:cf:22:ae:e6:71:82: 05:aa:00:e6:51:84:49:3d:e8:06:e3:f3:fc:84:74: 7b:52:1b:f1:c1:25:48:40:44:ac:d1:d9:8f:f6:81: f3:40:8b:e7:ab:10:b9:3c:e4:75:7d:7c:d5:f6:d1: e6:3b:87:cc:1e:a7:b1:65:02:66:d3:a9:43:bb:0b: de:bb:97:54:2d:26:de:eb:31:e5:19:91:6e:28:b8: 7b:8c:e1:a7:d6:a7:33:6a:1d:f0:e8:bc:07:ea:77: 56:f9:9a:9b:66:85:99:c3:60:2a:fb:83:9c:7b:5d: 49:0b:93:39:b9:fb:3a:32:59:a3:30:b9:02:f7:c6: 4d:5a:d5:83:d0:e5:f6:ff:4d:ee:e6:7d:9e:96:30: 19:d0:bf:e9:a2:aa:e7:6d:e1:bb:db:c7:b5:ce:5c: e7:d0:eb:6a:9e:2f:ed:c5:2a:31:25:af:8c:c4:38: 58:bc:3d:5a:0b:8f:10:5b:54:df:dd:9f:f4:10:cd: 44:a7:e3:d1:f6:b1:0a:91:9a:20:5e:58:ec:d2:37: 4a:69:85:c0:16:95:94:63:00:92:53:1b:d2:89:07: 29:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:93:D1:A9:F6:85:83:0F:1D:2B:66:01:7F:3A:02:FB:94:F8:75:3C X509v3 Authority Key Identifier: keyid:D9:D0:A3:C6:A4:DD:7B:A7:B4:54:DE:AE:01:AF:67:AF:2C:54:C4:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dCjxqTde6e0VN6uAa9nryxUxDM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:ad:ed:c5:57:83:3e:cd:fc:83:03:02:8e:df:2e:cd:56:aa: fe:e1:38:39:cb:f4:a8:a5:aa:8e:b7:db:c6:69:6c:63:0a:35: 5b:2c:c7:1e:ea:b6:65:50:e5:b1:24:5c:31:fc:f0:c9:48:83: d8:d0:ba:f3:ee:60:4b:af:c3:e6:12:d7:af:97:49:f0:81:80: c5:2a:7a:81:a0:6e:7d:44:e2:e8:af:b2:96:eb:35:65:af:5f: 76:a0:6e:e1:9a:79:2c:b3:ac:22:df:28:e2:41:71:94:95:b3: cf:61:66:d7:11:da:35:5d:b9:0f:55:e8:41:48:17:78:f8:32: 90:46:9b:a7:2f:a3:87:9c:04:65:61:ae:9b:30:3f:9e:30:e9: c6:26:18:10:cb:08:50:9a:91:d2:40:7f:6e:51:66:85:48:15: ac:51:79:6e:ec:4f:73:09:74:2f:3f:5f:48:69:ae:7c:3d:4d: 60:f0:4e:5c:92:97:db:3b:18:cd:15:d3:16:f6:74:ff:c7:a1: 25:0d:d0:bb:59:cf:94:97:47:56:54:c8:c6:e0:a9:70:4f:06: ce:f5:47:8c:3a:03:24:95:99:df:fa:ad:9d:80:97:ea:21:f2: 12:18:44:a4:08:65:2b:44:94:4d:95:d7:43:c7:cf:7a:cc:9b: ce:fe:34:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM5QjcxMTAvBgNVBAUTKEQ5RDBBM0M2QTRERDdCQTdCNDU0REVBRTAxQUY2N0FG MkM1NEM0MzMwHhcNMjUwODIyMjEwMTQ4WhcNMjUwODI5MjEwMTQ4WjAYMRYwFAYD VQQDEw02OGE4ZGFiZC0wNGYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtlOwuT1mJHwi7Y2sGA3ZBuPsEYhN8oNc5b8WA7HZa+gPvI4NIDbPIq7mcYIF qgDmUYRJPegG4/P8hHR7UhvxwSVIQESs0dmP9oHzQIvnqxC5POR1fXzV9tHmO4fM HqexZQJm06lDuwveu5dULSbe6zHlGZFuKLh7jOGn1qczah3w6LwH6ndW+ZqbZoWZ w2Aq+4Oce11JC5M5ufs6MlmjMLkC98ZNWtWD0OX2/03u5n2eljAZ0L/poqrnbeG7 28e1zlzn0Otqni/txSoxJa+MxDhYvD1aC48QW1Tf3Z/0EM1Ep+PR9rEKkZogXljs 0jdKaYXAFpWUYwCSUxvSiQcp5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIyT0an2 hYMPHStmAX86AvuU+HU8MB8GA1UdIwQYMBaAFNnQo8ak3XuntFTergGvZ68sVMQz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzlCNy84QzI2NEZEMkVF NUExMUVBQUQ3NjkwMzNDNEY5QUUwMi8yZENqeHFUZGU2ZTBWTjZ1QWE5bnJ5eFV4 RE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJkQ2p4cVRkZTZlMFZONnVBYTlucnl4VXhETS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzlCNy84QzI2NEZEMkVFNUExMUVBQUQ3NjkwMzNDNEY5QUUwMi8yZENqeHFUZGU2 ZTBWTjZ1QWE5bnJ5eFV4RE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClre3FV4M+zfyDAwKO3y7NVqr+4Tg5y/SopaqOt9vGaWxjCjVbLMce 6rZlUOWxJFwx/PDJSIPY0Lrz7mBLr8PmEtevl0nwgYDFKnqBoG59ROLor7KW6zVl r192oG7hmnkss6wi3yjiQXGUlbPPYWbXEdo1XbkPVehBSBd4+DKQRpunL6OHnARl Ya6bMD+eMOnGJhgQywhQmpHSQH9uUWaFSBWsUXlu7E9zCXQvP19Iaa58PU1g8E5c kpfbOxjNFdMW9nT/x6ElDdC7Wc+Ul0dWVMjG4KlwTwbO9UeMOgMklZnf+q2dgJfq IfISGESkCGUrRJRNlddDx896zJvO/jS3 -----END CERTIFICATE-----Generated at Sun Aug 24 06:28:44 2025 by rpki-client