$ rpki-client -vvf rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.mft File: 2c3AiUgqZ0m1IAUcDzhfYt6MtJM.mft (raw, json) Hash identifier: +CeVB/4uYuJe6N2Y2i8YO90F/0FlE21icJnPyZkLabA= Subject key identifier: DF:73:4D:48:D0:0D:82:A9:96:AA:79:C2:2C:EC:0C:36:77:12:33:8C Authority key identifier: D9:CD:C0:89:48:2A:67:49:B5:20:05:1C:0F:38:5F:62:DE:8C:B4:93 Certificate issuer: /CN=A9164F6C/serialNumber=D9CDC089482A6749B520051C0F385F62DE8CB493 Certificate serial: FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.mft Manifest number: F8 Signing time: Sat 23 Aug 2025 05:23:27 +0000 Manifest this update: Sat 23 Aug 2025 05:23:27 +0000 Manifest next update: Sat 30 Aug 2025 05:23:27 +0000 Files and hashes: 1: 2c3AiUgqZ0m1IAUcDzhfYt6MtJM.crl (hash: gdTD78sgLcUyf3Tqw4OO5YVkh2jiLsYOr63aZ6hnvoQ=) 2: EC1244C40C0A11EF86081F2FC4F9AE02.roa (hash: NJlTUu7/QW4EWdki02Krp+vIjKwpqnHJl+6zdGP8Tfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.crl rsync://rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:23:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 254 (0xfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164F6C, serialNumber=D9CDC089482A6749B520051C0F385F62DE8CB493 Validity Not Before: Aug 23 05:23:27 2025 GMT Not After : Aug 30 05:23:27 2025 GMT Subject: CN=68a9504f-5ae4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e9:a0:fe:35:3f:36:48:3e:31:36:d8:18:11: 7a:38:2c:24:d4:20:a3:c3:2d:cc:13:2c:86:6f:c6: 62:cc:99:28:ec:22:f3:c8:7a:15:98:62:d7:65:f8: 7f:54:5a:1b:f0:a8:13:28:86:d8:ee:48:b0:b0:ee: 76:55:2e:a8:7d:71:12:bb:4d:77:e5:51:fa:28:e2: 54:fc:15:ce:bf:61:1d:16:1f:aa:a9:59:26:50:65: 4b:38:ab:49:45:5d:e3:e2:33:6a:7d:b8:c3:eb:b1: a6:bd:d4:fd:ae:d2:1b:60:9a:fb:1c:9e:c8:d9:03: 01:2d:1d:20:d2:42:3d:d5:d0:73:65:f3:06:97:63: a1:9a:ef:2e:81:9b:12:72:7f:fa:f5:d9:ff:7c:37: fb:c3:06:34:5f:dd:df:73:28:cd:1e:37:1b:59:60: 24:ea:7f:06:bf:27:5c:3f:c9:03:04:c2:5c:19:fc: a4:43:ba:d5:d8:29:8c:94:4c:74:1d:05:aa:4c:66: 8a:b1:04:58:dc:0b:d2:56:1b:1d:ab:70:ff:a4:0d: 5f:d8:aa:9a:54:7c:fd:6e:0e:dd:cb:c0:d0:f0:d8: ac:2a:12:69:8c:4b:ff:8d:45:b2:50:ea:fd:d8:54: 82:e1:23:87:3b:d8:27:c8:67:57:e7:2f:df:10:3a: b8:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:73:4D:48:D0:0D:82:A9:96:AA:79:C2:2C:EC:0C:36:77:12:33:8C X509v3 Authority Key Identifier: keyid:D9:CD:C0:89:48:2A:67:49:B5:20:05:1C:0F:38:5F:62:DE:8C:B4:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:ed:e5:3c:00:22:97:53:f1:5e:65:45:72:41:bf:fe:eb:fd: ad:72:a9:4e:20:73:3a:5f:c1:d8:92:58:06:33:83:60:b4:64: 7c:28:8e:3f:00:81:55:67:80:c6:86:b6:12:8c:3e:80:0c:ea: 0b:4e:f7:7a:d5:d3:35:5d:57:d5:d3:e7:76:f6:72:19:8f:ce: 28:d3:af:eb:dd:01:bc:eb:ed:14:64:8c:54:f9:b6:3d:3a:ec: 7a:44:07:67:cc:03:4e:be:83:0a:0a:12:41:9d:21:ae:57:9f: 2c:18:1d:7f:10:72:e9:57:cb:f6:00:8e:47:c6:cc:1b:a9:5d: 49:00:d7:cf:3d:96:84:6f:8b:66:d4:82:34:4f:df:a3:fd:cf: fd:e2:05:db:bc:07:99:86:c8:c7:1e:ac:7e:24:57:ff:41:a3: f4:2e:6b:f2:fb:e1:ed:32:cb:7e:2c:65:74:ab:e7:c6:ef:10: 70:3d:4b:18:1c:44:4a:ba:35:9d:d1:e9:e9:a0:68:ab:51:9d: 60:50:7d:8f:38:21:c6:f0:cf:70:0d:d4:33:66:e1:13:a4:fc: 81:4b:e7:44:d3:63:c4:d1:ad:67:f7:f8:fb:0a:b6:ab:2b:c4: 86:0d:06:66:6c:95:a2:37:b7:bb:71:e1:a5:19:3f:54:6d:8e: a2:39:50:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjRGNkMxMTAvBgNVBAUTKEQ5Q0RDMDg5NDgyQTY3NDlCNTIwMDUxQzBGMzg1RjYy REU4Q0I0OTMwHhcNMjUwODIzMDUyMzI3WhcNMjUwODMwMDUyMzI3WjAYMRYwFAYD VQQDEw02OGE5NTA0Zi01YWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1umg/jU/Nkg+MTbYGBF6OCwk1CCjwy3MEyyGb8ZizJko7CLzyHoVmGLXZfh/ VFob8KgTKIbY7kiwsO52VS6ofXESu0135VH6KOJU/BXOv2EdFh+qqVkmUGVLOKtJ RV3j4jNqfbjD67GmvdT9rtIbYJr7HJ7I2QMBLR0g0kI91dBzZfMGl2Ohmu8ugZsS cn/69dn/fDf7wwY0X93fcyjNHjcbWWAk6n8GvydcP8kDBMJcGfykQ7rV2CmMlEx0 HQWqTGaKsQRY3AvSVhsdq3D/pA1f2KqaVHz9bg7dy8DQ8NisKhJpjEv/jUWyUOr9 2FSC4SOHO9gnyGdX5y/fEDq4lQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN9zTUjQ DYKplqp5wizsDDZ3EjOMMB8GA1UdIwQYMBaAFNnNwIlIKmdJtSAFHA84X2LejLST MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NEY2Qy9CODgyMzcyODBD MDkxMUVGOUJEOTEzMkNDNEY5QUUwMi8yYzNBaVVncVowbTFJQVVjRHpoZll0Nk10 Sk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJjM0FpVWdxWjBtMUlBVWNEemhmWXQ2TXRKTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NEY2Qy9CODgyMzcyODBDMDkxMUVGOUJEOTEzMkNDNEY5QUUwMi8yYzNBaVVncVow bTFJQVVjRHpoZll0Nk10Sk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAG7eU8ACKXU/FeZUVyQb/+6/2tcqlOIHM6X8HYklgGM4NgtGR8KI4/ AIFVZ4DGhrYSjD6ADOoLTvd61dM1XVfV0+d29nIZj84o06/r3QG86+0UZIxU+bY9 Oux6RAdnzANOvoMKChJBnSGuV58sGB1/EHLpV8v2AI5HxswbqV1JANfPPZaEb4tm 1II0T9+j/c/94gXbvAeZhsjHHqx+JFf/QaP0Lmvy++HtMst+LGV0q+fG7xBwPUsY HERKujWd0enpoGirUZ1gUH2POCHG8M9wDdQzZuETpPyBS+dE02PE0a1n9/j7Crar K8SGDQZmbJWiN7e7ceGlGT9UbY6iOVBy -----END CERTIFICATE-----Generated at Sun Aug 24 03:12:28 2025 by rpki-client