$ rpki-client -vvf rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.mft File: ck2EEAslmZMZA4aasFIgd2yLrEI.mft (raw, json) Hash identifier: XiEElph0n1iituaBQF8aXFGrvS9zm3XIJB51HZ/Hhug= Subject key identifier: 66:43:F2:7D:16:3B:1D:58:2C:38:66:BA:26:EC:BC:0A:DF:00:F2:BA Authority key identifier: 72:4D:84:10:0B:25:99:93:19:03:86:9A:B0:52:20:77:6C:8B:AC:42 Certificate issuer: /CN=A916A39E/serialNumber=724D84100B2599931903869AB05220776C8BAC42 Certificate serial: 01B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck2EEAslmZMZA4aasFIgd2yLrEI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.mft Manifest number: 01AF Signing time: Sat 23 Aug 2025 03:15:47 +0000 Manifest this update: Sat 23 Aug 2025 03:15:46 +0000 Manifest next update: Sat 30 Aug 2025 03:15:46 +0000 Files and hashes: 1: ck2EEAslmZMZA4aasFIgd2yLrEI.crl (hash: hVjlm+VptliGWem9COxqkV5lIyu1kVYzZw4KcxxPBPk=) 2: AF01BB42EE4B11EDA0FDF350C4F9AE02.roa (hash: XG0ognbrHuDFVvw75BGHMdtpiHu/beUvd7TsChbHkCg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.crl rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck2EEAslmZMZA4aasFIgd2yLrEI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 435 (0x1b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A39E, serialNumber=724D84100B2599931903869AB05220776C8BAC42 Validity Not Before: Aug 23 03:15:46 2025 GMT Not After : Aug 30 03:15:46 2025 GMT Subject: CN=68a93263-3927 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:dd:72:5a:0f:f0:7e:22:cc:fd:03:36:8b:db: c5:7f:19:ad:27:a8:87:11:ff:34:93:d4:69:40:77: 03:5e:5d:8a:ed:82:e1:25:fd:bf:99:a3:24:8b:51: d4:75:aa:23:27:9e:13:7f:47:3b:ca:25:03:32:12: 5c:c2:cf:36:21:75:63:2d:05:d6:ec:0e:36:9c:6d: 60:e8:13:6f:d9:d8:9d:00:5d:1b:52:2a:b3:46:bf: 90:32:12:7d:dd:75:5b:42:3e:f6:ab:c7:24:15:fb: a7:dd:28:86:8b:cc:6f:47:35:21:7a:44:de:5b:45: ec:d4:2a:f3:67:06:ca:70:5d:0a:43:79:aa:5e:78: d2:7a:db:9d:06:63:e2:c3:81:9b:35:cf:06:92:4c: 87:45:8c:a7:ed:a7:db:23:8b:85:38:d2:69:eb:1b: 78:19:29:44:89:7a:31:d2:05:43:77:8c:bb:8d:93: 78:cd:68:ed:c2:f0:47:68:10:16:50:3a:70:6e:64: 1c:44:a0:1e:52:91:f3:49:52:19:24:e0:43:44:75: 5a:77:fc:ca:a6:58:83:db:a6:39:78:12:ff:66:b1: b5:ed:da:fc:da:0d:17:7b:74:3c:83:14:f7:44:00: a8:ff:97:4c:b9:0e:a8:9d:2b:f3:83:3f:b3:5d:22: ba:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:43:F2:7D:16:3B:1D:58:2C:38:66:BA:26:EC:BC:0A:DF:00:F2:BA X509v3 Authority Key Identifier: keyid:72:4D:84:10:0B:25:99:93:19:03:86:9A:B0:52:20:77:6C:8B:AC:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck2EEAslmZMZA4aasFIgd2yLrEI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:28:39:69:2f:e6:94:7b:cb:4f:bb:c6:45:58:a6:42:b7:f6: bb:fc:4f:c5:c9:dc:b3:5c:87:7e:ec:05:36:73:38:36:71:f9: e0:08:d9:ef:ac:d9:78:b2:4c:28:f5:0f:1e:d3:f2:d1:ea:f7: 7f:46:a3:02:66:89:bb:79:57:3b:67:f0:87:d6:78:5e:f3:d2: 0e:06:90:b6:cd:90:b7:a6:74:17:7d:93:87:88:d5:e3:9a:33: 33:65:49:55:e4:96:12:18:42:15:41:b8:48:87:37:2b:a9:e8: 87:78:d9:8c:f2:3d:15:55:d7:be:f0:54:d3:50:b7:88:9f:22: c0:4a:ff:f1:cb:e1:d2:63:00:5f:e9:64:52:f7:b3:8a:ab:42: ec:d1:22:d1:67:f0:31:d5:d3:a0:6a:7f:5d:e5:60:8a:98:29: 18:1d:84:9b:4b:22:25:ea:d5:6d:4a:37:0e:10:b6:28:88:3b: 13:30:88:03:85:2c:00:43:75:d4:e9:cb:d7:5d:10:88:86:b2: e2:96:16:90:2b:9c:e0:43:df:50:94:05:0e:4d:c5:13:e8:ec: 59:81:a6:fc:94:22:8e:fa:b1:50:ca:f1:2d:16:0c:f3:ab:f3: 4a:aa:62:e0:dd:c8:52:c5:02:d4:ee:71:d4:c9:09:a7:32:54: 7a:6a:e3:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzOUUxMTAvBgNVBAUTKDcyNEQ4NDEwMEIyNTk5OTMxOTAzODY5QUIwNTIyMDc3 NkM4QkFDNDIwHhcNMjUwODIzMDMxNTQ2WhcNMjUwODMwMDMxNTQ2WjAYMRYwFAYD VQQDEw02OGE5MzI2My0zOTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtt1yWg/wfiLM/QM2i9vFfxmtJ6iHEf80k9RpQHcDXl2K7YLhJf2/maMki1HU daojJ54Tf0c7yiUDMhJcws82IXVjLQXW7A42nG1g6BNv2didAF0bUiqzRr+QMhJ9 3XVbQj72q8ckFfun3SiGi8xvRzUhekTeW0Xs1CrzZwbKcF0KQ3mqXnjSetudBmPi w4GbNc8GkkyHRYyn7afbI4uFONJp6xt4GSlEiXox0gVDd4y7jZN4zWjtwvBHaBAW UDpwbmQcRKAeUpHzSVIZJOBDRHVad/zKpliD26Y5eBL/ZrG17dr82g0Xe3Q8gxT3 RACo/5dMuQ6onSvzgz+zXSK6qwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGZD8n0W Ox1YLDhmuibsvArfAPK6MB8GA1UdIwQYMBaAFHJNhBALJZmTGQOGmrBSIHdsi6xC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTM5RS9ENjQ0ODFGOEVF NDExMUVEQjk1NDVBMTZDNEY5QUUwMi9jazJFRUFzbG1aTVpBNGFhc0ZJZ2QyeUxy RUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NrMkVFQXNsbVpNWkE0YWFzRklnZDJ5THJFSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTM5RS9ENjQ0ODFGOEVFNDExMUVEQjk1NDVBMTZDNEY5QUUwMi9jazJFRUFzbG1a TVpBNGFhc0ZJZ2QyeUxyRUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOKDlpL+aUe8tPu8ZFWKZCt/a7/E/FydyzXId+7AU2czg2cfngCNnv rNl4skwo9Q8e0/LR6vd/RqMCZom7eVc7Z/CH1nhe89IOBpC2zZC3pnQXfZOHiNXj mjMzZUlV5JYSGEIVQbhIhzcrqeiHeNmM8j0VVde+8FTTULeInyLASv/xy+HSYwBf 6WRS97OKq0Ls0SLRZ/Ax1dOgan9d5WCKmCkYHYSbSyIl6tVtSjcOELYoiDsTMIgD hSwAQ3XU6cvXXRCIhrLilhaQK5zgQ99QlAUOTcUT6OxZgab8lCKO+rFQyvEtFgzz q/NKqmLg3chSxQLU7nHUyQmnMlR6auN4 -----END CERTIFICATE-----Generated at Sun Aug 24 06:35:56 2025 by rpki-client