$ rpki-client -vvf rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.mft File: 2QhMrcO-yMIAxalrcu2v1KAOrug.mft (raw, json) Hash identifier: 4xxUjPvYnhl50TA4VLUp5utzGHYyyOLJv5XGG8BYj5M= Subject key identifier: 52:9D:E9:AE:CE:D1:23:CC:7A:6F:21:A7:B9:23:24:2B:89:BF:EE:3E Authority key identifier: D9:08:4C:AD:C3:BE:C8:C2:00:C5:A9:6B:72:ED:AF:D4:A0:0E:AE:E8 Certificate issuer: /CN=A91719F1/serialNumber=D9084CADC3BEC8C200C5A96B72EDAFD4A00EAEE8 Certificate serial: 0278 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhMrcO-yMIAxalrcu2v1KAOrug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.mft Manifest number: 0271 Signing time: Sat 23 Aug 2025 01:57:38 +0000 Manifest this update: Sat 23 Aug 2025 01:57:37 +0000 Manifest next update: Sat 30 Aug 2025 01:57:37 +0000 Files and hashes: 1: 2QhMrcO-yMIAxalrcu2v1KAOrug.crl (hash: pD+XqU7ROCQckmV9i49MTNCRnYHpt860+2kxYDXkAQA=) 2: 00724F9621F111ED93774B6EC4F9AE02.roa (hash: 1MS8BgQSeLxFZfjzI2XVs+BA1y3N2nYBN3Uvkoalvq8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.crl rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhMrcO-yMIAxalrcu2v1KAOrug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:57:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 632 (0x278) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91719F1, serialNumber=D9084CADC3BEC8C200C5A96B72EDAFD4A00EAEE8 Validity Not Before: Aug 23 01:57:37 2025 GMT Not After : Aug 30 01:57:37 2025 GMT Subject: CN=68a92012-d8c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:11:7f:84:5b:70:98:74:91:1d:f7:23:f3:0b: 57:13:cc:0d:ac:78:30:cc:c6:09:a5:e5:ea:18:bc: c3:92:45:75:e1:d3:8f:7f:3c:9a:c3:a6:4d:34:f8: ba:33:ae:3b:5a:35:5a:dc:f8:af:6f:d9:1e:95:d7: 87:9a:16:23:96:fa:32:38:8f:2a:6c:6c:61:a6:96: 2a:9f:1f:08:6b:4b:27:32:de:19:6e:d8:83:27:aa: 1b:59:52:a6:af:4b:e8:19:64:fa:38:e0:00:27:90: b8:d2:51:b8:04:f8:96:9a:6c:04:a8:b2:d8:e5:ba: e3:d3:e0:6a:2e:de:04:6a:6d:e5:5e:8a:d1:fe:89: 5b:19:c3:8c:52:30:88:05:0c:d5:03:b2:e2:b5:2c: 67:90:5f:d3:9e:11:24:3c:06:34:48:ae:a1:4b:31: a0:b1:e7:34:a0:4e:75:43:9e:11:52:9d:fa:5f:b6: 64:1e:f4:c3:bf:63:68:78:a9:f5:be:52:e9:57:4c: 4e:4f:dc:40:d3:6c:c8:55:c3:0e:cc:ca:80:fd:d3: 07:4f:54:44:8b:6a:f0:48:3d:8d:b0:35:ef:df:09: 0e:f8:df:d9:25:50:d0:c5:5d:7f:2a:84:13:f7:91: 24:85:04:55:7f:4d:b1:c8:7e:a9:59:e2:ad:58:50: c2:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:9D:E9:AE:CE:D1:23:CC:7A:6F:21:A7:B9:23:24:2B:89:BF:EE:3E X509v3 Authority Key Identifier: keyid:D9:08:4C:AD:C3:BE:C8:C2:00:C5:A9:6B:72:ED:AF:D4:A0:0E:AE:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhMrcO-yMIAxalrcu2v1KAOrug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:f5:ff:8b:ee:de:ee:eb:28:5d:6c:4b:a2:6f:36:c6:57:26: 7c:6f:08:d0:9f:da:8a:5e:a7:48:ca:2d:a6:ae:6a:3d:b5:f4: 33:de:f2:f4:4e:b6:5f:b8:61:83:b6:83:66:d0:4f:93:d5:61: 8d:66:07:24:de:04:68:fe:89:b0:f0:41:74:cb:ec:9a:42:96: e8:9a:68:d4:14:23:3a:de:a1:fe:6a:eb:2b:13:be:42:5c:71: ba:d5:8a:fc:db:2c:4e:89:81:dc:22:e5:d9:8e:7b:ce:dd:b9: 3c:ab:66:ed:70:14:0a:6a:1c:25:57:60:fe:cf:2f:78:86:44: ae:f5:cb:3d:55:b9:7f:1d:9e:80:33:f4:9e:42:39:08:df:2e: 91:e6:ec:fe:aa:8e:2d:3d:c4:b5:d4:5a:62:fa:9d:1c:bc:a4: b5:f4:8a:c9:9b:65:8c:1b:30:c4:ec:ce:24:25:25:86:23:d0: 03:b9:ed:d4:37:4e:ca:2f:43:23:97:71:0e:fa:1f:ad:01:89: cd:75:88:12:51:b7:de:1d:37:b8:39:34:b7:a3:4d:f4:39:7c: 66:53:65:4f:8e:80:f2:07:bf:22:9d:d5:c5:a5:21:9a:20:36: 3a:12:fb:49:bd:5a:c0:46:1d:e0:6d:1b:85:ab:2d:7f:a1:7c: 60:9d:29:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAngwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE5RjExMTAvBgNVBAUTKEQ5MDg0Q0FEQzNCRUM4QzIwMEM1QTk2QjcyRURBRkQ0 QTAwRUFFRTgwHhcNMjUwODIzMDE1NzM3WhcNMjUwODMwMDE1NzM3WjAYMRYwFAYD VQQDEw02OGE5MjAxMi1kOGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2xF/hFtwmHSRHfcj8wtXE8wNrHgwzMYJpeXqGLzDkkV14dOPfzyaw6ZNNPi6 M647WjVa3Pivb9keldeHmhYjlvoyOI8qbGxhppYqnx8Ia0snMt4ZbtiDJ6obWVKm r0voGWT6OOAAJ5C40lG4BPiWmmwEqLLY5brj0+BqLt4Eam3lXorR/olbGcOMUjCI BQzVA7LitSxnkF/TnhEkPAY0SK6hSzGgsec0oE51Q54RUp36X7ZkHvTDv2NoeKn1 vlLpV0xOT9xA02zIVcMOzMqA/dMHT1REi2rwSD2NsDXv3wkO+N/ZJVDQxV1/KoQT 95EkhQRVf02xyH6pWeKtWFDCmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFKd6a7O 0SPMem8hp7kjJCuJv+4+MB8GA1UdIwQYMBaAFNkITK3DvsjCAMWpa3Ltr9SgDq7o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTlGMS82OTVGOTNGRTIx RUUxMUVEQjRDOEJENkNDNEY5QUUwMi8yUWhNcmNPLXlNSUF4YWxyY3UydjFLQU9y dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRaE1yY08teU1JQXhhbHJjdTJ2MUtBT3J1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTlGMS82OTVGOTNGRTIxRUUxMUVEQjRDOEJENkNDNEY5QUUwMi8yUWhNcmNPLXlN SUF4YWxyY3UydjFLQU9ydWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCS9f+L7t7u6yhdbEuibzbGVyZ8bwjQn9qKXqdIyi2mrmo9tfQz3vL0 TrZfuGGDtoNm0E+T1WGNZgck3gRo/omw8EF0y+yaQpbommjUFCM63qH+ausrE75C XHG61Yr82yxOiYHcIuXZjnvO3bk8q2btcBQKahwlV2D+zy94hkSu9cs9Vbl/HZ6A M/SeQjkI3y6R5uz+qo4tPcS11Fpi+p0cvKS19IrJm2WMGzDE7M4kJSWGI9ADue3U N07KL0Mjl3EO+h+tAYnNdYgSUbfeHTe4OTS3o030OXxmU2VPjoDyB78indXFpSGa IDY6EvtJvVrARh3gbRuFqy1/oXxgnSmB -----END CERTIFICATE-----Generated at Sun Aug 24 03:12:23 2025 by rpki-client