$ rpki-client -vvf rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft File: 2CVmixrBt_OBXwe82lfnSMSWSpo.mft (raw, json) Hash identifier: OYg7OJQRTnnXpLrQSATrJ+f09zTMZgs4Jc67IK1z1Hk= Subject key identifier: B9:DF:E2:71:40:62:A4:A5:FA:B8:16:42:0B:33:44:DC:E4:A3:95:43 Authority key identifier: D8:25:66:8B:1A:C1:B7:F3:81:5F:07:BC:DA:57:E7:48:C4:96:4A:9A Certificate issuer: /CN=A91756C3/serialNumber=D825668B1AC1B7F3815F07BCDA57E748C4964A9A Certificate serial: 69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CVmixrBt_OBXwe82lfnSMSWSpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft Manifest number: 68 Signing time: Sat 23 Aug 2025 07:12:18 +0000 Manifest this update: Sat 23 Aug 2025 07:12:18 +0000 Manifest next update: Sat 30 Aug 2025 07:12:18 +0000 Files and hashes: 1: 2CVmixrBt_OBXwe82lfnSMSWSpo.crl (hash: h53BavRqD228SZFJFynArUmsuR+t1jfd1m5O7uItUbQ=) 2: 00078764E06811EF8716401DC4F9AE02.roa (hash: xskJHyJy9wOT0np+Xdp4jl5Zejz4/7Uevmd8xiyRBK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.crl rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CVmixrBt_OBXwe82lfnSMSWSpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:12:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 105 (0x69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91756C3, serialNumber=D825668B1AC1B7F3815F07BCDA57E748C4964A9A Validity Not Before: Aug 23 07:12:18 2025 GMT Not After : Aug 30 07:12:18 2025 GMT Subject: CN=68a969d2-0310 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:87:a9:1e:c2:75:6d:a3:20:d3:f8:11:33:46: b8:56:e2:e7:89:2c:e9:1d:dc:0a:c8:26:69:ac:24: 19:a9:33:c9:57:37:1a:69:2c:19:5b:96:4a:c3:1d: 48:98:b7:8c:de:fe:48:7c:ab:b7:a2:de:45:6a:c2: 47:3a:8f:a4:ea:47:59:d4:6d:e8:18:b2:6a:12:da: 69:96:ec:be:cb:2d:e6:8e:99:b7:f0:fe:d4:bb:46: d5:24:65:6e:6c:77:2b:b0:5e:85:de:b1:db:84:3f: 4c:af:7f:38:12:93:32:ba:42:7a:7e:6e:ef:ed:47: 95:0f:65:56:b7:1c:62:c7:bd:af:6a:c5:c9:1a:e0: d1:39:d0:40:e2:65:71:b1:5b:ae:22:88:aa:25:b8: cf:9f:6e:65:49:62:87:80:9e:88:8f:11:80:19:b9: a2:6e:f3:4a:70:7e:a7:49:93:f8:99:00:2b:b4:55: 7b:cf:c5:30:b3:f8:5c:68:64:c2:ed:fa:2a:23:58: a0:d5:1c:9b:9e:76:89:30:ca:29:00:78:95:c6:71: 31:de:98:7b:92:8b:8f:09:76:b9:f9:e1:4f:c7:27: 51:3d:d3:c9:de:d9:a9:2c:fd:44:39:3f:a6:cd:0f: fa:c7:8c:5c:73:a7:5e:c5:4e:a7:b6:80:11:3c:2f: 8c:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:DF:E2:71:40:62:A4:A5:FA:B8:16:42:0B:33:44:DC:E4:A3:95:43 X509v3 Authority Key Identifier: keyid:D8:25:66:8B:1A:C1:B7:F3:81:5F:07:BC:DA:57:E7:48:C4:96:4A:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CVmixrBt_OBXwe82lfnSMSWSpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:a6:88:4f:df:ba:c5:67:aa:aa:16:78:91:0e:4d:d1:ac:71: cb:d7:65:33:e1:7e:20:15:f2:68:42:60:be:30:82:f4:bd:48: 47:2e:56:09:7c:27:77:21:90:68:c6:e7:93:de:60:80:a0:c6: e8:cd:75:6f:15:b5:2a:65:f2:12:b8:2c:8b:29:d2:c3:bc:60: b6:d4:19:7d:00:50:dd:2b:81:bc:4a:47:dc:31:fb:17:cf:dd: 1d:48:9a:e1:d2:d2:34:2b:29:cb:0b:2c:af:fc:e2:99:9c:03: 05:81:96:8d:a6:14:86:9b:99:f3:f6:82:d0:53:b5:13:cc:be: da:a9:42:9c:c0:b4:7d:78:f8:32:55:73:47:12:ad:d3:56:75: cf:c9:f5:e7:b5:72:5c:1b:59:8b:e5:f3:8b:e7:d1:df:02:f6: cc:b5:1e:00:bd:76:c6:81:87:5d:b9:11:b5:9c:10:01:18:45: 88:b3:61:e7:c6:e9:63:32:22:49:23:33:f3:ca:74:c2:fe:ac: 4d:7a:aa:1b:24:8a:d0:6f:ad:0c:25:96:55:65:e7:01:ae:fd: 84:0d:df:06:d9:f0:67:1d:6c:de:3f:83:aa:f8:e5:08:cd:e1: 9d:ca:9f:1b:fd:43:8e:dd:0e:49:82:ff:f6:ec:8f:43:aa:33: 06:2c:99:6b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NTZDMzExMC8GA1UEBRMoRDgyNTY2OEIxQUMxQjdGMzgxNUYwN0JDREE1N0U3NDhD NDk2NEE5QTAeFw0yNTA4MjMwNzEyMThaFw0yNTA4MzAwNzEyMThaMBgxFjAUBgNV BAMTDTY4YTk2OWQyLTAzMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD4h6kewnVtoyDT+BEzRrhW4ueJLOkd3ArIJmmsJBmpM8lXNxppLBlblkrDHUiY t4ze/kh8q7ei3kVqwkc6j6TqR1nUbegYsmoS2mmW7L7LLeaOmbfw/tS7RtUkZW5s dyuwXoXesduEP0yvfzgSkzK6Qnp+bu/tR5UPZVa3HGLHva9qxcka4NE50EDiZXGx W64iiKoluM+fbmVJYoeAnoiPEYAZuaJu80pwfqdJk/iZACu0VXvPxTCz+FxoZMLt +iojWKDVHJuedokwyikAeJXGcTHemHuSi48Jdrn54U/HJ1E908ne2aks/UQ5P6bN D/rHjFxzp17FTqe2gBE8L4zfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUud/icUBi pKX6uBZCCzNE3OSjlUMwHwYDVR0jBBgwFoAU2CVmixrBt/OBXwe82lfnSMSWSpow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1NkMzLzVCRjUxOTJBRTA2 NzExRUZCQzNEMTcxQkM0RjlBRTAyLzJDVm1peHJCdF9PQlh3ZTgybGZuU01TV1Nw by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMkNWbWl4ckJ0X09CWHdlODJsZm5TTVNXU3BvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1 NkMzLzVCRjUxOTJBRTA2NzExRUZCQzNEMTcxQkM0RjlBRTAyLzJDVm1peHJCdF9P Qlh3ZTgybGZuU01TV1Nwby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIimiE/fusVnqqoWeJEOTdGsccvXZTPhfiAV8mhCYL4wgvS9SEcuVgl8 J3chkGjG55PeYICgxujNdW8VtSpl8hK4LIsp0sO8YLbUGX0AUN0rgbxKR9wx+xfP 3R1ImuHS0jQrKcsLLK/84pmcAwWBlo2mFIabmfP2gtBTtRPMvtqpQpzAtH14+DJV c0cSrdNWdc/J9ee1clwbWYvl84vn0d8C9sy1HgC9dsaBh125EbWcEAEYRYizYefG 6WMyIkkjM/PKdML+rE16qhskitBvrQwlllVl5wGu/YQN3wbZ8GcdbN4/g6r45QjN 4Z3Knxv9Q47dDkmC//bsj0OqMwYsmWs= -----END CERTIFICATE-----Generated at Sat Aug 23 17:08:32 2025 by rpki-client