$ rpki-client -vvf rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.mft File: R2wrlqUY81f22XaCqHHD5Iu54SM.mft (raw, json) Hash identifier: cMgXcCjRvJA8nsR602EbaQKjlQz2ai0PcS6gr6yVYqk= Subject key identifier: 0B:B1:D9:D5:11:7C:02:68:8F:5F:21:1F:41:18:80:0A:3D:10:C2:F8 Authority key identifier: 47:6C:2B:96:A5:18:F3:57:F6:D9:76:82:A8:71:C3:E4:8B:B9:E1:23 Certificate issuer: /CN=A917A442/serialNumber=476C2B96A518F357F6D97682A871C3E48BB9E123 Certificate serial: 01D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2wrlqUY81f22XaCqHHD5Iu54SM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.mft Manifest number: 01D1 Signing time: Sat 23 Aug 2025 03:02:05 +0000 Manifest this update: Sat 23 Aug 2025 03:02:05 +0000 Manifest next update: Sat 30 Aug 2025 03:02:05 +0000 Files and hashes: 1: R2wrlqUY81f22XaCqHHD5Iu54SM.crl (hash: KjChnkoZL7u0jKYejuJN2Q087yv8YVImeMMHrpxK/uE=) 2: 65E02670C83E11ED9FAAFA22C4F9AE02.roa (hash: QqBINDd+m6GAidQPZDLnjXwqI13nDti3MNbtgoHfQfI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.crl rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2wrlqUY81f22XaCqHHD5Iu54SM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 472 (0x1d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A442, serialNumber=476C2B96A518F357F6D97682A871C3E48BB9E123 Validity Not Before: Aug 23 03:02:05 2025 GMT Not After : Aug 30 03:02:05 2025 GMT Subject: CN=68a92f2d-5d38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:4c:bf:f8:e7:d9:80:51:39:4c:42:e8:91:ea: 96:1e:55:d3:7f:4b:0e:36:c8:01:e7:bc:0d:92:d4: ff:b8:af:12:aa:fe:e6:7a:49:47:3f:3d:37:29:c6: af:75:25:6a:61:9d:e5:e3:d7:ac:5f:e2:85:39:96: d7:af:23:bc:e6:03:8e:da:0f:83:7c:48:06:09:08: 92:07:54:b3:35:3a:84:18:c0:9e:b9:ce:3c:c5:7b: 18:5b:bd:20:c7:7c:42:5f:0b:e0:a3:34:6d:66:fb: fc:2d:c4:77:24:53:65:b6:38:ea:27:ee:0d:8b:87: 53:93:f4:f7:c5:53:07:35:a7:2b:72:d6:3d:2b:df: 31:c9:c2:bf:3b:c1:dd:69:f0:c4:93:2f:09:0e:e9: 66:3f:f6:76:d3:fc:a1:1e:7c:74:f0:11:22:bb:ff: f1:8c:8f:53:a4:c7:bd:c0:6c:25:20:d5:72:33:0d: bb:4d:b6:f7:10:93:dd:ca:8a:de:e7:42:9c:d8:e8: 32:e5:95:ae:c1:d1:04:15:2c:b3:bc:64:10:cf:9b: e3:92:6c:cd:8e:4b:13:97:b5:0c:06:0a:4a:11:e9: 85:fc:b7:65:20:ba:14:0e:ad:83:3d:1a:a4:81:81: f8:a0:f2:15:af:24:0c:76:4e:e3:33:0a:70:1c:c7: 84:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:B1:D9:D5:11:7C:02:68:8F:5F:21:1F:41:18:80:0A:3D:10:C2:F8 X509v3 Authority Key Identifier: keyid:47:6C:2B:96:A5:18:F3:57:F6:D9:76:82:A8:71:C3:E4:8B:B9:E1:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2wrlqUY81f22XaCqHHD5Iu54SM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:02:5d:bf:cb:a6:0c:8f:c9:91:49:57:43:0f:fa:84:f6:c0: 88:7a:26:0b:3e:64:3a:5b:c1:5d:09:95:4b:9e:db:2a:11:dd: c0:3c:7a:58:31:45:ee:cf:4f:72:43:c0:ad:a9:7a:cd:4a:b6: dd:9c:16:ae:14:77:6c:49:1e:f2:50:15:d4:0e:e8:40:58:0d: 5a:a4:b0:70:4f:1c:a0:04:ae:f6:4d:2c:f3:73:7c:7d:c0:56: 4f:ee:4c:b7:05:c3:6e:ea:b7:9e:9a:46:21:0f:b4:00:cd:6d: 9f:5f:98:38:b5:7d:01:28:42:89:6e:08:65:9c:3c:cb:5e:1b: 37:b8:aa:5a:99:21:3a:a6:f7:f7:1c:af:13:a3:80:1c:c2:91: 87:6b:3f:1e:05:1d:4a:ad:88:33:e0:4b:20:57:34:33:a1:b5: d1:bf:a7:1a:b5:68:18:14:55:4e:07:44:8f:b2:26:aa:66:2a: b7:97:ed:23:b9:7a:c5:8f:95:ec:52:df:96:06:53:ec:97:f1: 73:ff:76:f1:51:7f:b4:f1:58:23:e3:2e:3c:eb:94:3f:38:78: 96:a3:6e:b6:61:8e:ba:ac:fa:a6:8d:a5:f1:a0:ed:1b:f1:09: d2:a0:5e:15:bb:a5:01:d8:5c:e0:51:c6:b8:79:65:d1:48:45: 52:80:51:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E0NDIxMTAvBgNVBAUTKDQ3NkMyQjk2QTUxOEYzNTdGNkQ5NzY4MkE4NzFDM0U0 OEJCOUUxMjMwHhcNMjUwODIzMDMwMjA1WhcNMjUwODMwMDMwMjA1WjAYMRYwFAYD VQQDEw02OGE5MmYyZC01ZDM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsEy/+OfZgFE5TELokeqWHlXTf0sONsgB57wNktT/uK8Sqv7meklHPz03Kcav dSVqYZ3l49esX+KFOZbXryO85gOO2g+DfEgGCQiSB1SzNTqEGMCeuc48xXsYW70g x3xCXwvgozRtZvv8LcR3JFNltjjqJ+4Ni4dTk/T3xVMHNacrctY9K98xycK/O8Hd afDEky8JDulmP/Z20/yhHnx08BEiu//xjI9TpMe9wGwlINVyMw27Tbb3EJPdyore 50Kc2Ogy5ZWuwdEEFSyzvGQQz5vjkmzNjksTl7UMBgpKEemF/LdlILoUDq2DPRqk gYH4oPIVryQMdk7jMwpwHMeEswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAux2dUR fAJoj18hH0EYgAo9EML4MB8GA1UdIwQYMBaAFEdsK5alGPNX9tl2gqhxw+SLueEj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTQ0Mi9FMEU3REI1NkM4 MzkxMUVEQUM3MkIxMUNDNEY5QUUwMi9SMndybHFVWTgxZjIyWGFDcUhIRDVJdTU0 U00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Iyd3JscVVZODFmMjJYYUNxSEhENUl1NTRTTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTQ0Mi9FMEU3REI1NkM4MzkxMUVEQUM3MkIxMUNDNEY5QUUwMi9SMndybHFVWTgx ZjIyWGFDcUhIRDVJdTU0U00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkAl2/y6YMj8mRSVdDD/qE9sCIeiYLPmQ6W8FdCZVLntsqEd3APHpY MUXuz09yQ8CtqXrNSrbdnBauFHdsSR7yUBXUDuhAWA1apLBwTxygBK72TSzzc3x9 wFZP7ky3BcNu6reemkYhD7QAzW2fX5g4tX0BKEKJbghlnDzLXhs3uKpamSE6pvf3 HK8To4AcwpGHaz8eBR1KrYgz4EsgVzQzobXRv6catWgYFFVOB0SPsiaqZiq3l+0j uXrFj5XsUt+WBlPsl/Fz/3bxUX+08Vgj4y4865Q/OHiWo262YY66rPqmjaXxoO0b 8QnSoF4Vu6UB2FzgUca4eWXRSEVSgFGd -----END CERTIFICATE-----Generated at Sat Aug 23 22:20:14 2025 by rpki-client