$ rpki-client -vvf rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.mft File: 2OexX5y5FnTlEn_UBtfZ5xjgirA.mft (raw, json) Hash identifier: jD3jpZpIqBx90qtH+EGoDdw/7m5GsQvcgT3/TXY9kJM= Subject key identifier: 43:66:AC:E6:06:11:41:18:76:39:98:57:D0:89:F4:FA:24:25:A6:24 Authority key identifier: D8:E7:B1:5F:9C:B9:16:74:E5:12:7F:D4:06:D7:D9:E7:18:E0:8A:B0 Certificate issuer: /CN=A917E27F/serialNumber=D8E7B15F9CB91674E5127FD406D7D9E718E08AB0 Certificate serial: 0E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2OexX5y5FnTlEn_UBtfZ5xjgirA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.mft Manifest number: 0D Signing time: Sat 23 Aug 2025 08:21:15 +0000 Manifest this update: Sat 23 Aug 2025 08:21:15 +0000 Manifest next update: Sat 30 Aug 2025 08:21:15 +0000 Files and hashes: 1: 2OexX5y5FnTlEn_UBtfZ5xjgirA.crl (hash: LCtVzmjz/lQatwIFcFkoW2zR7r+30PGbLFyRljTZTBM=) 2: 4197AB74735611F080D68151C4F9AE02.roa (hash: uw93y6FGovmGq+bi/XnqUmoXwqLRFeM+9sTlrsvluUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.crl rsync://rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2OexX5y5FnTlEn_UBtfZ5xjgirA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14 (0xe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E27F, serialNumber=D8E7B15F9CB91674E5127FD406D7D9E718E08AB0 Validity Not Before: Aug 23 08:21:15 2025 GMT Not After : Aug 30 08:21:15 2025 GMT Subject: CN=68a979fb-aeb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:22:2b:8e:bf:cb:ba:27:f5:81:e1:7b:ad:c9: d9:62:ef:5c:d0:c3:6d:79:8c:4f:96:70:e3:39:49: 5a:d8:30:52:c6:fa:3d:ab:b9:aa:2e:fb:ea:5b:f0: 94:74:a9:13:16:af:43:5b:7b:dc:3f:ba:6d:a9:a2: ee:06:c6:cb:18:c5:be:82:f2:2e:21:1b:4f:e2:e6: fb:5f:ee:c2:6f:52:8a:62:34:59:c1:9a:4a:75:8b: eb:19:ca:68:4e:df:c6:7e:cf:88:69:7c:56:e9:81: 56:c8:95:09:e1:b4:93:f8:f6:ad:c8:bd:88:d7:72: d7:86:05:b2:f1:7f:11:9f:1f:2b:ec:da:25:7a:88: 97:54:79:27:01:fa:7c:71:da:79:1f:5d:6f:97:99: 03:bc:0f:74:54:2a:f0:82:01:a6:c1:aa:db:66:16: d3:2c:49:18:b0:f6:e6:fc:f7:45:c2:6e:11:4e:a6: 33:f7:db:89:b4:ce:f6:e5:90:0d:d2:37:aa:8f:2a: 27:9c:cd:48:7e:7e:0b:5f:8b:e1:91:d6:da:5e:fa: e1:be:7d:08:c9:2b:76:94:90:da:47:69:f0:72:8a: 8f:b2:48:96:f0:ff:be:2c:db:08:d2:32:b4:0a:da: 8e:f8:98:7d:be:76:1b:a3:fe:fd:97:4e:29:2c:75: 4a:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:66:AC:E6:06:11:41:18:76:39:98:57:D0:89:F4:FA:24:25:A6:24 X509v3 Authority Key Identifier: keyid:D8:E7:B1:5F:9C:B9:16:74:E5:12:7F:D4:06:D7:D9:E7:18:E0:8A:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2OexX5y5FnTlEn_UBtfZ5xjgirA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:f5:15:68:71:2a:e9:19:fe:aa:eb:cb:a5:5f:a1:48:1e:22: e0:ef:0a:6a:b5:b1:eb:8d:63:e9:73:0e:c6:18:30:d4:02:5d: 28:de:ec:66:44:01:c5:b6:6d:e6:8b:9d:dd:9f:3f:60:7e:c7: 2c:5c:51:2f:ec:18:f2:7c:72:78:e4:d8:71:96:94:ed:76:d7: af:f7:c6:d0:7d:2b:b4:69:a7:f9:3d:41:df:52:ab:92:e5:4d: 90:bc:8c:b5:6e:d0:2a:6d:fb:ba:0a:79:4f:b5:5c:14:13:32: 0b:be:18:0e:d1:47:cf:08:54:f8:73:28:b5:af:bb:4e:6a:b7: 54:48:35:fb:08:73:af:09:9c:3c:67:f3:6d:93:60:dd:3f:87: bb:25:83:a0:9a:a4:68:26:03:97:b9:22:10:51:80:9d:47:59: c0:f3:33:2c:40:73:68:c3:3e:98:39:2e:e2:47:a8:7b:f2:5d: cd:26:3d:06:0f:9a:5f:e8:8e:94:8b:12:98:d0:86:10:85:6e: 1a:79:0d:d6:46:41:32:b9:ca:ab:fe:8f:6f:ee:da:a4:5a:ea: bd:50:6f:7c:06:16:62:5f:fe:81:07:1a:39:2d:7c:81:f2:b6: 4e:a0:54:cc:cc:ba:a2:64:12:43:2a:69:01:91:ba:9d:87:ad: bc:b3:df:82 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RTI3RjExMC8GA1UEBRMoRDhFN0IxNUY5Q0I5MTY3NEU1MTI3RkQ0MDZEN0Q5RTcx OEUwOEFCMDAeFw0yNTA4MjMwODIxMTVaFw0yNTA4MzAwODIxMTVaMBgxFjAUBgNV BAMTDTY4YTk3OWZiLWFlYjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0IiuOv8u6J/WB4Xutydli71zQw215jE+WcOM5SVrYMFLG+j2ruaou++pb8JR0 qRMWr0Nbe9w/um2pou4GxssYxb6C8i4hG0/i5vtf7sJvUopiNFnBmkp1i+sZymhO 38Z+z4hpfFbpgVbIlQnhtJP49q3IvYjXcteGBbLxfxGfHyvs2iV6iJdUeScB+nxx 2nkfXW+XmQO8D3RUKvCCAabBqttmFtMsSRiw9ub890XCbhFOpjP324m0zvblkA3S N6qPKieczUh+fgtfi+GR1tpe+uG+fQjJK3aUkNpHafByio+ySJbw/74s2wjSMrQK 2o74mH2+dhuj/v2XTiksdUovAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQ2as5gYR QRh2OZhX0In0+iQlpiQwHwYDVR0jBBgwFoAU2OexX5y5FnTlEn/UBtfZ5xjgirAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdFMjdGLzc2OUQyRDY2NzJC NzExRjA5QzA0NjkwREM0RjlBRTAyLzJPZXhYNXk1Rm5UbEVuX1VCdGZaNXhqZ2ly QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMk9leFg1eTVGblRsRW5fVUJ0Zlo1eGpnaXJBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdF MjdGLzc2OUQyRDY2NzJCNzExRjA5QzA0NjkwREM0RjlBRTAyLzJPZXhYNXk1Rm5U bEVuX1VCdGZaNXhqZ2lyQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEj1FWhxKukZ/qrry6VfoUgeIuDvCmq1seuNY+lzDsYYMNQCXSje7GZE AcW2beaLnd2fP2B+xyxcUS/sGPJ8cnjk2HGWlO1216/3xtB9K7Rpp/k9Qd9Sq5Ll TZC8jLVu0Cpt+7oKeU+1XBQTMgu+GA7RR88IVPhzKLWvu05qt1RINfsIc68JnDxn 822TYN0/h7slg6CapGgmA5e5IhBRgJ1HWcDzMyxAc2jDPpg5LuJHqHvyXc0mPQYP ml/ojpSLEpjQhhCFbhp5DdZGQTK5yqv+j2/u2qRa6r1Qb3wGFmJf/oEHGjktfIHy tk6gVMzMuqJkEkMqaQGRup2Hrbyz34I= -----END CERTIFICATE-----Generated at Sat Aug 23 10:55:20 2025 by rpki-client