$ rpki-client -vvf rpki.apnic.net/member_repository/A9186D9F/B290A3462E0411EF86F29D79C4F9AE02/2DPFFS4_LSebiQT4PQDdkKymK9U.mft File: 2DPFFS4_LSebiQT4PQDdkKymK9U.mft (raw, json) Hash identifier: DJ6eImKN1ZHoal4KlJqdic0K1z/8LZjmLuLG/CKgmYc= Subject key identifier: 3E:B9:A6:BA:65:DD:B4:44:CC:61:AF:BE:DE:FF:87:D2:D2:98:C2:3D Authority key identifier: D8:33:C5:15:2E:3F:2D:27:9B:89:04:F8:3D:00:DD:90:AC:A6:2B:D5 Certificate issuer: /CN=A9186D9F/serialNumber=D833C5152E3F2D279B8904F83D00DD90ACA62BD5 Certificate serial: DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DPFFS4_LSebiQT4PQDdkKymK9U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186D9F/B290A3462E0411EF86F29D79C4F9AE02/2DPFFS4_LSebiQT4PQDdkKymK9U.mft Manifest number: DC Signing time: Sat 23 Aug 2025 05:38:06 +0000 Manifest this update: Sat 23 Aug 2025 05:38:06 +0000 Manifest next update: Sat 30 Aug 2025 05:38:05 +0000 Files and hashes: 1: 2DPFFS4_LSebiQT4PQDdkKymK9U.crl (hash: r0DcvQo9+iqjqZgQkY1gWWYknT+/kDusv0OxTjImZCA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186D9F/B290A3462E0411EF86F29D79C4F9AE02/2DPFFS4_LSebiQT4PQDdkKymK9U.crl rsync://rpki.apnic.net/member_repository/A9186D9F/B290A3462E0411EF86F29D79C4F9AE02/2DPFFS4_LSebiQT4PQDdkKymK9U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DPFFS4_LSebiQT4PQDdkKymK9U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:38:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186D9F, serialNumber=D833C5152E3F2D279B8904F83D00DD90ACA62BD5 Validity Not Before: Aug 23 05:38:06 2025 GMT Not After : Aug 30 05:38:05 2025 GMT Subject: CN=68a953be-ebcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:25:72:c4:25:ff:6f:6f:22:76:14:3b:52:0b: bd:2b:b3:b2:e2:8f:d5:30:79:98:72:1a:64:aa:eb: ab:cd:ce:a8:50:f3:ba:e9:4f:53:77:a0:cf:10:3d: 5d:0a:92:c7:91:2d:f7:aa:f7:67:e8:c1:62:18:67: 4a:a4:c5:e5:1d:6b:39:ab:72:21:67:63:8a:0f:a0: 78:9a:b5:72:6e:48:3f:4a:f6:08:0f:dc:fe:64:27: 48:17:d0:a1:28:b7:77:76:c8:ea:66:60:bf:a7:b6: 35:f0:ad:e6:3b:93:65:f7:8d:0e:2d:c7:3b:4d:3d: 5d:14:ec:5d:0d:c1:c7:72:02:3d:bd:ab:e5:ab:4f: c5:b7:1c:97:f4:eb:e7:1e:2b:cc:41:fa:20:de:40: 38:b5:5b:df:29:03:08:97:57:89:cd:9b:81:25:00: 3e:72:37:88:f0:fe:80:ab:6e:42:f3:ed:c4:e3:06: ab:b6:29:4b:25:8f:a5:d4:54:fb:94:02:ef:a9:d4: 66:d6:04:08:d7:cb:05:45:f8:5a:b4:3e:f9:00:1a: e6:47:7d:01:d7:cc:78:28:31:19:aa:2a:17:76:15: 7b:0b:17:eb:82:91:67:50:82:2b:b7:4c:38:62:34: 64:ba:d6:fa:5c:3c:35:b4:f3:e5:ed:d9:45:25:8b: c7:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:B9:A6:BA:65:DD:B4:44:CC:61:AF:BE:DE:FF:87:D2:D2:98:C2:3D X509v3 Authority Key Identifier: keyid:D8:33:C5:15:2E:3F:2D:27:9B:89:04:F8:3D:00:DD:90:AC:A6:2B:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186D9F/B290A3462E0411EF86F29D79C4F9AE02/2DPFFS4_LSebiQT4PQDdkKymK9U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DPFFS4_LSebiQT4PQDdkKymK9U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186D9F/B290A3462E0411EF86F29D79C4F9AE02/2DPFFS4_LSebiQT4PQDdkKymK9U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:ba:af:de:b2:e6:81:48:b3:5a:dd:6f:3c:46:8d:4e:f9:db: b3:89:19:b3:4a:49:d4:60:1d:43:a5:ad:2e:a3:7e:21:5f:3c: a0:73:77:53:b5:d1:e4:41:d9:95:98:be:4e:1b:7e:84:f6:5f: 8a:af:a5:60:7b:46:48:5b:40:68:3a:db:02:b6:66:ac:0b:9f: 20:a4:03:78:80:a6:73:b7:ad:39:bc:e0:52:13:b0:cd:03:2b: 3a:c9:bb:24:b3:cf:fa:b1:b1:5b:6a:96:98:ca:3a:ba:50:25: f8:88:d4:8e:87:40:a3:4d:e1:d0:75:43:51:d6:d4:e5:a3:30: 23:29:c2:b0:19:24:01:a3:63:09:25:ae:9c:7e:c7:8d:99:7a: fb:2c:26:59:05:12:77:16:35:54:27:d6:54:ea:00:cc:ad:14: 18:3f:b4:b1:92:80:58:25:1e:c3:17:6c:da:b1:a9:d6:a3:f4: b7:57:41:3d:61:50:a0:81:a5:84:88:2c:42:e5:42:17:99:b1: 21:ea:65:43:28:6d:3d:4d:c2:81:5a:77:14:9f:3b:e5:ff:ea: 44:a4:0a:96:64:56:ed:f3:76:84:40:1a:a4:79:a2:51:b3:14: 2a:c6:dd:ba:fd:2d:fe:01:63:d2:a4:d3:db:31:04:79:5d:ff: ea:47:cc:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZEOUYxMTAvBgNVBAUTKEQ4MzNDNTE1MkUzRjJEMjc5Qjg5MDRGODNEMDBERDkw QUNBNjJCRDUwHhcNMjUwODIzMDUzODA2WhcNMjUwODMwMDUzODA1WjAYMRYwFAYD VQQDEw02OGE5NTNiZS1lYmNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9CVyxCX/b28idhQ7Ugu9K7Oy4o/VMHmYchpkquurzc6oUPO66U9Td6DPED1d CpLHkS33qvdn6MFiGGdKpMXlHWs5q3IhZ2OKD6B4mrVybkg/SvYID9z+ZCdIF9Ch KLd3dsjqZmC/p7Y18K3mO5Nl940OLcc7TT1dFOxdDcHHcgI9vavlq0/FtxyX9Ovn HivMQfog3kA4tVvfKQMIl1eJzZuBJQA+cjeI8P6Aq25C8+3E4wartilLJY+l1FT7 lALvqdRm1gQI18sFRfhatD75ABrmR30B18x4KDEZqioXdhV7CxfrgpFnUIIrt0w4 YjRkutb6XDw1tPPl7dlFJYvHzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD65prpl 3bREzGGvvt7/h9LSmMI9MB8GA1UdIwQYMBaAFNgzxRUuPy0nm4kE+D0A3ZCspivV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkQ5Ri9CMjkwQTM0NjJF MDQxMUVGODZGMjlENzlDNEY5QUUwMi8yRFBGRlM0X0xTZWJpUVQ0UFFEZGtLeW1L OVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJEUEZGUzRfTFNlYmlRVDRQUURka0t5bUs5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NkQ5Ri9CMjkwQTM0NjJFMDQxMUVGODZGMjlENzlDNEY5QUUwMi8yRFBGRlM0X0xT ZWJpUVQ0UFFEZGtLeW1LOVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzuq/esuaBSLNa3W88Ro1O+duziRmzSknUYB1Dpa0uo34hXzygc3dT tdHkQdmVmL5OG36E9l+Kr6Vge0ZIW0BoOtsCtmasC58gpAN4gKZzt605vOBSE7DN Ays6ybsks8/6sbFbapaYyjq6UCX4iNSOh0CjTeHQdUNR1tTlozAjKcKwGSQBo2MJ Ja6cfseNmXr7LCZZBRJ3FjVUJ9ZU6gDMrRQYP7SxkoBYJR7DF2zasanWo/S3V0E9 YVCggaWEiCxC5UIXmbEh6mVDKG09TcKBWncUnzvl/+pEpAqWZFbt83aEQBqkeaJR sxQqxt26/S3+AWPSpNPbMQR5Xf/qR8wS -----END CERTIFICATE-----Generated at Sat Aug 23 21:07:07 2025 by rpki-client