$ rpki-client -vvf rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/2gElQupZNV_ohHjSHXPjbOvN88s.mft File: 2gElQupZNV_ohHjSHXPjbOvN88s.mft (raw, json) Hash identifier: WUT+nxHh2gEDUZx/sT6PziUpEl+OOiNa4EfR4Dpaqrw= Subject key identifier: 82:62:C3:11:AA:C8:31:D4:FB:EB:ED:BE:59:9B:85:94:B1:DF:CB:EC Authority key identifier: DA:01:25:42:EA:59:35:5F:E8:84:78:D2:1D:73:E3:6C:EB:CD:F3:CB Certificate issuer: /CN=A918B241/serialNumber=DA012542EA59355FE88478D21D73E36CEBCDF3CB Certificate serial: 02F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gElQupZNV_ohHjSHXPjbOvN88s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/2gElQupZNV_ohHjSHXPjbOvN88s.mft Manifest number: 02EF Signing time: Sat 23 Aug 2025 01:31:48 +0000 Manifest this update: Sat 23 Aug 2025 01:31:47 +0000 Manifest next update: Sat 30 Aug 2025 01:31:47 +0000 Files and hashes: 1: 2gElQupZNV_ohHjSHXPjbOvN88s.crl (hash: GtFT0Ptx5MWjWjGspZREvP+vw2L+0KmJzu17C4D8ff0=) 2: A33B03A2F07911ECBDB1BC4BC4F9AE02.roa (hash: 06qlKoNMAgG5qkJwM6sNlRAgtRr58eOsszFhlsT8L0o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/2gElQupZNV_ohHjSHXPjbOvN88s.crl rsync://rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/2gElQupZNV_ohHjSHXPjbOvN88s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gElQupZNV_ohHjSHXPjbOvN88s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:31:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 756 (0x2f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B241, serialNumber=DA012542EA59355FE88478D21D73E36CEBCDF3CB Validity Not Before: Aug 23 01:31:47 2025 GMT Not After : Aug 30 01:31:47 2025 GMT Subject: CN=68a91a04-a04a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:50:b1:e3:0f:cc:1e:3d:ed:3a:59:18:d8:e5: 15:12:83:4d:b7:e5:a0:34:e8:e7:7e:51:15:ad:0c: 9c:56:da:e4:6a:85:cf:33:53:2f:e5:d4:07:6c:dd: 00:c5:f4:d9:fd:6c:b2:ac:83:eb:00:58:7d:22:50: 48:40:74:28:6f:c0:ee:93:cb:27:8e:6f:ea:46:e7: c6:5b:93:80:61:83:84:ee:7a:25:d7:bd:df:71:43: f8:0e:16:81:cb:ee:92:91:21:c1:11:a5:d9:36:eb: 7a:96:c7:37:ac:1e:b9:cd:0e:42:9f:10:d5:5a:3c: cd:71:0f:e7:e9:e2:13:f9:33:25:fb:5e:fa:c5:b4: cc:6c:0d:95:bb:ef:b0:a0:68:dd:2b:7a:2f:ff:99: e5:a5:76:1a:4b:49:ca:42:18:e9:19:0c:ce:ce:aa: 2f:03:3b:c1:73:4c:cb:d4:7f:a3:dc:4c:59:49:5c: 58:cc:e8:50:f7:53:f7:60:ff:e8:43:7d:ac:f0:f6: 85:46:00:ae:be:41:23:00:5f:0f:7b:65:1f:98:01: 2c:f2:cc:03:6d:79:d1:56:d3:7e:f7:21:e0:91:8d: 3f:72:54:36:c5:40:87:27:6b:72:59:74:b4:6e:44: 3b:57:bf:29:44:15:f1:64:54:b3:31:b0:70:17:7a: 72:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:62:C3:11:AA:C8:31:D4:FB:EB:ED:BE:59:9B:85:94:B1:DF:CB:EC X509v3 Authority Key Identifier: keyid:DA:01:25:42:EA:59:35:5F:E8:84:78:D2:1D:73:E3:6C:EB:CD:F3:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/2gElQupZNV_ohHjSHXPjbOvN88s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gElQupZNV_ohHjSHXPjbOvN88s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/2gElQupZNV_ohHjSHXPjbOvN88s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:3f:5e:b7:1a:c4:64:9c:2d:08:1a:13:8f:ff:95:2f:97:cb: 2b:ba:f4:aa:5b:a9:c5:ac:10:55:c1:d1:cc:dc:95:b6:7b:8f: 7d:b2:20:b5:af:ae:48:33:87:1e:16:5c:ea:4e:cb:69:ca:7e: 05:34:fb:a2:91:7e:60:bf:78:7d:c8:25:fb:b2:3b:bb:47:10: 51:57:e4:d8:62:32:16:46:5b:8f:f6:ba:d5:09:00:ef:cb:e5: 8a:b7:12:52:75:b2:5f:56:35:43:32:31:6b:1e:42:b8:ef:81: 3b:54:e5:53:9c:48:ea:03:6e:ef:b8:d7:d4:58:f6:ef:ab:39: e2:db:ed:b2:78:39:f0:fc:bb:10:92:d0:c9:67:64:28:23:50: 29:13:77:24:ec:d8:f0:9b:bc:1d:05:10:be:dd:fd:95:d6:6c: b0:dd:97:d8:06:cd:0f:7b:ed:7a:f6:ab:e1:41:85:a5:73:c3: 99:ee:fb:50:f1:c3:88:b2:04:6b:06:cd:a4:3a:85:1a:ae:36: 58:f3:7d:99:94:da:b1:36:8d:7b:86:c9:47:40:b1:f1:34:a2: fe:27:8b:19:9e:37:ef:d5:18:2f:8a:aa:17:09:e4:ac:cc:ae: 65:a6:41:90:d5:72:53:5d:6f:b5:35:97:c3:01:c4:54:98:a8: 3e:c5:a8:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEIyNDExMTAvBgNVBAUTKERBMDEyNTQyRUE1OTM1NUZFODg0NzhEMjFENzNFMzZD RUJDREYzQ0IwHhcNMjUwODIzMDEzMTQ3WhcNMjUwODMwMDEzMTQ3WjAYMRYwFAYD VQQDEw02OGE5MWEwNC1hMDRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq1Cx4w/MHj3tOlkY2OUVEoNNt+WgNOjnflEVrQycVtrkaoXPM1Mv5dQHbN0A xfTZ/WyyrIPrAFh9IlBIQHQob8Duk8snjm/qRufGW5OAYYOE7nol173fcUP4DhaB y+6SkSHBEaXZNut6lsc3rB65zQ5CnxDVWjzNcQ/n6eIT+TMl+176xbTMbA2Vu++w oGjdK3ov/5nlpXYaS0nKQhjpGQzOzqovAzvBc0zL1H+j3ExZSVxYzOhQ91P3YP/o Q32s8PaFRgCuvkEjAF8Pe2UfmAEs8swDbXnRVtN+9yHgkY0/clQ2xUCHJ2tyWXS0 bkQ7V78pRBXxZFSzMbBwF3pybQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIJiwxGq yDHU++vtvlmbhZSx38vsMB8GA1UdIwQYMBaAFNoBJULqWTVf6IR40h1z42zrzfPL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjI0MS9CNjQ5Q0E5NkYw NzQxMUVDOUE1MUQ1NDhDNEY5QUUwMi8yZ0VsUXVwWk5WX29oSGpTSFhQamJPdk44 OHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnRWxRdXBaTlZfb2hIalNIWFBqYk92Tjg4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjI0MS9CNjQ5Q0E5NkYwNzQxMUVDOUE1MUQ1NDhDNEY5QUUwMi8yZ0VsUXVwWk5W X29oSGpTSFhQamJPdk44OHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3P163GsRknC0IGhOP/5Uvl8sruvSqW6nFrBBVwdHM3JW2e499siC1 r65IM4ceFlzqTstpyn4FNPuikX5gv3h9yCX7sju7RxBRV+TYYjIWRluP9rrVCQDv y+WKtxJSdbJfVjVDMjFrHkK474E7VOVTnEjqA27vuNfUWPbvqzni2+2yeDnw/LsQ ktDJZ2QoI1ApE3ck7Njwm7wdBRC+3f2V1myw3ZfYBs0Pe+169qvhQYWlc8OZ7vtQ 8cOIsgRrBs2kOoUarjZY832ZlNqxNo17hslHQLHxNKL+J4sZnjfv1RgviqoXCeSs zK5lpkGQ1XJTXW+1NZfDAcRUmKg+xagp -----END CERTIFICATE-----Generated at Sat Aug 23 21:32:30 2025 by rpki-client