$ rpki-client -vvf rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.mft File: 2v3gvG4K06iVvHVtbDGh5httODs.mft (raw, json) Hash identifier: tG7We2Q4iNke8OSE4U0pnZnBLcv5bRnB5sUKqdqboao= Subject key identifier: 63:0A:0B:02:0C:F3:30:71:56:E7:AF:B8:4E:5A:1C:17:E6:35:FD:C5 Authority key identifier: DA:FD:E0:BC:6E:0A:D3:A8:95:BC:75:6D:6C:31:A1:E6:1B:6D:38:3B Certificate issuer: /CN=A918FCE2/serialNumber=DAFDE0BC6E0AD3A895BC756D6C31A1E61B6D383B Certificate serial: 0893 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2v3gvG4K06iVvHVtbDGh5httODs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.mft Manifest number: 087E Signing time: Fri 22 Aug 2025 21:01:14 +0000 Manifest this update: Fri 22 Aug 2025 21:01:14 +0000 Manifest next update: Fri 29 Aug 2025 21:01:14 +0000 Files and hashes: 1: 2v3gvG4K06iVvHVtbDGh5httODs.crl (hash: evlV2FGGCz0fhi2wAJVhSMFfNrbTFxyo13v5rWs1Kh8=) 2: 311DA6AA78F611EFAFD81B5BC4F9AE02.roa (hash: d3AVE6MmRgC9f1BP/vAUeg941gkBQiu4la3PQf5xjqo=) 3: 312D1714A6F211EFBD311B19C4F9AE02.roa (hash: 69lFJmCSoZqJFnlRVMecyEqrZmFOaweKrojaOmIkHVY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.crl rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2v3gvG4K06iVvHVtbDGh5httODs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2195 (0x893) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FCE2, serialNumber=DAFDE0BC6E0AD3A895BC756D6C31A1E61B6D383B Validity Not Before: Aug 22 21:01:14 2025 GMT Not After : Aug 29 21:01:14 2025 GMT Subject: CN=68a8da9a-02ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:75:c7:82:dd:1e:fc:97:97:7d:4c:0b:47:b7: 74:cd:dc:88:87:e4:17:af:e0:84:6e:3e:cd:66:cb: 4c:6f:49:d2:53:f3:ae:f9:6e:1e:fa:ff:9c:2c:92: 46:20:13:c0:6b:28:55:65:81:32:67:10:d5:c0:6f: 8b:d1:2d:8a:dd:ad:dc:ac:e5:c9:29:c7:a7:ff:78: 82:40:db:54:6a:39:84:6e:d9:8c:b2:20:37:b1:95: fe:06:6e:74:44:f7:59:bc:88:2d:1f:b3:14:0f:08: ad:ca:32:54:b1:9d:36:a7:a8:7b:68:b9:c3:01:b8: 6e:46:c7:b1:d4:c8:19:3b:4e:d2:eb:48:61:3c:39: 4f:53:57:89:20:bd:d9:d6:1e:c2:48:59:d5:3a:b4: 11:d0:bc:77:54:7c:d5:92:25:07:9f:5b:63:36:0b: 33:5d:11:2c:f4:4a:70:fb:27:19:2b:3a:a5:01:a0: 35:ab:10:9c:f0:52:22:0e:83:bd:67:c9:61:04:36: ac:5e:5e:81:7d:ff:2c:48:ad:37:8e:cd:61:99:5b: e7:96:d8:d8:e9:5f:92:e3:82:9a:b7:07:c7:a1:b3: 9e:64:0f:13:6d:32:e1:67:4c:9c:9e:12:08:6b:49: bc:06:5c:dd:aa:29:7a:c5:d1:57:fc:4c:1e:62:7e: d4:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:0A:0B:02:0C:F3:30:71:56:E7:AF:B8:4E:5A:1C:17:E6:35:FD:C5 X509v3 Authority Key Identifier: keyid:DA:FD:E0:BC:6E:0A:D3:A8:95:BC:75:6D:6C:31:A1:E6:1B:6D:38:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2v3gvG4K06iVvHVtbDGh5httODs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:9d:ef:4a:5b:87:fb:38:ce:a0:ec:20:4f:fb:c0:de:ba:2e: 13:d9:5f:b9:b9:61:9d:91:b9:a3:4a:d2:a5:ee:ae:99:f6:c5: ee:b1:fa:20:02:6b:57:87:ec:19:b1:11:32:2d:f5:00:73:01: 70:91:a6:d1:fd:ca:9c:5c:7b:51:ce:42:44:07:79:00:be:b5: 94:69:0f:77:95:da:3a:8d:02:ae:0d:af:24:88:1e:9c:72:25: 7c:21:b2:d0:35:9d:ce:88:66:bb:be:b3:0e:85:21:a1:d4:0f: 5b:f1:42:8c:59:4e:ba:c6:5e:b6:2e:1a:79:4e:41:1d:a1:a1: 97:2c:4d:d6:10:4b:ac:be:89:f0:ec:70:cd:14:1e:ce:6e:90: 4d:7c:8d:4b:61:2a:6b:00:a5:a8:3b:1c:45:1c:43:1e:37:8b: a3:03:5e:bf:c3:97:c1:31:58:7c:61:6c:9b:b6:c8:f1:3b:96: b2:36:5f:8b:8c:b8:16:d5:e2:fa:40:ac:65:64:96:19:32:6f: 3c:7e:f8:3e:67:04:4c:4f:25:db:e5:5c:35:86:86:05:77:8c: 0c:30:72:50:db:09:5b:f3:37:d3:5a:80:d0:b7:67:e5:93:4e: c1:cd:db:ab:05:c9:76:35:b6:db:bd:74:d1:69:f7:dc:20:ce: d5:f7:44:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDRTIxMTAvBgNVBAUTKERBRkRFMEJDNkUwQUQzQTg5NUJDNzU2RDZDMzFBMUU2 MUI2RDM4M0IwHhcNMjUwODIyMjEwMTE0WhcNMjUwODI5MjEwMTE0WjAYMRYwFAYD VQQDEw02OGE4ZGE5YS0wMmVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmHXHgt0e/JeXfUwLR7d0zdyIh+QXr+CEbj7NZstMb0nSU/Ou+W4e+v+cLJJG IBPAayhVZYEyZxDVwG+L0S2K3a3crOXJKcen/3iCQNtUajmEbtmMsiA3sZX+Bm50 RPdZvIgtH7MUDwityjJUsZ02p6h7aLnDAbhuRsex1MgZO07S60hhPDlPU1eJIL3Z 1h7CSFnVOrQR0Lx3VHzVkiUHn1tjNgszXREs9Epw+ycZKzqlAaA1qxCc8FIiDoO9 Z8lhBDasXl6Bff8sSK03js1hmVvnltjY6V+S44KatwfHobOeZA8TbTLhZ0ycnhII a0m8Blzdqil6xdFX/EweYn7U6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGMKCwIM 8zBxVuevuE5aHBfmNf3FMB8GA1UdIwQYMBaAFNr94LxuCtOolbx1bWwxoeYbbTg7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkNFMi82MTgwQzBBMkNE NkYxMUVBOTc1NDgwNDNDNEY5QUUwMi8ydjNndkc0SzA2aVZ2SFZ0YkRHaDVodHRP RHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ2M2d2RzRLMDZpVnZIVnRiREdoNWh0dE9Ecy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkNFMi82MTgwQzBBMkNENkYxMUVBOTc1NDgwNDNDNEY5QUUwMi8ydjNndkc0SzA2 aVZ2SFZ0YkRHaDVodHRPRHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwne9KW4f7OM6g7CBP+8Deui4T2V+5uWGdkbmjStKl7q6Z9sXusfog AmtXh+wZsREyLfUAcwFwkabR/cqcXHtRzkJEB3kAvrWUaQ93ldo6jQKuDa8kiB6c ciV8IbLQNZ3OiGa7vrMOhSGh1A9b8UKMWU66xl62Lhp5TkEdoaGXLE3WEEusvonw 7HDNFB7ObpBNfI1LYSprAKWoOxxFHEMeN4ujA16/w5fBMVh8YWybtsjxO5ayNl+L jLgW1eL6QKxlZJYZMm88fvg+ZwRMTyXb5Vw1hoYFd4wMMHJQ2wlb8zfTWoDQt2fl k07BzdurBcl2NbbbvXTRaffcIM7V90SB -----END CERTIFICATE-----Generated at Sat Aug 23 19:32:49 2025 by rpki-client