$ rpki-client -vvf rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft File: PS2TrIsQhlgX2adMyBoDDX010HQ.mft (raw, json) Hash identifier: bvyh21VdobdYMXe4PlrbvvrFZVVXHvnUhO1f63QoA6Q= Subject key identifier: E2:8A:42:47:F3:4A:B6:02:C4:CE:6A:8B:58:1A:30:FB:30:D2:F7:AE Authority key identifier: 3D:2D:93:AC:8B:10:86:58:17:D9:A7:4C:C8:1A:03:0D:7D:35:D0:74 Certificate issuer: /CN=A9196D9E/serialNumber=3D2D93AC8B10865817D9A74CC81A030D7D35D074 Certificate serial: 014F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PS2TrIsQhlgX2adMyBoDDX010HQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft Manifest number: 014E Signing time: Sat 23 Aug 2025 04:19:32 +0000 Manifest this update: Sat 23 Aug 2025 04:19:32 +0000 Manifest next update: Sat 30 Aug 2025 04:19:32 +0000 Files and hashes: 1: PS2TrIsQhlgX2adMyBoDDX010HQ.crl (hash: nrqXNJDUNSvSs5OIPfotqa0cfetOhOSnfMjzVf9nn7Q=) 2: C8BDA37CF68A11EFB7F91E24C4F9AE02.roa (hash: aRDWwCB81f6X4Sbu5aqqdwftigSG3lRUiRjjd/98tJw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.crl rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PS2TrIsQhlgX2adMyBoDDX010HQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:19:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 335 (0x14f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196D9E, serialNumber=3D2D93AC8B10865817D9A74CC81A030D7D35D074 Validity Not Before: Aug 23 04:19:32 2025 GMT Not After : Aug 30 04:19:32 2025 GMT Subject: CN=68a94154-37c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:33:4a:4e:5b:28:71:e4:03:52:1a:ea:21:2e: 9e:52:fc:d0:33:3c:f0:30:30:0c:1e:2c:d1:cd:1e: 9c:81:f6:f7:e9:1a:74:c7:42:80:b0:3f:49:e1:f1: d7:1a:f2:60:1b:25:9b:4e:13:3f:1b:1e:92:c1:92: 4b:fc:c9:5b:ad:09:d5:87:1c:1d:15:61:83:59:0f: ea:b0:cd:38:f4:15:df:a0:98:20:12:39:2d:d0:69: c0:ea:af:65:61:d1:fa:a5:60:72:fa:d4:c6:d7:c3: 0a:8e:96:07:b8:f3:7a:0f:27:e8:8c:81:f9:28:0f: 6c:ba:cf:c6:db:9a:c5:e9:aa:3b:0f:fa:b9:fd:35: 8c:30:61:5c:32:ee:f6:68:d6:91:07:95:73:4b:99: f5:93:0f:a7:ac:1d:1e:ca:cc:25:21:5d:cf:15:a0: a5:6f:18:7a:e9:e3:04:14:27:7d:5c:6d:01:56:7c: 3b:a1:b8:5b:ae:2b:4f:26:94:75:d0:0a:ba:8f:17: 8a:46:78:a0:c2:4e:a4:f1:32:0c:a3:6e:76:1c:5d: 60:be:ca:89:9c:f7:18:c3:c9:b1:71:53:87:20:5c: 41:51:33:5e:67:2b:48:b2:bb:58:24:89:86:32:61: 7e:94:49:88:59:ea:aa:6e:35:b3:35:b1:e8:1c:f3: 35:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:8A:42:47:F3:4A:B6:02:C4:CE:6A:8B:58:1A:30:FB:30:D2:F7:AE X509v3 Authority Key Identifier: keyid:3D:2D:93:AC:8B:10:86:58:17:D9:A7:4C:C8:1A:03:0D:7D:35:D0:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PS2TrIsQhlgX2adMyBoDDX010HQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:38:12:ef:47:0a:91:24:b2:64:0e:5d:91:d1:5b:66:04:bf: d9:18:88:10:2f:96:69:64:ce:22:c0:b3:46:f4:27:8a:e8:db: 7a:72:0e:8b:34:03:8d:3d:06:a1:0a:14:70:d7:90:fb:0f:aa: f2:37:da:7a:da:d0:8f:32:d0:bf:f4:3f:59:40:4c:d9:a3:21: 6a:b4:2c:b3:be:eb:dd:af:e7:48:a6:d6:20:ac:b9:e7:b0:df: b4:4a:2d:78:a4:87:6a:26:65:47:e0:1c:1e:e9:46:bf:ed:56: 96:9b:37:da:cb:5b:e0:b8:f4:31:62:f0:11:9d:28:89:16:b3: 4f:a7:24:8b:ac:c8:0a:69:04:4a:65:29:1a:ec:b4:82:43:dc: 56:03:43:3b:8f:c4:4e:55:05:fc:4a:ba:a3:8e:fd:01:b3:3b: 5f:42:bc:3e:b3:53:68:03:39:ed:9f:10:f2:1c:05:de:5e:30: c3:af:56:9c:86:c8:33:67:6d:a1:f8:78:4c:52:a9:76:9d:9c: 92:3d:54:48:e3:fc:78:29:cc:e7:fc:96:21:c3:8c:dc:1d:8e: 45:4f:cf:83:39:1a:c9:4f:9c:7c:73:b5:c7:ff:df:0f:a8:87: df:fe:06:cd:d6:ab:d4:30:6a:34:e2:0b:9b:12:d4:00:a6:83: a0:a5:4a:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZEOUUxMTAvBgNVBAUTKDNEMkQ5M0FDOEIxMDg2NTgxN0Q5QTc0Q0M4MUEwMzBE N0QzNUQwNzQwHhcNMjUwODIzMDQxOTMyWhcNMjUwODMwMDQxOTMyWjAYMRYwFAYD VQQDEw02OGE5NDE1NC0zN2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwjNKTlsoceQDUhrqIS6eUvzQMzzwMDAMHizRzR6cgfb36Rp0x0KAsD9J4fHX GvJgGyWbThM/Gx6SwZJL/MlbrQnVhxwdFWGDWQ/qsM049BXfoJggEjkt0GnA6q9l YdH6pWBy+tTG18MKjpYHuPN6DyfojIH5KA9sus/G25rF6ao7D/q5/TWMMGFcMu72 aNaRB5VzS5n1kw+nrB0eyswlIV3PFaClbxh66eMEFCd9XG0BVnw7obhbritPJpR1 0Aq6jxeKRnigwk6k8TIMo252HF1gvsqJnPcYw8mxcVOHIFxBUTNeZytIsrtYJImG MmF+lEmIWeqqbjWzNbHoHPM19QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOKKQkfz SrYCxM5qi1gaMPsw0veuMB8GA1UdIwQYMBaAFD0tk6yLEIZYF9mnTMgaAw19NdB0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkQ5RS83N0JCOTg0QzdE NjExMUVFQjQ2M0M4NUFDNEY5QUUwMi9QUzJUcklzUWhsZ1gyYWRNeUJvRERYMDEw SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BTMlRySXNRaGxnWDJhZE15Qm9ERFgwMTBIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkQ5RS83N0JCOTg0QzdENjExMUVFQjQ2M0M4NUFDNEY5QUUwMi9QUzJUcklzUWhs Z1gyYWRNeUJvRERYMDEwSFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCOBLvRwqRJLJkDl2R0VtmBL/ZGIgQL5ZpZM4iwLNG9CeK6Nt6cg6L NAONPQahChRw15D7D6ryN9p62tCPMtC/9D9ZQEzZoyFqtCyzvuvdr+dIptYgrLnn sN+0Si14pIdqJmVH4Bwe6Ua/7VaWmzfay1vguPQxYvARnSiJFrNPpySLrMgKaQRK ZSka7LSCQ9xWA0M7j8ROVQX8Srqjjv0BsztfQrw+s1NoAzntnxDyHAXeXjDDr1ac hsgzZ22h+HhMUql2nZySPVRI4/x4Kczn/JYhw4zcHY5FT8+DORrJT5x8c7XH/98P qIff/gbN1qvUMGo04gubEtQApoOgpUq6 -----END CERTIFICATE-----Generated at Sat Aug 23 15:16:30 2025 by rpki-client