$ rpki-client -vvf rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft File: 2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft (raw, json) Hash identifier: casDnfSykvqykfnZgpiTRsQ1/WcFiezB3o114PxB1EU= Subject key identifier: 19:AC:A5:42:A1:C0:EE:43:2B:54:7B:F6:F2:7D:92:4C:D2:37:38:D6 Authority key identifier: D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B Certificate issuer: /CN=A9197277/serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Certificate serial: 013C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft Manifest number: 0130 Signing time: Sat 23 Aug 2025 04:44:47 +0000 Manifest this update: Sat 23 Aug 2025 04:44:47 +0000 Manifest next update: Sat 30 Aug 2025 04:44:47 +0000 Files and hashes: 1: 2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl (hash: m08PkoNc9lD/80MnzZ6lXmXxBQbegu3BIPTPhtDj0Eg=) 2: 2DCC0688B57211EEBB68526DC4F9AE02.roa (hash: 3pfVChkV7zELWja+oHQv3Km6INJzdWSQS1Y4XK0gQXg=) 3: 2E31B8FCB57211EEBB68526DC4F9AE02.roa (hash: sp0oN6M3b0vKQWiSIdTtVM/z4x+pZK5BNETB2TbgZ2E=) 4: 6F5F30B8B56111EE91C72951C4F9AE02.roa (hash: ipvSSCsuIB7+MwYDiVzzG4/g5ky54F8EF1XYBBpIM6E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:44:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 316 (0x13c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197277, serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Validity Not Before: Aug 23 04:44:47 2025 GMT Not After : Aug 30 04:44:47 2025 GMT Subject: CN=68a9473f-dc43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:0b:7e:5a:24:00:77:41:2b:c7:8e:dd:32:82: dc:2a:de:dd:24:c3:5f:1c:da:ab:e8:75:c9:3f:49: 86:0e:5f:50:bb:32:ca:88:37:50:49:79:90:c7:96: 5d:18:32:2e:11:26:37:ff:15:10:1d:59:14:cf:73: 18:bf:32:06:09:b3:07:80:ff:29:68:34:0d:9f:91: a6:75:65:4d:8b:b5:13:9a:0f:37:1a:86:d9:23:d4: 7e:c2:f0:4e:88:0d:82:2e:d6:68:2b:a2:71:5d:e8: 06:1c:41:da:6b:4f:43:90:96:43:f1:0b:df:36:36: e8:04:60:f8:9e:29:55:f9:e9:19:78:df:47:06:00: 27:e8:ba:49:67:13:ec:dc:1a:07:4d:ef:10:77:c3: 2a:11:a7:4a:af:79:1b:fc:05:56:f4:74:4c:f3:2d: 0c:b5:41:df:43:51:f2:fe:80:48:95:dc:0e:df:bd: 2d:54:2e:2c:72:6d:9f:d0:b1:89:fd:32:ee:cb:70: 27:2a:37:dc:c3:58:ef:96:51:aa:77:49:be:76:fb: 8e:51:13:67:c7:68:a7:c0:3f:8f:53:62:d2:13:f4: ba:ff:b8:ff:72:db:1d:94:b4:ca:ad:f5:e9:f1:e5: 4e:51:6b:3b:76:c2:fd:cc:28:a8:7e:4d:b2:22:3f: 24:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:AC:A5:42:A1:C0:EE:43:2B:54:7B:F6:F2:7D:92:4C:D2:37:38:D6 X509v3 Authority Key Identifier: keyid:D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:71:74:8b:cd:db:d7:f5:ed:60:a3:63:d7:7d:74:a2:ac:26: f9:fd:4e:53:e8:ab:47:c2:c0:db:6f:8c:6b:37:7a:a8:42:f0: 99:0f:1e:a9:32:03:72:ac:03:38:3a:26:39:34:9b:46:de:e9: 35:d6:20:69:21:2d:55:97:5a:a1:4e:14:5d:8c:ee:13:cf:69: 6b:43:1a:b3:5f:2a:bb:e1:79:13:7b:0e:52:52:1d:5e:25:c1: 19:bf:32:64:68:bd:fe:90:a9:be:7a:97:af:c0:d9:f1:6c:41: f5:b4:ff:37:53:4b:2f:c3:f8:ef:14:a0:91:6d:a7:2f:62:8f: b5:27:74:4f:a1:67:c3:8e:d9:b2:8a:f3:8b:84:8b:36:17:53: 5e:ed:89:e2:f0:5d:b8:57:53:0a:8f:c2:71:fc:17:8f:78:b2: 2f:1c:e0:63:c8:83:e3:fd:6a:c6:ad:63:1b:09:66:1a:c4:60: 68:82:1a:5e:cf:2f:8c:2d:c9:5f:86:70:03:8d:f5:8a:0b:7b: aa:51:38:6b:e9:79:e0:0f:d8:36:f0:05:8c:c7:9c:69:bd:6b: 4c:31:2c:fc:7b:9c:99:22:46:c3:79:e1:5a:a4:6a:b5:c0:2b: bf:20:dd:29:c6:ef:4f:13:4e:03:51:78:a4:58:61:89:1d:ca: eb:e2:6a:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyNzcxMTAvBgNVBAUTKEQ4M0I5M0UzMUU5Mzk5MzdEOENCMTVGRTM5Q0E1RTZF OEZFQUZBOUIwHhcNMjUwODIzMDQ0NDQ3WhcNMjUwODMwMDQ0NDQ3WjAYMRYwFAYD VQQDEw02OGE5NDczZi1kYzQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvAt+WiQAd0Erx47dMoLcKt7dJMNfHNqr6HXJP0mGDl9QuzLKiDdQSXmQx5Zd GDIuESY3/xUQHVkUz3MYvzIGCbMHgP8paDQNn5GmdWVNi7UTmg83GobZI9R+wvBO iA2CLtZoK6JxXegGHEHaa09DkJZD8QvfNjboBGD4nilV+ekZeN9HBgAn6LpJZxPs 3BoHTe8Qd8MqEadKr3kb/AVW9HRM8y0MtUHfQ1Hy/oBIldwO370tVC4scm2f0LGJ /TLuy3AnKjfcw1jvllGqd0m+dvuOURNnx2inwD+PU2LSE/S6/7j/ctsdlLTKrfXp 8eVOUWs7dsL9zCiofk2yIj8kYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBmspUKh wO5DK1R79vJ9kkzSNzjWMB8GA1UdIwQYMBaAFNg7k+Mek5k32MsV/jnKXm6P6vqb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzI3Ny80M0E3RTg5NEI1 NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRHVUNHg2VG1UZll5eFgtT2NwZWJvX3Et cHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJEdVQ0eDZUbVRmWXl4WC1PY3BlYm9fcS1wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzI3Ny80M0E3RTg5NEI1NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRHVUNHg2VG1U Zll5eFgtT2NwZWJvX3EtcHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARcXSLzdvX9e1go2PXfXSirCb5/U5T6KtHwsDbb4xrN3qoQvCZDx6p MgNyrAM4OiY5NJtG3uk11iBpIS1Vl1qhThRdjO4Tz2lrQxqzXyq74XkTew5SUh1e JcEZvzJkaL3+kKm+epevwNnxbEH1tP83U0svw/jvFKCRbacvYo+1J3RPoWfDjtmy ivOLhIs2F1Ne7Yni8F24V1MKj8Jx/BePeLIvHOBjyIPj/WrGrWMbCWYaxGBoghpe zy+MLclfhnADjfWKC3uqUThr6XngD9g28AWMx5xpvWtMMSz8e5yZIkbDeeFapGq1 wCu/IN0pxu9PE04DUXikWGGJHcrr4mp1 -----END CERTIFICATE-----Generated at Sat Aug 23 12:41:48 2025 by rpki-client