$ rpki-client -vvf rpki.apnic.net/member_repository/A9197ADE/89A493E2FE4D11EFA1AFFC1AC4F9AE02/2TIL_awMkLNCikT8fcoOL3kJd0E.mft File: 2TIL_awMkLNCikT8fcoOL3kJd0E.mft (raw, json) Hash identifier: FjQc+MvvhA6LAYfBwP/WSUwHLByfrhi6509yheGmapk= Subject key identifier: DB:05:BA:74:7D:37:D1:CE:6F:4E:97:79:10:ED:A6:49:67:23:EA:51 Authority key identifier: D9:32:0B:FD:AC:0C:90:B3:42:8A:44:FC:7D:CA:0E:2F:79:09:77:41 Certificate issuer: /CN=A9197ADE/serialNumber=D9320BFDAC0C90B3428A44FC7DCA0E2F79097741 Certificate serial: 59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2TIL_awMkLNCikT8fcoOL3kJd0E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197ADE/89A493E2FE4D11EFA1AFFC1AC4F9AE02/2TIL_awMkLNCikT8fcoOL3kJd0E.mft Manifest number: 57 Signing time: Sat 23 Aug 2025 07:28:22 +0000 Manifest this update: Sat 23 Aug 2025 07:28:21 +0000 Manifest next update: Sat 30 Aug 2025 07:28:21 +0000 Files and hashes: 1: 2TIL_awMkLNCikT8fcoOL3kJd0E.crl (hash: qi0xTqbiyDgOfhhz1z0SPemP2FGK/5AAG7PuO+wJ85E=) 2: E0CFA54EFE4D11EF8274971BC4F9AE02.roa (hash: xErSiwEVGbEN6QlFmGLkFVWsdMEkeNM0TxyRejXCRHw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197ADE/89A493E2FE4D11EFA1AFFC1AC4F9AE02/2TIL_awMkLNCikT8fcoOL3kJd0E.crl rsync://rpki.apnic.net/member_repository/A9197ADE/89A493E2FE4D11EFA1AFFC1AC4F9AE02/2TIL_awMkLNCikT8fcoOL3kJd0E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2TIL_awMkLNCikT8fcoOL3kJd0E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:28:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197ADE, serialNumber=D9320BFDAC0C90B3428A44FC7DCA0E2F79097741 Validity Not Before: Aug 23 07:28:21 2025 GMT Not After : Aug 30 07:28:21 2025 GMT Subject: CN=68a96d95-07fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:5d:30:63:38:0d:06:3f:15:a6:dd:05:b4:65: 2b:af:90:a3:e0:d8:0c:7e:fc:13:27:f7:5a:fd:1a: 16:80:c6:74:7c:81:b2:2f:b4:ff:b4:91:5f:12:14: 49:42:a1:2c:a1:00:bc:07:bf:29:5c:3d:e3:7e:b8: 02:85:ec:c9:b8:bd:3a:1a:e3:08:72:52:92:25:5d: cd:1a:05:1b:c5:e4:a1:0a:5d:48:f8:50:69:8f:fa: e2:41:4d:43:e3:7c:e9:f4:e3:2d:68:de:25:ed:a6: 3f:7a:79:b1:03:f1:48:b8:a5:0b:b5:61:ab:8a:ef: b5:fd:64:6b:01:34:3f:0e:1e:9f:2d:97:8b:cb:19: ed:f2:a6:10:f9:07:b7:13:b1:48:01:f6:6a:e9:df: be:75:25:ee:d0:35:e9:ec:9a:53:2a:20:4b:4e:f1: 4c:ad:7b:61:ef:38:1c:7b:78:88:cd:97:44:47:83: fe:7c:62:03:f9:21:99:b2:b0:57:d7:d0:26:20:ec: 3b:ac:3e:ba:05:8a:90:a0:c6:f6:d1:fc:c7:8a:3d: c1:5e:88:dc:08:cb:5b:d0:57:96:32:68:26:2d:67: 71:9b:1e:f2:f5:28:1b:6b:37:0c:02:ca:ce:69:cf: 5b:0e:da:70:8b:e1:89:8a:bc:99:57:06:1e:b8:eb: 12:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:05:BA:74:7D:37:D1:CE:6F:4E:97:79:10:ED:A6:49:67:23:EA:51 X509v3 Authority Key Identifier: keyid:D9:32:0B:FD:AC:0C:90:B3:42:8A:44:FC:7D:CA:0E:2F:79:09:77:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197ADE/89A493E2FE4D11EFA1AFFC1AC4F9AE02/2TIL_awMkLNCikT8fcoOL3kJd0E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2TIL_awMkLNCikT8fcoOL3kJd0E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197ADE/89A493E2FE4D11EFA1AFFC1AC4F9AE02/2TIL_awMkLNCikT8fcoOL3kJd0E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:01:a7:96:9f:26:58:04:f3:01:05:7f:19:f6:cd:e8:00:d9: 13:4b:dd:5c:3d:8f:ec:2f:72:b1:06:d6:1d:fb:79:6c:17:8f: ad:c1:c4:0b:49:b4:4d:f7:2b:aa:aa:71:68:e0:39:58:7f:84: 15:13:11:4b:33:c5:35:59:a2:5b:24:8e:e6:12:a1:c2:6f:f6: 09:93:fb:1f:30:fc:05:84:41:e9:de:b7:54:fb:0b:c1:03:d2: 2e:dc:81:c8:41:5f:30:8c:5b:c6:18:30:ee:b5:ac:1b:5d:1f: 7d:7d:1f:43:7f:c4:56:b1:9e:fa:8d:6e:fb:85:88:54:ce:59: 0f:3f:ab:54:f1:c0:6d:78:22:6a:cd:07:8d:0c:83:37:b1:8c: f9:90:37:87:bd:07:14:98:0f:57:3a:5c:da:7f:22:4d:60:30: d3:70:b8:e3:ef:77:5b:8b:01:bb:35:c4:20:6f:50:bf:f3:56: 9e:38:b6:22:ee:08:cf:4b:10:2c:8d:a6:85:ea:23:3f:6c:82: 11:50:e2:b9:e3:c7:d9:65:c7:52:4d:c0:62:fc:8b:a7:f1:c7: d0:5b:d3:1c:e0:fa:5a:99:56:bc:6f:46:51:f3:21:6e:71:c6: 17:02:02:da:19:c8:24:58:a6:a9:5d:33:2e:82:b6:bb:f7:15: 5f:84:97:2b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 N0FERTExMC8GA1UEBRMoRDkzMjBCRkRBQzBDOTBCMzQyOEE0NEZDN0RDQTBFMkY3 OTA5Nzc0MTAeFw0yNTA4MjMwNzI4MjFaFw0yNTA4MzAwNzI4MjFaMBgxFjAUBgNV BAMTDTY4YTk2ZDk1LTA3ZmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPXTBjOA0GPxWm3QW0ZSuvkKPg2Ax+/BMn91r9GhaAxnR8gbIvtP+0kV8SFElC oSyhALwHvylcPeN+uAKF7Mm4vToa4whyUpIlXc0aBRvF5KEKXUj4UGmP+uJBTUPj fOn04y1o3iXtpj96ebED8Ui4pQu1YauK77X9ZGsBND8OHp8tl4vLGe3yphD5B7cT sUgB9mrp3751Je7QNensmlMqIEtO8Uyte2HvOBx7eIjNl0RHg/58YgP5IZmysFfX 0CYg7DusProFipCgxvbR/MeKPcFeiNwIy1vQV5YyaCYtZ3GbHvL1KBtrNwwCys5p z1sO2nCL4YmKvJlXBh646xITAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2wW6dH03 0c5vTpd5EO2mSWcj6lEwHwYDVR0jBBgwFoAU2TIL/awMkLNCikT8fcoOL3kJd0Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3QURFLzg5QTQ5M0UyRkU0 RDExRUZBMUFGRkMxQUM0RjlBRTAyLzJUSUxfYXdNa0xOQ2lrVDhmY29PTDNrSmQw RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMlRJTF9hd01rTE5DaWtUOGZjb09MM2tKZDBFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3 QURFLzg5QTQ5M0UyRkU0RDExRUZBMUFGRkMxQUM0RjlBRTAyLzJUSUxfYXdNa0xO Q2lrVDhmY29PTDNrSmQwRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACUBp5afJlgE8wEFfxn2zegA2RNL3Vw9j+wvcrEG1h37eWwXj63BxAtJ tE33K6qqcWjgOVh/hBUTEUszxTVZolskjuYSocJv9gmT+x8w/AWEQenet1T7C8ED 0i7cgchBXzCMW8YYMO61rBtdH319H0N/xFaxnvqNbvuFiFTOWQ8/q1TxwG14ImrN B40MgzexjPmQN4e9BxSYD1c6XNp/Ik1gMNNwuOPvd1uLAbs1xCBvUL/zVp44tiLu CM9LECyNpoXqIz9sghFQ4rnjx9llx1JNwGL8i6fxx9Bb0xzg+lqZVrxvRlHzIW5x xhcCAtoZyCRYpqldMy6Ctrv3FV+Elys= -----END CERTIFICATE-----Generated at Sat Aug 23 16:39:24 2025 by rpki-client