$ rpki-client -vvf rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft File: 2h2yzTH0VPaVYdhmXck--BLzl7A.mft (raw, json) Hash identifier: LCb7Jqp442iwSRnAbTDR9LkAFDg+l3P/y7hVOLQGpV0= Subject key identifier: 1D:0F:D0:ED:D9:E4:53:9A:3F:26:ED:75:65:BC:CA:F7:2E:78:53:22 Authority key identifier: DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 Certificate issuer: /CN=A919A7CA/serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Certificate serial: 015C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft Manifest number: 0152 Signing time: Sat 23 Aug 2025 04:20:12 +0000 Manifest this update: Sat 23 Aug 2025 04:20:12 +0000 Manifest next update: Sat 30 Aug 2025 04:20:12 +0000 Files and hashes: 1: 2h2yzTH0VPaVYdhmXck--BLzl7A.crl (hash: LTVzhkuz/b/14anUKltYBJz/VvRarAC8f5gRSGWQnoc=) 2: 730B201A81E911EEAEFE7735C4F9AE02.roa (hash: s0CFqQaJE4zfLQbz4CeHwWhJkg8L6CDsaxGgDdisTeI=) 3: 4317395081E611EE9EFE132BC4F9AE02.roa (hash: tQp/nzqfCovKInVuREO99dY4qu3efR3x/X9HpDvqlY0=) 4: E71AB92A7F7D11EE8C183162C4F9AE02.roa (hash: Dsh7pIT1SQfv6ivkNmsm2ZCHRytBDFAmEgjeRNzC7do=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 348 (0x15c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A7CA, serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Validity Not Before: Aug 23 04:20:12 2025 GMT Not After : Aug 30 04:20:12 2025 GMT Subject: CN=68a9417c-6bc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4d:2c:5c:60:75:42:2b:27:08:62:db:0c:49: 0a:5f:01:d3:3d:2a:d2:5d:73:f0:80:4c:ad:65:23: d5:d2:38:53:49:24:ac:0e:e8:fe:a0:86:fc:5b:63: 4e:7c:0b:52:84:7a:4f:24:95:cd:a7:92:aa:6d:39: a0:15:a8:b1:50:1a:54:4c:c3:45:98:2c:4e:0a:ea: 2e:42:b6:4a:50:58:c5:89:ef:d5:cf:05:72:90:60: 31:3f:04:d5:a7:d0:d1:3f:ea:0d:b3:29:a8:97:a7: f0:63:1a:c0:72:cd:58:9f:75:b0:67:b2:1b:27:a9: cd:0b:3b:45:74:f1:37:d5:69:c2:6a:28:2c:92:7a: 3d:25:9a:44:88:90:7b:ce:43:7c:77:d0:ca:0b:7b: 0a:21:bb:62:27:de:77:a1:bd:33:3e:28:72:38:cd: 64:6f:35:c6:ca:11:00:6b:01:1b:2d:9a:0f:ff:9a: 23:08:41:ad:fc:79:68:29:ec:90:e7:e8:51:e0:c4: ed:2b:f4:5f:ed:d1:ec:82:2b:e9:42:3a:61:fc:af: 5d:b3:d7:ca:37:b4:b6:ce:b0:09:f0:ce:44:40:d4: ae:1b:7f:fc:2a:1d:34:af:9d:0d:f3:19:3d:f9:8c: 5a:a8:16:8b:c7:ab:47:62:77:ac:a6:b9:cd:61:d4: b6:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:0F:D0:ED:D9:E4:53:9A:3F:26:ED:75:65:BC:CA:F7:2E:78:53:22 X509v3 Authority Key Identifier: keyid:DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:24:92:97:73:31:94:b6:25:6c:9b:e7:31:ba:13:51:b2:66: bc:9b:9c:31:d3:4e:53:b1:82:6b:1b:47:b1:10:b2:dc:a4:ba: b0:26:84:f1:02:5d:8e:24:56:8b:bf:fb:e7:fe:fc:91:58:b9: 25:3e:1d:81:08:8d:57:a1:06:27:ca:51:63:54:43:a5:3b:50: a6:33:a6:2b:29:8b:e4:06:3d:5d:fb:e6:73:34:98:65:0d:80: 0e:af:a2:6e:6d:87:f3:54:d8:51:50:8a:2f:2e:b2:06:7e:49: 39:4f:29:da:7d:f8:d2:6f:46:67:44:61:1a:2f:26:1a:ce:9c: a9:fe:83:a2:9d:c7:d0:0c:68:a9:95:39:94:1f:5b:7a:35:e9: c3:14:c5:9f:56:11:32:4e:82:93:32:01:5c:47:a4:bf:99:a8: c5:e1:65:9a:42:bf:b4:1a:76:78:79:1c:08:05:3a:a3:0e:81: 2c:7b:0a:a4:1b:93:90:56:e4:39:77:f6:1c:a3:ed:fa:4e:df: de:92:8f:16:9c:28:c3:b9:12:47:07:e0:4c:b5:2c:cb:59:6f: bc:27:43:49:2b:2f:0f:c4:80:5a:2a:e1:ac:ec:a0:73:46:13: 6d:50:f7:cf:65:c1:42:0e:38:f1:08:24:eb:6a:b9:78:34:4c: fb:86:b5:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE3Q0ExMTAvBgNVBAUTKERBMURCMkNEMzFGNDU0RjY5NTYxRDg2NjVEQzkzRUY4 MTJGMzk3QjAwHhcNMjUwODIzMDQyMDEyWhcNMjUwODMwMDQyMDEyWjAYMRYwFAYD VQQDEw02OGE5NDE3Yy02YmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyU0sXGB1QisnCGLbDEkKXwHTPSrSXXPwgEytZSPV0jhTSSSsDuj+oIb8W2NO fAtShHpPJJXNp5KqbTmgFaixUBpUTMNFmCxOCuouQrZKUFjFie/VzwVykGAxPwTV p9DRP+oNsymol6fwYxrAcs1Yn3WwZ7IbJ6nNCztFdPE31WnCaigskno9JZpEiJB7 zkN8d9DKC3sKIbtiJ953ob0zPihyOM1kbzXGyhEAawEbLZoP/5ojCEGt/HloKeyQ 5+hR4MTtK/Rf7dHsgivpQjph/K9ds9fKN7S2zrAJ8M5EQNSuG3/8Kh00r50N8xk9 +YxaqBaLx6tHYnesprnNYdS2iQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB0P0O3Z 5FOaPybtdWW8yvcueFMiMB8GA1UdIwQYMBaAFNodss0x9FT2lWHYZl3JPvgS85ew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTdDQS80Q0Y3RjE1ODdF QjcxMUVFOTYyM0U5MUFDNEY5QUUwMi8yaDJ5elRIMFZQYVZZZGhtWGNrLS1CTHps N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJoMnl6VEgwVlBhVllkaG1YY2stLUJMemw3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTdDQS80Q0Y3RjE1ODdFQjcxMUVFOTYyM0U5MUFDNEY5QUUwMi8yaDJ5elRIMFZQ YVZZZGhtWGNrLS1CTHpsN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsJJKXczGUtiVsm+cxuhNRsma8m5wx005TsYJrG0exELLcpLqwJoTx Al2OJFaLv/vn/vyRWLklPh2BCI1XoQYnylFjVEOlO1CmM6YrKYvkBj1d++ZzNJhl DYAOr6JubYfzVNhRUIovLrIGfkk5TynaffjSb0ZnRGEaLyYazpyp/oOincfQDGip lTmUH1t6NenDFMWfVhEyToKTMgFcR6S/majF4WWaQr+0GnZ4eRwIBTqjDoEsewqk G5OQVuQ5d/Yco+36Tt/eko8WnCjDuRJHB+BMtSzLWW+8J0NJKy8PxIBaKuGs7KBz RhNtUPfPZcFCDjjxCCTrarl4NEz7hrXn -----END CERTIFICATE-----Generated at Sat Aug 23 20:28:58 2025 by rpki-client