$ rpki-client -vvf rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft File: 2iwTK47FBxr425BJG63bwPCntEU.mft (raw, json) Hash identifier: LJ6BDBK9lVRXh1PD9vBTPZDqfl14AwJ4gTUSK9ovjkQ= Subject key identifier: 64:5A:A4:D8:DB:BE:1F:B8:5F:F7:40:AA:A3:63:27:26:E8:EC:F3:60 Authority key identifier: DA:2C:13:2B:8E:C5:07:1A:F8:DB:90:49:1B:AD:DB:C0:F0:A7:B4:45 Certificate issuer: /CN=A91534B8/serialNumber=DA2C132B8EC5071AF8DB90491BADDBC0F0A7B445 Certificate serial: 02B4 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft Manifest number: 02B4 Signing time: Sat 23 Aug 2025 01:45:14 +0000 Manifest this update: Sat 23 Aug 2025 01:45:13 +0000 Manifest next update: Sat 30 Aug 2025 01:45:13 +0000 Files and hashes: 1: 2iwTK47FBxr425BJG63bwPCntEU.crl (hash: seZSv6huLSIsb31tsCywFA8g92Y/SUDGnZFkZRRQLVs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.crl rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:45:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 692 (0x2b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91534B8, serialNumber=DA2C132B8EC5071AF8DB90491BADDBC0F0A7B445 Validity Not Before: Aug 23 01:45:13 2025 GMT Not After : Aug 30 01:45:13 2025 GMT Subject: CN=68a91d2a-b79a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:23:8b:f8:24:6e:67:8e:2e:ea:74:19:44:d4: 74:0a:60:f4:30:1d:31:a1:74:d8:c8:ed:e5:62:3e: f5:93:fd:35:54:7c:66:05:47:5e:9f:da:eb:3f:00: 4e:64:e0:c0:88:9b:48:7c:14:a7:24:8e:a0:0f:60: 73:92:6c:d2:f1:f2:ff:b1:53:7d:05:61:f5:3a:c8: ce:c8:70:cb:7b:50:9b:73:cf:10:53:3b:cb:61:b2: 75:dc:b3:27:4c:af:51:ed:40:9e:5d:44:49:01:09: eb:c2:20:0c:a7:fe:1e:aa:af:76:dd:04:03:23:1e: 75:94:30:98:e6:3d:58:14:38:75:86:a5:25:73:94: 0a:bc:2a:0b:d2:fe:14:2f:a3:18:8e:5f:90:2c:d0: 6e:f8:72:3c:b8:cf:5c:06:49:e5:96:22:9f:66:0b: ba:81:e8:51:e7:29:9d:8f:a3:55:e9:18:f2:69:4c: d9:1e:39:76:24:9a:c1:64:db:81:d1:65:a3:2a:62: b5:4c:03:fa:b8:6e:8b:25:23:31:89:9c:dd:46:be: 73:fc:f1:fb:71:ce:2b:54:5d:39:a9:f7:f9:15:54: 6b:d6:f9:49:b9:5d:6f:9f:df:5f:69:13:28:ea:f3: 48:19:38:ed:b8:4d:ee:ce:9a:80:e9:01:64:08:c4: 85:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:5A:A4:D8:DB:BE:1F:B8:5F:F7:40:AA:A3:63:27:26:E8:EC:F3:60 X509v3 Authority Key Identifier: keyid:DA:2C:13:2B:8E:C5:07:1A:F8:DB:90:49:1B:AD:DB:C0:F0:A7:B4:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:9b:3f:87:40:c4:28:27:dc:99:d3:86:fc:4a:db:5d:30:00: bc:b7:46:c3:eb:43:1f:97:a5:31:0f:7d:0b:29:6d:6a:a2:64: 0c:c2:81:22:38:3e:e2:52:13:2d:18:64:48:52:c3:f3:2c:20: fa:b0:02:d3:df:a0:95:c9:0c:64:30:76:cf:b7:02:7b:28:44: 1f:7d:b9:65:74:21:5b:a2:1e:a4:c9:54:61:d8:f9:95:79:d6: 23:db:72:b9:12:ea:5b:f8:6f:6a:43:05:01:c2:84:df:53:6b: 67:36:7d:da:45:ee:a2:22:b0:a9:8b:39:1a:21:d9:50:1a:1c: c8:32:ef:64:b6:a7:95:44:a0:23:61:b9:8c:9d:16:e6:03:73: bb:f5:81:37:09:d7:14:3d:d3:75:ba:86:bc:9d:10:bc:d8:87: 43:53:85:be:c8:45:fc:a2:16:af:71:16:56:d1:5e:02:41:83: ef:59:ad:f2:8d:53:d2:9d:b4:9b:30:4d:b7:41:f1:b9:77:34: 1a:e7:55:ae:43:be:aa:5c:34:db:0f:7d:20:39:ba:ae:1b:db: 47:cc:33:e8:f4:f5:d6:15:5a:ce:a4:8c:37:25:35:07:46:55: 79:99:e0:71:84:75:d8:89:bb:50:64:48:11:86:36:0c:20:ad: 37:c3:da:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0QjgxMTAvBgNVBAUTKERBMkMxMzJCOEVDNTA3MUFGOERCOTA0OTFCQUREQkMw RjBBN0I0NDUwHhcNMjUwODIzMDE0NTEzWhcNMjUwODMwMDE0NTEzWjAYMRYwFAYD VQQDEw02OGE5MWQyYS1iNzlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvSOL+CRuZ44u6nQZRNR0CmD0MB0xoXTYyO3lYj71k/01VHxmBUden9rrPwBO ZODAiJtIfBSnJI6gD2BzkmzS8fL/sVN9BWH1OsjOyHDLe1Cbc88QUzvLYbJ13LMn TK9R7UCeXURJAQnrwiAMp/4eqq923QQDIx51lDCY5j1YFDh1hqUlc5QKvCoL0v4U L6MYjl+QLNBu+HI8uM9cBknlliKfZgu6gehR5ymdj6NV6RjyaUzZHjl2JJrBZNuB 0WWjKmK1TAP6uG6LJSMxiZzdRr5z/PH7cc4rVF05qff5FVRr1vlJuV1vn99faRMo 6vNIGTjtuE3uzpqA6QFkCMSFBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGRapNjb vh+4X/dAqqNjJybo7PNgMB8GA1UdIwQYMBaAFNosEyuOxQca+NuQSRut28Dwp7RF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzRCOC85NjY1OTk3RTA5 NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8yaXdUSzQ3RkJ4cjQyNUJKRzYzYndQQ250 RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzJpd1RLNDdGQnhyNDI1QkpHNjNid1BDbnRFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzRCOC85NjY1OTk3RTA5NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8yaXdUSzQ3RkJ4 cjQyNUJKRzYzYndQQ250RVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcmz+HQMQoJ9yZ04b8SttdMAC8t0bD60Mfl6UxD30LKW1qomQMwoEi OD7iUhMtGGRIUsPzLCD6sALT36CVyQxkMHbPtwJ7KEQffblldCFboh6kyVRh2PmV edYj23K5Eupb+G9qQwUBwoTfU2tnNn3aRe6iIrCpizkaIdlQGhzIMu9ktqeVRKAj YbmMnRbmA3O79YE3CdcUPdN1uoa8nRC82IdDU4W+yEX8ohavcRZW0V4CQYPvWa3y jVPSnbSbME23QfG5dzQa51WuQ76qXDTbD30gObquG9tHzDPo9PXWFVrOpIw3JTUH RlV5meBxhHXYibtQZEgRhjYMIK03w9p3 -----END CERTIFICATE-----Generated at Sun Aug 24 03:08:01 2025 by rpki-client