$ rpki-client -vvf rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft File: 2kdUAUEh0yaH2X05LZBgSagU_MM.mft (raw, json) Hash identifier: pwhLD9CRzoPe27ELj3/4BL+1xjoQMGcwYGMf3cQazxs= Subject key identifier: E6:13:12:61:6C:1C:E5:AF:5E:42:73:FB:5B:6D:25:FD:CF:1C:4C:FC Authority key identifier: DA:47:54:01:41:21:D3:26:87:D9:7D:39:2D:90:60:49:A8:14:FC:C3 Certificate issuer: /CN=A91777A6/serialNumber=DA4754014121D32687D97D392D906049A814FCC3 Certificate serial: 0271 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kdUAUEh0yaH2X05LZBgSagU_MM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft Manifest number: 026C Signing time: Sat 23 Aug 2025 01:59:15 +0000 Manifest this update: Sat 23 Aug 2025 01:59:15 +0000 Manifest next update: Sat 30 Aug 2025 01:59:15 +0000 Files and hashes: 1: 2kdUAUEh0yaH2X05LZBgSagU_MM.crl (hash: i5EIAQuU3cX/SI8IAY0wH+6GD5GgrFqd4Z5Zqbtqh6c=) 2: 930770F4244C11ED95AA5569C4F9AE02.roa (hash: ULGKwEOFyOrsmtR9RLcNHZ1T/UHrIBp7ZTGPrjal32s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.crl rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kdUAUEh0yaH2X05LZBgSagU_MM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:59:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 625 (0x271) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91777A6, serialNumber=DA4754014121D32687D97D392D906049A814FCC3 Validity Not Before: Aug 23 01:59:15 2025 GMT Not After : Aug 30 01:59:15 2025 GMT Subject: CN=68a92073-c8fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:7e:31:60:b2:38:5f:ff:39:dc:e8:5e:1e:6c: c8:6b:ad:33:b8:27:f8:b3:e1:bd:c1:91:91:7e:0d: 5c:ce:37:90:a5:45:2b:1d:b7:c8:58:db:33:f8:70: fb:5a:89:3c:ad:ee:35:59:63:e7:d2:b9:36:9a:e8: 40:fd:c7:07:35:a0:4f:13:87:70:0a:1d:8a:98:e3: 3e:4c:b1:93:5f:31:b7:6a:96:c4:7e:e8:eb:82:1b: 02:6e:f3:8f:9a:ef:d4:0f:80:45:0b:7b:eb:70:7c: c1:28:55:90:12:06:a8:c9:fb:23:23:ad:63:7d:f5: 6c:0e:68:25:02:22:68:33:a0:37:32:72:53:73:56: 57:08:21:7a:68:ae:f1:0d:b8:8b:40:07:9a:27:c3: 5f:da:cf:7c:bf:04:c5:08:bd:16:07:a0:33:22:57: 76:6f:a7:f6:e9:21:bc:2c:96:74:8f:0a:33:6a:28: 6a:6b:30:6d:8e:a2:e0:b3:a2:c4:ee:10:68:61:5f: 98:8d:d2:11:70:9a:56:b0:14:4b:6d:bd:2d:ef:68: 82:cd:26:c9:1d:82:67:74:ee:66:d2:61:5d:dc:a4: 45:f4:86:85:55:8a:dc:a4:59:e7:bc:d6:c1:3c:3b: 3e:3a:48:c8:dc:39:95:da:3b:9a:4a:2d:e4:7f:60: 06:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:13:12:61:6C:1C:E5:AF:5E:42:73:FB:5B:6D:25:FD:CF:1C:4C:FC X509v3 Authority Key Identifier: keyid:DA:47:54:01:41:21:D3:26:87:D9:7D:39:2D:90:60:49:A8:14:FC:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kdUAUEh0yaH2X05LZBgSagU_MM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:91:89:5b:39:c1:84:15:d5:46:a9:cc:49:52:db:67:ae:83: 30:6f:b3:92:ff:19:ea:80:f3:ba:10:19:33:91:70:0f:0c:80: 2c:cf:21:15:36:cf:cc:bd:28:52:8b:60:16:4d:09:24:67:fa: 42:26:d3:3d:40:e3:86:01:9c:a6:51:63:3f:63:58:57:80:da: ea:67:05:53:76:b9:15:71:2d:01:07:ab:b0:a2:a5:ff:f0:53: 8a:06:d8:16:b2:38:da:d1:8b:5e:07:4f:88:e8:a3:d9:45:2a: 16:25:5f:f1:9a:f5:88:b5:d9:d1:c4:35:ba:d2:f4:f5:09:b4: c0:88:87:3b:8e:ca:e5:aa:83:55:3d:82:fd:03:a3:58:ec:e2: b4:95:66:ac:da:04:d6:27:37:9a:7e:61:1e:06:ec:76:b0:98: 1e:da:6c:85:bd:ad:ed:35:46:10:40:e9:30:8b:cd:06:7c:83: 85:fb:10:8a:3b:00:c9:35:cf:2e:30:1e:80:31:7b:74:dd:3b: a0:28:1c:c4:cf:81:16:a1:06:df:a1:6c:ed:01:a3:ca:52:b9: cc:d8:45:2e:4e:8c:0d:94:c5:2c:e9:14:80:80:07:26:8b:df: e0:a6:26:e6:62:6a:81:a2:ce:47:d9:37:73:6c:86:db:f4:eb: c9:96:67:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc3QTYxMTAvBgNVBAUTKERBNDc1NDAxNDEyMUQzMjY4N0Q5N0QzOTJEOTA2MDQ5 QTgxNEZDQzMwHhcNMjUwODIzMDE1OTE1WhcNMjUwODMwMDE1OTE1WjAYMRYwFAYD VQQDEw02OGE5MjA3My1jOGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm34xYLI4X/853OheHmzIa60zuCf4s+G9wZGRfg1czjeQpUUrHbfIWNsz+HD7 Wok8re41WWPn0rk2muhA/ccHNaBPE4dwCh2KmOM+TLGTXzG3apbEfujrghsCbvOP mu/UD4BFC3vrcHzBKFWQEgaoyfsjI61jffVsDmglAiJoM6A3MnJTc1ZXCCF6aK7x DbiLQAeaJ8Nf2s98vwTFCL0WB6AzIld2b6f26SG8LJZ0jwozaihqazBtjqLgs6LE 7hBoYV+YjdIRcJpWsBRLbb0t72iCzSbJHYJndO5m0mFd3KRF9IaFVYrcpFnnvNbB PDs+OkjI3DmV2juaSi3kf2AG/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOYTEmFs HOWvXkJz+1ttJf3PHEz8MB8GA1UdIwQYMBaAFNpHVAFBIdMmh9l9OS2QYEmoFPzD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzdBNi9DOEE3OTlEMjI0 NDcxMUVEQjE2NTUwNTNDNEY5QUUwMi8ya2RVQVVFaDB5YUgyWDA1TFpCZ1NhZ1Vf TU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrZFVBVUVoMHlhSDJYMDVMWkJnU2FnVV9NTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzdBNi9DOEE3OTlEMjI0NDcxMUVEQjE2NTUwNTNDNEY5QUUwMi8ya2RVQVVFaDB5 YUgyWDA1TFpCZ1NhZ1VfTU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfkYlbOcGEFdVGqcxJUttnroMwb7OS/xnqgPO6EBkzkXAPDIAszyEV Ns/MvShSi2AWTQkkZ/pCJtM9QOOGAZymUWM/Y1hXgNrqZwVTdrkVcS0BB6uwoqX/ 8FOKBtgWsjja0YteB0+I6KPZRSoWJV/xmvWItdnRxDW60vT1CbTAiIc7jsrlqoNV PYL9A6NY7OK0lWas2gTWJzeafmEeBux2sJge2myFva3tNUYQQOkwi80GfIOF+xCK OwDJNc8uMB6AMXt03TugKBzEz4EWoQbfoWztAaPKUrnM2EUuTowNlMUs6RSAgAcm i9/gpibmYmqBos5H2TdzbIbb9OvJlmdF -----END CERTIFICATE-----Generated at Sat Aug 23 15:58:18 2025 by rpki-client