$ rpki-client -vvf rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft File: C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft (raw, json) Hash identifier: miRq/aOzYN50x0JcfYMLPAYeKuyja2dJ0uWPkhuzF1g= Subject key identifier: E7:3A:CD:91:CA:A3:27:E3:31:FD:DC:DC:82:B0:02:63:A7:8C:54:38 Authority key identifier: 0B:6C:DF:3F:AC:C6:80:B7:86:92:6D:E1:39:F1:E0:F6:74:44:06:54 Certificate issuer: /CN=A91892EB/serialNumber=0B6CDF3FACC680B786926DE139F1E0F674440654 Certificate serial: 0614 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft Manifest number: 05F7 Signing time: Fri 22 Aug 2025 23:10:15 +0000 Manifest this update: Fri 22 Aug 2025 23:10:15 +0000 Manifest next update: Fri 29 Aug 2025 23:10:15 +0000 Files and hashes: 1: C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl (hash: 17TZ6yOcLOkfHs0habKiXJN3hZZWE6tOx0zqU7MSGYU=) 2: 387532CEE46D11EE8DBC2937C4F9AE02.roa (hash: /0z04vbtBaLcQrCFiK0+0jO4vvjWhm1cfohrqiT/hCc=) 3: F4DC3C2AC59211EBAA9C5B7BC4F9AE02.roa (hash: JjwRM28UWpqUpm8V4jbamMbdEhJ8x26HdODuQra73JI=) 4: F5BE1E346FFD11EE83D3D154C4F9AE02.roa (hash: MDnYgEyFU+utF3gs7xXTuOcFSWGPIOUc2y3lsVq3q/M=) 5: 1DE394187C2F11F0902A5A0CC4F9AE02.roa (hash: R8MAXcI9/yvxzT89z1WDBO8OZ5lHOE8A6WUOtaaft6k=) 6: D4413B92007C11EE99460918C4F9AE02.roa (hash: dvapbCE1SRB6K7VYhEw7q7mKxSFd63MycN7TcRuRtp4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1556 (0x614) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91892EB, serialNumber=0B6CDF3FACC680B786926DE139F1E0F674440654 Validity Not Before: Aug 22 23:10:15 2025 GMT Not After : Aug 29 23:10:15 2025 GMT Subject: CN=68a8f8d7-631d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:72:8a:33:23:f5:4b:4b:db:b1:61:48:c1:a4: 96:87:d9:16:f6:b7:b7:b9:27:ac:59:39:4e:33:42: 55:c4:26:ec:0c:21:8a:da:fc:86:45:86:b3:e7:72: 76:cf:b0:66:65:e9:0a:11:ab:49:8f:76:b5:ba:18: cd:3d:13:b9:34:9b:c2:2a:25:a0:e2:46:80:7d:9f: 0e:46:d1:74:ff:cc:c9:15:3d:01:90:ee:05:d6:8a: b7:6a:2c:d0:76:2d:a5:14:e2:b1:97:21:45:4e:95: 49:28:4a:46:5e:e7:99:42:db:39:7e:21:c3:9d:2d: e8:47:2f:f2:e0:7e:4f:31:5f:0f:47:c7:fa:7b:c0: ac:03:8b:b3:8e:c9:80:cb:12:49:08:f0:cb:28:d4: 21:73:1e:a3:6d:d4:dc:9c:bb:a2:ec:90:bc:79:e2: 97:d8:0e:a3:c7:54:f2:88:54:4e:b8:f1:95:30:84: 4c:93:49:b6:32:d6:e0:dd:75:0e:d1:fc:39:d5:21: 11:4b:04:1f:a4:3f:06:dc:26:67:51:46:f9:cd:77: 1d:c4:ce:b9:1c:96:8c:6e:1f:c0:c5:ea:e7:da:a5: ea:34:f4:fc:b1:c6:d1:6c:01:7e:32:9e:41:0e:c8: f6:45:20:d4:89:3e:34:2a:f0:df:b8:d9:2a:f7:33: cc:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:3A:CD:91:CA:A3:27:E3:31:FD:DC:DC:82:B0:02:63:A7:8C:54:38 X509v3 Authority Key Identifier: keyid:0B:6C:DF:3F:AC:C6:80:B7:86:92:6D:E1:39:F1:E0:F6:74:44:06:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:bc:c9:17:a0:5b:16:8b:0d:76:16:28:05:c9:bd:92:6d:bd: eb:f0:e7:49:a0:e9:9e:78:ae:cb:e2:ac:58:56:fc:7a:56:c3: 89:b3:fe:6e:bc:6c:0a:c4:6c:fb:07:a9:07:f4:4d:5b:e2:da: 95:8e:f9:8a:3f:ad:5a:de:f1:da:10:f1:5e:22:b4:62:32:68: 73:e6:9e:a5:d1:87:3a:89:82:4b:ab:59:9a:88:7b:d7:f1:d1: a3:eb:77:0f:c6:7b:ee:ec:3c:10:0d:c3:da:20:8d:9c:e5:a7: 9f:9b:cb:b0:4b:83:de:31:48:b0:53:a8:dc:58:69:0e:ce:bd: db:de:60:07:78:5d:42:f5:fc:42:b4:8e:97:d7:6d:ff:f5:09: 2c:2c:9e:4a:a5:bb:fb:3c:46:21:ed:0b:a0:5b:95:3a:ea:fe: a2:4e:3d:43:0c:55:b7:f6:ae:c6:4c:8d:5a:39:cc:4c:50:da: 61:36:ca:10:6b:39:8d:b7:26:88:ca:67:26:bc:74:7a:73:36: 48:af:53:0b:8e:38:ef:ee:24:89:18:1e:0d:9f:71:e3:55:5a: 7d:c7:50:dd:23:c6:ea:fe:c7:2a:19:56:44:ba:55:79:e5:8d: bd:09:12:da:cb:6d:68:b6:02:a5:e5:00:bf:67:d0:a7:60:d6: a2:73:74:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyRUIxMTAvBgNVBAUTKDBCNkNERjNGQUNDNjgwQjc4NjkyNkRFMTM5RjFFMEY2 NzQ0NDA2NTQwHhcNMjUwODIyMjMxMDE1WhcNMjUwODI5MjMxMDE1WjAYMRYwFAYD VQQDEw02OGE4ZjhkNy02MzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw3KKMyP1S0vbsWFIwaSWh9kW9re3uSesWTlOM0JVxCbsDCGK2vyGRYaz53J2 z7BmZekKEatJj3a1uhjNPRO5NJvCKiWg4kaAfZ8ORtF0/8zJFT0BkO4F1oq3aizQ di2lFOKxlyFFTpVJKEpGXueZQts5fiHDnS3oRy/y4H5PMV8PR8f6e8CsA4uzjsmA yxJJCPDLKNQhcx6jbdTcnLui7JC8eeKX2A6jx1TyiFROuPGVMIRMk0m2Mtbg3XUO 0fw51SERSwQfpD8G3CZnUUb5zXcdxM65HJaMbh/Axern2qXqNPT8scbRbAF+Mp5B Dsj2RSDUiT40KvDfuNkq9zPM7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOc6zZHK oyfjMf3c3IKwAmOnjFQ4MB8GA1UdIwQYMBaAFAts3z+sxoC3hpJt4Tnx4PZ0RAZU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTJFQi9GRDAwODFERUM1 NjcxMUVCQUZFQTYwMkJDNEY5QUUwMi9DMnpmUDZ6R2dMZUdrbTNoT2ZIZzluUkVC bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MyemZQNnpHZ0xlR2ttM2hPZkhnOW5SRUJsUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTJFQi9GRDAwODFERUM1NjcxMUVCQUZFQTYwMkJDNEY5QUUwMi9DMnpmUDZ6R2dM ZUdrbTNoT2ZIZzluUkVCbFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSvMkXoFsWiw12FigFyb2Sbb3r8OdJoOmeeK7L4qxYVvx6VsOJs/5u vGwKxGz7B6kH9E1b4tqVjvmKP61a3vHaEPFeIrRiMmhz5p6l0Yc6iYJLq1maiHvX 8dGj63cPxnvu7DwQDcPaII2c5aefm8uwS4PeMUiwU6jcWGkOzr3b3mAHeF1C9fxC tI6X123/9QksLJ5Kpbv7PEYh7QugW5U66v6iTj1DDFW39q7GTI1aOcxMUNphNsoQ azmNtyaIymcmvHR6czZIr1MLjjjv7iSJGB4Nn3HjVVp9x1DdI8bq/scqGVZEulV5 5Y29CRLay21otgKl5QC/Z9CnYNaic3Sg -----END CERTIFICATE-----Generated at Sun Aug 24 00:08:36 2025 by rpki-client