$ rpki-client -vvf rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft File: 2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft (raw, json) Hash identifier: UqdbOH8OO0CWA2qXrqADzVRJSHSCQ1GIuvH16vfM0kE= Subject key identifier: C1:B9:DB:9E:22:AF:AB:31:72:13:7E:FF:6B:DF:72:C2:DF:EA:99:63 Authority key identifier: DB:EE:EB:C2:5A:7A:9B:9B:67:5A:04:E2:F4:21:EF:E4:6E:A7:25:20 Certificate issuer: /CN=A91A300F/serialNumber=DBEEEBC25A7A9B9B675A04E2F421EFE46EA72520 Certificate serial: 046B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-7rwlp6m5tnWgTi9CHv5G6nJSA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft Manifest number: 0465 Signing time: Sat 23 Aug 2025 00:24:27 +0000 Manifest this update: Sat 23 Aug 2025 00:24:27 +0000 Manifest next update: Sat 30 Aug 2025 00:24:27 +0000 Files and hashes: 1: 2-7rwlp6m5tnWgTi9CHv5G6nJSA.crl (hash: ypoIKMD+Osi+YBKiA5D7KaK5EekG+bpAbg0eZuTZqQo=) 2: 90065F424DB511F0A1C8D30DC4F9AE02.roa (hash: wqkVYDxZ6HBCzKePRiH5zEB/9I/WLKOX58mvYx8PpGA=) 3: 9C2DE17A5D9311ECB2ABB63FC4F9AE02.roa (hash: XCMHw1WVIEMLU74HMo1cPz+oPVQmbB2z+VPLna5yZDg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.crl rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-7rwlp6m5tnWgTi9CHv5G6nJSA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:24:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1131 (0x46b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A300F, serialNumber=DBEEEBC25A7A9B9B675A04E2F421EFE46EA72520 Validity Not Before: Aug 23 00:24:27 2025 GMT Not After : Aug 30 00:24:27 2025 GMT Subject: CN=68a90a3b-416f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:f2:50:56:89:5a:ff:2f:09:06:15:59:ca:6b: 08:ef:a9:bb:66:b4:d9:b4:e5:a5:af:8b:94:34:bb: cc:61:64:15:ea:40:aa:14:ac:ff:58:a9:4d:05:17: 7a:5a:ba:3b:32:de:ad:2e:5d:74:39:95:35:cd:b4: e8:b4:eb:d4:b3:72:08:41:59:9d:2d:48:e7:12:5c: 58:93:0b:1d:d2:2e:98:1b:79:57:46:98:6a:4f:ad: f7:de:8c:f4:ff:38:ba:76:42:87:01:92:5d:9e:bb: b2:1e:43:58:d8:58:fe:ee:6a:36:5c:96:73:49:fa: 51:c2:fc:1a:e2:d6:90:d5:7c:d9:8f:94:a9:d8:be: 38:49:31:a8:ed:48:ea:27:70:eb:96:40:d9:3f:c8: 12:d4:38:ac:6b:54:4a:57:e5:4c:2b:7d:74:28:8a: 95:ac:4b:07:aa:19:03:e0:af:59:e5:ae:2b:ee:1f: c5:89:72:54:a4:28:c6:03:00:fe:24:b4:89:c7:a9: d2:42:93:1a:be:a8:29:27:b4:e3:62:53:a8:1d:08: 0c:e1:56:fa:93:a0:fc:f6:2d:9a:ad:04:1c:ce:ae: 6e:f1:18:1b:3d:e1:8a:fa:81:54:68:a5:51:a3:4c: eb:ee:2f:e9:d8:0e:81:df:f2:b8:51:ee:71:71:e8: aa:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:B9:DB:9E:22:AF:AB:31:72:13:7E:FF:6B:DF:72:C2:DF:EA:99:63 X509v3 Authority Key Identifier: keyid:DB:EE:EB:C2:5A:7A:9B:9B:67:5A:04:E2:F4:21:EF:E4:6E:A7:25:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-7rwlp6m5tnWgTi9CHv5G6nJSA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:89:d9:79:f9:57:3a:d2:4f:2b:2f:5e:b8:5e:5c:d8:6e:61: 75:b5:86:97:95:fa:a8:a8:d8:cb:99:80:54:fe:01:6c:bb:6e: da:b7:fe:08:f3:0f:1f:a3:fa:13:a4:8e:91:81:04:b3:b7:d2: 24:2f:d2:98:d5:f7:09:55:c2:3b:1e:fc:3d:27:99:61:1c:4a: 05:53:2c:8f:c0:0e:28:3e:3e:01:fc:e1:9b:a2:6d:b7:48:02: df:e9:a5:6b:4c:0f:f2:81:ea:f9:c6:70:93:0d:e3:82:57:34: d4:68:ab:8d:53:80:41:df:ea:9c:68:a0:22:a3:b2:5a:35:c9: 39:09:2f:bf:7e:3e:9e:89:e5:85:e1:11:73:55:a5:e2:e9:c7: 9e:30:e8:24:48:03:84:b9:20:61:a1:25:f3:37:44:36:02:4e: 61:5d:17:6c:c7:7f:80:88:91:7e:5a:ec:18:3a:6b:d3:71:db: ba:88:18:90:55:67:7b:58:9c:af:cb:87:09:93:e6:5e:2d:75: 58:5f:c4:4b:4b:e0:6d:68:04:6b:12:43:90:ab:3c:08:96:ce: e4:d2:01:78:8b:96:6d:65:6e:4e:38:0f:b7:61:56:ff:02:f3: dc:1e:dd:d2:49:38:ac:d9:e8:b1:1c:35:b2:fd:19:2b:c2:fe: cf:46:c8:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMwMEYxMTAvBgNVBAUTKERCRUVFQkMyNUE3QTlCOUI2NzVBMDRFMkY0MjFFRkU0 NkVBNzI1MjAwHhcNMjUwODIzMDAyNDI3WhcNMjUwODMwMDAyNDI3WjAYMRYwFAYD VQQDEw02OGE5MGEzYi00MTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0vJQVola/y8JBhVZymsI76m7ZrTZtOWlr4uUNLvMYWQV6kCqFKz/WKlNBRd6 Wro7Mt6tLl10OZU1zbTotOvUs3IIQVmdLUjnElxYkwsd0i6YG3lXRphqT6333oz0 /zi6dkKHAZJdnruyHkNY2Fj+7mo2XJZzSfpRwvwa4taQ1XzZj5Sp2L44STGo7Ujq J3DrlkDZP8gS1Disa1RKV+VMK310KIqVrEsHqhkD4K9Z5a4r7h/FiXJUpCjGAwD+ JLSJx6nSQpMavqgpJ7TjYlOoHQgM4Vb6k6D89i2arQQczq5u8RgbPeGK+oFUaKVR o0zr7i/p2A6B3/K4Ue5xceiq8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMG5254i r6sxchN+/2vfcsLf6pljMB8GA1UdIwQYMBaAFNvu68JaepubZ1oE4vQh7+RupyUg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzAwRi8xQUQ1QUY3NDVE OTExMUVDOUFGQjhEM0RDNEY5QUUwMi8yLTdyd2xwNm01dG5XZ1RpOUNIdjVHNm5K U0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItN3J3bHA2bTV0bldnVGk5Q0h2NUc2bkpTQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzAwRi8xQUQ1QUY3NDVEOTExMUVDOUFGQjhEM0RDNEY5QUUwMi8yLTdyd2xwNm01 dG5XZ1RpOUNIdjVHNm5KU0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQidl5+Vc60k8rL164XlzYbmF1tYaXlfqoqNjLmYBU/gFsu27at/4I 8w8fo/oTpI6RgQSzt9IkL9KY1fcJVcI7Hvw9J5lhHEoFUyyPwA4oPj4B/OGbom23 SALf6aVrTA/yger5xnCTDeOCVzTUaKuNU4BB3+qcaKAio7JaNck5CS+/fj6eieWF 4RFzVaXi6ceeMOgkSAOEuSBhoSXzN0Q2Ak5hXRdsx3+AiJF+WuwYOmvTcdu6iBiQ VWd7WJyvy4cJk+ZeLXVYX8RLS+BtaARrEkOQqzwIls7k0gF4i5ZtZW5OOA+3YVb/ AvPcHt3SSTis2eixHDWy/Rkrwv7PRshu -----END CERTIFICATE-----Generated at Sat Aug 23 18:44:37 2025 by rpki-client