$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft File: r2ctqMXR1sgNUGF4yefLdE9uOOY.mft (raw, json) Hash identifier: 3jm794ojDiHaQQlCyCWbtDaFqNxCZtCXc1kMmkBueRM= Subject key identifier: CE:A5:0A:3E:20:56:FB:FB:C9:0D:6E:B1:31:3B:84:D9:D6:AF:88:E9 Authority key identifier: AF:67:2D:A8:C5:D1:D6:C8:0D:50:61:78:C9:E7:CB:74:4F:6E:38:E6 Certificate issuer: /CN=A91A6F2D/serialNumber=AF672DA8C5D1D6C80D506178C9E7CB744F6E38E6 Certificate serial: 90 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft Manifest number: 8E Signing time: Fri 22 Aug 2025 23:05:00 +0000 Manifest this update: Fri 22 Aug 2025 23:04:59 +0000 Manifest next update: Fri 29 Aug 2025 23:04:59 +0000 Files and hashes: 1: r2ctqMXR1sgNUGF4yefLdE9uOOY.crl (hash: +2Y8eRH3ieOZ5+mxSadsbZ1DKicNnwuG4YX9rqH9XP0=) 2: FBE0AB56AC6511EFAEAA8A3CC4F9AE02.roa (hash: 05N/6Qhw5iJe1Qr/JCmwvRl4veGMACl1Zh2wsIyWrXw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.crl rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:04:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6F2D, serialNumber=AF672DA8C5D1D6C80D506178C9E7CB744F6E38E6 Validity Not Before: Aug 22 23:04:59 2025 GMT Not After : Aug 29 23:04:59 2025 GMT Subject: CN=68a8f79c-bd5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:30:b7:b0:83:fb:f5:29:3b:21:e9:95:8a:82: 86:dd:45:70:52:4d:66:7b:92:59:57:5d:e2:9c:54: 25:b9:f4:26:0d:51:50:fa:48:d7:e0:ea:a1:42:c7: c4:e6:62:3e:37:7f:4f:73:e9:22:df:18:da:15:39: 93:24:a5:01:38:14:44:41:77:c3:de:72:83:e4:df: 1e:69:a1:47:91:2b:e6:61:f4:28:6f:cd:20:53:00: 82:23:78:e2:ea:68:dd:75:75:c3:af:e8:2d:1d:1e: ba:2f:0d:05:bb:d9:76:3a:f1:4d:85:71:a8:b3:ca: 6b:89:4c:23:4e:0d:9a:37:11:5b:f4:2b:c0:4c:b0: d5:2b:26:5f:d8:62:e1:3f:1d:42:36:7a:c0:2e:6e: 6f:7e:d6:70:84:bd:05:d9:de:31:a6:db:f0:d3:a3: 96:60:af:49:ef:7a:8e:35:b7:e1:d0:87:85:e4:92: f2:37:77:f6:c8:fe:41:a5:9f:9e:56:7f:4a:ef:68: 19:c2:ee:3e:3b:2d:ae:e7:2a:53:a7:ea:31:5d:00: 85:a2:75:b4:72:a1:12:ae:a4:4c:03:3b:5e:d4:50: e6:9c:cb:f4:f2:db:92:4b:50:0d:e8:79:40:d8:0a: 6a:01:22:f2:a1:25:95:45:d9:f6:5d:e7:1b:3a:28: f5:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:A5:0A:3E:20:56:FB:FB:C9:0D:6E:B1:31:3B:84:D9:D6:AF:88:E9 X509v3 Authority Key Identifier: keyid:AF:67:2D:A8:C5:D1:D6:C8:0D:50:61:78:C9:E7:CB:74:4F:6E:38:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:78:cf:f6:d5:58:25:30:64:66:63:61:4b:57:c2:2c:32:c6: 42:e2:e8:13:7d:86:af:92:f8:66:9d:b9:77:c3:25:08:28:e9: d6:ec:fe:c2:d7:54:51:fc:2f:48:6b:b3:ba:aa:ec:d0:b2:96: 60:7e:91:d2:07:ff:f6:ce:ae:52:13:22:bd:85:53:34:38:47: 94:dd:c3:9b:08:ed:48:95:c8:11:dd:cf:0d:00:53:1b:4e:f7: 8e:8b:1b:cf:ef:73:a5:57:c8:67:bb:95:b6:c7:4a:c1:d4:7d: fa:d3:32:78:37:4e:ff:7a:55:8b:20:46:4b:ec:52:9c:d3:31: 90:c3:5f:07:6f:13:e1:e0:d1:60:2d:d3:44:03:fc:cf:74:ed: 39:c5:ba:00:c2:86:a3:22:89:3b:f5:e4:bb:3c:c3:48:82:7a: e1:09:5c:50:15:ee:4d:61:99:a6:8a:04:98:f5:3a:91:4f:cc: 67:fb:5e:2d:62:ce:2e:c4:c0:4a:4b:ff:7a:49:a6:4b:27:5a: 6a:d6:98:7a:0f:27:19:fc:e7:b2:ae:6d:b2:33:ad:cd:58:03: dd:6c:9f:73:8c:83:cd:90:57:58:21:30:e4:4b:5a:2b:5d:5b: c6:79:7f:10:4f:41:87:a2:26:28:c1:94:74:ab:57:87:63:3a: ec:10:19:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZGMkQxMTAvBgNVBAUTKEFGNjcyREE4QzVEMUQ2QzgwRDUwNjE3OEM5RTdDQjc0 NEY2RTM4RTYwHhcNMjUwODIyMjMwNDU5WhcNMjUwODI5MjMwNDU5WjAYMRYwFAYD VQQDEw02OGE4Zjc5Yy1iZDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5TC3sIP79Sk7IemVioKG3UVwUk1me5JZV13inFQlufQmDVFQ+kjX4OqhQsfE 5mI+N39Pc+ki3xjaFTmTJKUBOBREQXfD3nKD5N8eaaFHkSvmYfQob80gUwCCI3ji 6mjddXXDr+gtHR66Lw0Fu9l2OvFNhXGos8priUwjTg2aNxFb9CvATLDVKyZf2GLh Px1CNnrALm5vftZwhL0F2d4xptvw06OWYK9J73qONbfh0IeF5JLyN3f2yP5BpZ+e Vn9K72gZwu4+Oy2u5ypTp+oxXQCFonW0cqESrqRMAzte1FDmnMv08tuSS1AN6HlA 2ApqASLyoSWVRdn2XecbOij13wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM6lCj4g Vvv7yQ1usTE7hNnWr4jpMB8GA1UdIwQYMBaAFK9nLajF0dbIDVBheMnny3RPbjjm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkYyRC82RjgyMTE3OEFC ODgxMUVGODBDNzVBNzRDNEY5QUUwMi9yMmN0cU1YUjFzZ05VR0Y0eWVmTGRFOXVP T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3IyY3RxTVhSMXNnTlVHRjR5ZWZMZEU5dU9PWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkYyRC82RjgyMTE3OEFCODgxMUVGODBDNzVBNzRDNEY5QUUwMi9yMmN0cU1YUjFz Z05VR0Y0eWVmTGRFOXVPT1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAeM/21VglMGRmY2FLV8IsMsZC4ugTfYavkvhmnbl3wyUIKOnW7P7C 11RR/C9Ia7O6quzQspZgfpHSB//2zq5SEyK9hVM0OEeU3cObCO1IlcgR3c8NAFMb TveOixvP73OlV8hnu5W2x0rB1H360zJ4N07/elWLIEZL7FKc0zGQw18HbxPh4NFg LdNEA/zPdO05xboAwoajIok79eS7PMNIgnrhCVxQFe5NYZmmigSY9TqRT8xn+14t Ys4uxMBKS/96SaZLJ1pq1ph6DycZ/Oeyrm2yM63NWAPdbJ9zjIPNkFdYITDkS1or XVvGeX8QT0GHoiYowZR0q1eHYzrsEBk4 -----END CERTIFICATE-----Generated at Sat Aug 23 19:37:22 2025 by rpki-client