$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft File: D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft (raw, json) Hash identifier: kcDDYirSHVFGVTzRezWsSflbTvP0EQ107B2xruqhsJA= Subject key identifier: 49:4F:1E:62:E0:83:6C:81:BE:9C:0C:BC:F7:76:49:1A:B1:52:09:3E Authority key identifier: 0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 Certificate issuer: /CN=A91A7C68/serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Certificate serial: 01FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft Manifest number: 01F2 Signing time: Sat 23 Aug 2025 02:44:49 +0000 Manifest this update: Sat 23 Aug 2025 02:44:49 +0000 Manifest next update: Sat 30 Aug 2025 02:44:49 +0000 Files and hashes: 1: D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl (hash: NIGUuNy3p2Uu5E/4eK1erHeNn+ztVaCXyC8bGXckdHQ=) 2: BC72661A972911ED8CBCA476C4F9AE02.roa (hash: 50hi2vNUebBRUz8ceA03XMTbcW3zeli1X+BmJSriA30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:44:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 511 (0x1ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7C68, serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Validity Not Before: Aug 23 02:44:49 2025 GMT Not After : Aug 30 02:44:49 2025 GMT Subject: CN=68a92b21-93e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ac:7e:e2:35:ec:2f:4d:d4:7b:82:bc:d6:79: 16:40:c2:22:81:ca:e0:d3:0f:fb:bd:39:d2:c8:b3: eb:e5:68:e8:1f:a4:49:6a:2a:7e:f7:fa:df:f1:95: cc:b6:cd:80:f9:f0:b5:ec:9a:5a:ee:d9:7c:46:29: 3c:67:48:93:5a:74:4d:c3:9b:d3:78:d1:e7:7a:3c: b1:ec:fb:4d:c5:07:c7:2c:f4:9a:ca:aa:6c:af:ec: fd:f9:28:1f:e8:37:5e:cb:bc:19:c5:ca:ed:2d:b1: a5:af:19:9a:c6:33:49:c0:ad:bd:84:55:0f:4c:e1: db:72:f5:8e:5f:23:69:30:03:99:6f:d4:a9:20:90: 97:cc:7d:52:48:42:c3:4f:00:a7:bf:c0:a4:3a:da: eb:ba:43:b1:92:ef:5d:74:6a:63:d3:de:2c:57:35: ae:4f:1b:37:17:78:6d:82:73:d2:f0:d8:cb:90:03: 05:0f:54:17:67:be:92:54:1c:b0:fa:f6:da:f1:cf: 48:c6:47:f3:0c:bf:57:fa:b7:bc:cb:93:22:4e:ef: 4e:6e:d0:4a:72:14:8a:56:d8:8a:34:95:24:58:48: 22:a2:14:d7:a8:f6:fd:61:2d:f6:da:28:f4:ec:ab: 72:df:21:ba:79:cc:73:2c:aa:5b:56:0c:c3:c3:fa: 9d:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:4F:1E:62:E0:83:6C:81:BE:9C:0C:BC:F7:76:49:1A:B1:52:09:3E X509v3 Authority Key Identifier: keyid:0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:bb:c3:b9:5d:25:c2:f6:a3:b5:63:34:db:86:7d:d1:7e:e8: 81:a3:68:28:28:db:11:2c:70:48:dd:a6:66:05:40:34:18:ec: b1:e9:61:29:28:47:37:04:b9:c4:5d:15:43:7d:2d:21:9b:c8: 1d:77:d2:81:e1:75:c6:ad:e7:c2:61:19:16:1b:36:eb:5d:c6: fb:c9:2e:a7:ab:ad:3b:e0:25:e7:92:36:cb:e5:c8:07:87:9e: f8:40:55:ac:e0:0e:c8:7f:47:f6:ec:52:5a:90:f4:22:60:87: ff:06:8f:6a:9f:d6:68:74:8b:f1:79:03:7e:08:b4:38:2e:d8: eb:2f:e1:d9:37:c6:cf:ba:b6:1a:02:6b:41:36:ac:c3:cb:17: d8:2f:24:0a:78:8b:31:52:25:68:35:61:36:70:e8:ba:4d:8a: 5b:4d:e7:0b:f6:ab:68:6b:2b:a4:e3:31:f3:c3:1d:a4:e4:ac: 2b:72:91:a6:8b:61:8c:10:ee:7a:2c:9e:d5:8a:9a:e8:81:da: b6:43:46:b2:82:8a:2a:56:0a:40:7f:29:8e:65:8c:34:1d:50: 1d:75:66:75:51:59:ac:ea:b8:76:f0:dc:a8:9b:a9:f5:88:c7: 04:7e:26:be:ac:f9:08:d0:28:c5:43:5a:52:65:57:10:6c:6c: c4:65:ab:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDNjgxMTAvBgNVBAUTKDBGNjI2QTMyNjRENkZFQ0NDQkZFQjJEOTlCMURCRjhB RkZFQzNCMzQwHhcNMjUwODIzMDI0NDQ5WhcNMjUwODMwMDI0NDQ5WjAYMRYwFAYD VQQDEw02OGE5MmIyMS05M2U0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv6x+4jXsL03Ue4K81nkWQMIigcrg0w/7vTnSyLPr5WjoH6RJaip+9/rf8ZXM ts2A+fC17Jpa7tl8Rik8Z0iTWnRNw5vTeNHnejyx7PtNxQfHLPSayqpsr+z9+Sgf 6Ddey7wZxcrtLbGlrxmaxjNJwK29hFUPTOHbcvWOXyNpMAOZb9SpIJCXzH1SSELD TwCnv8CkOtrrukOxku9ddGpj094sVzWuTxs3F3htgnPS8NjLkAMFD1QXZ76SVByw +vba8c9IxkfzDL9X+re8y5MiTu9ObtBKchSKVtiKNJUkWEgiohTXqPb9YS322ij0 7Kty3yG6ecxzLKpbVgzDw/qdBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFElPHmLg g2yBvpwMvPd2SRqxUgk+MB8GA1UdIwQYMBaAFA9iajJk1v7My/6y2Zsdv4r/7Ds0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0M2OC80MjM5ODZGNjk3 MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19zekxfckxabXgyX2l2X3NP elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QySnFNbVRXX3N6TF9yTFpteDJfaXZfc096US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0M2OC80MjM5ODZGNjk3MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19z ekxfckxabXgyX2l2X3NPelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6u8O5XSXC9qO1YzTbhn3RfuiBo2goKNsRLHBI3aZmBUA0GOyx6WEp KEc3BLnEXRVDfS0hm8gdd9KB4XXGrefCYRkWGzbrXcb7yS6nq6074CXnkjbL5cgH h574QFWs4A7If0f27FJakPQiYIf/Bo9qn9ZodIvxeQN+CLQ4LtjrL+HZN8bPurYa AmtBNqzDyxfYLyQKeIsxUiVoNWE2cOi6TYpbTecL9qtoayuk4zHzwx2k5KwrcpGm i2GMEO56LJ7Viprogdq2Q0aygooqVgpAfymOZYw0HVAddWZ1UVms6rh28Nyom6n1 iMcEfia+rPkI0CjFQ1pSZVcQbGzEZatG -----END CERTIFICATE-----Generated at Sun Aug 24 00:16:52 2025 by rpki-client