$ rpki-client -vvf rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft File: -c2wYYjVT9E3MDC5IMjkRdstPVc.mft (raw, json) Hash identifier: GjTl+vL3gLAA8bIIoPu2189zYVPNHKDddl7T89LzyNE= Subject key identifier: 7E:71:E1:6A:54:A2:60:98:5F:6A:8D:D0:46:73:09:7E:57:72:5E:1A Authority key identifier: F9:CD:B0:61:88:D5:4F:D1:37:30:30:B9:20:C8:E4:45:DB:2D:3D:57 Certificate issuer: /CN=A91A99F8/serialNumber=F9CDB06188D54FD1373030B920C8E445DB2D3D57 Certificate serial: 57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-c2wYYjVT9E3MDC5IMjkRdstPVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft Manifest number: 56 Signing time: Sat 23 Aug 2025 07:31:23 +0000 Manifest this update: Sat 23 Aug 2025 07:31:23 +0000 Manifest next update: Sat 30 Aug 2025 07:31:23 +0000 Files and hashes: 1: -c2wYYjVT9E3MDC5IMjkRdstPVc.crl (hash: n6hvWzv4W/mWekQHXPvRc5OPcRyYbWOWriT4Y1KUa3g=) 2: 2C85E816062011F0B0CCFB73C4F9AE02.roa (hash: 8aYqOb0WxmeZs6QAtf0y7rudLC0LQSdIL+LI3T4/O2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.crl rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-c2wYYjVT9E3MDC5IMjkRdstPVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:31:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 87 (0x57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A99F8, serialNumber=F9CDB06188D54FD1373030B920C8E445DB2D3D57 Validity Not Before: Aug 23 07:31:23 2025 GMT Not After : Aug 30 07:31:23 2025 GMT Subject: CN=68a96e4b-4fd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ee:30:98:5e:41:11:e1:c0:59:5b:1e:1d:94: 24:0c:c1:65:47:f4:1e:fe:d1:01:d3:d1:0b:dc:52: f0:ec:54:37:db:dd:ca:8d:0d:b7:14:83:1f:46:c2: 27:d2:68:c3:db:bb:3f:5c:fc:1a:f8:da:84:16:e3: bd:76:ba:03:70:68:9a:15:f2:bb:11:56:6a:d8:ec: a2:b3:16:45:94:9d:12:a3:91:cf:2e:34:c0:db:b1: 1b:0d:b6:87:4c:28:9a:32:f1:59:59:8a:a3:8d:ea: e7:06:b2:39:49:f3:ef:b0:98:bf:8a:25:17:b8:5e: 3d:47:7d:13:ba:a2:56:6f:1f:af:5a:6d:1a:ba:8f: 2d:00:18:e9:a3:5e:43:87:36:df:cc:1a:28:49:4d: 95:c5:c7:9f:e2:0b:62:2d:5c:ac:82:b6:39:ba:9b: 29:fe:d0:b1:be:9a:0b:ec:b5:f4:da:cd:ce:2d:82: 58:1a:b9:05:9e:62:08:8e:70:fb:64:0d:3a:58:00: 7e:07:d3:00:71:83:9e:18:72:98:dc:6c:ae:60:9d: e1:46:19:82:89:37:90:58:55:20:03:21:86:eb:3d: a9:66:3c:9b:fe:e4:a9:ed:c8:9a:24:92:56:ee:79: b1:22:f1:53:9f:e8:24:96:a4:b8:4e:58:31:96:bf: 55:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:71:E1:6A:54:A2:60:98:5F:6A:8D:D0:46:73:09:7E:57:72:5E:1A X509v3 Authority Key Identifier: keyid:F9:CD:B0:61:88:D5:4F:D1:37:30:30:B9:20:C8:E4:45:DB:2D:3D:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-c2wYYjVT9E3MDC5IMjkRdstPVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:61:27:05:e6:f3:7e:4f:ee:03:4e:77:d0:7a:f3:3a:48:51: 06:9d:82:45:45:6d:49:d2:8f:80:e9:6d:b2:d6:34:1a:d8:66: c6:62:3f:8f:bd:3a:44:c5:99:76:66:9c:46:af:e0:f0:7d:94: 1e:62:ab:6d:67:37:8a:96:a7:bf:87:a5:30:0e:16:2d:37:e2: 28:ad:17:e0:99:5c:ad:05:60:70:65:cb:20:b5:ca:87:ed:bb: 0e:f4:47:a4:e6:3e:2e:69:8c:29:64:5f:ee:04:73:4a:aa:ea: af:a7:34:cc:95:59:bc:2d:37:0b:9f:d2:61:1f:69:5d:72:98: 3e:ab:87:80:6a:0e:df:d9:09:4d:36:ae:70:0d:40:22:52:04: 4f:42:e7:de:5d:4e:5a:bb:da:1e:b3:43:6f:0a:f5:40:89:1a: e0:b9:f0:22:95:dc:51:92:ca:b2:25:30:7a:a9:39:d6:b4:62: 80:c1:82:67:de:a7:bd:ff:18:48:3b:11:87:d1:58:31:6b:76: a0:e4:28:21:48:57:4d:74:e9:ad:8a:10:1b:85:97:bd:70:42: 95:73:5e:e8:1e:29:78:c5:b4:8e:a2:26:1c:7e:0b:3a:d5:56: b5:1d:79:ed:cb:43:3a:c4:80:28:6b:f2:6a:9f:93:5d:c2:35: 67:62:e6:3b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTlGODExMC8GA1UEBRMoRjlDREIwNjE4OEQ1NEZEMTM3MzAzMEI5MjBDOEU0NDVE QjJEM0Q1NzAeFw0yNTA4MjMwNzMxMjNaFw0yNTA4MzAwNzMxMjNaMBgxFjAUBgNV BAMTDTY4YTk2ZTRiLTRmZDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC57jCYXkER4cBZWx4dlCQMwWVH9B7+0QHT0QvcUvDsVDfb3cqNDbcUgx9GwifS aMPbuz9c/Br42oQW4712ugNwaJoV8rsRVmrY7KKzFkWUnRKjkc8uNMDbsRsNtodM KJoy8VlZiqON6ucGsjlJ8++wmL+KJRe4Xj1HfRO6olZvH69abRq6jy0AGOmjXkOH Nt/MGihJTZXFx5/iC2ItXKyCtjm6myn+0LG+mgvstfTazc4tglgauQWeYgiOcPtk DTpYAH4H0wBxg54YcpjcbK5gneFGGYKJN5BYVSADIYbrPalmPJv+5KntyJokklbu ebEi8VOf6CSWpLhOWDGWv1VDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUfnHhalSi YJhfao3QRnMJfldyXhowHwYDVR0jBBgwFoAU+c2wYYjVT9E3MDC5IMjkRdstPVcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5OUY4LzdBNEQ3Qjg4MDRB NzExRjBCNEQ3Mzk4MkM0RjlBRTAyLy1jMndZWWpWVDlFM01EQzVJTWprUmRzdFBW Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLWMyd1lZalZUOUUzTURDNUlNamtSZHN0UFZjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5 OUY4LzdBNEQ3Qjg4MDRBNzExRjBCNEQ3Mzk4MkM0RjlBRTAyLy1jMndZWWpWVDlF M01EQzVJTWprUmRzdFBWYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIFhJwXm835P7gNOd9B68zpIUQadgkVFbUnSj4DpbbLWNBrYZsZiP4+9 OkTFmXZmnEav4PB9lB5iq21nN4qWp7+HpTAOFi034iitF+CZXK0FYHBlyyC1yoft uw70R6TmPi5pjClkX+4Ec0qq6q+nNMyVWbwtNwuf0mEfaV1ymD6rh4BqDt/ZCU02 rnANQCJSBE9C595dTlq72h6zQ28K9UCJGuC58CKV3FGSyrIlMHqpOda0YoDBgmfe p73/GEg7EYfRWDFrdqDkKCFIV0106a2KEBuFl71wQpVzXugeKXjFtI6iJhx+CzrV VrUdee3LQzrEgChr8mqfk13CNWdi5js= -----END CERTIFICATE-----Generated at Sat Aug 23 17:10:11 2025 by rpki-client