$ rpki-client -vvf rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft File: 2en59z7k9bHN8XYsLfODKVCja30.mft (raw, json) Hash identifier: EBngeYYzB7uxmwK+CfGgKxkH0bWISxSUlFR7hWuXXnI= Subject key identifier: 9E:9B:21:B8:10:4A:32:24:1C:7F:77:84:2C:14:C1:F0:FF:55:FD:7C Authority key identifier: D9:E9:F9:F7:3E:E4:F5:B1:CD:F1:76:2C:2D:F3:83:29:50:A3:6B:7D Certificate issuer: /CN=A91AACB2/serialNumber=D9E9F9F73EE4F5B1CDF1762C2DF3832950A36B7D Certificate serial: 34BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft Manifest number: 34B6 Signing time: Fri 22 Aug 2025 14:59:53 +0000 Manifest this update: Fri 22 Aug 2025 14:59:52 +0000 Manifest next update: Fri 29 Aug 2025 14:59:52 +0000 Files and hashes: 1: 2en59z7k9bHN8XYsLfODKVCja30.crl (hash: ohV+SxKGBnDscfv7WjWD6nZsYzBjrkpJgVRlGmJlIpg=) 2: 76B5C744B45E11EAB71DF94AC4F9AE02.roa (hash: RzsyMG8grNRl/TU/HKZlXJ7ZiLnl0fu14E8Z0lJpa0Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.crl rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:59:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13500 (0x34bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AACB2, serialNumber=D9E9F9F73EE4F5B1CDF1762C2DF3832950A36B7D Validity Not Before: Aug 22 14:59:52 2025 GMT Not After : Aug 29 14:59:52 2025 GMT Subject: CN=68a885e8-afea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:16:95:29:93:c5:6c:62:a1:0f:f5:ab:37:9e: b3:44:09:ea:73:ea:f7:bf:96:a9:cc:0a:48:0b:cd: 3f:02:ab:07:33:53:20:b4:ad:4b:99:16:6c:18:f1: 63:fe:a1:c5:74:7c:37:2b:67:44:54:e5:b3:89:f4: 6a:cf:75:b4:b7:a6:8e:a3:33:2f:d0:cc:ce:3f:7b: 64:52:90:01:2f:9d:da:23:e1:f5:c4:ea:a8:3c:83: 02:fb:a1:34:37:ca:5c:7b:ac:a8:f2:6b:f8:0d:24: 0b:5b:9d:2b:8d:d1:2d:3f:93:18:e0:50:82:90:c8: 62:da:f6:d7:61:b0:ab:31:96:51:13:eb:77:57:c0: c3:fb:da:1e:5b:7b:c3:93:9b:95:16:89:25:ab:cb: 1f:26:9d:d0:85:45:a8:85:1d:b6:65:22:66:0a:72: 19:6d:2c:23:2f:57:2b:8b:db:40:1c:45:97:bb:6b: 89:f6:9b:d7:3a:43:b5:b3:0d:4c:71:3e:ab:4a:4a: b7:3c:28:e3:54:bd:dd:c5:48:48:f7:84:1b:d3:ea: 74:c8:99:9c:93:f0:7c:46:e2:b5:66:91:5a:c8:12: a9:e8:f0:18:43:c2:d9:70:8e:a5:37:cc:11:07:d5: 46:8c:db:19:bb:91:78:d0:0a:c2:70:c9:0e:38:34: 89:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:9B:21:B8:10:4A:32:24:1C:7F:77:84:2C:14:C1:F0:FF:55:FD:7C X509v3 Authority Key Identifier: keyid:D9:E9:F9:F7:3E:E4:F5:B1:CD:F1:76:2C:2D:F3:83:29:50:A3:6B:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:4c:06:29:2d:11:af:2e:e6:18:54:c3:cd:c0:b8:60:e5:9c: b6:df:b3:aa:61:47:36:18:de:91:c1:1a:e8:82:35:82:6d:b7: 08:00:e8:d3:34:84:59:de:69:b0:5d:c9:df:84:18:12:b6:73: 20:b4:3f:75:6b:47:9f:d7:8a:08:9f:22:5a:57:f0:3e:04:cf: ac:a1:e5:56:c5:f6:fd:1c:5a:08:e8:d7:fc:92:ac:38:94:fd: e4:f8:4c:9a:d3:79:c7:84:c6:54:4e:87:09:bf:ee:f5:b0:73: 16:28:4c:c3:70:ab:b3:35:b8:36:10:ce:0c:ef:26:2f:54:93: 94:6b:6e:99:f5:75:a5:26:68:a8:16:df:4a:e7:d1:87:27:14: 8a:8b:d0:9e:34:57:5b:43:d1:0f:d0:43:f0:c9:72:7d:0d:be: 1a:03:68:80:d9:12:3a:c8:2e:a8:1b:86:cc:e2:a8:e0:14:0f: 5e:a2:00:a9:8e:57:61:78:55:99:e9:57:8a:56:34:e6:2d:43: a7:da:03:fc:cc:00:e7:cf:3d:75:c3:31:30:cd:84:2e:d8:ce: f4:13:91:48:ed:38:a0:e6:72:4a:cd:d7:fc:35:c4:15:d8:b0: 23:15:67:58:01:08:98:7c:63:a5:51:a6:86:c1:e5:42:0c:43: d2:ab:f6:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFDQjIxMTAvBgNVBAUTKEQ5RTlGOUY3M0VFNEY1QjFDREYxNzYyQzJERjM4MzI5 NTBBMzZCN0QwHhcNMjUwODIyMTQ1OTUyWhcNMjUwODI5MTQ1OTUyWjAYMRYwFAYD VQQDEw02OGE4ODVlOC1hZmVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0RaVKZPFbGKhD/WrN56zRAnqc+r3v5apzApIC80/AqsHM1MgtK1LmRZsGPFj /qHFdHw3K2dEVOWzifRqz3W0t6aOozMv0MzOP3tkUpABL53aI+H1xOqoPIMC+6E0 N8pce6yo8mv4DSQLW50rjdEtP5MY4FCCkMhi2vbXYbCrMZZRE+t3V8DD+9oeW3vD k5uVFoklq8sfJp3QhUWohR22ZSJmCnIZbSwjL1cri9tAHEWXu2uJ9pvXOkO1sw1M cT6rSkq3PCjjVL3dxUhI94Qb0+p0yJmck/B8RuK1ZpFayBKp6PAYQ8LZcI6lN8wR B9VGjNsZu5F40ArCcMkOODSJRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ6bIbgQ SjIkHH93hCwUwfD/Vf18MB8GA1UdIwQYMBaAFNnp+fc+5PWxzfF2LC3zgylQo2t9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUNCMi8zN0Q1QTNERTFE OUMxMUUyODkyRThCOEEwOEIwMkNEMi8yZW41OXo3azliSE44WFlzTGZPREtWQ2ph MzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJlbjU5ejdrOWJITjhYWXNMZk9ES1ZDamEzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUNCMi8zN0Q1QTNERTFEOUMxMUUyODkyRThCOEEwOEIwMkNEMi8yZW41OXo3azli SE44WFlzTGZPREtWQ2phMzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZTAYpLRGvLuYYVMPNwLhg5Zy237OqYUc2GN6RwRrogjWCbbcIAOjT NIRZ3mmwXcnfhBgStnMgtD91a0ef14oInyJaV/A+BM+soeVWxfb9HFoI6Nf8kqw4 lP3k+Eya03nHhMZUTocJv+71sHMWKEzDcKuzNbg2EM4M7yYvVJOUa26Z9XWlJmio Ft9K59GHJxSKi9CeNFdbQ9EP0EPwyXJ9Db4aA2iA2RI6yC6oG4bM4qjgFA9eogCp jldheFWZ6VeKVjTmLUOn2gP8zADnzz11wzEwzYQu2M70E5FI7Tig5nJKzdf8NcQV 2LAjFWdYAQiYfGOlUaaGweVCDEPSq/Zy -----END CERTIFICATE-----Generated at Sun Aug 24 04:46:11 2025 by rpki-client