$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft File: 2gE-F4NYyzWot2XJvAkK6c8cT74.mft (raw, json) Hash identifier: GqhfInSCpdEPayH6hoOgeGPEIZFABWaljRDSUlXUvMk= Subject key identifier: E3:5D:2D:59:BA:64:31:91:F4:4D:36:FF:BA:B3:F5:EE:53:3E:75:11 Authority key identifier: DA:01:3E:17:83:58:CB:35:A8:B7:65:C9:BC:09:0A:E9:CF:1C:4F:BE Certificate issuer: /CN=A91B2C88/serialNumber=DA013E178358CB35A8B765C9BC090AE9CF1C4FBE Certificate serial: 0665 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft Manifest number: 065D Signing time: Fri 22 Aug 2025 22:45:39 +0000 Manifest this update: Fri 22 Aug 2025 22:45:38 +0000 Manifest next update: Fri 29 Aug 2025 22:45:38 +0000 Files and hashes: 1: 2gE-F4NYyzWot2XJvAkK6c8cT74.crl (hash: UK88nSrCBooZ7/1qalTpx1pBn9/YumdMAhqzDHNypKI=) 2: 3C5E55F041A411ECA73C8C0EC4F9AE02.roa (hash: KMuh5ult9LiAce0tih+7IUcHZQamzlPDZPCJthZ1JAs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.crl rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:45:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1637 (0x665) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2C88, serialNumber=DA013E178358CB35A8B765C9BC090AE9CF1C4FBE Validity Not Before: Aug 22 22:45:38 2025 GMT Not After : Aug 29 22:45:38 2025 GMT Subject: CN=68a8f312-5b49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:60:9b:76:f8:66:de:30:76:a3:ca:05:f2:9e: bc:c8:3f:c5:cc:72:6d:10:0f:8c:64:f9:0d:4b:2e: 40:4d:41:5c:35:40:68:c3:33:8f:7a:50:ce:2f:4e: e4:f6:a5:f1:fe:ca:71:d7:bf:c6:1d:37:fd:ab:2f: 31:92:d1:1e:d1:c7:e3:ed:81:94:f9:70:42:f8:75: 5f:67:ad:06:dc:6c:1e:2d:93:f3:bb:a4:79:f4:7c: 85:a6:15:83:98:bc:4d:04:f8:a0:a0:25:f7:f1:15: f6:9b:87:09:e5:f9:55:bf:85:5e:33:a7:89:d7:d1: f3:f9:90:6b:88:6f:54:52:b6:b2:3c:31:6a:e4:e0: eb:29:66:d4:ce:19:ea:94:bb:e6:ee:86:f9:db:ac: d3:bc:57:f7:f6:f3:69:8b:8d:2d:90:f0:eb:cd:e3: f6:76:90:90:c3:a1:27:6e:b5:ce:c9:c1:33:10:bd: 81:a1:42:3c:86:0b:d5:1e:b5:19:94:5b:b6:c2:1a: 6d:6a:45:0b:77:40:83:e4:6f:9a:cf:ad:ab:aa:0c: 72:39:1a:d5:11:8c:04:5a:b6:b2:8a:2a:ea:79:d6: c3:7e:22:8d:fc:20:47:71:df:5f:9a:c7:18:dd:32: d7:4d:bc:fb:4a:6d:7b:47:6e:c6:20:4e:f6:04:1a: 02:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:5D:2D:59:BA:64:31:91:F4:4D:36:FF:BA:B3:F5:EE:53:3E:75:11 X509v3 Authority Key Identifier: keyid:DA:01:3E:17:83:58:CB:35:A8:B7:65:C9:BC:09:0A:E9:CF:1C:4F:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:98:f6:86:ac:1f:44:f1:15:2d:9b:75:a3:81:0f:ff:4b:80: b2:f4:a0:3d:09:b8:fe:17:6e:c1:75:bc:a6:62:31:d1:8b:0d: 85:d1:d9:77:40:79:c0:c1:a3:26:50:81:8c:93:d1:dd:d0:1a: 90:a9:43:bc:b6:1b:e8:0a:65:75:05:10:82:92:1c:17:ca:ae: f2:12:da:8e:38:36:8c:bf:45:3f:f4:60:c0:62:bb:9c:c0:01: a2:b3:fc:28:09:94:03:90:56:07:7b:ac:a3:f3:0e:fd:ed:90: a7:06:a4:20:15:be:5e:42:ac:db:85:3a:28:ea:03:bc:01:aa: 08:0c:ab:6f:50:e8:fb:81:f3:bb:f4:14:da:15:68:a1:37:68: c3:0a:3f:44:96:31:b8:aa:31:34:81:62:c1:5e:35:92:82:3b: 1f:fe:d1:87:56:a9:4e:24:8f:c4:52:e1:7f:f9:92:0e:d0:4b: 99:ed:bb:2c:36:b3:e7:da:eb:a0:d1:fd:db:ee:f8:3c:01:e7: e6:ac:7c:1a:38:0f:14:c5:f9:04:a5:a0:02:cc:71:d7:63:05: b7:cc:64:a3:e0:12:c6:b8:28:9b:7b:99:73:fb:40:ac:54:31: 82:e7:aa:00:f4:24:af:8b:3c:fe:66:51:7c:bd:3d:59:91:04: 8c:b2:f9:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJDODgxMTAvBgNVBAUTKERBMDEzRTE3ODM1OENCMzVBOEI3NjVDOUJDMDkwQUU5 Q0YxQzRGQkUwHhcNMjUwODIyMjI0NTM4WhcNMjUwODI5MjI0NTM4WjAYMRYwFAYD VQQDEw02OGE4ZjMxMi01YjQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2GCbdvhm3jB2o8oF8p68yD/FzHJtEA+MZPkNSy5ATUFcNUBowzOPelDOL07k 9qXx/spx17/GHTf9qy8xktEe0cfj7YGU+XBC+HVfZ60G3GweLZPzu6R59HyFphWD mLxNBPigoCX38RX2m4cJ5flVv4VeM6eJ19Hz+ZBriG9UUrayPDFq5ODrKWbUzhnq lLvm7ob526zTvFf39vNpi40tkPDrzeP2dpCQw6EnbrXOycEzEL2BoUI8hgvVHrUZ lFu2whptakULd0CD5G+az62rqgxyORrVEYwEWrayiirqedbDfiKN/CBHcd9fmscY 3TLXTbz7Sm17R27GIE72BBoCNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFONdLVm6 ZDGR9E02/7qz9e5TPnURMB8GA1UdIwQYMBaAFNoBPheDWMs1qLdlybwJCunPHE++ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkM4OC8yNDI5OURDQTk3 OEUxMUVCQkQ4MUIwNTVDNEY5QUUwMi8yZ0UtRjROWXl6V290MlhKdkFrSzZjOGNU NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnRS1GNE5ZeXpXb3QyWEp2QWtLNmM4Y1Q3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MkM4OC8yNDI5OURDQTk3OEUxMUVCQkQ4MUIwNTVDNEY5QUUwMi8yZ0UtRjROWXl6 V290MlhKdkFrSzZjOGNUNzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjmPaGrB9E8RUtm3WjgQ//S4Cy9KA9Cbj+F27BdbymYjHRiw2F0dl3 QHnAwaMmUIGMk9Hd0BqQqUO8thvoCmV1BRCCkhwXyq7yEtqOODaMv0U/9GDAYruc wAGis/woCZQDkFYHe6yj8w797ZCnBqQgFb5eQqzbhToo6gO8AaoIDKtvUOj7gfO7 9BTaFWihN2jDCj9EljG4qjE0gWLBXjWSgjsf/tGHVqlOJI/EUuF/+ZIO0EuZ7bss NrPn2uug0f3b7vg8AefmrHwaOA8UxfkEpaACzHHXYwW3zGSj4BLGuCibe5lz+0Cs VDGC56oA9CSvizz+ZlF8vT1ZkQSMsvmf -----END CERTIFICATE-----Generated at Sat Aug 23 20:35:24 2025 by rpki-client