$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.mft File: jNGQoUOqLh5IcwOxPcBT7Re86x4.mft (raw, json) Hash identifier: DkAoTqxgtobTEZr2AKzAOMO+uoaEQ4X4QfutUyGXUI0= Subject key identifier: 2C:A7:24:98:64:29:38:5F:F0:58:67:F0:7F:77:03:99:DD:BC:4B:9A Authority key identifier: 8C:D1:90:A1:43:AA:2E:1E:48:73:03:B1:3D:C0:53:ED:17:BC:EB:1E Certificate issuer: /CN=A91BDF2B/serialNumber=8CD190A143AA2E1E487303B13DC053ED17BCEB1E Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNGQoUOqLh5IcwOxPcBT7Re86x4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.mft Manifest number: 2A Signing time: Sat 23 Aug 2025 07:58:46 +0000 Manifest this update: Sat 23 Aug 2025 07:58:45 +0000 Manifest next update: Sat 30 Aug 2025 07:58:45 +0000 Files and hashes: 1: jNGQoUOqLh5IcwOxPcBT7Re86x4.crl (hash: THKiIacpbbnEcbkxJzrwQHFYin7JPGU2zpBCWO1UKxI=) 2: 653C22F441C311F0999A9935C4F9AE02.roa (hash: nMBBR9lD5xYiXfIobFM2SlzdnRZMD+0VZpUbgMpJGzg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.crl rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNGQoUOqLh5IcwOxPcBT7Re86x4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:58:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDF2B, serialNumber=8CD190A143AA2E1E487303B13DC053ED17BCEB1E Validity Not Before: Aug 23 07:58:45 2025 GMT Not After : Aug 30 07:58:45 2025 GMT Subject: CN=68a974b6-1b1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ab:71:a6:c2:9a:82:ad:48:8c:96:b1:be:6f: 58:7d:4f:f7:f6:71:d6:f8:f6:12:28:3b:2a:29:c1: da:91:87:3d:96:f6:38:da:a1:9c:a6:5c:d2:7e:5e: d5:82:31:a2:b1:13:86:20:36:bb:a1:f2:7a:4d:ad: ff:d9:0d:89:bb:29:d3:ad:5a:74:b6:32:1c:47:b3: ee:a6:77:c0:f3:b0:23:79:e3:12:f2:74:04:d8:32: 15:21:72:89:76:b6:41:be:99:f7:2a:8e:2d:6a:1e: 2d:88:5f:7e:c7:0c:17:70:c3:1b:7b:09:43:88:bf: 1b:33:28:16:9f:5c:2b:ad:d6:f6:6a:c9:1f:20:86: 56:9d:0e:f3:ec:36:25:5d:c2:12:d2:6e:eb:19:6c: 2e:7d:4b:0b:50:f2:e2:38:4a:33:5a:a4:68:63:45: c4:b3:2c:f1:dc:c9:8b:0d:eb:2f:f8:c7:5c:6d:31: a4:8c:6a:99:f6:11:93:bb:77:69:fc:6c:24:e0:6e: ff:69:2c:83:4e:03:cb:57:8f:a2:da:13:b5:2d:67: 3d:3c:63:21:78:1d:af:31:cc:a0:e1:42:9c:f6:45: 51:b2:8a:dc:5e:ff:cc:43:ba:a6:e3:42:8f:2a:ea: 05:40:fd:3c:f2:9b:49:96:1d:96:22:8d:2c:a5:fe: 54:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:A7:24:98:64:29:38:5F:F0:58:67:F0:7F:77:03:99:DD:BC:4B:9A X509v3 Authority Key Identifier: keyid:8C:D1:90:A1:43:AA:2E:1E:48:73:03:B1:3D:C0:53:ED:17:BC:EB:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNGQoUOqLh5IcwOxPcBT7Re86x4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:cc:9c:cf:54:ae:c7:39:61:7e:7d:bf:63:64:62:d4:82:eb: 49:20:e7:85:b1:77:cf:8a:19:73:33:0f:a2:d3:44:5a:ea:36: 06:b2:95:92:cb:c1:ce:cc:f1:2f:7e:30:61:f7:00:62:5e:ee: 20:78:8f:7f:a8:3d:a4:7b:33:1e:d7:6e:9d:c4:4d:93:3a:31: 6c:a1:25:0e:69:78:8c:53:ae:0b:5f:d1:29:f9:9d:54:ac:9b: 04:97:f4:05:fa:f7:7d:f3:fc:f8:88:e0:e5:8e:bc:70:df:fd: a4:e3:39:86:22:b4:56:ad:02:b3:16:5b:ea:d3:af:b4:56:9e: 01:ad:86:c7:16:e8:2f:ed:c6:1d:be:59:96:14:05:5f:ff:8f: a1:25:1b:13:39:4e:8b:26:03:0c:f2:e9:f5:92:69:33:9c:86: 32:3a:ac:3a:83:00:74:ff:85:1e:47:0f:bd:38:03:08:83:2b: 43:3d:13:0e:3b:0f:5d:ea:4d:7d:f6:b7:f7:9c:03:e4:68:d3: 5d:b4:b5:29:84:bb:6e:11:0f:9a:4b:c3:c3:6a:28:57:54:2c: 9d:39:8d:3b:c1:47:c5:d9:bf:ee:cb:ec:0e:60:9b:6b:69:7a: c4:b5:38:d8:70:04:59:00:27:c1:f1:d2:c6:00:aa:d8:61:ca: f1:19:a7:4f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC REYyQjExMC8GA1UEBRMoOENEMTkwQTE0M0FBMkUxRTQ4NzMwM0IxM0RDMDUzRUQx N0JDRUIxRTAeFw0yNTA4MjMwNzU4NDVaFw0yNTA4MzAwNzU4NDVaMBgxFjAUBgNV BAMTDTY4YTk3NGI2LTFiMWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2q3GmwpqCrUiMlrG+b1h9T/f2cdb49hIoOyopwdqRhz2W9jjaoZymXNJ+XtWC MaKxE4YgNruh8npNrf/ZDYm7KdOtWnS2MhxHs+6md8DzsCN54xLydATYMhUhcol2 tkG+mfcqji1qHi2IX37HDBdwwxt7CUOIvxszKBafXCut1vZqyR8ghladDvPsNiVd whLSbusZbC59SwtQ8uI4SjNapGhjRcSzLPHcyYsN6y/4x1xtMaSMapn2EZO7d2n8 bCTgbv9pLINOA8tXj6LaE7UtZz08YyF4Ha8xzKDhQpz2RVGyitxe/8xDuqbjQo8q 6gVA/Tzym0mWHZYijSyl/lSdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQULKckmGQp OF/wWGfwf3cDmd28S5owHwYDVR0jBBgwFoAUjNGQoUOqLh5IcwOxPcBT7Re86x4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJERjJCLzZDMkI3QjFDNDFC QjExRjBCNDU2RDg1N0M0RjlBRTAyL2pOR1FvVU9xTGg1SWN3T3hQY0JUN1JlODZ4 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvak5HUW9VT3FMaDVJY3dPeFBjQlQ3UmU4Nng0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJE RjJCLzZDMkI3QjFDNDFCQjExRjBCNDU2RDg1N0M0RjlBRTAyL2pOR1FvVU9xTGg1 SWN3T3hQY0JUN1JlODZ4NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKjMnM9Ursc5YX59v2NkYtSC60kg54Wxd8+KGXMzD6LTRFrqNgaylZLL wc7M8S9+MGH3AGJe7iB4j3+oPaR7Mx7Xbp3ETZM6MWyhJQ5peIxTrgtf0Sn5nVSs mwSX9AX6933z/PiI4OWOvHDf/aTjOYYitFatArMWW+rTr7RWngGthscW6C/txh2+ WZYUBV//j6ElGxM5TosmAwzy6fWSaTOchjI6rDqDAHT/hR5HD704AwiDK0M9Ew47 D13qTX32t/ecA+Ro0120tSmEu24RD5pLw8NqKFdULJ05jTvBR8XZv+7L7A5gm2tp esS1ONhwBFkAJ8Hx0sYAqthhyvEZp08= -----END CERTIFICATE-----Generated at Sun Aug 24 05:01:58 2025 by rpki-client