$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.mft File: Sr2iSte9no2c77NZONCoeIBMYuQ.mft (raw, json) Hash identifier: SscxLdUCt0Xt0y0VjUNtab0pHEoljPMi6odkA+GQGdo= Subject key identifier: 8D:83:19:5F:E3:5E:43:7C:34:B3:BB:1F:F5:BB:52:66:26:4D:F1:D8 Authority key identifier: 4A:BD:A2:4A:D7:BD:9E:8D:9C:EF:B3:59:38:D0:A8:78:80:4C:62:E4 Certificate issuer: /CN=A91BE096/serialNumber=4ABDA24AD7BD9E8D9CEFB35938D0A878804C62E4 Certificate serial: 10C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sr2iSte9no2c77NZONCoeIBMYuQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.mft Manifest number: 10AD Signing time: Fri 22 Aug 2025 17:27:25 +0000 Manifest this update: Fri 22 Aug 2025 17:27:24 +0000 Manifest next update: Fri 29 Aug 2025 17:27:24 +0000 Files and hashes: 1: Sr2iSte9no2c77NZONCoeIBMYuQ.crl (hash: MCK2Poo1FWzU7SoIejixlUREwOktVCUfJYSKsfw/OoA=) 2: 60E695B6C52A11EE80D54071C4F9AE02.roa (hash: Ur8W3C7QgJQkw3BnGAD55weFMOItsdqD/26WShAlLaM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.crl rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sr2iSte9no2c77NZONCoeIBMYuQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:27:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4294 (0x10c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE096, serialNumber=4ABDA24AD7BD9E8D9CEFB35938D0A878804C62E4 Validity Not Before: Aug 22 17:27:24 2025 GMT Not After : Aug 29 17:27:24 2025 GMT Subject: CN=68a8a87d-c2c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:c2:e6:29:73:c5:80:aa:61:b6:61:b6:42:cc: 65:cd:9e:96:62:4a:8c:66:ba:f4:2e:ef:3b:36:a7: f6:a2:02:a5:bd:1c:1d:a6:ad:9b:96:2e:14:6d:3e: 39:62:7d:e6:3a:fa:28:42:b9:47:f3:1e:e1:da:59: 16:8a:21:1c:90:fb:a0:f9:08:56:a9:b6:d9:5e:c8: 3d:19:8a:70:e2:1a:69:93:75:7f:d7:45:b3:30:d0: a2:9e:51:99:e8:7c:bf:88:66:dc:bb:9d:24:f4:6e: 57:b4:a5:84:09:bf:04:fd:74:73:f7:5e:c2:06:5c: 8e:f3:0b:d5:7e:e3:be:a5:52:4e:39:a2:83:e2:72: 22:24:84:c2:01:03:33:b5:b1:44:05:79:f7:88:d0: 9a:ef:2e:ec:e0:77:a1:0b:5f:ad:5e:f0:29:fd:a1: c8:e4:0f:da:c0:cd:5f:3b:5b:f0:14:ff:31:d1:c3: 51:f4:1e:bf:ae:46:07:e4:f1:d6:57:60:d7:b6:4a: b8:43:84:13:8f:0b:76:2b:75:ea:f7:89:89:eb:64: b8:55:49:7d:9c:a9:8a:da:b0:53:b2:c4:5c:e4:9f: b0:9e:c4:9c:c7:11:63:c8:6e:80:8c:ad:d0:8e:5c: fb:6b:af:6b:40:26:b9:df:c2:84:8b:38:fc:50:b8: d5:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:83:19:5F:E3:5E:43:7C:34:B3:BB:1F:F5:BB:52:66:26:4D:F1:D8 X509v3 Authority Key Identifier: keyid:4A:BD:A2:4A:D7:BD:9E:8D:9C:EF:B3:59:38:D0:A8:78:80:4C:62:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sr2iSte9no2c77NZONCoeIBMYuQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:e5:b2:8d:9d:d3:1f:2b:0b:5a:fd:7f:e8:e6:2f:5e:4f:a6: 4c:48:fe:b7:7d:0f:e6:7d:7f:41:2c:01:d8:a1:4b:cf:64:ac: e8:aa:1d:01:2d:43:99:58:72:29:dc:8d:9e:7b:18:6b:ef:c2: 10:d7:0c:f5:05:5c:9a:b8:80:1a:b8:d7:31:c7:59:86:00:22: fb:00:8b:d5:f5:9a:f8:32:d0:00:68:24:c7:b6:75:3d:2d:bc: 25:57:54:27:dc:c9:a6:91:b0:44:79:d6:18:14:97:63:99:44: 40:02:e5:a4:bd:18:b9:a7:fe:4b:a9:6a:59:82:c2:1f:c0:c4: e3:1e:db:89:c4:15:ae:de:ed:e4:63:74:8b:4b:3e:16:4c:ac: 47:a4:02:db:21:31:60:1e:d3:6c:f0:79:8d:0a:d1:c4:8b:cc: 78:5b:04:ca:5f:b7:37:71:c0:db:ab:f0:b3:d1:58:52:12:45: a3:9a:7e:b0:ca:5d:9b:a2:f0:d3:74:98:97:5e:08:46:f5:14: c2:06:21:41:8c:44:bc:40:1f:18:b3:ec:f0:f8:55:87:ea:7d: 54:e9:67:1f:4f:9d:eb:56:04:86:7b:19:7d:20:c2:40:1e:7e: ed:3f:57:d3:df:94:2a:fa:fe:5a:73:e6:ce:66:28:32:bc:ef: 77:2f:34:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkUwOTYxMTAvBgNVBAUTKDRBQkRBMjRBRDdCRDlFOEQ5Q0VGQjM1OTM4RDBBODc4 ODA0QzYyRTQwHhcNMjUwODIyMTcyNzI0WhcNMjUwODI5MTcyNzI0WjAYMRYwFAYD VQQDEw02OGE4YTg3ZC1jMmM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAysLmKXPFgKphtmG2QsxlzZ6WYkqMZrr0Lu87Nqf2ogKlvRwdpq2bli4UbT45 Yn3mOvooQrlH8x7h2lkWiiEckPug+QhWqbbZXsg9GYpw4hppk3V/10WzMNCinlGZ 6Hy/iGbcu50k9G5XtKWECb8E/XRz917CBlyO8wvVfuO+pVJOOaKD4nIiJITCAQMz tbFEBXn3iNCa7y7s4HehC1+tXvAp/aHI5A/awM1fO1vwFP8x0cNR9B6/rkYH5PHW V2DXtkq4Q4QTjwt2K3Xq94mJ62S4VUl9nKmK2rBTssRc5J+wnsScxxFjyG6AjK3Q jlz7a69rQCa538KEizj8ULjVxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI2DGV/j XkN8NLO7H/W7UmYmTfHYMB8GA1UdIwQYMBaAFEq9okrXvZ6NnO+zWTjQqHiATGLk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRTA5Ni8yRkJCNDQwRTMz NDUxMUU5OThDNTY3M0JDNEY5QUUwMi9TcjJpU3RlOW5vMmM3N05aT05Db2VJQk1Z dVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NyMmlTdGU5bm8yYzc3TlpPTkNvZUlCTVl1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RTA5Ni8yRkJCNDQwRTMzNDUxMUU5OThDNTY3M0JDNEY5QUUwMi9TcjJpU3RlOW5v MmM3N05aT05Db2VJQk1ZdVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/5bKNndMfKwta/X/o5i9eT6ZMSP63fQ/mfX9BLAHYoUvPZKzoqh0B LUOZWHIp3I2eexhr78IQ1wz1BVyauIAauNcxx1mGACL7AIvV9Zr4MtAAaCTHtnU9 LbwlV1Qn3MmmkbBEedYYFJdjmURAAuWkvRi5p/5LqWpZgsIfwMTjHtuJxBWu3u3k Y3SLSz4WTKxHpALbITFgHtNs8HmNCtHEi8x4WwTKX7c3ccDbq/Cz0VhSEkWjmn6w yl2bovDTdJiXXghG9RTCBiFBjES8QB8Ys+zw+FWH6n1U6WcfT53rVgSGexl9IMJA Hn7tP1fT35Qq+v5ac+bOZigyvO93LzSL -----END CERTIFICATE-----Generated at Sat Aug 23 19:05:42 2025 by rpki-client