$ rpki-client -vvf rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft File: 0rwrzA84njpcUzzEc6fENrsbdNk.mft (raw, json) Hash identifier: AYuPPIiSABkKLf+doqwK0ZKrb3L7K/C5ana1OJvAYNE= Subject key identifier: 54:BA:A5:FE:3B:61:3E:D0:45:7B:E0:75:C3:B2:EF:3A:52:43:0E:9B Authority key identifier: D2:BC:2B:CC:0F:38:9E:3A:5C:53:3C:C4:73:A7:C4:36:BB:1B:74:D9 Certificate issuer: /CN=A91C21C7/serialNumber=D2BC2BCC0F389E3A5C533CC473A7C436BB1B74D9 Certificate serial: 2D96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rwrzA84njpcUzzEc6fENrsbdNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft Manifest number: 2D71 Signing time: Fri 22 Aug 2025 15:33:38 +0000 Manifest this update: Fri 22 Aug 2025 15:33:37 +0000 Manifest next update: Fri 29 Aug 2025 15:33:37 +0000 Files and hashes: 1: 0rwrzA84njpcUzzEc6fENrsbdNk.crl (hash: 69Hhq7as1qhx12heWGiDH6EaAUfT74IhcDgxgd5xYgY=) 2: E2AD90E813E811E9B287C144C4F9AE02.roa (hash: CwjqOoJS53tpi81tzFuwu956lUr2HE8GT6aAkGCmQ3k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.crl rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rwrzA84njpcUzzEc6fENrsbdNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:33:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11670 (0x2d96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C21C7, serialNumber=D2BC2BCC0F389E3A5C533CC473A7C436BB1B74D9 Validity Not Before: Aug 22 15:33:37 2025 GMT Not After : Aug 29 15:33:37 2025 GMT Subject: CN=68a88dd2-2a38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d6:b3:b9:cf:73:b6:d1:1a:9a:4a:85:bd:2d: 32:0c:bf:fa:fb:09:49:4f:52:bf:99:e5:28:03:43: cc:fb:9c:39:08:67:fc:2c:7c:02:36:f0:7a:d7:87: 59:d6:86:ab:d4:33:b3:b9:2a:fa:c2:4e:a1:12:ba: 3c:a4:ad:75:7a:c2:6c:9d:fe:b0:3e:69:94:09:9e: 5b:1d:a5:fd:97:ee:7b:ad:cc:6c:6b:51:f2:11:e8: d7:45:02:a8:9f:ff:9e:24:b6:4b:c9:e2:90:fe:d0: fa:e7:00:ec:72:b7:b8:6e:3f:cb:fa:b4:bd:78:11: 15:bf:83:99:67:e9:20:53:6e:94:a4:a7:e3:d9:ac: ef:d0:67:be:38:cb:b5:13:00:e7:33:03:53:bf:40: f9:dd:15:27:65:91:3c:b3:94:c3:7c:87:99:ef:59: f9:9d:60:ef:84:14:00:e0:2a:ea:19:91:67:4a:2f: c1:d6:b9:47:a2:98:58:03:4c:39:81:00:8f:0d:13: 14:5d:45:0a:19:5e:95:2c:4c:ab:6e:f3:e7:5f:29: ba:e9:2e:2e:d1:68:bc:e3:f3:be:8f:c7:e7:90:ab: 7b:db:83:a8:55:45:3a:85:59:23:7e:c4:e2:be:f7: e5:43:53:0a:d3:09:10:b0:8a:fd:bd:32:2b:ec:24: 4a:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:BA:A5:FE:3B:61:3E:D0:45:7B:E0:75:C3:B2:EF:3A:52:43:0E:9B X509v3 Authority Key Identifier: keyid:D2:BC:2B:CC:0F:38:9E:3A:5C:53:3C:C4:73:A7:C4:36:BB:1B:74:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rwrzA84njpcUzzEc6fENrsbdNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:c3:fe:8b:8a:c2:56:6a:b6:58:4d:43:1b:5d:9e:b8:a8:ce: 87:4e:39:d9:1b:30:74:52:57:62:2d:67:9a:ad:5c:1c:f8:3f: 33:8b:af:4c:a4:28:ca:e7:f7:f3:6a:d4:37:8e:bb:1a:34:9c: 5f:1a:9c:19:fb:a0:07:e6:a5:25:02:86:58:64:14:55:fb:7b: 2e:fa:7d:84:24:a0:40:b0:a3:71:d5:30:90:10:1e:08:ce:1c: 8b:29:b3:bd:e4:ea:27:03:59:c1:e0:83:45:fa:c0:1e:54:d3: b4:d7:7d:2f:80:5a:94:0d:ff:b0:a6:2e:0c:87:72:88:6b:7a: d0:ed:85:ac:09:9f:c7:3a:8e:8b:91:5e:df:4b:49:c5:4f:86: 96:b3:97:b3:a6:62:23:85:0a:49:46:65:14:6c:a3:65:52:f6: a5:bf:93:55:45:7a:66:a1:f3:d4:20:10:25:ee:2e:22:48:b9: 38:a1:f0:b4:a1:4b:17:f5:16:ce:97:e8:32:8d:31:93:8c:bb: c2:c5:ba:66:e0:6f:ce:a5:f8:0f:35:9f:93:4a:98:06:3c:27: 44:88:8b:41:94:0e:46:80:21:ab:91:2e:3d:4e:dc:a2:a1:8a: 6a:fd:15:d4:f0:98:e2:53:5a:61:98:49:77:0c:14:f5:47:e9: a4:e7:d8:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIxQzcxMTAvBgNVBAUTKEQyQkMyQkNDMEYzODlFM0E1QzUzM0NDNDczQTdDNDM2 QkIxQjc0RDkwHhcNMjUwODIyMTUzMzM3WhcNMjUwODI5MTUzMzM3WjAYMRYwFAYD VQQDEw02OGE4OGRkMi0yYTM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9azuc9zttEamkqFvS0yDL/6+wlJT1K/meUoA0PM+5w5CGf8LHwCNvB614dZ 1oar1DOzuSr6wk6hEro8pK11esJsnf6wPmmUCZ5bHaX9l+57rcxsa1HyEejXRQKo n/+eJLZLyeKQ/tD65wDscre4bj/L+rS9eBEVv4OZZ+kgU26UpKfj2azv0Ge+OMu1 EwDnMwNTv0D53RUnZZE8s5TDfIeZ71n5nWDvhBQA4CrqGZFnSi/B1rlHophYA0w5 gQCPDRMUXUUKGV6VLEyrbvPnXym66S4u0Wi84/O+j8fnkKt724OoVUU6hVkjfsTi vvflQ1MK0wkQsIr9vTIr7CRKyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFS6pf47 YT7QRXvgdcOy7zpSQw6bMB8GA1UdIwQYMBaAFNK8K8wPOJ46XFM8xHOnxDa7G3TZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjFDNy81NDIyMkZEMDhG QUIxMUUzOTM2MkVGMzU1OTExRUEzMi8wcndyekE4NG5qcGNVenpFYzZmRU5yc2Jk TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzByd3J6QTg0bmpwY1V6ekVjNmZFTnJzYmROay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjFDNy81NDIyMkZEMDhGQUIxMUUzOTM2MkVGMzU1OTExRUEzMi8wcndyekE4NG5q cGNVenpFYzZmRU5yc2JkTmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVw/6LisJWarZYTUMbXZ64qM6HTjnZGzB0UldiLWearVwc+D8zi69M pCjK5/fzatQ3jrsaNJxfGpwZ+6AH5qUlAoZYZBRV+3su+n2EJKBAsKNx1TCQEB4I zhyLKbO95OonA1nB4INF+sAeVNO0130vgFqUDf+wpi4Mh3KIa3rQ7YWsCZ/HOo6L kV7fS0nFT4aWs5ezpmIjhQpJRmUUbKNlUvalv5NVRXpmofPUIBAl7i4iSLk4ofC0 oUsX9RbOl+gyjTGTjLvCxbpm4G/OpfgPNZ+TSpgGPCdEiItBlA5GgCGrkS49Ttyi oYpq/RXU8JjiU1phmEl3DBT1R+mk59j8 -----END CERTIFICATE-----Generated at Sat Aug 23 19:37:11 2025 by rpki-client